15 matches found
ROS-20260615-73-0018
The vulnerability of the xfAppUpdateWindowFromSurface function in the RDP client FreeRDP relates to the use of memory after it is freed. Exploiting this vulnerability could allow a remote attacker to compromise the confidentiality, integrity, and accessibility of the protected information...
ROS-20260615-73-0017
The vulnerability of the xfAppUpdateWindowFromSurface function in the RDP client FreeRDP relates to the use of memory after it is freed. Exploiting this vulnerability could allow a remote attacker to compromise the confidentiality, integrity, and accessibility of the protected information...
Linux Distros Unpatched Vulnerability : CVE-2026-25955
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, xfAppUpdateWindowFromSurface reuses a cached XImage whose data pointer...
CVE-2026-25955
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, xfAppUpdateWindowFromSurface reuses a cached XImage whose data pointer references a freed RDPGFX surface buffer, because gdiDeleteSurface frees surface-data without invalidating the appWindow-image that...
CVE-2026-25955 FreeRDP has heap-use-after-free in xf_AppUpdateWindowFromSurface (stale XImage)
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, xfAppUpdateWindowFromSurface reuses a cached XImage whose data pointer references a freed RDPGFX surface buffer, because gdiDeleteSurface frees surface-data without invalidating the appWindow-image that...
CVE-2026-25953
CVE-2026-25953 (FreeRDP) : A use-after-free condition exists in FreeRDP prior to 3.23.0 where the RDPGFX DVC thread obtains a bare pointer to an xfAppWindow via xf_rail_get_window. The main thread can concurrently delete the window (via a fastpath window-delete order), causing xf_AppUpdateWindowF...
CVE-2026-25953 FreeRDP has heap-use-after-free in xf_AppUpdateWindowFromSurface (freed appWindow)
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, xfAppUpdateWindowFromSurface reads from a freed xfAppWindow because the RDPGFX DVC thread obtains a bare pointer via xfrailgetwindow without any lifetime protection, while the main thread can concurrently...
FreeRDP 安全漏洞
FreeRDP is an open-source RDP protocol implementation developed by the FreeRDP team. Versions of FreeRDP prior to 3.23.0 contained security vulnerabilities. These vulnerabilities stemmed from the xfAppUpdateWindowFromSurface function, which attempted to read data from an already released...
EUVD-2007-0736
Malware in sbrugna...
SUSE CVE-2022-23484
xrdp is an open source project which provides a graphical login to remote machines using Microsoft Remote Desktop Protocol RDP. xrdp v0.9.21 contain a Integer Overflow in xrdpmmprocessrailupdatewindowtext function. There are no known workarounds for this issue. Users are advised to upgrade...
The vulnerability of the xrdp_mm_process_rail_update_window_text() function on the XRDP server allows a hacker to execute arbitrary code.
The vulnerability of the xrdpmmprocessrailupdatewindowtext function on the XRDP server is related to integer overflow. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
UBUNTU-CVE-2022-23484
xrdp is an open source project which provides a graphical login to remote machines using Microsoft Remote Desktop Protocol RDP. xrdp v0.9.21 contain a Integer Overflow in xrdpmmprocessrailupdatewindowtext function. There are no known workarounds for this issue. Users are advised to upgrade...
xrdp 输入验证错误漏洞
xrdp is an open source remote desktop protocol server from Neutrinolabs Labs. An input validation error vulnerability exists in versions prior to xrdp v0.9.21, which stems from the inclusion of an integer overflow in the xrdpmmprocessrailupdatewindowtext function...
Price Feed is not checked for freshness and may report old / incorrect value
Lines of code Vulnerability details Price Feed is not checked for freshness In times of network conjestion, the priceFeed may take longer than expected to update, and the price may take longer than usual to update, in order to ensure the latest price is fresh within update window, you should veri...
CVE-2007-0739
The Login Window in Apple Mac OS X 10.4 through 10.4.9 displays the software update window beneath the loginwindow authentication dialog in certain circumstances related to running scheduled tasks, which allows local users to bypass authentication controls...