65 matches found
Astra Linux - уязвимость в freerdp2
FreeRDP is a free implementation of the Remote Desktop Protocol RDP, released under the Apache license. The affected versions have a flaw in offset validation, which can lead to an out-of-bounds read. In the libfreerdp/codec/rfx.c file, there is no validation for the offsets in tile-quantIdxY,...
Astra Linux - уязвимость в freerdp2
FreeRDP is a free remote desktop protocol library and clients. Affected versions of FreeRDP are missing a range check for input offset index in ZGFX decoder. A malicious server can trick a FreeRDP based client to read out of bound data and try to decode it. This issue has been addressed in versio...
Astra Linux - уязвимость в freerdp2
FreeRDP is a free implementation of the Remote Desktop Protocol RDP, released under the Apache license. In affected versions, there is a Global-Buffer-Overflow in the ncrushdecompress function. Feeding crafted input into this function can trigger the overflow, which has only been shown to cause a...
Astra Linux - уязвимость в freerdp2
FreeRDP is a free implementation of the Remote Desktop Protocol RDP, released under the Apache license. In affected versions, a malicious server may trigger out-of-bound writes in a connected client. Connections that use GDI or SurfaceCommands to send graphics updates to the client may send...
Astra Linux - уязвимость в freerdp2
FreeRDP is a set of free and open-source remote desktop protocol libraries and clients. In affected versions, an integer overflow in the freerdpbitmapplanarcontext function leads to a heap-buffer overflow. This affects FreeRDP-based clients. FreeRDP-based server implementations and proxies are no...
openSUSE 16 Security Update : freerdp2 (openSUSE-SU-2026:20632-1)
The remote openSUSE 16 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2026:20632-1 advisory. Changes in freerdp2: - Update freerdp-3-macro: - Add WINPRATTRMALLOC macro from freerdp 3 - Security fixes for the following issues:...
SUSE SLED15 / SLES15 Security Update : freerdp2 (SUSE-SU-2026:1640-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:1640-1 advisory. - CVE-2026-25941: Out-of-Bounds Read in client RDPGFX channel via crafted WIRETOSURFACE2 PDU bsc1258919. -...
Security update for freerdp2
This update for freerdp2 fixes the following issues: CVE-2026-25941: Out-of-Bounds Read in client RDPGFX channel via crafted WIRETOSURFACE2 PDU bsc1258919. CVE-2026-25942: Global-buffer-overflow in xfrailserverexecuteresult bsc1258920. CVE-2026-25952: Heap-use-after-free in xfSetWindowMinMaxInfo...
SUSE-SU-2026:1640-1 Security update for freerdp2
This update for freerdp2 fixes the following issues: - CVE-2026-25941: Out-of-Bounds Read in client RDPGFX channel via crafted WIRETOSURFACE2 PDU bsc1258919. - CVE-2026-25942: Global-buffer-overflow in xfrailserverexecuteresult bsc1258920. - CVE-2026-25952: Heap-use-after-free in...
OPENSUSE-SU-2026:20632-1 Security update for freerdp2
This update for freerdp2 fixes the following issues: Changes in freerdp2: - Update freerdp-3-macro: + Add WINPRATTRMALLOC macro from freerdp 3 - Security fixes for the following issues: CVE-2026-25941: Fixed a out of bounds read bsc1258919 CVE-2026-25942: Fixed a buffer overflow in...
freerdp2-2.11.7-8.1 on GA media (moderate)
freerdp2-2.11.7-8.1 on GA media Announcement ID: openSUSE-SU-2026:10611-1 Rating: moderate Cross-References: CVE-2026-25941 CVE-2026-25942 CVE-2026-25952 CVE-2026-25954 CVE-2026-25997 CVE-2026-26986 CVE-2026-27015 CVE-2026-27951 CVSS scores: CVE-2026-25941 SUSE : 4.3...
OPENSUSE-SU-2026:10611-1 freerdp2-2.11.7-8.1 on GA media
These are all security issues fixed in the freerdp2-2.11.7-8.1 package on the GA media of openSUSE Tumbleweed...
SUSE SLED15 / SLES15 Security Update : freerdp2 (SUSE-SU-2026:1313-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2026:1313-1 advisory. - Fix the CVE-2026-24684 patch, as the previous version wrongly deleted a check for an error condition bsc1257991...
Security update for freerdp2
This update for freerdp2 fixes the following issues: Fix the CVE-2026-24684 patch, as the previous version wrongly deleted a check for an error condition bsc1257991. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper...
Security update for freerdp2
This update for freerdp2 fixes the following issues: CVE-2026-26271: Buffer Overread in FreeRDP Icon Processing bsc1258979. CVE-2026-26955: Out-of-bounds Write in freerdp bsc1258982. CVE-2026-26965: Out-of-bounds Write in freerdp bsc1258985. CVE-2026-31806: improper validation of server messages...
OPENSUSE-SU-2026:10459-1 freerdp2-2.11.7-6.1 on GA media
These are all security issues fixed in the freerdp2-2.11.7-6.1 package on the GA media of openSUSE Tumbleweed...
Linux Distros Unpatched Vulnerability : CVE-2026-33983
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, progressivedecompresstileupgrade detects a mismatch via...
Linux Distros Unpatched Vulnerability : CVE-2026-33984
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, in resizevbarentry in libfreerdp/codec/clear.c, vBarEntry-size is...
Linux Distros Unpatched Vulnerability : CVE-2026-33986
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, in yuvensurebuffer in libfreerdp/codec/h264.c, h264-width and...
SUSE SLED15 / SLES15 Security Update : freerdp2 (SUSE-SU-2026:0968-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2026:0968-1 advisory. This update for freerdp2 fixes the following issue: - CVE-2026-24491: Heap-use-after-free in videotimer additional fix...