📚 CVE-2015-5260 | SPICE up to 0.12.5 QXL Command surface_id memory corruption (RHSA-2015:1889 / Nessus ID 86483)
💡 Newskategorie: Sicherheitslücken
🔗 Quelle: vuldb.com
A vulnerability, which was classified as critical, was found in SPICE up to 0.12.5. Affected is an unknown function of the component QXL Command Handler. The manipulation of the argument surface_id leads to memory corruption. This vulnerability is traded as CVE-2015-5260. Local access is required to approach this attack. There is no exploit available. It is recommended to upgrade the affected component. ...