Vulnerabilities (CVE)

Vendor filter

Spice Project Subscribe

Product filter

Spice Subscribe

Filter

2 total CVE
CVE Vendors Products Updated CVSS
CVE-2016-2150 5 Debian, Spice Project, Novell and 2 more 13 Leap, Debian Linux, Enterprise Linux Desktop and 10 more 2019-04-22 3.6
SPICE allows local guest OS users to read from or write to arbitrary host memory locations via crafted primary surface parameters, a similar issue to CVE-2015-5261.
CVE-2015-5261 4 Debian, Spice Project, Canonical and 1 more 9 Ubuntu Linux, Debian Linux, Enterprise Linux Desktop and 6 more 2017-09-16 3.6
Heap-based buffer overflow in SPICE before 0.12.6 allows guest OS users to read and write to arbitrary memory locations on the host via guest QXL commands related to surface creation.