[Nix-commits] [NixOS/nixpkgs] 77e920: spice: Patch for CVE-2016-9577, CVE-2016-9578

Graham Christensen Wed, 08 Feb 2017 19:05:06 -0800

  Branch: refs/heads/master
  Home:   https://github.com/NixOS/nixpkgs
  Commit: 77e920d874e9c1b4c41ef1250013b19e8fa792c1
      
https://github.com/NixOS/nixpkgs/commit/77e920d874e9c1b4c41ef1250013b19e8fa792c1
  Author: Graham Christensen <gra...@grahamc.com>
  Date:   2017-02-08 (Wed, 08 Feb 2017)


  Changed paths:
    A 
pkgs/development/libraries/spice/0001-Adapting-the-following-patch-from-http-pkgs.fedorapr.patch
    M pkgs/development/libraries/spice/default.nix

  Log Message:
  -----------
  spice: Patch for CVE-2016-9577, CVE-2016-9578

>From the Red Hat advisory:

* A vulnerability was discovered in spice in the server's protocol
  handling. An authenticated attacker could send crafted messages to
  the spice server causing a heap overflow leading to a crash or
  possible code execution. (CVE-2016-9577)

* A vulnerability was discovered in spice in the server's protocol
  handling. An attacker able to connect to the spice server could send
  crafted messages which would cause the process to crash.
  (CVE-2016-9578)

_______________________________________________
nix-commits mailing list
nix-comm...@lists.science.uu.nl
http://lists.science.uu.nl/mailman/listinfo/nix-commits

[Nix-commits] [NixOS/nixpkgs] 77e920: spice: Patch for CVE-2016-9577, CVE-2016-9578

Reply via email to