7 matches found
Security update for freerdp
This update for freerdp fixes the following issues: CVE-2026-22855: heap-buffer-overflow in smartcardunpacksetattribcall bsc1256721. CVE-2026-22857: heap-use-after-free in irpthreadfunc bsc1256723. CVE-2026-23533: improper validation can lead to heap buffer overflow in cleardecompressresidualdata...
SUSE-SU-2026:0656-1 Security update for freerdp
This update for freerdp fixes the following issues: - CVE-2026-22855: heap-buffer-overflow in smartcardunpacksetattribcall bsc1256721. - CVE-2026-22857: heap-use-after-free in irpthreadfunc bsc1256723. - CVE-2026-23533: improper validation can lead to heap buffer overflow in...
SUSE CVE-2023-39354
FreeRDP is a free implementation of the Remote Desktop Protocol RDP, released under the Apache license. Affected versions are subject to an Out-Of-Bounds Read in the nscrledecompressdata function. The Out-Of-Bounds Read occurs because it processes context-Planes without checking if it contains da...
FreeRDP 缓冲区错误漏洞
FreeRDP is an open source implementation of the Remote Desktop Protocol RDP from the FreeRDP team. FreeRDP suffers from a buffer overflow vulnerability that stems from the cleardecompressbandsdata function having no offset validation. An attacker could exploit this vulnerability to cause a denial...
UBUNTU-CVE-2023-31137
MaraDNS is open-source software that implements the Domain Name System DNS. In version 3.5.0024 and prior, a remotely exploitable integer underflow vulnerability in the DNS packet decompression function allows an attacker to cause a Denial of Service by triggering an abnormal program termination...
PT-2022-5191 · Gstreamer +8 · Gstreamer +8
Name of the Vulnerable Software and Affected Versions: Gstreamer affected versions not specified Description: The issue is caused by an integer overflow in the gst matroska decompress data function of the Gstreamer multimedia framework. This can lead to a potential heap overflow, allowing an...
SUSE-SA:2005:039: zlib
The remote host is missing the patch for the advisory SUSE-SA:2005:039 zlib. A denial of service condition was fixed in the zlib library. Any program using zlib to decompress data can be crashed by a specially handcrafted invalid data stream. This includes web browsers or email programs able to...