Oval Definition:oval:com.redhat.rhsa:def:20200471
Revision Date:2020-02-11Version:635
Title:RHSA-2020:0471: spice-gtk security update (Moderate)
Description:The spice-gtk packages provide a GIMP Toolkit (GTK+) widget for Simple Protocol for Independent Computing Environments (SPICE) clients. Both Virtual Machine Manager and Virtual Machine Viewer can make use of this widget to access virtual machines using the SPICE protocol.

Security Fix(es):

  • spice-client: Insufficient encoding checks for LZ can cause different integer/buffer overflows (CVE-2018-10893)

    For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
    • Family:unixClass:patch
    Status:Reference(s):CVE-2018-10893
    RHSA-2020:0471
    Platform(s):Red Hat Enterprise Linux 6
    		Product(s):
    Definition Synopsis
  • Red Hat Enterprise Linux must be installed
  • OR Package Information
  • Red Hat Enterprise Linux 6 is installed
  • AND
  • spice-glib is earlier than 0:0.26-8.el6_10.2
  • AND spice-glib is signed with Red Hat redhatrelease2 key
  • spice-glib-devel is earlier than 0:0.26-8.el6_10.2
  • AND spice-glib-devel is signed with Red Hat redhatrelease2 key
  • spice-gtk is earlier than 0:0.26-8.el6_10.2
  • AND spice-gtk is signed with Red Hat redhatrelease2 key
  • spice-gtk-devel is earlier than 0:0.26-8.el6_10.2
  • AND spice-gtk-devel is signed with Red Hat redhatrelease2 key
  • spice-gtk-python is earlier than 0:0.26-8.el6_10.2
  • AND spice-gtk-python is signed with Red Hat redhatrelease2 key
  • spice-gtk-tools is earlier than 0:0.26-8.el6_10.2
  • AND spice-gtk-tools is signed with Red Hat redhatrelease2 key
    • BACK