CVE-2021-20201 - log back

CVE-2021-20201 edited at 05 Jul 2021 08:00:01
Description
- An issue was discovered in spice before version 0.15.0. There is a vulnerability which might make it easier for remote attackers to cause a denial of service (CPU consumption) by performing many renegotiations within a single connection.
+ An issue was discovered in SPICE server before version 0.15.0. There is a vulnerability which might make it easier for remote attackers to cause a denial of service (CPU consumption) by performing many renegotiations within a single connection.
CVE-2021-20201 edited at 05 Jul 2021 07:47:41
Description
- An issue was discovered in spice version 0.14.91 and before. There is a DoS Vulnerability which might make it easier for remote attackers to cause a denial of service (CPU consumption) by performing many renegotiations within a single connection.
+ An issue was discovered in spice before version 0.15.0. There is a vulnerability which might make it easier for remote attackers to cause a denial of service (CPU consumption) by performing many renegotiations within a single connection.
CVE-2021-20201 edited at 28 Jan 2021 17:41:58
Severity
- Unknown
+ Low
Remote
- Unknown
+ Remote
Type
- Unknown
+ Denial of service
Description
+ An issue was discovered in spice version 0.14.91 and before. There is a DoS Vulnerability which might make it easier for remote attackers to cause a denial of service (CPU consumption) by performing many renegotiations within a single connection.
References
+ https://bugzilla.redhat.com/show_bug.cgi?id=1921846
+ https://gitlab.freedesktop.org/spice/spice/-/issues/49
+ https://gitlab.freedesktop.org/spice/spice/-/merge_requests/150
+ https://gitlab.freedesktop.org/spice/spice/-/commit/95a0cfac8a1c8eff50f05e65df945da3bb501fc9
+ https://gitlab.freedesktop.org/spice/spice/-/commit/ca5bbc5692e052159bce1a75f55dc60b36078749
CVE-2021-20201 created at 28 Jan 2021 17:39:24
Severity
+ Unknown
Remote
+ Unknown
Type
+ Unknown
Description
References
Notes