CVE-2026-24676

CVE-2026-24676 affects FreeRDP, a FreeRDP implementation of the Remote Desktop Protocol. Before version 3.22.0, the AUDIN format renegotiation frees the active format list while the capture thread continues using audin->format, causing a use-after-free in audio_format_compatible. This is a cli...

PT-2026-7035

Name of the Vulnerable Software and Affected Versions FreeRDP versions prior to 3.22.0 Description FreeRDP, a Remote Desktop Protocol implementation, contains a flaw related to audio format handling. Specifically, the AUDIN format renegotiation process can lead to a use-after-free condition. This...

EUVD-2013-6461

Malware in sbrugna...

PT-2024-19937

Name of the Vulnerable Software and Affected Versions No specific software or versions are mentioned in the provided descriptions. Description The issue concerns the SSL/TLS Renegotiation functionality, which could potentially lead to a Denial of Service DoS attack. No information is provided abo...

JSA10482 - 2011-07 Out of Cycle Security Bulletin: Multiple Products; TLS/SSL Renegotiation Vulnerability (CVE-2009-3555)

Edit: 4th of March 2024 - This isn't an active SA and any new edits are part of an article maintenance project. CVE-2009-3555 summary: The TLS protocol, and the SSL protocol 3.0 and possibly earlier, does not properly associate renegotiation handshakes with an existing connection, which allows...

DEBIAN-CVE-2021-26717

An issue was discovered in Sangoma Asterisk 16.x before 16.16.1, 17.x before 17.9.2, and 18.x before 18.2.1 and Certified Asterisk before 16.8-cert6. When re-negotiating for T.38, if the initial remote response was delayed just enough, Asterisk would send both audio and T.38 in the SDP. If this...