DEBIAN-CVE-2026-29774

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, a client-side heap buffer overflow occurs in the FreeRDP client's AVC420/AVC444 YUV-to-RGB conversion path due to missing horizontal bounds validation of H.264 metablock regionRects coordinates. In yuv.c, the clamp...

UBUNTU-CVE-2026-29774

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, a client-side heap buffer overflow occurs in the FreeRDP client's AVC420/AVC444 YUV-to-RGB conversion path due to missing horizontal bounds validation of H.264 metablock regionRects coordinates. In yuv.c, the clamp...

CVE-2026-29774 FreeRDP has a heap-buffer-overflow in avc420_yuv_to_rgb via OOB regionRects

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, a client-side heap buffer overflow occurs in the FreeRDP client's AVC420/AVC444 YUV-to-RGB conversion path due to missing horizontal bounds validation of H.264 metablock regionRects coordinates. In yuv.c, the clamp...

CVE-2026-29774 FreeRDP has a heap-buffer-overflow in avc420_yuv_to_rgb via OOB regionRects

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, a client-side heap buffer overflow occurs in the FreeRDP client's AVC420/AVC444 YUV-to-RGB conversion path due to missing horizontal bounds validation of H.264 metablock regionRects coordinates. In yuv.c, the clamp...

CVE-2026-29774

CVE-2026-29774 affects FreeRDP prior to 3.24.0, where a client-side heap buffer overflow can occur in the AVC420/AVC444 YUV-to-RGB path due to missing horizontal bounds validation of regionRects coordinates. Specifically, yuv.c clamp() validates top/bottom but not left/right against surface width...

FreeRDP 缓冲区错误漏洞

FreeRDP is an open-source RDP protocol implementation developed by the FreeRDP team. Versions of FreeRDP prior to 3.24.0 contained a buffer error vulnerability. This vulnerability stemmed from a heap buffer overflow in the YUV-to-RGB conversion process implemented by AVC420/AVC444, which could...

PT-2026-25332

Name of the Vulnerable Software and Affected Versions FreeRDP versions prior to 3.24.0 Description FreeRDP is a free implementation of the Remote Desktop Protocol. A client-side heap buffer overflow occurs in the FreeRDP client's AVC420/AVC444 YUV-to-RGB conversion path due to missing horizontal...

The vulnerabilities of the functions avc420_ensure_buffer() and avc444_ensure_buffer() in the RDP client FreeRDP allow a attacker to cause a service failure or exert other effects.

The vulnerability of the functions avc420ensurebuffer and avc444ensurebuffer in the RDP client FreeRDP is related to the use of memory after it is freed. Exploiting this vulnerability can allow a malicious actor to cause service failures or other adverse effects...

SUSE CVE-2023-40187

FreeRDP is a free implementation of the Remote Desktop Protocol RDP, released under the Apache license. Affected versions of the 3.x beta branch are subject to a Use-After-Free issue in the avc420ensurebuffer and avc444ensurebuffer functions. If the value of piDstSizex is 0, ppYUVDstDatax will be...

UBUNTU-CVE-2023-40187

FreeRDP is a free implementation of the Remote Desktop Protocol RDP, released under the Apache license. Affected versions of the 3.x beta branch are subject to a Use-After-Free issue in the avc420ensurebuffer and avc444ensurebuffer functions. If the value of piDstSizex is 0, ppYUVDstDatax will be...

PT-2023-4673 · Freerdp +1 · Freerdp +1

Name of the Vulnerable Software and Affected Versions: FreeRDP versions prior to 3.0.0-beta3 Description: The issue is related to a Use-After-Free problem in the avc420 ensure buffer and avc444 ensure buffer functions of the FreeRDP client. This occurs when the value of piDstSizex is 0, causing...