Vulnerability: Integer and Buffer Overflow in spice-client's LZ Compressed Frames Handling

Vulnerability: Integer and Buffer Overflow in spice-client's LZ Compressed Frames Handling

CVE-2018-10893 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:P/A:P

Multiple integer overflow and buffer overflow issues were discovered in spice-client's handling of LZ compressed frames. A malicious server could cause the client to crash or, potentially, execute arbitrary code.

Learn more about our Cis Benchmark Audit For Server Software.