Lucene search
K

65 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.4 views

Astra Linux – Vulnerability in freerdp2

FreeRDP is a free implementation of the Remote Desktop Protocol RDP, released under the Apache license. The affected versions have a flaw in offset validation, which can lead to an out-of-bounds read. In the libfreerdp/codec/rfx.c file, there is no validation for the offsets in tile-quantIdxY,...

9.1CVSS7AI score0.01247EPSS
Exploits1References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.2 views

Astra Linux – Vulnerability in freerdp2

FreeRDP is a free implementation of the Remote Desktop Protocol RDP, released under the Apache license. In affected versions, there is a Global-Buffer-Overflow in the ncrushdecompress function. Feeding crafted input into this function can trigger the overflow, which has only been shown to cause a...

7.5CVSS6.7AI score0.01196EPSS
Exploits1References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.8 views

Astra Linux – Vulnerability in freerdp2

FreeRDP is a free remote desktop protocol library and clients. Affected versions of FreeRDP lack a range check for the input offset index in the ZGFX decoder. A malicious server can trick a FreeRDP-based client into reading out-of-bound data and attempting to decode it. This issue has been...

4.6CVSS6AI score0.00627EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.3 views

Astra Linux - уязвимость в freerdp2

FreeRDP is a set of free and open-source remote desktop protocol libraries and clients. In affected versions, an integer overflow in the freerdpbitmapplanarcontext function leads to a heap-buffer overflow. This affects FreeRDP-based clients. FreeRDP-based server implementations and proxies are no...

9.8CVSS6.9AI score0.01085EPSS
Exploits1References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.1 views

Astra Linux - уязвимость в freerdp2

FreeRDP is a free implementation of the Remote Desktop Protocol RDP, released under the Apache license. In affected versions, a malicious server may trigger out-of-bound writes in a connected client. Connections that use GDI or SurfaceCommands to send graphics updates to the client may send...

8.8CVSS7.1AI score0.01553EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/05/02 12:0 a.m.12 views

openSUSE 16 Security Update : freerdp2 (openSUSE-SU-2026:20632-1)

The remote openSUSE 16 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2026:20632-1 advisory. Changes in freerdp2: - Update freerdp-3-macro: - Add WINPRATTRMALLOC macro from freerdp 3 - Security fixes for the following issues:...

9.8CVSS6.2AI score0.00756EPSS
Exploits20References71
Tenable Nessus
Tenable Nessus
added 2026/05/02 12:0 a.m.6 views

SUSE SLED15 / SLES15 Security Update : freerdp2 (SUSE-SU-2026:1640-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:1640-1 advisory. - CVE-2026-25941: Out-of-Bounds Read in client RDPGFX channel via crafted WIRETOSURFACE2 PDU bsc1258919. -...

9.8CVSS6AI score0.00656EPSS
Exploits14References47
SUSE Linux
SUSE Linux
added 2026/04/28 11:33 a.m.6 views

Security update for freerdp2

This update for freerdp2 fixes the following issues: CVE-2026-25941: Out-of-Bounds Read in client RDPGFX channel via crafted WIRETOSURFACE2 PDU bsc1258919. CVE-2026-25942: Global-buffer-overflow in xfrailserverexecuteresult bsc1258920. CVE-2026-25952: Heap-use-after-free in xfSetWindowMinMaxInfo...

8.8CVSS5.8AI score0.00656EPSS
Exploits14References62
OSV
OSV
added 2026/04/28 11:33 a.m.6 views

SUSE-SU-2026:1640-1 Security update for freerdp2

This update for freerdp2 fixes the following issues: - CVE-2026-25941: Out-of-Bounds Read in client RDPGFX channel via crafted WIRETOSURFACE2 PDU bsc1258919. - CVE-2026-25942: Global-buffer-overflow in xfrailserverexecuteresult bsc1258920. - CVE-2026-25952: Heap-use-after-free in...

