Search for packages
| purl | pkg:deb/debian/spice-gtk@0.35-2 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-agz7-4mx4-aaah
Aliases: CVE-2018-10893 |
Multiple integer overflow and buffer overflow issues were discovered in spice-client's handling of LZ compressed frames. A malicious server could cause the client to crash or, potentially, execute arbitrary code. |
Affected by 0 other vulnerabilities. |
|
VCID-xngp-n9hs-aaag
Aliases: CVE-2020-14355 |
Multiple buffer overflow vulnerabilities were found in the QUIC image decoding process of the SPICE remote display system, before spice-0.14.2-1. Both the SPICE client (spice-gtk) and server are affected by these flaws. These flaws allow a malicious client or server to send specially crafted messages that, when processed by the QUIC image compression algorithm, result in a process crash or potential code execution. |
Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-afzs-1b88-aaaf | A vulnerability was discovered in SPICE before version 0.14.1 where the generated code used for demarshalling messages lacked sufficient bounds checks. A malicious client or server, after authentication, could send specially crafted messages to its peer which would result in a crash or, potentially, other impacts. |
CVE-2018-10873
|
| VCID-q6fk-hm76-aaaf | A flaw was found in the way spice-client processed certain messages sent from the server. An attacker, having control of malicious spice-server, could use this flaw to crash the client or execute arbitrary code with permissions of the user running the client. spice-gtk versions through 0.34 are believed to be vulnerable. |
CVE-2017-12194
|
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2025-06-21T19:08:29.930629+00:00 | Debian Oval Importer | Fixing | VCID-afzs-1b88-aaaf | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.3 |
| 2025-06-21T18:15:12.472994+00:00 | Debian Oval Importer | Affected by | VCID-xngp-n9hs-aaag | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.3 |
| 2025-06-21T16:25:43.932599+00:00 | Debian Oval Importer | Fixing | VCID-q6fk-hm76-aaaf | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T12:51:29.298624+00:00 | Debian Oval Importer | Fixing | VCID-afzs-1b88-aaaf | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T08:28:15.235382+00:00 | Debian Importer | Affected by | VCID-agz7-4mx4-aaah | https://security-tracker.debian.org/tracker/data/json | 36.1.3 |
| 2025-06-21T05:49:54.018682+00:00 | Debian Oval Importer | Affected by | VCID-xngp-n9hs-aaag | None | 36.1.3 |
| 2025-06-21T02:00:16.642192+00:00 | Debian Importer | Affected by | VCID-xngp-n9hs-aaag | None | 36.1.3 |
| 2025-06-21T01:49:28.806004+00:00 | Debian Oval Importer | Affected by | VCID-agz7-4mx4-aaah | None | 36.1.3 |
| 2025-06-20T22:53:07.876964+00:00 | Debian Oval Importer | Fixing | VCID-q6fk-hm76-aaaf | None | 36.1.3 |
| 2025-06-20T22:47:50.425694+00:00 | Debian Importer | Affected by | VCID-agz7-4mx4-aaah | None | 36.1.3 |
| 2025-06-20T20:46:05.586567+00:00 | Debian Importer | Affected by | VCID-xngp-n9hs-aaag | https://security-tracker.debian.org/tracker/data/json | 36.1.3 |
| 2025-06-20T20:23:51.466869+00:00 | Debian Oval Importer | Fixing | VCID-afzs-1b88-aaaf | None | 36.1.3 |
| 2025-06-08T11:37:31.730721+00:00 | Debian Oval Importer | Fixing | VCID-afzs-1b88-aaaf | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.0 |
| 2025-06-08T10:46:23.390736+00:00 | Debian Oval Importer | Affected by | VCID-xngp-n9hs-aaag | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.0 |
| 2025-06-08T09:11:40.669722+00:00 | Debian Oval Importer | Fixing | VCID-q6fk-hm76-aaaf | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-08T05:46:31.643366+00:00 | Debian Oval Importer | Fixing | VCID-afzs-1b88-aaaf | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-07T23:28:28.069768+00:00 | Debian Oval Importer | Affected by | VCID-xngp-n9hs-aaag | None | 36.1.0 |
| 2025-06-07T19:12:49.166425+00:00 | Debian Oval Importer | Affected by | VCID-agz7-4mx4-aaah | None | 36.1.0 |
| 2025-06-07T16:16:27.711830+00:00 | Debian Oval Importer | Fixing | VCID-q6fk-hm76-aaaf | None | 36.1.0 |
| 2025-06-07T13:59:15.825076+00:00 | Debian Oval Importer | Fixing | VCID-afzs-1b88-aaaf | None | 36.1.0 |
| 2025-06-05T14:32:58.799739+00:00 | Debian Importer | Affected by | VCID-xngp-n9hs-aaag | https://security-tracker.debian.org/tracker/data/json | 36.1.0 |
