CVE-2015-5261

CWE-119 — Buffer Overflow11 documents8 sources

Severity

7.1HIGH

EPSS

0.1%

top 74.08%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Spice Project Spice Canonical Ubuntu Linux Debian Debian Linux +6 more

Timeline

PublishedJun 7

Latest updateMay 17

Description

Heap-based buffer overflow in SPICE before 0.12.6 allows guest OS users to read and write to arbitrary memory locations on the host via guest QXL commands related to surface creation.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:NExploitability: 1.8 | Impact: 5.2

Affected Packages7 packages

▶Debianspice< 0.12.5-1.3+3

▶Ubuntuspice< 0.12.4-0nocelt2ubuntu1.2

▶NVDspice_project/spice0.12.5

▶NVDredhat/enterprise_linux_server6.0, 7.0+1

▶NVDredhat/enterprise_linux_desktop6.0, 7.0+1

Also affects: Debian Linux 7.0, 8.0, Ubuntu Linux 14.04, 15.04, Enterprise Linux 6.7.z, 7.1

🔴Vulnerability Details

GHSA

GHSA-w69p-8vxh-m87g: Heap-based buffer overflow in SPICE before 0↗2022-05-17

▶

OSV

CVE-2015-5261: Heap-based buffer overflow in SPICE before 0↗2016-06-07

▶

CVEList

CVE-2015-5261: Heap-based buffer overflow in SPICE before 0↗2016-06-07

▶

OSV

spice vulnerabilities↗2015-10-07

▶

📋Vendor Advisories

Red Hat

spice: Host memory access from guest with invalid primary surface parameters↗2016-06-06

▶

Ubuntu

Spice vulnerabilities↗2015-10-07

▶

Red Hat

spice: host memory access from guest using crafted images↗2015-10-06

▶

Debian

CVE-2015-5261: spice - Heap-based buffer overflow in SPICE before 0.12.6 allows guest OS users to read ...↗2015

▶

💬Community

Bugzilla

CVE-2016-2150 spice: Host memory access from guest with invalid primary surface parameters↗2016-03-01

▶

Bugzilla

CVE-2015-5261 spice: host memory access from guest using crafted images↗2015-09-10

▶