USN-3202-1: Spice vulnerabilities<\/p>\n
20th February, 2017<\/em><\/p>\n A security issue affects these releases of Ubuntu and its Spice could be made to crash or run programs if it received specially Frediano Ziglio discovered that Spice incorrectly handled certain client The problem can be corrected by updating your system to the following To update your system, please follow these instructions: After a standard system update you need to restart qemu guests to make CVE-2016-9577<\/a>, <\/p>\n CVE-2016-9578<\/a><\/p>\n Source: USN-3202-1: Spice vulnerabilities<\/a><\/p>\n","protected":false},"excerpt":{"rendered":" USN-3202-1: Spice vulnerabilities Ubuntu Security Notice USN-3202-1 20th February, 2017 spice vulnerabilities A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 16.10 Ubuntu 16.04 LTS Ubuntu 14.04 LTS Summary Spice could be made to crash or run programs if it received specially crafted network traffic. Software description spice – SPICE protocol client and server library Details Frediano Ziglio discovered that Spice incorrectly handled certain clientmessages. A remote attacker could use this issue to cause Spice to crash,resulting in a denial of service, or possibly execute arbitrary code. Update instructions The problem can be corrected by updating your system to the following package version: Ubuntu 16.10: libspice-server1 0.12.8-1ubuntu0.1 Ubuntu 16.04 LTS: libspice-server1 0.12.6-4ubuntu0.2 Ubuntu 14.04 LTS: libspice-server1 0.12.4-0nocelt2ubuntu1.4 To update your system, please follow these instructions: https:\/\/wiki.ubuntu.com\/Security\/Upgrades. After a standard system update you need to restart qemu guests [ more… ]<\/a><\/p>\n<\/div>","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[586],"tags":[587],"class_list":["post-14113","post","type-post","status-publish","format-standard","hentry","category-ubuntu-usn","tag-ubuntu-usn"],"amp_enabled":true,"_links":{"self":[{"href":"https:\/\/jirak.net\/wp\/wp-json\/wp\/v2\/posts\/14113","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/jirak.net\/wp\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/jirak.net\/wp\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/jirak.net\/wp\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/jirak.net\/wp\/wp-json\/wp\/v2\/comments?post=14113"}],"version-history":[{"count":1,"href":"https:\/\/jirak.net\/wp\/wp-json\/wp\/v2\/posts\/14113\/revisions"}],"predecessor-version":[{"id":14115,"href":"https:\/\/jirak.net\/wp\/wp-json\/wp\/v2\/posts\/14113\/revisions\/14115"}],"wp:attachment":[{"href":"https:\/\/jirak.net\/wp\/wp-json\/wp\/v2\/media?parent=14113"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/jirak.net\/wp\/wp-json\/wp\/v2\/categories?post=14113"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/jirak.net\/wp\/wp-json\/wp\/v2\/tags?post=14113"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}spice vulnerabilities<\/h3>\n
\n derivatives:<\/p>\n\n
Summary<\/h3>\n
\ncrafted network traffic.\n<\/p>\nSoftware description<\/h3>\n
\n
\n – SPICE protocol client and server library<\/p>\n<\/li>\n<\/ul>\nDetails<\/h3>\n
messages. A remote attacker could use this issue to cause Spice to crash,
resulting in a denial of service, or possibly execute arbitrary code.<\/p>\nUpdate instructions<\/h3>\n
\npackage version:<\/p>\n\n
\n
\n 0.12.8-1ubuntu0.1<\/a>
\n <\/span>\n <\/dd>\n
\n
\n 0.12.6-4ubuntu0.2<\/a>
\n <\/span>\n <\/dd>\n
\n
\n 0.12.4-0nocelt2ubuntu1.4<\/a>
\n <\/span>\n <\/dd>\n<\/dl>\n
\nhttps:\/\/wiki.ubuntu.com\/Security\/Upgrades<\/a>.\n<\/p>\n
all the necessary changes.<\/p>\nReferences<\/h3>\n