16 matches found
[SECURITY] [DLA 3606-1] freerdp2 security update
Debian LTS Advisory DLA-3606-1 [email protected] https://www.debian.org/lts/security/ Tobias Frost October 07, 2023 https://wiki.debian.org/LTS Package : freerdp2 Version : 2.3.0+dfsg1-2+deb10u3 CVE ID : CVE-2020-4030 CVE-2020-4031 CVE-2020-4032 CVE-2020-4033 CVE-2020-11017 CVE-2020-110...
EulerOS 2.0 SP3 : freerdp (EulerOS-SA-2021-1785)
According to the versions of the freerdp packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - libfreerdp/core/update.c in FreeRDP versions 1.1 through 2.0.0-rc4 has an Out-of-bounds Read.CVE-2020-11526 - In FreeRDP greater than 1.1 and...
Huawei EulerOS: Security Advisory for freerdp (EulerOS-SA-2021-1675)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS 2.0 SP5 : freerdp (EulerOS-SA-2021-1675)
According to the versions of the freerdp packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - In FreeRDP greater than 1.1 and before 2.0.0, there is an out-of-bounds read in updatereadiconinfo. It allows reading a attacker-defined amount...
EulerOS Virtualization 3.0.6.6 : freerdp (EulerOS-SA-2021-1472)
According to the versions of the freerdp packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - libfreerdp/core/update.c in FreeRDP versions 1.1 through 2.0.0-rc4 has an Out-of-bounds Read.CVE-2020-11526 - In FreeRDP greater...
NewStart CGSL MAIN 6.02 : freerdp Multiple Vulnerabilities (NS-SA-2021-0083)
The remote NewStart CGSL host, running version MAIN 6.02, has freerdp packages installed that are affected by multiple vulnerabilities: - In FreeRDP greater than 1.2 and before 2.0.0, a double free in updatereadcachebitmapv3order crashes the client application if corrupted data from a manipulated...
NewStart CGSL CORE 5.04 / MAIN 5.04 : freerdp Multiple Vulnerabilities (NS-SA-2021-0047)
The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has freerdp packages installed that are affected by multiple vulnerabilities: - In FreeRDP greater than 1.2 and before 2.0.0, a double free in updatereadcachebitmapv3order crashes the client application if corrupted data from a...
Huawei EulerOS: Security Advisory for freerdp (EulerOS-SA-2021-1472)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Oracle Linux 8 : freerdp / and / vinagre (ELSA-2020-4647)
The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2020-4647 advisory. freerdp 2:2.1.1-1 - Update to 2.1.1 rhbz1834287. 2:2.0.0-47.rc4 - Fix SCARDINSUFFICIENTBUFFER error rhbz1803054 - Do not advertise /usb in help output...
ALSA-2020:4647 Moderate: freerdp and vinagre security, bug fix, and enhancement update
FreeRDP is a free implementation of the Remote Desktop Protocol RDP, released under the Apache license. The xfreerdp client can connect to RDP servers such as Microsoft Windows machines, xrdp, and VirtualBox. The vinagre packages provide the Vinagre remote desktop viewer for the GNOME desktop. Th...
Scientific Linux Security Update : freerdp on SL7.x x86_64 (20201001)
Security Fixes : - freerdp: Out of bound read in cliprdrserverreceivecapabilities CVE-2020-11018 - freerdp: Out of bound read/write in usb redirection channel CVE-2020-11039 - freerdp: out-of-bounds read in updatereadiconinfo function CVE-2020-11042 - freerdp: out-of-bounds read in...
freerdp, libwinpr security update
CentOS Errata and Security Advisory CESA-2020:4031 An update for freerdp is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...
Debian: Security Advisory (DLA-2356-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DLA 2356-1] freerdp security update
Debian LTS Advisory DLA-2356-1 [email protected] https://www.debian.org/lts/security/ Mike Gabriel August 30, 2020 https://wiki.debian.org/LTS Package : freerdp Version : 1.1.0git20140921.1.440916e+dfsg1-13+deb9u4 CVE ID : CVE-2014-0791 CVE-2020-11042 CVE-2020-11045 CVE-2020-11046...
CVE-2020-11042 Out-of-bounds Read in FreeRDP
In FreeRDP greater than 1.1 and before 2.0.0, there is an out-of-bounds read in updatereadiconinfo. It allows reading a attacker-defined amount of client memory 32bit unsigned - 4GB to an intermediate buffer. This can be used to crash the client or store information for later retrieval. This has...
CVE-2020-11042
CVE-2020-11042: In FreeRDP, version range greater than 1.1 and before 2.0.0, there is an out-of-bounds read in update_read_icon_info. The vulnerability allows reading an attacker-defined amount of client memory (32-bit unsigned, up to 4 GB) into an intermediate buffer, which can crash the client ...