VDB
GCVE-110-MAGEIA-2017-239
GCVE-110-MAGEIA-2017-239
Advisory Published
A vulnerability was discovered in spice, in the server's protocol handling. An
authenticated attacker could send specially crafted messages to the spice
server, causing out-of-bounds memory accesses leading to parts of server memory
being leaked or a crash (CVE-2017-7506).
The Mageia 5 package has been patched to fix this issue. The Mageia 6 package
has been updated to version 0.13.90, containing fixes for this and several other
issues.
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| Mageia | spice | 0 (affected), 0.12.5-2.5.mga5 (unaffected) | — |
| Mageia | spice-protocol | 0.12.13-1.mga6 (unaffected), 0 (affected) | — |
| Mageia | spice | 0 (affected), 0.13.90-1.mga6 (unaffected) | — |
Aliases
References
Browse GCVE Records
71,925 records in the GCVE database · Updated July 13, 2026
No matching records found.
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.