CVE-2013-4282 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-4282): Stack-based buffer overflow in the reds_handle_ticket function in server/reds.c in SPICE 0.12.0 allows remote attackers to cause a denial of service (crash) via a long password in a SPICE ticket. Filing to close, nothing to see here (no GLSA because we already said noglsa to a newer SPICE version)