CVE-2019-3813
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2019-3813
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2019-3813.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2019-3813
- Related
- Published
- 2019-02-04T18:29:00Z
- Modified
- 2024-09-18T03:04:44.787451Z
- Severity
-
- 7.5 (High) CVSS_V3 - CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- [none]
- Details
-
Spice, versions 0.5.2 through 0.14.1, are vulnerable to an out-of-bounds read due to an off-by-one error in memslotgetvirt. This may lead to a denial of service, or, in the worst case, code-execution by unauthenticated attackers.
- References
-
- https://access.redhat.com/errata/RHSA-2019:0231
- https://access.redhat.com/errata/RHSA-2019:0232
- https://access.redhat.com/errata/RHSA-2019:0457
- https://security.gentoo.org/glsa/202007-30
- https://www.debian.org/security/2019/dsa-4375
- https://lists.debian.org/debian-lts-announce/2019/01/msg00026.html
- https://bugzilla.redhat.com/show_bug.cgi?id=1665371
- http://www.securityfocus.com/bid/106801
- https://usn.ubuntu.com/3870-1/
- https://security.alpinelinux.org/vuln/CVE-2019-3813
- https://security-tracker.debian.org/tracker/CVE-2019-3813
Affected packages
Alpine:v3.10 / spice
Package
- Name
- spice
- Purl
- pkg:apk/alpine/spice?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed0.14.1-r4
Affected versions
0.*
0.10.0-r0
0.10.0-r1
0.10.0-r2
0.10.1-r0
0.12.0-r0
0.12.0-r1
0.12.2-r0
0.12.2-r1
0.12.3-r0
0.12.4-r0
0.12.5-r0
0.12.5-r1
0.12.5-r2
0.12.6-r0
0.12.6-r1
0.12.7-r0
0.12.7-r1
0.12.8-r0
0.12.8-r1
0.12.8-r2
0.12.8-r3
0.12.8-r4
0.13.3-r0
0.13.3-r1
0.14.0-r4
0.14.0-r5
0.14.0-r6
0.14.0-r7
0.14.1-r0
0.14.1-r1
0.14.1-r2
0.14.1-r3
Alpine:v3.11 / spice
Package
- Name
- spice
- Purl
- pkg:apk/alpine/spice?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed0.14.1-r4
Affected versions
0.*
0.10.0-r0
0.10.0-r1
0.10.0-r2
0.10.1-r0
0.12.0-r0
0.12.0-r1
0.12.2-r0
0.12.2-r1
0.12.3-r0
0.12.4-r0
0.12.5-r0
0.12.5-r1
0.12.5-r2
0.12.6-r0
0.12.6-r1
0.12.7-r0
0.12.7-r1
0.12.8-r0
0.12.8-r1
0.12.8-r2
0.12.8-r3
0.12.8-r4
0.13.3-r0
0.13.3-r1
0.14.0-r4
0.14.0-r5
0.14.0-r6
0.14.0-r7
0.14.1-r0
0.14.1-r1
0.14.1-r2
0.14.1-r3
Alpine:v3.12 / spice
Package
- Name
- spice
- Purl
- pkg:apk/alpine/spice?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed0.14.1-r4
Affected versions
0.*
0.10.0-r0
0.10.0-r1
0.10.0-r2
0.10.1-r0
0.12.0-r0
0.12.0-r1
0.12.2-r0
0.12.2-r1
0.12.3-r0
0.12.4-r0
0.12.5-r0
0.12.5-r1
0.12.5-r2
0.12.6-r0
0.12.6-r1
0.12.7-r0
0.12.7-r1
0.12.8-r0
0.12.8-r1
0.12.8-r2
0.12.8-r3
0.12.8-r4
0.13.3-r0
0.13.3-r1
0.14.0-r4
0.14.0-r5
0.14.0-r6
0.14.0-r7
0.14.1-r0
0.14.1-r1
0.14.1-r2
0.14.1-r3
Alpine:v3.13 / spice
Package
- Name
- spice
- Purl
