2 matches found
CVE-2023-40187
FreeRDP is a free implementation of the Remote Desktop Protocol RDP, released under the Apache license. Affected versions of the 3.x beta branch are subject to a Use-After-Free issue in the avc420ensurebuffer and avc444ensurebuffer functions. If the value of piDstSizex is 0, ppYUVDstDatax will be...
CVE-2023-40187
FreeRDP CVE-2023-40187 is a Use-After-Free in the 3.x beta branch related to avc420_ensure_buffer/avc444_ensure_buffer. When piDstSize[x] == 0, ppYUVDstData[x] is freed without being updated, leading to a vulnerability. Remediation: upgrade to 3.0.0-beta3 or later. Other connected sources (e.g., ...