Vulnerabilities

CVE-2015-3247

by Fred · 08/09/2015

Race condition in the worker_update_monitors_config function in SPICE 0.12.4 allows a remote authenticated guest user to cause a denial of service (heap-based memory corruption and QEMU-KVM crash) or possibly execute arbitrary code on the host via unspecified vectors.

Date published : 2015-09-08

http://www.debian.org/security/2015/dsa-3354

http://lists.freedesktop.org/archives/spice-devel/2015-October/022191.html

Similar

Tags: Cybersecurity Alert