7965 moderate openSUSE Leap 42.3 Update This update for spice-gtk fixes the following issues: - CVE-2017-12194: A flaw was found in the way spice-client processed certain messages sent from the server. An attacker, having control of malicious spice-server, could use this flaw to crash the client or execute arbitrary code with permissions of the user running the client. spice-gtk versions through 0.34 are believed to be vulnerable. (bsc#1085415) This update was imported from the SUSE:SLE-12-SP3:Update update project. libspice-client-glib-2_0-8-0.33-2.3.1.x86_64.rpm libspice-client-glib-2_0-8-debuginfo-0.33-2.3.1.x86_64.rpm libspice-client-glib-helper-0.33-2.3.1.x86_64.rpm libspice-client-glib-helper-debuginfo-0.33-2.3.1.x86_64.rpm libspice-client-gtk-3_0-5-0.33-2.3.1.x86_64.rpm libspice-client-gtk-3_0-5-debuginfo-0.33-2.3.1.x86_64.rpm libspice-controller0-0.33-2.3.1.x86_64.rpm libspice-controller0-debuginfo-0.33-2.3.1.x86_64.rpm spice-gtk-0.33-2.3.1.src.rpm spice-gtk-0.33-2.3.1.x86_64.rpm spice-gtk-debuginfo-0.33-2.3.1.x86_64.rpm spice-gtk-debugsource-0.33-2.3.1.x86_64.rpm spice-gtk-devel-0.33-2.3.1.x86_64.rpm spice-gtk-lang-0.33-2.3.1.noarch.rpm typelib-1_0-SpiceClientGlib-2_0-0.33-2.3.1.x86_64.rpm typelib-1_0-SpiceClientGtk-3_0-0.33-2.3.1.x86_64.rpm