- Issued:
- 2012-06-20
- Updated:
- 2012-06-20
RHBA-2012:0765 - Bug Fix Advisory
Synopsis
spice-server bug fix and enhancement update
Type/Severity
Bug Fix Advisory
Red Hat Lightspeed patch analysis
Identify and remediate systems affected by this advisory.
Topic
Updated spice-server packages that fix multiple bugs and add various
enhancements are now available for Red Hat Enterprise Linux 6.
Description
The Simple Protocol for Independent Computing Environments (SPICE) is a remote
display protocol for virtual environments. SPICE users can access a virtualized
desktop or server from the local system or any system with network access to the
server. SPICE is used in Red Hat Enterprise Linux for viewing virtualized guests
running on the Kernel-based Virtual Machine (KVM) hypervisor or on Red Hat
Enterprise Virtualization Hypervisors.
The spice-server packages have been upgraded to upstream version 0.10.1, which
fixes multiple bugs and adds multiple enhancements. (BZ#758089)
This update also fixes the following bugs:
- Prior to this update, the smart card channel looked for the error code at the
wrong location. As a consequence, the error messages contained random code
instead of the actual error code. This update modifies the smart card channel
code so that correct error messages are now sent. (BZ#741259)
- Prior to this update, the server rejected connections without logging any
information to the qemu log if the client provided a wrong password. This update
modifies qemu-kvm so that the messages "Invalid password" or "Ticket has
expired" are sent when the client provides a wrong password. (BZ#787669)
- Prior to this update, qemu did not log X.509 files. As a consequence, no
output regarding certificates or keys was available. This update modifies the
underlying code so that information on X.509 files is now available. (BZ#787678)
- Prior to this update, the "struct sockaddr" code in the spice server library
API was too short to hold longer IPv6 addresses. As a consequence, the reported
IPv6 address appeared to be broken or incomplete. This update modifies the
underlying code to use "struct sockaddr_storate" that can now hold complete IPV6
addresses. (BZ#788444)
- Prior to this update, the default lifetime of the "SpiceChannelEventInfo"
event was too short for the "main_dispatcher_handle_channel" event. As a
consequence, freed memory could be accessed after the RedsStream was freed for
the cursor and display channels. This update allocates the
"SpiceChannelEventInfo" event together with allocating the "RedsStream" event,
and deallocates it only after the "DESTROY" event. (BZ#790749)
- Prior to this update, the display driver could send bitmaps to the spice
server that contained video frames, but were larger than the frames sent before.
As a consequence, the larger frames were not synchronized with the video stream,
and their display time could differ from the display time of other frames and
the playback seemed to skip and interrupt. With this update, large bitmaps are
directly attached to the video stream they contain. Now, the playback is smooth
and no longer interrupts. (BZ#813826)
This update also adds the following enhancement:
- Prior to this update, USB devices could not be redirected over the network.
This update adds USB redirection support to the to spice-server. (BZ#758091)
All users requiring spice-server are advised to upgrade to these updated
packages, which fix these bugs and add this enhancement.
Solution
Before applying this update, make sure all previously-released errata relevant
to your system have been applied.
