[El-errata] ELSA-2017-0253 Moderate: Oracle Linux 6 spice-server security update

Errata Announcements for Oracle Linux el-errata at oss.oracle.com
Sun Feb 5 22:57:46 PST 2017


Oracle Linux Security Advisory ELSA-2017-0253

http://linux.oracle.com/errata/ELSA-2017-0253.html

The following updated rpms for Oracle Linux 6 have been uploaded to the 
Unbreakable Linux Network:


x86_64:
spice-server-0.12.4-13.el6_8.2.x86_64.rpm
spice-server-devel-0.12.4-13.el6_8.2.x86_64.rpm


SRPMS:
http://oss.oracle.com/ol6/SRPMS-updates/spice-server-0.12.4-13.el6_8.2.src.rpm



Description of changes:

[0.12.4-13.2]
- Fix buffer overflow in main_channel_alloc_msg_rcv_buf when reading large
   messages.
   Resolves: CVE-2016-9577
- Fix remote DoS via crafted message.
   Resolves: CVE-2016-9578





More information about the El-errata mailing list