CVE-2016-2150

Priority
Description
SPICE allows local guest OS users to read from or write to arbitrary host
memory locations via crafted primary surface parameters, a similar issue to
CVE-2015-5261.
Assigned-to
mdeslaur
Notes
Package
Source: spice (LP Ubuntu Debian)
Upstream:needs-triage
Ubuntu 12.04 ESM (Precise Pangolin):DNE (precise was needed)
Ubuntu 14.04 ESM (Trusty Tahr):released (0.12.4-0nocelt2ubuntu1.3)
Ubuntu 16.04 LTS (Xenial Xerus):released (0.12.6-4ubuntu0.1)
More Information

Updated: 2020-03-18 22:43:52 UTC (commit 2ea7df7bd1e69e1e489978d2724a936eb3faa1b8)