aboutsummaryrefslogtreecommitdiffstats
path: root/recipes-support/spice/files/CVE-2017-7506-3.patch
AgeCommit message (Collapse)Author
2017-09-29spice: fix CVE-2017-7506Yi Zhao
CVE-2017-7506: spice versions though 0.13 are vulnerable to out-of-bounds memory access when processing specially crafted messages from authenticated attacker to the spice server resulting into crash and/or server memory leak. Reference: https://nvd.nist.gov/vuln/detail/CVE-2017-7506 Patches from: https://cgit.freedesktop.org/spice/spice/commit/?h=0.12&id=f1e7ec03e26ab6b8ca9b7ec060846a5b706a963d https://cgit.freedesktop.org/spice/spice/commit/?h=0.12&id=ec6229c79abe05d731953df5f7e9a05ec9f6df79 https://cgit.freedesktop.org/spice/spice/commit/?h=0.12&id=a957a90baf2c62d31f3547e56bba7d0e812d2331 Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@windriver.com>
generated by cgit 1.2.3-korg (git 2.39.0) at 2024-05-04 17:28:52 +0000