El-errata: ELSA-2020-4187 Important: Oracle Linux 7 spice and spice-gtk security update (aarch64)
Oracle Linux Security Advisory ELSA-2020-4187
http://linux.oracle.com/errata/ELSA-2020-4187.html
The following updated rpms for Oracle Linux 7 have been uploaded to the
Unbreakable Linux Network:
aarch64:
spice-server-0.14.0-9.0.2.el7_9.1.aarch64.rpm
spice-server-devel-0.14.0-9.0.2.el7_9.1.aarch64.rpm
spice-glib-0.35-5.el7_9.1.aarch64.rpm
spice-gtk3-0.35-5.el7_9.1.aarch64.rpm
spice-glib-devel-0.35-5.el7_9.1.aarch64.rpm
spice-gtk3-devel-0.35-5.el7_9.1.aarch64.rpm
spice-gtk3-vala-0.35-5.el7_9.1.aarch64.rpm
spice-gtk-tools-0.35-5.el7_9.1.aarch64.rpm
SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/spice-0.14.0-9.0.2.el7_9.1.src.rpm
http://oss.oracle.com/ol7/SRPMS-updates/spice-gtk-0.35-5.el7_9.1.src.rpm
Description of changes:
spice
[0.14.0-9.0.2.el7_9.1]
- Add ARM support
[0.14.0-9.1]
- Fix multiple buffer overflows in QUIC decoding code
Resolves: CVE-2020-14355
spice-gtk
[0.35-5.1]
- Fix multiple buffer overflows in QUIC decoding code
Resolves: CVE-2020-14355
A spice and spice-gtk security update (aarch64) has been released for Oracle Linux 7.
