VulnerableCode Package Details - pkg:alpm/archlinux/spice@0.14.0-2

Search for packages

Package details: pkg:alpm/archlinux/spice@0.14.0-2

Essentials
History (3)

purl	pkg:alpm/archlinux/spice@0.14.0-2

Next non-vulnerable version	0.14.0-3
Latest non-vulnerable version	0.15.0-1
Risk	4.5

Vulnerabilities affecting this package (1)

Vulnerability	Summary	Fixed by
VCID-usmx-bw7t-aaan Aliases: CVE-2019-3813	Spice, versions 0.5.2 through 0.14.1, are vulnerable to an out-of-bounds read due to an off-by-one error in memslot_get_virt. This may lead to a denial of service, or, in the worst case, code-execution by unauthenticated attackers.	0.14.0-3 Affected by 0 other vulnerabilities.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-03-28T07:44:28.751207+00:00	Arch Linux Importer	Affected by	VCID-usmx-bw7t-aaan	https://security.archlinux.org/AVG-866	36.0.0
2024-09-18T01:59:33.595404+00:00	Arch Linux Importer	Affected by	VCID-usmx-bw7t-aaan	https://security.archlinux.org/AVG-866	34.0.1
2024-01-03T22:25:49.817583+00:00	Arch Linux Importer	Affected by	VCID-usmx-bw7t-aaan	https://security.archlinux.org/AVG-866	34.0.0rc1