SB2018110746 - Buffer overflow in spice (Alpine package)
Published: November 7, 2018
Security Bulletin ID
SB2018110746
Severity
Low
Patch available
YES
Number of vulnerabilities
1
Exploitation vector
Remote access
Highest impact
Denial of service
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 1 security vulnerability.
1) Buffer overflow (CVE-ID: CVE-2018-10873)
The vulnerability allows a remote authenticated attacker to cause DoS condition on the target system.
The vulnerability exists due to buffer overflow in the write_validate_array_item()function when python_modules/demarshal.py code is used for demarshalling messages, as defined in the python_modules/demarshal.py code. A remote attacker can send specially crafted messages that submit malicious input to a targeted system. A successful exploit could trigger memory corruption and cause the service to crash.
Remediation
Install update from vendor's website.
References
- https://git.alpinelinux.org/aports/commit/?id=013f0b0e4d9ed241f99fc3068deb2774e81d3a43
- https://git.alpinelinux.org/aports/commit/?id=4c2af56913485da4fef6ab4f58ba5833a09fe234
- https://git.alpinelinux.org/aports/commit/?id=4e7f2805ed301344dfc227ec46ed3db0338fdd15
- https://git.alpinelinux.org/aports/commit/?id=03fec4585c1e4a7736a7727b5a03e477dbd27bab
- https://git.alpinelinux.org/aports/commit/?id=4e1c871fdcc37ed141df6a2f53d3bd62fddd8fea
- https://git.alpinelinux.org/aports/commit/?id=9a0074177b1efee56bc3f82db0651fa656877d9e