{"id":"RHSA-2019:2229","summary":"Red Hat Security Advisory: spice-gtk security and bug fix update","modified":"2026-03-11T07:15:39.845553Z","published":"2024-09-16T01:48:29Z","upstream":["CVE-2018-10893"],"references":[{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2019:2229"},{"type":"ARTICLE","url":"https://access.redhat.com/security/updates/classification/#moderate"},{"type":"ARTICLE","url":"https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/7/html/7.7_release_notes/index"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1427467"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1505809"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1508274"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1510411"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1545212"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1594876"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1598234"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1623756"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1625550"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1650596"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1658325"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1686008"},{"type":"ADVISORY","url":"https://security.access.redhat.com/data/csaf/v2/advisories/2019/rhsa-2019_2229.json"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2018-10893"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2018-10893"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2018-10893"}],"affected":[{"package":{"name":"libgovirt","ecosystem":"Red Hat:enterprise_linux:7::client","purl":"pkg:rpm/redhat/libgovirt"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.3.4-3.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2019:2229.json"}},{"package":{"name":"libgovirt-debuginfo","ecosystem":"Red Hat:enterprise_linux:7::client","purl":"pkg:rpm/redhat/libgovirt-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.3.4-3.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2019:2229.json"}},{"package":{"name":"libgovirt-devel","ecosystem":"Red Hat:enterprise_linux:7::client","purl":"pkg:rpm/redhat/libgovirt-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.3.4-3.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2019:2229.json"}},{"package":{"name":"spice-glib","ecosystem":"Red Hat:enterprise_linux:7::client","purl":"pkg:rpm/redhat/spice-glib"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.35-4.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2019:2229.json"}},{"package":{"name":"spice-glib-devel","ecosystem":"Red Hat:enterprise_linux:7::client","purl":"pkg:rpm/redhat/spice-glib-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.35-4.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2019:2229.json"}},{"package":{"name":"spice-gtk","ecosystem":"Red Hat:enterprise_linux:7::client","purl":"pkg:rpm/redhat/spice-gtk"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.35-4.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2019:2229.json"}},{"package":{"name":"spice-gtk-debuginfo","ecosystem":"Red Hat:enterprise_linux:7::client","purl":"pkg:rpm/redhat/spice-gtk-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.35-4.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2019:2229.json"}},{"package":{"name":"spice-gtk-tools","ecosystem":"Red Hat:enterprise_linux:7::client","purl":"pkg:rpm/redhat/spice-gtk-tools"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.35-4.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2019:2229.json"}},{"package":{"name":"spice-gtk3","ecosystem":"Red Hat:enterprise_linux:7::client","purl":"pkg:rpm/redhat/spice-gtk3"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.35-4.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2019:2229.json"}},{"package":{"name":"spice-gtk3-devel","ecosystem":"Red Hat:enterprise_linux:7::client","purl":"pkg:rpm/redhat/spice-gtk3-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.35-4.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2019:2229.json"}},{"package":{"name":"spice-gtk3-vala","ecosystem":"Red Hat:enterprise_linux:7::client","purl":"pkg:rpm/redhat/spice-gtk3-vala"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.35-4.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2019:2229.json"}},{"package":{"name":"spice-vdagent","ecosystem":"Red Hat:enterprise_linux:7::client","purl":"pkg:rpm/redhat/spice-vdagent"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.14.0-18.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2019:2229.json"}},{"package":{"name":"spice-vdagent-debuginfo","ecosystem":"Red Hat:enterprise_linux:7::client","purl":"pkg:rpm/redhat/spice-vdagent-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.14.0-18.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2019:2229.json"}},{"package":{"name":"virt-viewer","ecosystem":"Red Hat:enterprise_linux:7::client","purl":"pkg:rpm/redhat/virt-viewer"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:5.0-15.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2019:2229.json"}},{"package":{"name":"virt-viewer-debuginfo","ecosystem":"Red Hat:enterprise_linux:7::client","purl":"pkg:rpm/redhat/virt-viewer-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:5.0-15.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2019:2229.json"}},{"package":{"name":"libgovirt","ecosystem":"Red Hat:enterprise_linux:7::server","purl":"pkg:rpm/redhat/libgovirt"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.3.4-3.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2019:2229.json"}},{"package":{"name":"libgovirt-debuginfo","ecosystem":"Red Hat:enterprise_linux:7::server","purl":"pkg:rpm/redhat/libgovirt-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.3.4-3.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2019:2229.json"}},{"package":{"name":"libgovirt-devel","ecosystem":"Red Hat:enterprise_linux:7::server","purl":"pkg:rpm/redhat/libgovirt-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.3.4-3.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2019:2229.json"}},{"package":{"name":"spice-glib","ecosystem":"Red Hat:enterprise_linux:7::server","purl":"pkg:rpm/redhat/spice-glib"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.35-4.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2019:2229.json"}},{"package":{"name":"spice-glib-devel","ecosystem":"Red Hat:enterprise_linux:7::server","purl":"pkg:rpm/redhat/spice-glib-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.35-4.