File _patchinfo of Package patchinfo.8488

<patchinfo incident="8488">
  <issue tracker="bnc" id="1101420"></issue>
  <issue tracker="bnc" id="1101295"></issue>
  <issue tracker="bnc" id="1104448"></issue>
  <issue tracker="cve" id="2018-10893"/>
  <issue tracker="cve" id="2018-10873"/>
  <category>security</category>
  <rating>important</rating>
  <packager>cbosdonnat</packager>
  <description>This update for spice-gtk fixes the following issues:

Security issues fixed:

- CVE-2018-10873: Fix potential heap corruption when demarshalling (bsc#1104448)
- CVE-2018-10893: Avoid buffer overflow on image lz checks (bsc#1101295)

Other bugs fixed:

- Add setuid bit to spice-client-glib-usb-acl-helper (bsc#1101420)
</description>
  <summary>Security update for spice-gtk</summary>
</patchinfo>

Places

File _patchinfo of Package patchinfo.8488

Places