CVE-2017-12194

Description

A flaw was found in the way spice-client processed certain messages sent from the server. An attacker, having control of malicious spice-server, could use this flaw to crash the client or execute arbitrary code with permissions of the user running the client. spice-gtk versions through 0.34 are believed to be vulnerable.

Read the notes from the security team

Status

Show unmaintained releases

Package	Ubuntu Release	Status
spice	25.10 questing	Fixed 0.14.0-1ubuntu3
	25.04 plucky	Fixed 0.14.0-1ubuntu3
	24.10 oracular	Fixed 0.14.0-1ubuntu3
	24.04 LTS noble	Fixed 0.14.0-1ubuntu3
	23.10 mantic	Fixed 0.14.0-1ubuntu3
	23.04 lunar	Fixed 0.14.0-1ubuntu3
	22.10 kinetic	Fixed 0.14.0-1ubuntu3
	22.04 LTS jammy	Fixed 0.14.0-1ubuntu3
	21.10 impish	Fixed 0.14.0-1ubuntu3
	21.04 hirsute	Fixed 0.14.0-1ubuntu3
	20.10 groovy	Fixed 0.14.0-1ubuntu3
	20.04 LTS focal	Fixed 0.14.0-1ubuntu3
	19.10 eoan	Fixed 0.14.0-1ubuntu3
	19.04 disco	Fixed 0.14.0-1ubuntu3
	18.10 cosmic	Fixed 0.14.0-1ubuntu3
	18.04 LTS bionic	Fixed 0.14.0-1ubuntu2.1
	17.10 artful	Fixed 0.12.8-2.2ubuntu0.1
	16.04 LTS xenial	Not affected
	14.04 LTS trusty	Fixed 0.12.4-0nocelt2ubuntu1.6
spice-gtk	25.10 questing	Not affected
	25.04 plucky	Not affected
	24.10 oracular	Not affected
	24.04 LTS noble	Not affected
	23.10 mantic	Not affected
	23.04 lunar	Not affected
	22.10 kinetic	Not affected
	22.04 LTS jammy	Not affected
	21.10 impish	Not affected
	21.04 hirsute	Not affected
	20.10 groovy	Not affected
	20.04 LTS focal	Not affected
	19.10 eoan	Not affected
	19.04 disco	Not affected
	18.10 cosmic	Not affected
	18.04 LTS bionic	Vulnerable
	17.10 artful	Ignored end of life
	16.04 LTS xenial	Not affected
	14.04 LTS trusty	Not in release
spice-protocol	25.10 questing	Not affected
	25.04 plucky	Not affected
	24.10 oracular	Not affected
	24.04 LTS noble	Not affected
	23.10 mantic	Not affected
	23.04 lunar	Not affected
	22.10 kinetic	Not affected
	22.04 LTS jammy	Not affected
	21.10 impish	Not affected
	21.04 hirsute	Not affected
	20.10 groovy	Not affected
	20.04 LTS focal	Not affected
	19.10 eoan	Not affected
	19.04 disco	Not affected
	18.10 cosmic	Not affected
	18.04 LTS bionic	Not affected
	17.10 artful	Not affected
	16.04 LTS xenial	Fixed 0.12.10-1ubuntu0.1
	14.04 LTS trusty	Not in release

Notes

leosilva

xenial uses spice-protocol to generate the codes that are affected. not all releases has the test section to add the third patch.

Patch details

For informational purposes only. We recommend not to cherry-pick updates. How can I get the fixes?

Package	Patch details
spice	Other: 617be0f Other: a69fb1e Other: 420a15b
spice-gtk	Other: 617be0f Other: a69fb1e Other: 420a15b
spice-protocol	Other: 617be0f Other: a69fb1e Other: 420a15b

Severity score breakdown

Parameter	Value
Base score	9.8 · Critical
Attack vector	Network
Attack complexity	Low
Privileges required	None
User interaction	None
Scope	Unchanged
Confidentiality	High
Integrity impact	High
Availability impact	High
Vector	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CVE-2017-12194

Cvss 3 Severity Score

Description

Status

Notes

leosilva

Patch details

Severity score breakdown

References

Related Ubuntu Security Notices (USN)

Other references