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2019:2229.json"}},{"package":{"name":"spice-gtk","ecosystem":"Red Hat:enterprise_linux:7::server","purl":"pkg:rpm/redhat/spice-gtk"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.35-4.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2019:2229.json"}},{"package":{"name":"spice-gtk-debuginfo","ecosystem":"Red Hat:enterprise_linux:7::server","purl":"pkg:rpm/redhat/spice-gtk-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.35-4.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2019:2229.json"}},{"package":{"name":"spice-gtk-tools","ecosystem":"Red Hat:enterprise_linux:7::server","purl":"pkg:rpm/redhat/spice-gtk-tools"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.35-4.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2019:2229.json"}},{"package":{"name":"spice-gtk3","ecosystem":"Red Hat:enterprise_linux:7::server","purl":"pkg:rpm/redhat/spice-gtk3"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.35-4.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2019:2229.json"}},{"package":{"name":"spice-gtk3-devel","ecosystem":"Red Hat:enterprise_linux:7::server","purl":"pkg:rpm/redhat/spice-gtk3-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.35-4.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2019:2229.json"}},{"package":{"name":"spice-gtk3-vala","ecosystem":"Red Hat:enterprise_linux:7::server","purl":"pkg:rpm/redhat/spice-gtk3-vala"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.35-4.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2019:2229.json"}},{"package":{"name":"spice-vdagent","ecosystem":"Red Hat:enterprise_linux:7::server","purl":"pkg:rpm/redhat/spice-vdagent"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.14.0-18.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2019:2229.json"}},{"package":{"name":"spice-vdagent-debuginfo","ecosystem":"Red Hat:enterprise_linux:7::server","purl":"pkg:rpm/redhat/spice-vdagent-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.14.0-18.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2019:2229.json"}},{"package":{"name":"virt-viewer","ecosystem":"Red Hat:enterprise_linux:7::server","purl":"pkg:rpm/redhat/virt-viewer"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:5.0-15.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2019:2229.json"}},{"package":{"name":"virt-viewer-debuginfo","ecosystem":"Red Hat:enterprise_linux:7::server","purl":"pkg:rpm/redhat/virt-viewer-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:5.0-15.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2019:2229.json"}},{"package":{"name":"libgovirt","ecosystem":"Red Hat:enterprise_linux:7::workstation","purl":"pkg:rpm/redhat/libgovirt"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.3.4-3.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2019:2229.json"}},{"package":{"name":"libgovirt-debuginfo","ecosystem":"Red Hat:enterprise_linux:7::workstation","purl":"pkg:rpm/redhat/libgovirt-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.3.4-3.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2019:2229.json"}},{"package":{"name":"libgovirt-devel","ecosystem":"Red Hat:enterprise_linux:7::workstation","purl":"pkg:rpm/redhat/libgovirt-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.3.4-3.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2019:2229.json"}},{"package":{"name":"spice-glib","ecosystem":"Red Hat:enterprise_linux:7::workstation","purl":"pkg:rpm/redhat/spice-glib"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.35-4.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2019:2229.json"}},{"package":{"name":"spice-glib-devel","ecosystem":"Red Hat:enterprise_linux:7::workstation","purl":"pkg:rpm/redhat/spice-glib-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.35-4.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2019:2229.json"}},{"package":{"name":"spice-gtk","ecosystem":"Red Hat:enterprise_linux:7::workstation","purl":"pkg:rpm/redhat/spice-gtk"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.35-4.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2019:2229.json"}},{"package":{"name":"spice-gtk-debuginfo","ecosystem":"Red Hat:enterprise_linux:7::workstation","purl":"pkg:rpm/redhat/spice-gtk-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.35-4.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2019:2229.json"}},{"package":{"name":"spice-gtk-tools","ecosystem":"Red Hat:enterprise_linux:7::workstation","purl":"pkg:rpm/redhat/spice-gtk-tools"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.35-4.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2019:2229.json"}},{"package":{"name":"spice-gtk3","ecosystem":"Red Hat:enterprise_linux:7::workstation","purl":"pkg:rpm/redhat/spice-gtk3"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.35-4.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2019:2229.json"}},{"package":{"name":"spice-gtk3-devel","ecosystem":"Red Hat:enterprise_linux:7::workstation","purl":"pkg:rpm/redhat/spice-gtk3-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.35-4.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2019:2229.json"}},{"package":{"name":"spice-gtk3-vala","ecosystem":"Red Hat:enterprise_linux:7::workstation","purl":"pkg:rpm/redhat/spice-gtk3-vala"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.35-4.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2019:2229.json"}},{"package":{"name":"spice-vdagent","ecosystem":"Red Hat:enterprise_linux:7::workstation","purl":"pkg:rpm/redhat/spice-vdagent"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.14.0-18.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2019:2229.json"}},{"package":{"name":"spice-vdagent-debuginfo","ecosystem":"Red Hat:enterprise_linux:7::workstation","purl":"pkg:rpm/redhat/spice-vdagent-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.14.0-18.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2019:2229.json"}},{"package":{"name":"virt-viewer","ecosystem":"Red Hat:enterprise_linux:7::workstation","purl":"pkg:rpm/redhat/virt-viewer"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:5.0-15.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2019:2229.json"}},{"package":{"name":"virt-viewer-debuginfo","ecosystem":"Red Hat:enterprise_linux:7::workstation","purl":"pkg:rpm/redhat/virt-viewer-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:5.0-15.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2019:2229.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:L"}]}