CVE-2010-0428

Name of the Vulnerable Software and Affected Versions libspice versions as used in QEMU-KVM in Red Hat Enterprise Virtualization (RHEV) 2.2 qspice version 0.3.0

Description The issue is related to the improper validation of guest QXL driver pointers in libspice, which can lead to a denial of service due to an invalid pointer dereference, causing the guest OS to crash. It is also possible for attackers to gain privileges via unspecified vectors.

Recommendations For libspice as used in QEMU-KVM in Red Hat Enterprise Virtualization (RHEV) 2.2, update to a version that properly validates guest QXL driver pointers. For qspice version 0.3.0, update to a version that properly validates guest QXL driver pointers. At the moment, there is no information about a newer version that contains a fix for this vulnerability.