CVE-2026-27015

CVE-2026-27015 : FreeRDP prior to 3.23.0 is affected by a bounds-check flaw in smartcard_unpack_read_size_align() (libfreerdp/utils/smartcard_pack.c:1703). A malicious RDP server can trigger a crash via a reachable WINPR_ASSERT (abort) when smartcard redirection is enabled. Upstream FreeRDP versi...