CVE-2019-3813 — HIGH (7.5) — White Hats Nepal

Q: How severe is CVE-2019-3813?

CVE-2019-3813 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2019-3813?

Check the references section above for vendor advisories and patch information. Affected products include: Spice Project Spice, Redhat Enterprise Linux Desktop, Redhat Enterprise Linux Server, Redhat Enterprise Linux Server Aus, Redhat Enterprise Linux Server Eus.

Vulnerability Description

Spice, versions 0.5.2 through 0.14.1, are vulnerable to an out-of-bounds read due to an off-by-one error in memslot_get_virt. This may lead to a denial of service, or, in the worst case, code-execution by unauthenticated attackers.

CVSS Score

7.5

HIGH

CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack Vector

ADJACENT_NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Spice Project	Spice	>= 0.5.2, <= 0.14.1
Redhat	Enterprise Linux Desktop	6.0
Redhat	Enterprise Linux Server	6.0
Redhat	Enterprise Linux Server Aus	7.6
Redhat	Enterprise Linux Server Eus	7.6
Redhat	Enterprise Linux Server Tus	7.6
Redhat	Enterprise Linux Workstation	6.0
Debian	Debian Linux	8.0
Canonical	Ubuntu Linux	14.04

Related Weaknesses (CWE)

CWE-193

References

http://www.securityfocus.com/bid/106801Broken Link
https://access.redhat.com/errata/RHSA-2019:0231Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:0232Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:0457Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=1665371Issue TrackingThird Party Advisory
https://lists.debian.org/debian-lts-announce/2019/01/msg00026.htmlMailing ListThird Party Advisory
https://security.gentoo.org/glsa/202007-30Third Party Advisory
https://usn.ubuntu.com/3870-1/Third Party Advisory
https://www.debian.org/security/2019/dsa-4375Third Party Advisory
http://www.securityfocus.com/bid/106801Broken Link
https://access.redhat.com/errata/RHSA-2019:0231Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:0232Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:0457Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=1665371Issue TrackingThird Party Advisory
https://lists.debian.org/debian-lts-announce/2019/01/msg00026.htmlMailing ListThird Party Advisory

FAQ

What is CVE-2019-3813?

CVE-2019-3813 is a vulnerability with a CVSS score of 7.5 (HIGH). Spice, versions 0.5.2 through 0.14.1, are vulnerable to an out-of-bounds read due to an off-by-one error in memslot_get_virt. This may lead to a denial of service, or, in the worst case, code-executio...

How severe is CVE-2019-3813?

CVE-2019-3813 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2019-3813?

Check the references section above for vendor advisories and patch information. Affected products include: Spice Project Spice, Redhat Enterprise Linux Desktop, Redhat Enterprise Linux Server, Redhat Enterprise Linux Server Aus, Redhat Enterprise Linux Server Eus.