This update is available via the Red Hat Network. Details on how to use the Red
Hat Network to apply this update are available at
https://access.redhat.com/knowledge/articles/11258
Affected Products
- Red Hat Enterprise Linux Server 6 x86_64
- Red Hat Enterprise Linux Workstation 6 x86_64
- Red Hat Enterprise Linux Desktop 6 x86_64
- Red Hat Enterprise Linux for Scientific Computing 6 x86_64
- Red Hat Enterprise Linux Server from RHUI 6 x86_64
- Red Hat Enterprise Linux Server - Extended Life Cycle Support 6 x86_64
- Red Hat Enterprise Linux Server - Extended Life Cycle Support Extension 6 x86_64
Fixes
- BZ - 787669 - print more informative message to qemu log when client provides wrong password
- BZ - 787678 - print info about x509-* files used
- BZ - 788444 - spice info for ipv6 channels is invalid
- BZ - 790749 - race that can lead to accessing freed memory
- BZ - 813826 - glitches when playing youtube movies
- BZ - 819484 - missing usbredir channel in spice_server_set_channel_security
- BZ - 821235 - various spice crashes using Visio on Windows XP
- BZ - 821334 - Memory leak in video streaming
- BZ - 822686 - Segfault when pressing escape with playing full-screen video in WMP
CVEs
(none)
References
(none)
Red Hat Enterprise Linux Server 6
| SRPM | |
|---|---|
| spice-server-0.10.1-10.el6.src.rpm | SHA-256: 12b65aa4f0ba029be651a80a6192c1463476607f6bf67f5180c8b23232644132 |
| x86_64 | |
| spice-server-0.10.1-10.el6.x86_64.rpm | SHA-256: d6c65dbabbc73f79387df54a2ab44487ad8b860ee34e77cb79c984ed65d8ffd3 |
| spice-server-0.10.1-10.el6.x86_64.rpm | SHA-256: d6c65dbabbc73f79387df54a2ab44487ad8b860ee34e77cb79c984ed65d8ffd3 |
| spice-server-debuginfo-0.10.1-10.el6.x86_64.rpm | SHA-256: 4169b039450766eb218eb3155b1d1fc0ebbcd2e9628f9ece6ef36eb1dbf2736f |
| spice-server-debuginfo-0.10.1-10.el6.x86_64.rpm | SHA-256: 4169b039450766eb218eb3155b1d1fc0ebbcd2e9628f9ece6ef36eb1dbf2736f |
| spice-server-debuginfo-0.10.1-10.el6.x86_64.rpm | SHA-256: 4169b039450766eb218eb3155b1d1fc0ebbcd2e9628f9ece6ef36eb1dbf2736f |
| spice-server-devel-0.10.1-10.el6.x86_64.rpm | SHA-256: d9254cec214fa3e4d448108f42f85bf6ba80880d11de26b6f84a896644dd7f49 |
| spice-server-devel-0.10.1-10.el6.x86_64.rpm | SHA-256: d9254cec214fa3e4d448108f42f85bf6ba80880d11de26b6f84a896644dd7f49 |
Red Hat Enterprise Linux Server - Extended Life Cycle Support 6
| SRPM | |
|---|---|
| spice-server-0.10.1-10.el6.src.rpm | SHA-256: 12b65aa4f0ba029be651a80a6192c1463476607f6bf67f5180c8b23232644132 |
| x86_64 | |
| spice-server-0.10.1-10.el6.x86_64.rpm | SHA-256: d6c65dbabbc73f79387df54a2ab44487ad8b860ee34e77cb79c984ed65d8ffd3 |
| spice-server-debuginfo-0.10.1-10.el6.x86_64.rpm | SHA-256: 4169b039450766eb218eb3155b1d1fc0ebbcd2e9628f9ece6ef36eb1dbf2736f |
| spice-server-debuginfo-0.10.1-10.el6.x86_64.rpm | SHA-256: 4169b039450766eb218eb3155b1d1fc0ebbcd2e9628f9ece6ef36eb1dbf2736f |
| spice-server-devel-0.10.1-10.el6.x86_64.rpm | SHA-256: d9254cec214fa3e4d448108f42f85bf6ba80880d11de26b6f84a896644dd7f49 |
Red Hat Enterprise Linux Workstation 6
| SRPM | |
|---|---|
| spice-server-0.10.1-10.el6.src.rpm | SHA-256: 12b65aa4f0ba029be651a80a6192c1463476607f6bf67f5180c8b23232644132 |
| x86_64 | |
| spice-server-0.10.1-10.el6.x86_64.rpm | SHA-256: d6c65dbabbc73f79387df54a2ab44487ad8b860ee34e77cb79c984ed65d8ffd3 |
