SUSE-SU-2015:0884-2: important: Security update for spice

sle-updates at sle-updates at
Fri May 15 17:04:52 MDT 2015

   SUSE Security Update: Security update for spice

Announcement ID:    SUSE-SU-2015:0884-2
Rating:             important
References:         #848279 
Cross-References:   CVE-2013-4282
Affected Products:
                    SUSE Linux Enterprise Software Development Kit 12

   An update that fixes one vulnerability is now available.


   The remote desktop software SPICE was updated to address one security

   The following vulnerabilitiy was fixed:

   * A stack-based buffer overflow in the password handling code allowed
     remote attackers to cause a denial of service (crash) via a long
     password in a SPICE ticket. (bsc#848279, CVE-2013-4282)

Patch Instructions:

   To install this SUSE Security Update use YaST online_update.
   Alternatively you can run the command listed for your product:

   - SUSE Linux Enterprise Software Development Kit 12:

      zypper in -t patch SUSE-SLE-SDK-12-2015-199=1

   To bring your system up-to-date, use "zypper patch".

Package List:

   - SUSE Linux Enterprise Software Development Kit 12 (x86_64):



More information about the sle-updates mailing list