Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 753956 (CVE-2020-25650, CVE-2020-25651, CVE-2020-25652, CVE-2020-25653) - app-emulation/spice-vdagent: Multiple vulnerabilities (CVE-2020-{25650,25651,25652,25653})
Summary: app-emulation/spice-vdagent: Multiple vulnerabilities (CVE-2020-{25650,25651,...
Status: CONFIRMED
Alias: CVE-2020-25650, CVE-2020-25651, CVE-2020-25652, CVE-2020-25653
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: Normal minor (vote)
Assignee: Gentoo Security
URL: https://www.openwall.com/lists/oss-se...
Whiteboard: B3 [upstream/ebuild]
Keywords:
Depends on:
Blocks:
 
Reported: 2020-11-11 01:47 UTC by John Helmert III (ajak)
Modified: 2020-11-11 01:48 UTC (History)
1 user (show)

See Also:
Package list:
Runtime testing required: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description John Helmert III (ajak) gentoo-dev Security 2020-11-11 01:47:30 UTC
Extensive documentation at $URL. Four DoS vulnerabilities, one can also result in information disclosure. No release yet, but tarball of patches is also at $URL and it appears to be the commit series on 29 October at the upstream repo: https://gitlab.freedesktop.org/spice/linux/vd_agent/-/commits/master