- pkg:apk/alpine/spice?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed0.14.1-r4
Affected versions
0.*
0.10.0-r0
0.10.0-r1
0.10.0-r2
0.10.1-r0
0.12.0-r0
0.12.0-r1
0.12.2-r0
0.12.2-r1
0.12.3-r0
0.12.4-r0
0.12.5-r0
0.12.5-r1
0.12.5-r2
0.12.6-r0
0.12.6-r1
0.12.7-r0
0.12.7-r1
0.12.8-r0
0.12.8-r1
0.12.8-r2
0.12.8-r3
0.12.8-r4
0.13.3-r0
0.13.3-r1
0.14.0-r4
0.14.0-r5
0.14.0-r6
0.14.0-r7
0.14.1-r0
0.14.1-r1
0.14.1-r2
0.14.1-r3
Alpine:v3.14 / spice
Package
- Name
- spice
- Purl
- pkg:apk/alpine/spice?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed0.14.1-r4
Affected versions
0.*
0.10.0-r0
0.10.0-r1
0.10.0-r2
0.10.1-r0
0.12.0-r0
0.12.0-r1
0.12.2-r0
0.12.2-r1
0.12.3-r0
0.12.4-r0
0.12.5-r0
0.12.5-r1
0.12.5-r2
0.12.6-r0
0.12.6-r1
0.12.7-r0
0.12.7-r1
0.12.8-r0
0.12.8-r1
0.12.8-r2
0.12.8-r3
0.12.8-r4
0.13.3-r0
0.13.3-r1
0.14.0-r4
0.14.0-r5
0.14.0-r6
0.14.0-r7
0.14.1-r0
0.14.1-r1
0.14.1-r2
0.14.1-r3
Alpine:v3.15 / spice
Package
- Name
- spice
- Purl
- pkg:apk/alpine/spice?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed0.14.1-r4
Affected versions
0.*
0.10.0-r0
0.10.0-r1
0.10.0-r2
0.10.1-r0
0.12.0-r0
0.12.0-r1
0.12.2-r0
0.12.2-r1
0.12.3-r0
0.12.4-r0
0.12.5-r0
0.12.5-r1
0.12.5-r2
0.12.6-r0
0.12.6-r1
0.12.7-r0
0.12.7-r1
0.12.8-r0
0.12.8-r1
0.12.8-r2
0.12.8-r3
0.12.8-r4
0.13.3-r0
0.13.3-r1
0.14.0-r4
0.14.0-r5
0.14.0-r6
0.14.0-r7
0.14.1-r0
0.14.1-r1
0.14.1-r2
0.14.1-r3
Alpine:v3.16 / spice
Package
- Name
- spice
- Purl
- pkg:apk/alpine/spice?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed0.14.1-r4
Affected versions
0.*
0.10.0-r0
0.10.0-r1
0.10.0-r2
0.10.1-r0
0.12.0-r0
0.12.0-r1
0.12.2-r0
0.12.2-r1
0.12.3-r0
0.12.4-r0
0.12.5-r0
0.12.5-r1
0.12.5-r2
0.12.6-r0
0.12.6-r1
0.12.7-r0
0.12.7-r1
0.12.8-r0
0.12.8-r1
0.12.8-r2
0.12.8-r3
0.12.8-r4
0.13.3-r0
0.13.3-r1
0.14.0-r4
0.14.0-r5
0.14.0-r6
0.14.0-r7
0.14.1-r0
0.14.1-r1
0.14.1-r2
0.14.1-r3
Alpine:v3.17 / spice
Package
- Name
- spice
- Purl
- pkg:apk/alpine/spice?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed0.14.1-r4
Affected versions
0.*
0.10.0-r0
0.10.0-r1
0.10.0-r2
0.10.1-r0
0.12.0-r0
0.12.0-r1
0.12.2-r0
0.12.2-r1
0.12.3-r0
0.12.4-r0
0.12.5-r0
0.12.5-r1
0.12.5-r2
0.12.6-r0
0.12.6-r1
0.12.7-r0
0.12.7-r1
0.12.8-r0
0.12.8-r1
0.12.8-r2
0.12.8-r3
0.12.8-r4
0.13.3-r0
0.13.3-r1
0.14.0-r4
0.14.0-r5
0.14.0-r6
0.14.0-r7
0.14.1-r0
0.14.1-r1
0.14.1-r2
0.14.1-r3
Alpine:v3.18 / spice
Package
- Name
- spice
- Purl
- pkg:apk/alpine/spice?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed0.14.1-r4
Affected versions
0.*
0.10.0-r0
0.10.0-r1
0.10.0-r2
0.10.1-r0
0.12.0-r0
0.12.0-r1
0.12.2-r0
0.12.2-r1
0.12.3-r0
0.12.4-r0
0.12.5-r0
0.12.5-r1
0.12.5-r2
0.12.6-r0
0.12.6-r1
0.12.7-r0
0.12.7-r1
0.12.8-r0
0.12.8-r1
0.12.8-r2
0.12.8-r3
0.12.8-r4
0.13.3-r0
0.13.3-r1
0.14.0-r4
