CVE-2015-3247
EPSS 0.77%spice - security update
發布日:2015/9/8修改日:2026/4/28
描述
Race condition in the worker_update_monitors_config function in SPICE 0.12.4 allows a remote authenticated guest user to cause a denial of service (heap-based memory corruption and QEMU-KVM crash) or possibly execute arbitrary code on the host via unspecified vectors.
受影響套件(2)
- Debian/spicefrom 0, < 0.12.5-1.2
- Debian/spicefrom 0, < 0.12.5-1+deb8u1