Mailinglist Archive: opensuse-security-announce (28 mails)

< Previous Next >
[security-announce] SUSE-SU-2015:0884-2: important: Security update for spice
SUSE Security Update: Security update for spice

Announcement ID: SUSE-SU-2015:0884-2
Rating: important
References: #848279
Cross-References: CVE-2013-4282
Affected Products:
SUSE Linux Enterprise Software Development Kit 12

An update that fixes one vulnerability is now available.


The remote desktop software SPICE was updated to address one security

The following vulnerabilitiy was fixed:

* A stack-based buffer overflow in the password handling code allowed
remote attackers to cause a denial of service (crash) via a long
password in a SPICE ticket. (bsc#848279, CVE-2013-4282)

Patch Instructions:

To install this SUSE Security Update use YaST online_update.
Alternatively you can run the command listed for your product:

- SUSE Linux Enterprise Software Development Kit 12:

zypper in -t patch SUSE-SLE-SDK-12-2015-199=1

To bring your system up-to-date, use "zypper patch".

Package List:

- SUSE Linux Enterprise Software Development Kit 12 (x86_64):



To unsubscribe, e-mail: opensuse-security-announce+unsubscribe@xxxxxxxxxxxx
For additional commands, e-mail: opensuse-security-announce+help@xxxxxxxxxxxx

< Previous Next >
This Thread
  • No further messages