CVE-2017-7506

Name	CVE-2017-7506
Description	spice versions though 0.13 are vulnerable to out-of-bounds memory access when processing specially crafted messages from authenticated attacker to the spice server resulting into crash and/or server memory leak.
Source	CVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
References	DSA-3907-1
Debian Bugs	868083

Vulnerable and fixed packages

The table below lists information on source packages.

Source Package	Release	Version	Status
spice (PTS)	jessie, jessie (lts)	0.12.5-1+deb8u8	fixed
	stretch (security), stretch (lts), stretch	0.12.8-2.1+deb9u4	fixed
	buster (security), buster, buster (lts)	0.14.0-1.3+deb10u1	fixed
	bullseye	0.14.3-2.1	fixed
	bookworm	0.15.1-1	fixed
	sid, trixie	0.15.2-1	fixed

The information below is based on the following data on fixed versions.

Package	Type	Release	Fixed Version	Origin	Debian Bugs
spice	source	wheezy	(not affected)
spice	source	jessie	0.12.5-1+deb8u5	DSA-3907-1
spice	source	stretch	0.12.8-2.1+deb9u1	DSA-3907-1
spice	source	(unstable)	0.12.8-2.2		868083

[wheezy] - spice <not-affected> (Vulnerable code not introduced later)