Amazon Linux 2023 : freerdp, freerdp-devel, freerdp-libs (ALAS2023-2026-1822)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2026-1822 advisory. FreeRDP before 3.26.0 contains a heap-buffer-overflow vulnerability in gdiCacheToSurface that allows remote attackers to write out-of-bounds heap memory. The vulnerability occurs because...

TencentOS Server 4: freerdp (TSSA-2026:0435)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2026:0435 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

freerdp-3.26.0-3.1 on GA media (moderate)

freerdp-3.26.0-3.1 on GA media Announcement ID: openSUSE-SU-2026:10948-1 Rating: moderate Cross-References: CVE-2026-40033 CVE-2026-44420 CVE-2026-44421 CVE-2026-44422 CVE-2026-45700 CVSS scores: CVE-2026-40033 SUSE : 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2026-40033 SUSE : 9.2...

SUSE CVE-2026-44420

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.26.0, a malicious RDP client can trigger a heap-buffer-overflow write in FreeRDP's server-side clipboard cliprdr channel by sending a CBCLIPCAPS PDU with a too-small capabilitySetLength. This can crash the server process...

CVE-2026-44420

creationtimestamp| type| source ---|---|--- 2026-05-29 21:01:43+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mmzgnhigoh2v 2026-05-30 13:56:13+00:00| seen| https://infosec.exchange/users/vuldb/statuses/116663869287019686...

CVE-2023-44420

creationtimestamp| type| source ---|---|--- 2026-01-24 21:32:12+00:00| seen| https://gist.github.com/alon710/255382c0e59bd27cb3dde0cc71c209a1...

CVE-2022-44420

In modem, there is a possible missing verification of HashMME value in Security Mode Command. This could local denial of service with no additional execution privileges...

RHEL 8 : RHUI 4.3.0 - Security Fixes, Bug Fixes, and Enhancements Update (Low) (RHSA-2023:0742)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2023:0742 advisory. Red Hat Update Infrastructure RHUI offers a highly scalable, highly redundant framework that enables you to manage repositories and content...

CVE-2022-44420

creationtimestamp| type| source ---|---|--- 2023-05-09 07:38:18+00:00| seen| https://t.me/cibsecurity/63539...

CVE-2022-44420

In modem, there is a possible missing verification of HashMME value in Security Mode Command. This could local denial of service with no additional execution privileges...

CVE-2022-44420

In modem, there is a possible missing verification of HashMME value in Security Mode Command. This could local denial of service with no additional execution privileges...

CVE-2022-44420

In modem, there is a possible missing verification of HashMME value in Security Mode Command. This could local denial of service with no additional execution privileges...

CVE-2022-44420

The CVE-2022-44420 entry describes a vulnerability in the UNISOC modem module where there is a missing verification of the HashMME value in the Security Mode Command, enabling local denial of service with no additional privileges. This is a local-access issue with impact on availability (HIGH) an...

Low: Red Hat Security Advisory: RHUI 4.3.0 release - Security Fixes, Bug Fixes, and Enhancements Update

An updated version of Red Hat Update Infrastructure RHUI is now available. RHUI 4.3 fixes a security bug, introduces multiple new features, and upgrades underlying Pulp to a Long Term Support LTS version. Red Hat Update Infrastructure RHUI offers a highly scalable, highly redundant framework that...

Moderate: Red Hat Security Advisory: Satellite 6.11 Release

An update is now available for Red Hat Satellite 6.11 Red Hat Satellite is a systems management tool for Linux-based infrastructure. It allows for provisioning, remote management, and monitoring of multiple Linux deployments with a single centralized tool. Security Fixes: libsolv: Heap-based buff...

Mageia: Security Advisory (MGASA-2021-0552)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Security fix for the ALT Linux 10 package python3-module-django version 3.2.10-alt1

3.2.10-alt1 built Dec. 24, 2021 Anton Farygin in task 292330 Dec. 17, 2021 Alexey Shabalin - new version 3.2.10 - Fixes for the following security vulnerabilities: + CVE-2021-44420 Fixed potential bypass of an upstream access control based on URL paths...

Security fix for the ALT Linux 9 package python3-module-django version 2.2.25-alt1

2.2.25-alt1 built Dec. 24, 2021 Alexey Shabalin in task 292358 Dec. 17, 2021 Alexey Shabalin - new version 2.2.25 - Fixes for the following security vulnerabilities: + CVE-2021-44420: Potential bypass of an upstream access control based on URL paths...

Django 2.2 < 2.2.25, 3.1 < 3.1.14, 3.2 < 3.2.10 Access Control Bypass Vulnerability - Windows

Django is prone to an access control bypass vulnerability. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; yo...

MGASA-2021-0552 Updated python-django packages fix security vulnerability

Potential bypass of an upstream access control based on URL paths. CVE-2021-44420 HTTP requests for URLs with trailing newlines could bypass an upstream access control based on URL paths...