VDB

GCVE-110-MAGEIA-2017-239

GCVE-110-MAGEIA-2017-239
Advisory Published
Vulnetix · Advisory published August 3, 2017
A vulnerability was discovered in spice, in the server's protocol handling. An authenticated attacker could send specially crafted messages to the spice server, causing out-of-bounds memory accesses leading to parts of server memory being leaked or a crash (CVE-2017-7506). The Mageia 5 package has been patched to fix this issue. The Mageia 6 package has been updated to version 0.13.90, containing fixes for this and several other issues.

Affected Products

VendorProductVersionsPlatforms
Mageiaspice0 (affected), 0.12.5-2.5.mga5 (unaffected)
Mageiaspice-protocol0.12.13-1.mga6 (unaffected), 0 (affected)
Mageiaspice0 (affected), 0.13.90-1.mga6 (unaffected)

Browse GCVE Records

71,925 records in the GCVE database · Updated July 13, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›