Mandriva: 2013:217: spice

LinuxSecurity.com: Updated spice packages fix security vulnerability:
An user able to initiate spice connection to the guest could use a
flaw in server/red_channel.c to crash the guest (CVE-2013-4130).
[More...]
_______________________________________________________________________