Unrated severityNVD Advisory· Published Aug 20, 2013· Updated Apr 29, 2026
CVE-2013-4130
CVE-2013-4130
Description
The (1) red_channel_pipes_add_type and (2) red_channel_pipes_add_empty_msg functions in server/red_channel.c in SPICE before 0.12.4 do not properly perform ring loops, which might allow remote attackers to cause a denial of service (reachable assertion and server exit) by triggering a network error.
Affected products
25cpe:2.3:a:spice_project:spice:*:*:*:*:*:*:*:*+ 23 more
- cpe:2.3:a:spice_project:spice:*:*:*:*:*:*:*:*range: <=0.12.3
- cpe:2.3:a:spice_project:spice:0.10.0:*:*:*:*:*:*:*
- cpe:2.3:a:spice_project:spice:0.10.1:*:*:*:*:*:*:*
- cpe:2.3:a:spice_project:spice:0.11.0:*:*:*:*:*:*:*
- cpe:2.3:a:spice_project:spice:0.11.3:*:*:*:*:*:*:*
- cpe:2.3:a:spice_project:spice:0.12.0:*:*:*:*:*:*:*
- cpe:2.3:a:spice_project:spice:0.12.2:*:*:*:*:*:*:*
- cpe:2.3:a:spice_project:spice:0.5.2:*:*:*:*:*:*:*
- cpe:2.3:a:spice_project:spice:0.5.3:*:*:*:*:*:*:*
- cpe:2.3:a:spice_project:spice:0.6.0:*:*:*:*:*:*:*
- cpe:2.3:a:spice_project:spice:0.6.1:*:*:*:*:*:*:*
- cpe:2.3:a:spice_project:spice:0.6.2:*:*:*:*:*:*:*
- cpe:2.3:a:spice_project:spice:0.6.3:*:*:*:*:*:*:*
- cpe:2.3:a:spice_project:spice:0.6.4:*:*:*:*:*:*:*
- cpe:2.3:a:spice_project:spice:0.7.0:*:*:*:*:*:*:*
- cpe:2.3:a:spice_project:spice:0.7.1:*:*:*:*:*:*:*
- cpe:2.3:a:spice_project:spice:0.7.2:*:*:*:*:*:*:*
- cpe:2.3:a:spice_project:spice:0.7.3:*:*:*:*:*:*:*
- cpe:2.3:a:spice_project:spice:0.8.0:*:*:*:*:*:*:*
- cpe:2.3:a:spice_project:spice:0.8.1:*:*:*:*:*:*:*
- cpe:2.3:a:spice_project:spice:0.8.2:*:*:*:*:*:*:*
- cpe:2.3:a:spice_project:spice:0.8.3:*:*:*:*:*:*:*
- cpe:2.3:a:spice_project:spice:0.9.0:*:*:*:*:*:*:*
- cpe:2.3:a:spice_project:spice:0.9.1:*:*:*:*:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:13.04:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
6News mentions
0No linked articles in our index yet.