Oval Definition:oval:com.ubuntu.cosmic:def:201712194000
Revision Date:2018-03-14Version:1
Title:CVE-2017-12194 on Ubuntu 18.10 (cosmic) - medium.
Description:A flaw was found in the way spice-client processed certain messages sent from the server. An attacker, having control of malicious spice-server, could use this flaw to crash the client or execute arbitrary code with permissions of the user running the client. spice-gtk versions through 0.34 are believed to be vulnerable.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2017-12194
Platform(s):Ubuntu 18.10
Product(s):
Definition Synopsis
  • Ubuntu 18.10 (cosmic) is installed.
  • AND Package Information
  • The 'spice' package in cosmic was vulnerable but has been fixed (note: '0.14.0-1ubuntu3').
  • OR The 'spice-gtk' package in cosmic is affected and needs fixing.
  • OR NOT While related to the CVE in some way, the 'spice-protocol' package in cosmic is not affected.
  • BACK