9 matches found
Debian dla-4166 : xrdp - security update
The remote Debian 11 host has a package installed that is affected by multiple vulnerabilities as referenced in the dla-4166 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-4166-1 [email protected]...
Linux Distros Unpatched Vulnerability : CVE-2023-42822
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - xrdp is an open source remote desktop protocol server. Access to the font glyphs in xrdppainter.c is not bounds-checked . Since some of this data is controllabl...
SUSE SLES12 Security Update : xrdp (SUSE-SU-2023:4873-1)
The remote SUSE Linux SLES12 / SLESSAP12 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:4873-1 advisory. - CVE-2023-42822: Fixed unchecked access to font glyph info bsc1215803. - CVE-2023-40184: Fixed restriction bypass via improper...
SUSE-SU-2023:4577-1 Security update for xrdp
This update for xrdp fixes the following issues: - CVE-2023-42822: Fixed unchecked access to font glyph info bsc1215803...
Fedora 39 : xrdp (2023-b781647782)
The remote Fedora 39 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-b781647782 advisory. Release notes for xrdp v0.9.23.1 2023/09/27 This is a security fix release for CVE-2023-42822. This update is recommended for all xrdp users. Security fixes ...
Fedora 37 : xrdp (2023-c026222382)
The remote Fedora 37 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-c026222382 advisory. Release notes for xrdp v0.9.23.1 2023/09/27 This is a security fix release for CVE-2023-42822. This update is recommended for all xrdp users. Security fixes ...
UBUNTU-CVE-2023-42822
xrdp is an open source remote desktop protocol server. Access to the font glyphs in xrdppainter.c is not bounds-checked . Since some of this data is controllable by the user, this can result in an out-of-bounds read within the xrdp executable. The vulnerability allows an out-of-bounds read within...
CVE-2023-42822
CVE-2023-42822 affects xrdp. Access to font glyphs in xrdp_painter.c is not bounds-checked, allowing an out-of-bounds read (potentially followed by a write) in an xrdp process that may run with root privileges on non-Debian platforms. The issue is addressed in release 0.9.23.1; upgrade recommende...
FreeBSD : xrdp -- unchecked access to font glyph info (af065e47-5d62-11ee-bbae-1c61b4739ac9)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the af065e47-5d62-11ee-bbae-1c61b4739ac9 advisory. - xrdp is an open source remote desktop protocol server. Access to the font glyphs in xrdppainter.c is...