N/A

A race condition vulnerability was found in the way the spice-vdagentd daemon handled new client connections. This flaw may allow an unprivileged local guest user to become the active agent for spice-vdagentd, possibly resulting in a denial of service or information leakage from the host. The highest threat from this vulnerability is to data confidentiality as well as system availability. This flaw affects spice-vdagent versions 0.20 and prior.

N/A

使用共享资源的并发执行不恰当同步问题(竞争条件)

SPICE vdagent 竞争条件问题漏洞

SPICE vdagent是个人开发者的一个远程连接软件的 Linux 客户端。 SPICE vdagent 中存在竞争条件问题漏洞，该漏洞源于SPICE vdagent错误地处理了客户端连接。本地攻击者可能会使用此问题来获取敏感信息，粘贴剪贴板内容并将文件传输到活动会话中。

N/A

N/A