CVE-2020-25651: Infoleak
First published: Thu Oct 08 2020(Updated: )
A flaw was found in the SPICE file transfer protocol. File data from the host system can end up in full or in parts in the client connection of an illegitimate local user in the VM system. Active file transfers from other users could also be interrupted, resulting in a denial of service. The highest threat from this vulnerability is to data confidentiality as well as system availability. This flaw affects spice-vdagent versions 0.20 and prior.
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat/spice-vdagent | <0.21.0 | 0.21.0 |
| Spice-space Spice-vdagent | <=0.20.0 | |
| Debian Debian Linux | =9.0 | |
| Fedoraproject Fedora | =32 | |
| Fedoraproject Fedora | =33 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://bugzilla.redhat.com/show_bug.cgi?id=1886359
- https://lists.debian.org/debian-lts-announce/2021/01/msg00012.html
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GQT56LATVTB2DJOVVJOKQVMVUXYCT2VB/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OIWJ2EIQXWEA2VDBODEATHAT37X4CREP/
- https://www.openwall.com/lists/oss-security/2020/11/04/1
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1894434
- https://github.com/freedesktop/spice-vd_agent/commit/e4bfd1b632b6c14e8411dbe3565115a78cd3d256
- https://github.com/freedesktop/spice-vd_agent/commit/b7db1c20c9f80154fb54392eb44add3486d3e427
- https://access.redhat.com/security/cve/cve-2020-25651
- https://access.redhat.com/errata/RHSA-2021:1791
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OIWJ2EIQXWEA2VDBODEATHAT37X4CREP/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GQT56LATVTB2DJOVVJOKQVMVUXYCT2VB/
Frequently Asked Questions
What is CVE-2020-25651?
CVE-2020-25651 is a vulnerability found in the SPICE file transfer protocol that allows an illegitimate local user in the VM system to access file data from the host system and interrupt active file transfers, resulting in a denial of service.
What is the severity of CVE-2020-25651?
The severity of CVE-2020-25651 is medium with a CVSS score of 6.4.
Which software and versions are affected by CVE-2020-25651?
The affected software includes Spice-vdagent version up to 0.20.0, Debian Linux version 9.0, Fedora 32, and Fedora 33.
How can CVE-2020-25651 be fixed?
To fix CVE-2020-25651, update Spice-vdagent to version 0.21.0.
Where can I find more information about CVE-2020-25651?
You can find more information about CVE-2020-25651 on the following references: [Bugzilla Red Hat](https://bugzilla.redhat.com/show_bug.cgi?id=1886359), [Debian LTS Announce](https://lists.debian.org/debian-lts-announce/2021/01/msg00012.html), [Fedora Project](https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GQT56LATVTB2DJOVVJOKQVMVUXYCT2VB/)
- agent/weakness
- agent/first-publish-date
- agent/last-modified-date
- agent/type
- collector/nvd-index
- agent/software-canonical-lookup
- agent/softwarecombine
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2020-25651
- agent/remedy
- agent/author
- agent/severity
- agent/references
- agent/tags
- agent/description
- agent/event
- collector/mitre-cve
- source/MITRE
- vendor/spice-space
- canonical/spice-space spice-vdagent
- version/spice-space spice-vdagent/0.20.0
- vendor/debian
- canonical/debian debian linux
- version/debian debian linux/9.0
- vendor/fedoraproject
- canonical/fedoraproject fedora
- version/fedoraproject fedora/32
- version/fedoraproject fedora/33
- package-manager/redhat