-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2016-6b9c658707 2016-07-19 22:28:39.714939 --------------------------------------------------------------------------------
Name : spice Product : Fedora 24 Version : 0.12.8 Release : 1.fc24 URL : http://www.spice-space.org/ Summary : Implements the SPICE protocol Description : The Simple Protocol for Independent Computing Environments (SPICE) is a remote display system built for virtual environments which allows you to view a computing 'desktop' environment not only on the machine where it is running, but from anywhere on the Internet and from a wide variety of machine architectures.
-------------------------------------------------------------------------------- Update Information:
Update to upstream 0.12.8 release -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1343135 - CVE-2016-2150 spice: Host memory access from guest with invalid primary surface parameters [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1343135 [ 2 ] Bug #1343137 - CVE-2016-0749 spice: heap-based memory corruption within smartcard handling [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1343137 --------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use su -c 'yum update spice' at the command line. For more information, refer to "Managing Software with yum", available at https://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------