VDB
DEBIAN-CVE-2015-5261
DEBIAN-CVE-2015-5261
PUBLISHED
CVSS 7.099999904632568 HIGH
Heap-based buffer overflow in SPICE before 0.12.6 allows guest OS users to read and write to arbitrary memory locations on the host via guest QXL commands related to surface creation.
Risk Scores
CVSS v3.0
7.099999904632568
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian:12 | spice | 0, 0, 0 |
| Debian:13 | spice | 0, 0, 0 |
| Debian:14 | spice | 0, 0, 0 |
| Debian:11 | spice | 0, 0, 0 |
Timeline
- Jun 7, 2016 CVE Published
- Apr 28, 2026 CVE Updated