5 - USN-1926-1

Executive Summary

Summary
Title	SPICE vulnerability

Informations
Name	USN-1926-1	First vendor Publication	2013-08-14
Vendor	Ubuntu	Last vendor Modification	2013-08-14
Severity (Vendor)	N/A	Revision	N/A

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score	NA
Base Score	NA	Environmental Score	NA
impact SubScore	NA	Temporal Score	NA
Exploitabality Sub Score	NA

Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:N/I:N/A:P)
Cvss Base Score	5	Attack Range	Network
Cvss Impact Score	2.9	Attack Complexity	Low
Cvss Expoit Score	10	Authentication	None Required
Calculate full CVSS 2.0 Vectors scores

Detail

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 13.04

Summary:

SPICE could be made to crash if it received specially crafted network traffic.

Software Description: - spice: SPICE protocol client and server library

Details:

David Gibson discovered that SPICE incorrectly handled certain network errors. An attacker could use this issue to cause the SPICE server to crash, resulting in a denial of service.

Update instructions:

The problem can be corrected by updating your system to the following package versions:

Ubuntu 13.04:
libspice-server1 0.12.2-0nocelt2expubuntu1.1

After a standard system update you need to restart applications using the SPICE protocol, such as QEMU, to make all the necessary changes.

References:
http://www.ubuntu.com/usn/usn-1926-1
CVE-2013-4130

Package Information:
https://launchpad.net/ubuntu/+source/spice/0.12.2-0nocelt2expubuntu1.1

Original Source

Url : http://www.ubuntu.com/usn/USN-1926-1

CWE : Common Weakness Enumeration

%	Id	Name
100 %	CWE-399	Resource Management Errors

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:18370

Oval ID:	oval:org.mitre.oval:def:18370
Title:	USN-1926-1 -- spice vulnerability
Description:	SPICE could be made to crash if it received specially crafted network traffic.
Family:	unix	Class:	patch
Reference(s):	USN-1926-1 CVE-2013-4130	Version:	7
Platform(s):	Ubuntu 13.04	Product(s):	spice
Definition Synopsis:
Ubuntu 13.04 is installed AND libspice-server1 DPKG is earlier than 0.12.2-0nocelt2expubuntu1.1

Definition Id: oval:org.mitre.oval:def:21175

Oval ID:	oval:org.mitre.oval:def:21175
Title:	RHSA-2013:1192: spice-server security update (Moderate)
Description:	The (1) red_channel_pipes_add_type and (2) red_channel_pipes_add_empty_msg functions in server/red_channel.c in SPICE before 0.12.4 do not properly perform ring loops, which might allow remote attackers to cause a denial of service (reachable assertion and server exit) by triggering a network error.
Family:	unix	Class:	patch
Reference(s):	RHSA-2013:1192-00 CESA-2013:1192 CVE-2013-4130	Version:	4
Platform(s):	Red Hat Enterprise Linux 6 CentOS Linux 6	Product(s):	spice-server
Definition Synopsis:
Redhat 6 or Centos 6 release The operating system installed on the system is Red Hat Enterprise Linux 6 AND CentOS Linux 6.x Packages section spice-server is earlier than 0:0.12.0-12.el6_4.3 AND spice-server-devel is earlier than 0:0.12.0-12.el6_4.3

Definition Id: oval:org.mitre.oval:def:23198

Oval ID:	oval:org.mitre.oval:def:23198
Title:	ELSA-2013:1192: spice-server security update (Moderate)
Description:	The (1) red_channel_pipes_add_type and (2) red_channel_pipes_add_empty_msg functions in server/red_channel.c in SPICE before 0.12.4 do not properly perform ring loops, which might allow remote attackers to cause a denial of service (reachable assertion and server exit) by triggering a network error.
Family:	unix	Class:	patch
Reference(s):	ELSA-2013:1192-00 CVE-2013-4130	Version:	6
Platform(s):	Oracle Linux 6	Product(s):	spice-server
Definition Synopsis:
Oracle Linux 6.x rpm test spice-server is earlier than 0:0.12.0-12.el6_4.3 AND spice-server-devel is earlier than 0:0.12.0-12.el6_4.3

Definition Id: oval:org.mitre.oval:def:27055

Oval ID:	oval:org.mitre.oval:def:27055
Title:	DEPRECATED: ELSA-2013-1192 -- spice-server security update (moderate)
Description:	[0.12.0-12.el6_4.3] - Fixes an abort on unsafe client ring access Resolves: rhbz#986298
Family:	unix	Class:	patch
Reference(s):	ELSA-2013-1192 CVE-2013-4130	Version:	4
Platform(s):	Oracle Linux 6	Product(s):	spice-server
Definition Synopsis:
Oracle Linux 6.x Packages match section spice-server is earlier than 0:0.12.0-12.el6_4.3 AND spice-server-devel is earlier than 0:0.12.0-12.el6_4.3

