openSUSE Security Update : spice-gtk (openSUSE-2018-958)
High Nessus Plugin ID 112286
SynopsisThe remote openSUSE host is missing a security update.
DescriptionThis update for spice-gtk fixes the following issues :
Security issues fixed :
- CVE-2018-10873: Fix potential heap corruption when demarshalling (bsc#1104448)
- CVE-2018-10893: Avoid buffer overflow on image lz checks (bsc#1101295)
This update was imported from the SUSE:SLE-12-SP3:Update update project.
SolutionUpdate the affected spice-gtk packages.