spice: Patch for CVE-2016-9577, CVE-2016-9578 - nixlib - Alyssa's collection of Nix expressions

diff options

author	Graham Christensen <graham@grahamc.com>	2017-02-08 22:03:11 -0500
committer	Graham Christensen <graham@grahamc.com>	2017-02-08 22:03:11 -0500
commit	77e920d874e9c1b4c41ef1250013b19e8fa792c1 (patch)
tree	77c3b8ee8f660db84aa745e656941a5dda419966 /pkgs/tools/filesystems
parent	379144f54b2fa0e1568f72d58860393a1e09b92d (diff)
download	nixlib-77e920d874e9c1b4c41ef1250013b19e8fa792c1.tar nixlib-77e920d874e9c1b4c41ef1250013b19e8fa792c1.tar.gz nixlib-77e920d874e9c1b4c41ef1250013b19e8fa792c1.tar.bz2 nixlib-77e920d874e9c1b4c41ef1250013b19e8fa792c1.tar.lz nixlib-77e920d874e9c1b4c41ef1250013b19e8fa792c1.tar.xz nixlib-77e920d874e9c1b4c41ef1250013b19e8fa792c1.tar.zst nixlib-77e920d874e9c1b4c41ef1250013b19e8fa792c1.zip

spice: Patch for CVE-2016-9577, CVE-2016-9578

From the Red Hat advisory:

* A vulnerability was discovered in spice in the server's protocol
  handling. An authenticated attacker could send crafted messages to
  the spice server causing a heap overflow leading to a crash or
  possible code execution. (CVE-2016-9577)

* A vulnerability was discovered in spice in the server's protocol
  handling. An attacker able to connect to the spice server could send
  crafted messages which would cause the process to crash.
  (CVE-2016-9578)

Diffstat (limited to 'pkgs/tools/filesystems')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: