7 matches found
Astra Linux – Vulnerability in freerdp3
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0, deleting offscreen bitmaps caused gdi-drawing to point to freed memory, leading to UAF when related update packets arrived. A malicious server could trigger client-side use after the objects were freed,...
CVE-2026-23884
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0, offscreen bitmap deletion leaves gdi-drawing pointing to freed memory, causing UAF when related update packets arrive. A malicious server can trigger a client‑side use after free, causing a crash DoS and...
EUVD-2024-30278
Malicious code in bioql PyPI...
freerdp: OutOfBound Read in interleaved_decompress
FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based based clients using /bpp:32 legacy GDI drawing path with a version of FreeRDP prior to 3.5.0 or 2.11.6 are vulnerable to out-of-bounds read. Versions 3.5.0 and 2.11.6 patch the issue. As a workaround, use modern drawin...
SUSE SLED12: freerdp / freerdp-devel / freerdp-proxy / freerdp-server / etc (SUSE-SU-2024:1609-1)
The remote SUSE Linux SLED12 / SLEDSAP12 / SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:1609-1 advisory. - CVE-2024-32039: Fixed an out-of-bounds write with variables of type uint32 bsc1223293 - CVE-2024-32040: Fixe...
SUSE-SU-2024:1610-1 Security update for freerdp
This update for freerdp fixes the following issues: - CVE-2024-32039: Fixed an out-of-bounds write with variables of type uint32 bsc1223293 - CVE-2024-32040: Fixed a integer underflow when using the 'NSC' codec bsc1223294 - CVE-2024-32041: Fixed an out-of-bounds read in StreamGetRemainingLength...
FreeRDP 安全漏洞
FreeRDP is an open source implementation of the Remote Desktop Protocol RDP from the FreeRDP team. A security vulnerability exists prior to version 3.5.0 of FreeRDP, which stems from the fact that FreeRDP-based clients using the /bpp:32 old GDI drawing path are vulnerable to out-of-bounds reads. ...