2 matches found
CVE-2026-22852 FreeRDP has a heap-buffer-overflow in audin_process_formats
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, a malicious RDP server can trigger a heap-buffer-overflow write in the FreeRDP client when processing Audio Input AUDIN format lists. audinprocessformats reuses callback-formatscount across multiple MSGSNDINFORMATS...
CVE-2026-22852
CVE-2026-22852 concerns the FreeRDP client. A heap-buffer-overflow in audin_process_formats can occur when processing AUDIN format lists, due to reusing callback->formats_count across PDUs and writing past the newly allocated formats array, causing memory corruption and a crash. Affected: Free...