| spice-server-debuginfo-0.10.1-10.el6.x86_64.rpm | SHA-256: 4169b039450766eb218eb3155b1d1fc0ebbcd2e9628f9ece6ef36eb1dbf2736f |
| spice-server-debuginfo-0.10.1-10.el6.x86_64.rpm | SHA-256: 4169b039450766eb218eb3155b1d1fc0ebbcd2e9628f9ece6ef36eb1dbf2736f |
| spice-server-devel-0.10.1-10.el6.x86_64.rpm | SHA-256: d9254cec214fa3e4d448108f42f85bf6ba80880d11de26b6f84a896644dd7f49 |
Red Hat Enterprise Linux Desktop 6
| SRPM | |
|---|---|
| spice-server-0.10.1-10.el6.src.rpm | SHA-256: 12b65aa4f0ba029be651a80a6192c1463476607f6bf67f5180c8b23232644132 |
| x86_64 | |
| spice-server-0.10.1-10.el6.x86_64.rpm | SHA-256: d6c65dbabbc73f79387df54a2ab44487ad8b860ee34e77cb79c984ed65d8ffd3 |
| spice-server-debuginfo-0.10.1-10.el6.x86_64.rpm | SHA-256: 4169b039450766eb218eb3155b1d1fc0ebbcd2e9628f9ece6ef36eb1dbf2736f |
| spice-server-debuginfo-0.10.1-10.el6.x86_64.rpm | SHA-256: 4169b039450766eb218eb3155b1d1fc0ebbcd2e9628f9ece6ef36eb1dbf2736f |
| spice-server-devel-0.10.1-10.el6.x86_64.rpm | SHA-256: d9254cec214fa3e4d448108f42f85bf6ba80880d11de26b6f84a896644dd7f49 |
Red Hat Enterprise Linux for Scientific Computing 6
| SRPM | |
|---|---|
| spice-server-0.10.1-10.el6.src.rpm | SHA-256: 12b65aa4f0ba029be651a80a6192c1463476607f6bf67f5180c8b23232644132 |
| x86_64 | |
| spice-server-0.10.1-10.el6.x86_64.rpm | SHA-256: d6c65dbabbc73f79387df54a2ab44487ad8b860ee34e77cb79c984ed65d8ffd3 |
| spice-server-debuginfo-0.10.1-10.el6.x86_64.rpm | SHA-256: 4169b039450766eb218eb3155b1d1fc0ebbcd2e9628f9ece6ef36eb1dbf2736f |
| spice-server-debuginfo-0.10.1-10.el6.x86_64.rpm | SHA-256: 4169b039450766eb218eb3155b1d1fc0ebbcd2e9628f9ece6ef36eb1dbf2736f |
| spice-server-devel-0.10.1-10.el6.x86_64.rpm | SHA-256: d9254cec214fa3e4d448108f42f85bf6ba80880d11de26b6f84a896644dd7f49 |
Red Hat Enterprise Linux Server from RHUI 6
| SRPM | |
|---|---|
| spice-server-0.10.1-10.el6.src.rpm | SHA-256: 12b65aa4f0ba029be651a80a6192c1463476607f6bf67f5180c8b23232644132 |
| x86_64 | |
| spice-server-0.10.1-10.el6.x86_64.rpm | SHA-256: d6c65dbabbc73f79387df54a2ab44487ad8b860ee34e77cb79c984ed65d8ffd3 |
| spice-server-debuginfo-0.10.1-10.el6.x86_64.rpm | SHA-256: 4169b039450766eb218eb3155b1d1fc0ebbcd2e9628f9ece6ef36eb1dbf2736f |
| spice-server-debuginfo-0.10.1-10.el6.x86_64.rpm | SHA-256: 4169b039450766eb218eb3155b1d1fc0ebbcd2e9628f9ece6ef36eb1dbf2736f |
| spice-server-devel-0.10.1-10.el6.x86_64.rpm | SHA-256: d9254cec214fa3e4d448108f42f85bf6ba80880d11de26b6f84a896644dd7f49 |
Red Hat Enterprise Linux Server - Extended Life Cycle Support Extension 6
| SRPM | |
|---|---|
| spice-server-0.10.1-10.el6.src.rpm | SHA-256: 12b65aa4f0ba029be651a80a6192c1463476607f6bf67f5180c8b23232644132 |
| x86_64 | |
| spice-server-0.10.1-10.el6.x86_64.rpm | SHA-256: d6c65dbabbc73f79387df54a2ab44487ad8b860ee34e77cb79c984ed65d8ffd3 |
| spice-server-debuginfo-0.10.1-10.el6.x86_64.rpm | SHA-256: 4169b039450766eb218eb3155b1d1fc0ebbcd2e9628f9ece6ef36eb1dbf2736f |
| spice-server-debuginfo-0.10.1-10.el6.x86_64.rpm | SHA-256: 4169b039450766eb218eb3155b1d1fc0ebbcd2e9628f9ece6ef36eb1dbf2736f |
| spice-server-devel-0.10.1-10.el6.x86_64.rpm | SHA-256: d9254cec214fa3e4d448108f42f85bf6ba80880d11de26b6f84a896644dd7f49 |
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.
