UbuntuUpdates.org

Package "spice-vdagent"

Name: spice-vdagent

Description:

Spice agent for Linux
Latest version: 0.17.0-1ubuntu2.2
Release: bionic (18.04)
Level: security
Repository: main
Homepage: http://www.spice-space.org/

Links

All versions of this package
Bug fixes

List of files in package
Repository home page

Download "spice-vdagent"

32-bit deb package
64-bit deb package
APT INSTALL

Other versions of "spice-vdagent" in Bionic

Repository Area Version
base main 0.17.0-1ubuntu2
updates main 0.17.0-1ubuntu2.2

Changelog

Version: 0.17.0-1ubuntu2.2 2020-11-04 14:07:15 UTC

  spice-vdagent (0.17.0-1ubuntu2.2) bionic-security; urgency=medium

  * SECURITY UPDATE: Memory DoS via Arbitrary Entries in active_xfers Hash
    Table
    - debian/patches/CVE-2020-25650-1.patch: avoid agents allocating file
      transfers in srcvdagentd.c.
    - debian/patches/CVE-2020-25650-2.patch: avoid uncontrolled
      active_xfers allocations in src/vdagentd.c.
    - CVE-2020-25650
  * SECURITY UPDATE: Possible File Transfer DoS and Information Leak via
    active_xfers Hash Map
    - debian/patches/CVE-2020-25651-1.patch: cleanup active_xfers when the
      client disconnects in src/vdagentd.c.
    - debian/patches/CVE-2020-25651-2.patch: do not allow using an already
      used file-xfer id in src/vdagentd.c.
    - CVE-2020-25651
  * SECURITY UPDATE: Possibility to Exhaust File Descriptors in vdagentd
    - debian/patches/CVE-2020-25652-1.patch: avoid unlimited agent
      connections in src/udscs.c.
    - debian/patches/CVE-2020-25652-2.patch: limit number of agents per
      session to 1 in src/vdagentd.c.
    - CVE-2020-25652
  * SECURITY UPDATE: UNIX Domain Socket Peer PID Retrieved via SO_PEERCRED
    is Subject to Race Condition
    - debian/patches/CVE-2020-25653-1.patch: avoid user session hijacking
      in src/udscs.c, src/udscs.h, src/vdagentd.c.
    - debian/patches/CVE-2020-25653-2.patch: better check for sessions in
      src/console-kit.c, src/dummy-session-info.c, src/session-info.h,
      src/systemd-login.c, src/vdagentd.c.
    - CVE-2020-25653
  * Additional fixes:
    - debian/patches/CVE-2020-2565x-1.patch: avoid calling chmod in
      src/vdagentd.c.

 -- Marc Deslauriers <email address hidden> Mon, 02 Nov 2020 16:52:50 -0500
CVE-2020-25650 Memory DoS via Arbitrary Entries in active_xfers Hash Table
CVE-2020-25651 Possible File Transfer DoS and Information Leak via active_xfers Hash Map
CVE-2020-25652 Possibility to Exhaust File Descriptors in vdagentd
CVE-2020-25653 UNIX Doman Socket Peer PID Retrieved via SO_PEERCRED is Subject to Race Condition
CVE-2020-2565 Vulnerability in the Oracle Solaris product of Oracle Systems (component: Consolidation Infrastructure). The supported version that is affected is 11


About   -   Send Feedback to @ubuntu_updates