9.8CVSS5AI score0.00656EPSS
Exploits14References32
OSV
OSV
added 2026/04/27 1:16 p.m.4 views

OPENSUSE-SU-2026:20632-1 Security update for freerdp2

This update for freerdp2 fixes the following issues: Changes in freerdp2: - Update freerdp-3-macro: + Add WINPRATTRMALLOC macro from freerdp 3 - Security fixes for the following issues: CVE-2026-25941: Fixed a out of bounds read bsc1258919 CVE-2026-25942: Fixed a buffer overflow in...

9.8CVSS5.1AI score0.00756EPSS
Exploits20References48
OPENSUSE Linux
OPENSUSE Linux
added 2026/04/26 12:0 a.m.7 views

freerdp2-2.11.7-8.1 on GA media (moderate)

freerdp2-2.11.7-8.1 on GA media Announcement ID: openSUSE-SU-2026:10611-1 Rating: moderate Cross-References: CVE-2026-25941 CVE-2026-25942 CVE-2026-25952 CVE-2026-25954 CVE-2026-25997 CVE-2026-26986 CVE-2026-27015 CVE-2026-27951 CVSS scores: CVE-2026-25941 SUSE : 4.3...

8.2CVSS5.2AI score
Exploits0
OSV
OSV
added 2026/04/25 12:0 a.m.5 views

OPENSUSE-SU-2026:10611-1 freerdp2-2.11.7-8.1 on GA media

These are all security issues fixed in the freerdp2-2.11.7-8.1 package on the GA media of openSUSE Tumbleweed...

9.8CVSS5.2AI score0.00599EPSS
Exploits8References8
Tenable Nessus
Tenable Nessus
added 2026/04/15 12:0 a.m.4 views

SUSE SLED15: freerdp2 / freerdp2-devel / freerdp2-proxy / freerdp2-server / etc (SUSE-SU-2026:1313-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2026:1313-1 advisory. - Fix the CVE-2026-24684 patch, as the previous version wrongly deleted a check for an error condition bsc1257991...

8.7CVSS7.2AI score0.00534EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added 2026/04/14 10:47 a.m.4 views

Security update for freerdp2

This update for freerdp2 fixes the following issues: Fix the CVE-2026-24684 patch, as the previous version wrongly deleted a check for an error condition bsc1257991. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper...

7.3CVSS5.8AI score0.00534EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added 2026/04/01 1:40 p.m.4 views

Security update for freerdp2

This update for freerdp2 fixes the following issues: CVE-2026-26271: Buffer Overread in FreeRDP Icon Processing bsc1258979. CVE-2026-26955: Out-of-bounds Write in freerdp bsc1258982. CVE-2026-26965: Out-of-bounds Write in freerdp bsc1258985. CVE-2026-31806: improper validation of server messages...

8.8CVSS6.6AI score0.00656EPSS
Exploits5References24
OSV
OSV
added 2026/03/29 12:0 a.m.2 views

OPENSUSE-SU-2026:10459-1 freerdp2-2.11.7-6.1 on GA media

These are all security issues fixed in the freerdp2-2.11.7-6.1 package on the GA media of openSUSE Tumbleweed...

9.8CVSS5.9AI score0.00756EPSS
Exploits11References12
Tenable Nessus
Tenable Nessus
added 2026/03/26 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2026-33986

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, in yuvensurebuffer in libfreerdp/codec/h264.c, h264-width and...

7.5CVSS4.8AI score0.00265EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/03/26 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2026-33983

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, progressivedecompresstileupgrade detects a mismatch via...

7.5CVSS5.1AI score0.00426EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/03/26 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2026-33984

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, in resizevbarentry in libfreerdp/codec/clear.c, vBarEntry-size is...

7.5CVSS5.2AI score0.00398EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/03/24 12:0 a.m.3 views

SUSE SLED15: freerdp2 / freerdp2-devel / freerdp2-proxy / freerdp2-server / etc (SUSE-SU-2026:0968-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2026:0968-1 advisory. This update for freerdp2 fixes the following issue: - CVE-2026-24491: Heap-use-after-free in videotimer additional fix...

8.7CVSS7.1AI score0.00467EPSS
Exploits0References5
Rows per page
Query Builder