Advisories ยป MGASA-2013-0255

Updated spice packages fix CVE-2013-4130

Publication date: 22 Aug 2013
Modification date: 22 Aug 2013
Type: security
Affected Mageia releases : 2 , 3
CVE: CVE-2013-4130

Description

Updated spice packages fix security vulnerability:

An user able to initiate spice connection to the guest could use a flaw in
server/red_channel.c to crash the guest (CVE-2013-4130).
                

References

SRPMS

3/core

2/core