0.14.0-r5
0.14.0-r6
0.14.0-r7
0.14.1-r0
0.14.1-r1
0.14.1-r2
0.14.1-r3
Alpine:v3.19 / spice
Package
- Name
- spice
- Purl
- pkg:apk/alpine/spice?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed0.14.1-r4
Affected versions
0.*
0.10.0-r0
0.10.0-r1
0.10.0-r2
0.10.1-r0
0.12.0-r0
0.12.0-r1
0.12.2-r0
0.12.2-r1
0.12.3-r0
0.12.4-r0
0.12.5-r0
0.12.5-r1
0.12.5-r2
0.12.6-r0
0.12.6-r1
0.12.7-r0
0.12.7-r1
0.12.8-r0
0.12.8-r1
0.12.8-r2
0.12.8-r3
0.12.8-r4
0.13.3-r0
0.13.3-r1
0.14.0-r4
0.14.0-r5
0.14.0-r6
0.14.0-r7
0.14.1-r0
0.14.1-r1
0.14.1-r2
0.14.1-r3
Alpine:v3.20 / spice
Package
- Name
- spice
- Purl
- pkg:apk/alpine/spice?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed0.14.1-r4
Affected versions
0.*
0.10.0-r0
0.10.0-r1
0.10.0-r2
0.10.1-r0
0.12.0-r0
0.12.0-r1
0.12.2-r0
0.12.2-r1
0.12.3-r0
0.12.4-r0
0.12.5-r0
0.12.5-r1
0.12.5-r2
0.12.6-r0
0.12.6-r1
0.12.7-r0
0.12.7-r1
0.12.8-r0
0.12.8-r1
0.12.8-r2
0.12.8-r3
0.12.8-r4
0.13.3-r0
0.13.3-r1
0.14.0-r4
0.14.0-r5
0.14.0-r6
0.14.0-r7
0.14.1-r0
0.14.1-r1
0.14.1-r2
0.14.1-r3
Alpine:v3.6 / spice
Package
- Name
- spice
- Purl
- pkg:apk/alpine/spice?arch=source
Alpine:v3.7 / spice
Package
- Name
- spice
- Purl
- pkg:apk/alpine/spice?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed0.14.1-r2
Affected versions
0.*
0.10.0-r0
0.10.0-r1
0.10.0-r2
0.10.1-r0
0.12.0-r0
0.12.0-r1
0.12.2-r0
0.12.2-r1
0.12.3-r0
0.12.4-r0
0.12.5-r0
0.12.5-r1
0.12.5-r2
0.12.6-r0
0.12.6-r1
0.12.7-r0
0.12.7-r1
0.12.8-r0
0.12.8-r1
0.12.8-r2
0.12.8-r3
0.12.8-r4
0.13.3-r0
0.13.3-r1
0.14.0-r4
0.14.0-r5
0.14.0-r6
0.14.1-r0
0.14.1-r1
Alpine:v3.8 / spice
Package
- Name
- spice
- Purl
- pkg:apk/alpine/spice?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed0.14.1-r1
Affected versions
0.*
0.10.0-r0
0.10.0-r1
0.10.0-r2
0.10.1-r0
0.12.0-r0
0.12.0-r1
0.12.2-r0
0.12.2-r1
0.12.3-r0
0.12.4-r0
0.12.5-r0
0.12.5-r1
0.12.5-r2
0.12.6-r0
0.12.6-r1
0.12.7-r0
0.12.7-r1
0.12.8-r0
0.12.8-r1
0.12.8-r2
0.12.8-r3
0.12.8-r4
0.13.3-r0
0.13.3-r1
0.14.0-r4
0.14.0-r5
0.14.0-r6
0.14.0-r7
0.14.1-r0
Alpine:v3.9 / spice
Package
- Name
- spice
- Purl
- pkg:apk/alpine/spice?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed0.14.1-r4
Affected versions
0.*
0.10.0-r0
0.10.0-r1
0.10.0-r2
0.10.1-r0
0.12.0-r0
0.12.0-r1
0.12.2-r0
0.12.2-r1
0.12.3-r0
0.12.4-r0
0.12.5-r0
0.12.5-r1
0.12.5-r2
0.12.6-r0
0.12.6-r1
0.12.7-r0
0.12.7-r1
0.12.8-r0
0.12.8-r1
0.12.8-r2
0.12.8-r3
0.12.8-r4
0.13.3-r0
0.13.3-r1
0.14.0-r4
0.14.0-r5
0.14.0-r6
0.14.0-r7
0.14.1-r0
0.14.1-r1
0.14.1-r2
0.14.1-r3
Debian:11 / spice
Package
- Name
- spice
- Purl
- pkg:deb/debian/spice?arch=source
Debian:12 / spice
Package
- Name
- spice
- Purl
- pkg:deb/debian/spice?arch=source
Debian:13 / spice
Package
- Name
- spice
- Purl
- pkg:deb/debian/spice?arch=source