CPE : Common Platform Enumeration

Type	Description	Count
Application	Spice Project Spice cpe:2.3:a:spice_project:spice:0.9.1:::::::* cpe:2.3:a:spice_project:spice:0.9.0:::::::* cpe:2.3:a:spice_project:spice:0.8.3:::::::* cpe:2.3:a:spice_project:spice:0.8.2:::::::* cpe:2.3:a:spice_project:spice:0.8.1:::::::* cpe:2.3:a:spice_project:spice:0.8.0:::::::* cpe:2.3:a:spice_project:spice:0.7.3:::::::* cpe:2.3:a:spice_project:spice:0.7.2:::::::* cpe:2.3:a:spice_project:spice:0.7.1:::::::* cpe:2.3:a:spice_project:spice:0.7.0:::::::* cpe:2.3:a:spice_project:spice:0.6.4:::::::* cpe:2.3:a:spice_project:spice:0.6.3:::::::* cpe:2.3:a:spice_project:spice:0.6.2:::::::* cpe:2.3:a:spice_project:spice:0.6.1:::::::* cpe:2.3:a:spice_project:spice:0.6.0:::::::* cpe:2.3:a:spice_project:spice:0.5.3:::::::* cpe:2.3:a:spice_project:spice:0.5.2:::::::* cpe:2.3:a:spice_project:spice:0.12.3:::::::* cpe:2.3:a:spice_project:spice:0.12.2:::::::* cpe:2.3:a:spice_project:spice:0.12.0:::::::* cpe:2.3:a:spice_project:spice:0.11.3:::::::* cpe:2.3:a:spice_project:spice:0.11.0:::::::* cpe:2.3:a:spice_project:spice:0.10.1:::::::* cpe:2.3:a:spice_project:spice:0.10.0:::::::* cpe:2.3:a:spice_project:spice:::::::: cpe:2.3:a:spice_project:spice:-:::::::*	26
Os	Canonical Ubuntu Linux cpe:2.3:o:canonical:ubuntu_linux:13.04:::::::*	1

Nessus® Vulnerability Scanner

Date	Description
2014-11-08	Name : The remote Red Hat host is missing a security update. File : redhat-RHSA-2013-1260.nasl - Type : ACT_GATHER_INFO
2014-01-09	Name : The remote Debian host is missing a security-related update. File : debian_DSA-2839.nasl - Type : ACT_GATHER_INFO
2013-09-05	Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2013-1192.nasl - Type : ACT_GATHER_INFO
2013-09-05	Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20130903_spice_server_on_SL6_x.nasl - Type : ACT_GATHER_INFO
2013-09-04	Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2013-1192.nasl - Type : ACT_GATHER_INFO
2013-09-04	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2013-1192.nasl - Type : ACT_GATHER_INFO
2013-08-25	Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2013-217.nasl - Type : ACT_GATHER_INFO
2013-08-15	Name : The remote Fedora host is missing a security update. File : fedora_2013-14362.nasl - Type : ACT_GATHER_INFO
2013-08-15	Name : The remote Ubuntu host is missing a security-related patch. File : ubuntu_USN-1926-1.nasl - Type : ACT_GATHER_INFO
2013-08-12	Name : The remote Fedora host is missing a security update. File : fedora_2013-14110.nasl - Type : ACT_GATHER_INFO

Alert History

If you want to see full details history, please login or register.

Date	Informations
2014-02-17 12:02:22	Multiple Updates
2013-08-21 21:22:03	Multiple Updates
2013-08-21 13:21:55	Multiple Updates
2013-08-14 21:20:39	First insertion

Global Informations

Type	Count
CWE ID(s)	1
Oval ID(s)	4
CPE ID(s)	27
Nessus® Exploit(s)	10

	Related
5	CVE-2013-4130
Info : listing not affected by your CVSS Env Score

Same Subject	Severity
Login to view 1 more Alert(s)

5 - USN-1926-1

Executive Summary

Security-Database Scoring CVSS v3

Security-Database Scoring CVSS v2

Detail

Original Source

CWE : Common Weakness Enumeration

OVAL Definitions

CPE : Common Platform Enumeration

Nessus® Vulnerability Scanner

Alert History

Global Informations

Open Standards

Other Databases

COMPANY

STANDARDS

RECENT POSTS

MENU