| 2025-04-12T21:54:58.583509+00:00 | Debian Oval Importer | Fixing | VCID-q6fk-hm76-aaaf | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T20:11:28.727804+00:00 | Debian Oval Importer | Affected by | VCID-agz7-4mx4-aaah | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T17:22:07.049133+00:00 | Debian Oval Importer | Fixing | VCID-afzs-1b88-aaaf | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T16:28:26.307259+00:00 | Debian Oval Importer | Affected by | VCID-xngp-n9hs-aaag | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-08T07:43:34.001437+00:00 | Debian Oval Importer | Fixing | VCID-q6fk-hm76-aaaf | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-08T04:18:17.562704+00:00 | Debian Oval Importer | Fixing | VCID-afzs-1b88-aaaf | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-07T22:00:21.801086+00:00 | Debian Oval Importer | Affected by | VCID-xngp-n9hs-aaag | None | 36.0.0 |
| 2025-04-07T17:50:37.731613+00:00 | Debian Oval Importer | Affected by | VCID-agz7-4mx4-aaah | None | 36.0.0 |
| 2025-04-07T14:47:58.836760+00:00 | Debian Oval Importer | Fixing | VCID-q6fk-hm76-aaaf | None | 36.0.0 |
| 2025-04-07T12:33:44.868254+00:00 | Debian Oval Importer | Fixing | VCID-afzs-1b88-aaaf | None | 36.0.0 |
| 2025-04-07T06:59:06.135455+00:00 | Debian Importer | Fixing | VCID-q6fk-hm76-aaaf | None | 36.0.0 |
| 2025-04-05T05:44:53.400332+00:00 | Debian Importer | Affected by | VCID-agz7-4mx4-aaah | https://security-tracker.debian.org/tracker/data/json | 36.0.0 |
| 2025-04-04T04:45:47.281335+00:00 | Debian Importer | Affected by | VCID-xngp-n9hs-aaag | None | 36.0.0 |
| 2025-04-04T01:27:02.341312+00:00 | Debian Importer | Affected by | VCID-agz7-4mx4-aaah | None | 36.0.0 |
| 2025-04-03T23:31:35.787369+00:00 | Debian Importer | Affected by | VCID-xngp-n9hs-aaag | https://security-tracker.debian.org/tracker/data/json | 36.0.0 |
| 2025-02-19T12:56:39.202477+00:00 | Debian Importer | Affected by | VCID-xngp-n9hs-aaag | https://security-tracker.debian.org/tracker/data/json | 35.1.0 |
| 2025-02-19T12:56:37.082699+00:00 | Debian Importer | Affected by | VCID-xngp-n9hs-aaag | None | 35.1.0 |
| 2025-02-19T00:36:39.538102+00:00 | Debian Importer | Affected by | VCID-agz7-4mx4-aaah | https://security-tracker.debian.org/tracker/data/json | 35.1.0 |
| 2025-02-19T00:36:35.450424+00:00 | Debian Importer | Affected by | VCID-agz7-4mx4-aaah | None | 35.1.0 |
| 2025-02-18T20:04:10.380098+00:00 | Debian Importer | Fixing | VCID-q6fk-hm76-aaaf | None | 35.1.0 |
| 2024-04-24T17:58:56.144450+00:00 | Debian Importer | Affected by | VCID-xngp-n9hs-aaag | https://security-tracker.debian.org/tracker/data/json | 34.0.0rc4 |
| 2024-04-24T17:58:50.424853+00:00 | Debian Importer | Affected by | VCID-xngp-n9hs-aaag | None | 34.0.0rc4 |
| 2024-04-24T12:09:49.958347+00:00 | Debian Importer | Affected by | VCID-agz7-4mx4-aaah | https://security-tracker.debian.org/tracker/data/json | 34.0.0rc4 |
| 2024-04-24T12:09:45.215204+00:00 | Debian Importer | Affected by | VCID-agz7-4mx4-aaah | None | 34.0.0rc4 |
| 2024-04-24T10:49:27.391997+00:00 | Debian Importer | Fixing | VCID-q6fk-hm76-aaaf | None | 34.0.0rc4 |
| 2024-01-10T19:33:05.594852+00:00 | Debian Importer | Affected by | VCID-xngp-n9hs-aaag | https://security-tracker.debian.org/tracker/data/json | 34.0.0rc2 |
| 2024-01-10T19:32:59.843709+00:00 | Debian Importer | Affected by | VCID-xngp-n9hs-aaag | None | 34.0.0rc2 |
| 2024-01-10T13:58:58.733496+00:00 | Debian Importer | Affected by | VCID-agz7-4mx4-aaah | https://security-tracker.debian.org/tracker/data/json | 34.0.0rc2 |
| 2024-01-10T13:58:53.035004+00:00 | Debian Importer | Affected by | VCID-agz7-4mx4-aaah | None | 34.0.0rc2 |
| 2024-01-10T12:37:19.462657+00:00 | Debian Importer | Fixing | VCID-q6fk-hm76-aaaf | None | 34.0.0rc2 |
| 2024-01-04T08:58:37.579261+00:00 | Debian Importer | Affected by | VCID-xngp-n9hs-aaag | https://security-tracker.debian.org/tracker/data/json | 34.0.0rc1 |
| 2024-01-04T08:58:31.702278+00:00 | Debian Importer | Affected by | VCID-xngp-n9hs-aaag | None | 34.0.0rc1 |
| 2024-01-04T05:08:26.169604+00:00 | Debian Importer | Affected by | VCID-agz7-4mx4-aaah | https://security-tracker.debian.org/tracker/data/json | 34.0.0rc1 |
| 2024-01-04T05:08:21.342638+00:00 | Debian Importer | Affected by | VCID-agz7-4mx4-aaah | None | 34.0.0rc1 |
| 2024-01-04T04:18:39.363694+00:00 | Debian Importer | Fixing | VCID-q6fk-hm76-aaaf | None | 34.0.0rc1 |