Your submission was sent successfully! Close

You have successfully unsubscribed! Close

CVE-2016-0749

Published: 9 June 2016

The smartcard interaction in SPICE allows remote attackers to cause a denial of service (QEMU-KVM process crash) or possibly execute arbitrary code via vectors related to connecting to a guest VM, which triggers a heap-based buffer overflow.

Notes

Author	Note
mdeslaur	technically, this doesn't affect trusty since it is compiled with --disable-smartcard.

Priority

Cvss 3 Severity Score

9.8

Score breakdown

Status

Package	Release	Status
spice Launchpad, Ubuntu, Debian	precise	Ignored (end of life)
	trusty	Released (0.12.4-0nocelt2ubuntu1.3)
	upstream	Needs triage
	wily	Released (0.12.5-1.1ubuntu2.1)
	xenial	Released (0.12.6-4ubuntu0.1)
	yakkety	Released (0.12.6-4ubuntu1)
	zesty	Released (0.12.6-4ubuntu1)

Severity score breakdown

Parameter	Value
Base score	9.8
Attack vector	Network
Attack complexity	Low
Privileges required	None
User interaction	None
Scope	Unchanged
Confidentiality	High
Integrity impact	High
Availability impact	High
Vector	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

References

Bugs

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=826585

Join the discussion

Canonical is offering Expanded Security Maintenance

Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›

Further reading