CVE-2018-10873

CWE-119Buffer OverflowCWE-20Improper Input Validation9 documents8 sources
Severity
8.8HIGH
EPSS
1.2%
top 21.04%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
12
Spice Project Spice[unknown] Spice:Canonical Ubuntu Linux+9 more
Timeline
PublishedAug 17
Latest updateMay 13

Description

A vulnerability was discovered in SPICE before version 0.14.1 where the generated code used for demarshalling messages lacked sufficient bounds checks. A malicious client or server, after authentication, could send specially crafted messages to its peer which would result in a crash or, potentially, other impacts.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:HExploitability: 2.8 | Impact: 5.5

Affected Packages9 packages

NVDspice_project/spice< 0.14.1
Debianspice< 0.14.0-1.1+3
Debianspice-gtk< 0.35-1+3
CVEListV5[unknown]/spice:0.14.1

Also affects: Debian Linux 8.0, 9.0, Ubuntu Linux 14.04, 16.04, 18.04, Enterprise Linux 7.6, 7.5

Patches

Patch: gitlab.freedesktop.orgPatch: gitlab.freedesktop.org

🔴Vulnerability Details

3
GHSA
GHSA-2r4x-v526-vv9j: A vulnerability was discovered in SPICE before version 02022-05-13
OSV
CVE-2018-10873: A vulnerability was discovered in SPICE before version 02018-08-17
CVEList
CVE-2018-10873: A vulnerability was discovered in SPICE before version 02018-08-17

📋Vendor Advisories

3
Ubuntu
Spice vulnerability2018-08-22
Red Hat
spice: Missing check in demarshal.py:write_validate_array_item() allows for buffer overflow and denial of service2018-08-16
Debian
CVE-2018-10873: spice - A vulnerability was discovered in SPICE before version 0.14.1 where the generate...2018

💬Community

2
Bugzilla
CVE-2018-10873 spice: Missing check in demarshal.py:write_validate_array_item() allows for buffer overflow and denial of service [fedora-all]2018-08-16
Bugzilla
CVE-2018-10873 spice: Missing check in demarshal.py:write_validate_array_item() allows for buffer overflow and denial of service2018-06-28