Search for packages
Package details: pkg:alpm/archlinux/spice-gtk@0.38-1
purl pkg:alpm/archlinux/spice-gtk@0.38-1
Next non-vulnerable version 0.39-1
Latest non-vulnerable version 0.39-1
Risk 4.5
Vulnerabilities affecting this package (1)
Vulnerability Summary Fixed by
VCID-xngp-n9hs-aaag
Aliases:
CVE-2020-14355
Multiple buffer overflow vulnerabilities were found in the QUIC image decoding process of the SPICE remote display system, before spice-0.14.2-1. Both the SPICE client (spice-gtk) and server are affected by these flaws. These flaws allow a malicious client or server to send specially crafted messages that, when processed by the QUIC image compression algorithm, result in a process crash or potential code execution.
0.39-1
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2025-03-28T07:44:06.903002+00:00 Arch Linux Importer Affected by VCID-xngp-n9hs-aaag https://security.archlinux.org/AVG-2134 36.0.0
2024-09-18T01:59:14.410070+00:00 Arch Linux Importer Affected by VCID-xngp-n9hs-aaag https://security.archlinux.org/AVG-2134 34.0.1
2024-01-03T22:25:31.844945+00:00 Arch Linux Importer Affected by VCID-xngp-n9hs-aaag https://security.archlinux.org/AVG-2134 34.0.0rc1