VDB

GCVE-110-MAGEIA-2014-22

GCVE-110-MAGEIA-2014-22
Advisory Published
Vulnetix · Advisory published January 21, 2014
Updated spice packages fix security vulnerability: A stack-based buffer overflow flaw was found in the way the reds_handle_ticket() function in the spice-server library handled decryption of ticket data provided by the client. A remote user able to initiate a SPICE connection to an application acting as a SPICE server could use this flaw to crash the application (CVE-2013-4282).

Affected Products

VendorProductVersionsPlatforms
Mageiaspice0 (affected), 0.12.2-5.2.mga3 (unaffected), 0 (affected), 0.12.2-5.2.mga3 (unaffected)
Mageiamate-calc0 (affected), 1.6.1-1.mga4 (unaffected)

Browse GCVE Records

72,664 records in the GCVE database · Updated July 15, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›