4 matches found
[SECURITY] [DLA 3606-1] freerdp2 security update
Debian LTS Advisory DLA-3606-1 [email protected] https://www.debian.org/lts/security/ Tobias Frost October 07, 2023 https://wiki.debian.org/LTS Package : freerdp2 Version : 2.3.0+dfsg1-2+deb10u3 CVE ID : CVE-2020-4030 CVE-2020-4031 CVE-2020-4032 CVE-2020-4033 CVE-2020-11017 CVE-2020-110...
CVE-2023-39355
A flaw was found in FreeRDP. If context-maxPlaneSize is 0, context-planesBuffer will be freed. However, without updating context-planesBuffer, this may result in a use-after-free problem, leading to a crash...
SUSE CVE-2023-39355
FreeRDP is a free implementation of the Remote Desktop Protocol RDP, released under the Apache license. Versions of FreeRDP on the 3.x release branch before beta3 are subject to a Use-After-Free in processing RDPGFXCMDIDRESETGRAPHICS packets. If context-maxPlaneSize is 0, context-planesBuffer wil...
CVE-2023-39355
CVE-2023-39355 affects FreeRDP on the 3.x release branch before beta3, where processing RDPGFX_CMDID_RESETGRAPHICS can trigger a Use-After-Free if context->maxPlaneSize is 0 and context->planesBuffer is freed without updating the buffer. This vulnerability is described as a crash in most en...