16 matches found
openSUSE: Security Advisory for xrdp (SUSE-SU-2023:0033-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DLA 3375-1] xrdp security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-3375-1 [email protected] https://www.debian.org/lts/security/ Chris Lamb March 31, 2023 https://wiki.debian.org/LTS -...
Debian dla-3375 : xrdp - security update
The remote Debian 10 host has a package installed that is affected by multiple vulnerabilities as referenced in the dla-3375 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3375-1 [email protected]...
Mageia: Security Advisory (MGASA-2023-0002)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2023:0374-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE-SU-2023:0374-1 Security update for xrdp
This update for xrdp fixes the following issues: - CVE-2022-23468: Fixed a buffer overflow in xrdploginwndcreate bsc1206300. - CVE-2022-23478: Fixed an out of bound write in xrdpmmtransprocessdrdynvcchan bsc1206302. - CVE-2022-23479: Fixed a buffer overflow in xrdpmmchandatain bsc1206303. -...
SUSE: Security Advisory (SUSE-SU-2023:0033-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE-SU-2023:0033-1 Security update for xrdp
This update for xrdp fixes the following issues: - CVE-2022-23468: Fixed a buffer overflow in xrdploginwndcreate bsc1206300. - CVE-2022-23478: Fixed an out of bound write in xrdpmmtransprocessdrdynvcchan bsc1206302. - CVE-2022-23479: Fixed a buffer overflow in xrdpmmchandatain bsc1206303. -...
SUSE: Security Advisory (SUSE-SU-2023:0012-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLES15 Security Update : xrdp (SUSE-SU-2023:0012-1)
The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:0012-1 advisory. - CVE-2022-23468: Fixed a buffer overflow in xrdploginwndcreate bsc1206300. - CVE-2022-23479: Fixed a buffer overflow in...
Fedora 36 : xrdp (2022-08d2138578)
The remote Fedora 36 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2022-08d2138578 advisory. Release notes for xrdp v0.9.21 2022/12/10 General announcements - Running xrdp and xrdp-sesman on separate hosts is still supported by this release,...
Fedora: Security Advisory for xrdp (FEDORA-2022-08d2138578)
The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
FreeBSD : xrdp -- multiple vulnerabilities (ba94433c-7890-11ed-859e-1c61b4739ac9)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the ba94433c-7890-11ed-859e-1c61b4739ac9 advisory. - xrdp is an open source project which provides a graphical login to remote machines using...
CVE-2022-23481
xrdp is an open source project which provides a graphical login to remote machines using Microsoft Remote Desktop Protocol RDP. xrdp v0.9.21 contain a Out of Bound Read in xrdpcapsprocessconfirmactive function. There are no known workarounds for this issue. Users are advised to upgrade...
CVE-2022-23481
CVE-2022-23481 affects xrdp prior to version 0.9.21, due to an out-of-bounds read in the function xrdp_caps_process_confirm_active(). The issue is fixed in later releases (e.g., 0.9.21 and subsequent distro patches such as 0.9.21.1-1~deb11u1 and Fedora/Alt/Linux updates). Impact is described as h...
CVE-2022-23481
xrdp is an open source project which provides a graphical login to remote machines using Microsoft Remote Desktop Protocol RDP. xrdp v0.9.21 contain a Out of Bound Read in xrdpcapsprocessconfirmactive function. There are no known workarounds for this issue. Users are advised to upgrade...