Name | CVE-2020-25653 |
Description | A race condition vulnerability was found in the way the spice-vdagentd daemon handled new client connections. This flaw may allow an unprivileged local guest user to become the active agent for spice-vdagentd, possibly resulting in a denial of service or information leakage from the host. The highest threat from this vulnerability is to data confidentiality as well as system availability. This flaw affects spice-vdagent versions 0.20 and prior. |
Source | CVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more) |
References | DLA-2524-1 |
Debian Bugs | 973769 |
The table below lists information on source packages.
Source Package | Release | Version | Status |
---|---|---|---|
spice-vdagent (PTS) | jessie | 0.15.0-1.2 | vulnerable |
stretch (security), stretch (lts), stretch | 0.17.0-1+deb9u1 | fixed | |
buster | 0.18.0-1 | vulnerable | |
bullseye | 0.20.0-2 | fixed | |
bookworm | 0.22.1-3 | fixed | |
sid, trixie | 0.22.1-4 | fixed |
The information below is based on the following data on fixed versions.
Package | Type | Release | Fixed Version | Urgency | Origin | Debian Bugs |
---|---|---|---|---|---|---|
spice-vdagent | source | jessie | (unfixed) | end-of-life | ||
spice-vdagent | source | stretch | 0.17.0-1+deb9u1 | DLA-2524-1 | ||
spice-vdagent | source | (unstable) | 0.20.0-2 | 973769 |
[buster] - spice-vdagent <no-dsa> (Minor issue)
https://www.openwall.com/lists/oss-security/2020/11/04/1
https://gitlab.freedesktop.org/spice/linux/vd_agent/-/commit/51c415df82a52e9ec033225783c77df95f387891
https://gitlab.freedesktop.org/spice/linux/vd_agent/-/commit/5c50131797e985d0a5654c1fd7000ae945ed29a7