SUSE CVE-2020-11523

libfreerdp/gdi/region.c in FreeRDP versions 1.0 through 2.0.0-rc4 has an Integer Overflow...

EulerOS 2.0 SP2 : freerdp (EulerOS-SA-2021-2370)

According to the versions of the freerdp packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - In FreeRDP greater than 1.1 and before 2.0.0, there is an out-of-bounds read in updatereadiconinfo. It allows reading a attacker-defined amount...

freerdp: out-of-bounds read in gdi.c

libfreerdp/gdi/gdi.c in FreeRDP 1.0 through 2.0.0-rc4 has an Out-of-bounds Read...

freerdp: Stream pointer out of bounds in update_recv_secondary_order could lead out of bounds read later

libfreerdp/core/update.c in FreeRDP versions 1.1 through 2.0.0-rc4 has an Out-of-bounds Read...

CVE-2020-11522

CVE-2020-11522 is an out-of-bounds read in libfreerdp/gdi/gdi.c affecting FreeRDP versions >1.0 through 2.0.0-rc4. Advisories indicate fixes in later releases (up to 2.1.1); remediation: upgrade to FreeRDP 2.1.1 or newer. The connected documents confirm the vulnerability and its remediation pa...

CVE-2019-17177

libfreerdp/codec/region.c in FreeRDP through 1.1.x and 2.x through 2.0.0-rc4 has memory leaks because a supplied realloc pointer i.e., the first argument to realloc is also used for a realloc return value...

CVE-2018-8786

FreeRDP prior to version 2.0.0-rc4 contains an Integer Truncation that leads to a Heap-Based Buffer Overflow in function updatereadbitmapupdate and results in a memory corruption and probably even a remote code execution...