High severity7.5NVD Advisory· Published Jul 27, 2018· Updated Jun 17, 2026
CVE-2016-9577
CVE-2016-9577
Description
A vulnerability was discovered in SPICE before 0.13.90 in the server's protocol handling. An authenticated attacker could send crafted messages to the SPICE server causing a heap overflow leading to a crash or possible code execution.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
16- Range: <0.13.90
- osv-coords14 versionspkg:rpm/opensuse/spice&distro=openSUSE%20Tumbleweedpkg:rpm/suse/spice&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP1pkg:rpm/suse/spice&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP2pkg:rpm/suse/spice&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4pkg:rpm/suse/spice&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP1pkg:rpm/suse/spice&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP2pkg:rpm/suse/spice&distro=SUSE%20Linux%20Enterprise%20Server%2012-LTSSpkg:rpm/suse/spice&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2011%20SP4pkg:rpm/suse/spice&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012pkg:rpm/suse/spice&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP1pkg:rpm/suse/spice&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP2pkg:rpm/suse/spice&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2011%20SP4pkg:rpm/suse/spice&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP1pkg:rpm/suse/spice&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP2
< 0.15.0-1.3+ 13 more
- (no CPE)range: < 0.15.0-1.3
- (no CPE)range: < 0.12.5-7.1
- (no CPE)range: < 0.12.7-8.1
- (no CPE)range: < 0.12.4-8.1
- (no CPE)range: < 0.12.5-7.1
- (no CPE)range: < 0.12.7-8.1
- (no CPE)range: < 0.12.4-8.12.1
- (no CPE)range: < 0.12.4-8.1
- (no CPE)range: < 0.12.4-8.12.1
- (no CPE)range: < 0.12.5-7.1
- (no CPE)range: < 0.12.7-8.1
- (no CPE)range: < 0.12.4-8.1
- (no CPE)range: < 0.12.5-7.1
- (no CPE)range: < 0.12.7-8.1
Patches
Vulnerability mechanics
References
7- rhn.redhat.com/errata/RHSA-2017-0253.htmlnvdThird Party Advisory
- rhn.redhat.com/errata/RHSA-2017-0549.htmlnvdThird Party Advisory
- www.securityfocus.com/bid/96040nvdThird Party AdvisoryVDB Entry
- access.redhat.com/errata/RHSA-2017:0254nvdThird Party Advisory
- access.redhat.com/errata/RHSA-2017:0552nvdThird Party Advisory
- bugzilla.redhat.com/show_bug.cginvdIssue TrackingThird Party Advisory
- www.debian.org/security/2017/dsa-3790nvdThird Party Advisory
News mentions
0No linked articles in our index yet.