Your submission was sent successfully! Close

You have successfully unsubscribed! Close

Thank you for signing up for our newsletter!Close

CVE-2010-0430

Published: 27 December 2013

libspice, as used in QEMU-KVM in Red Hat Enterprise Virtualization Hypervisor (aka RHEV-H or rhev-hypervisor) before 5.5-2.2 and possibly other products, allows guest OS users to read from or write to arbitrary QEMU memory by modifying the address that is used by Cairo for memory mappings.

Notes

AuthorNote
mdeslaur 
pre-dates spice package in Debian/Ubuntu

Priority

Medium

Status

Package Release Status
spice
Launchpad, Ubuntu, Debian 		upstream Needs triage

lucid Does not exist

precise Not vulnerable

quantal Not vulnerable

raring Not vulnerable

saucy Not vulnerable

References

Join the discussion

Canonical is offering Expanded Security Maintenance

Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›

Further reading