CVE-2020-11046

Опубликовано: 07 мая 2020

Источник: debian

EPSS Низкий

Описание

In FreeRDP after 1.0 and before 2.0.0, there is a stream out-of-bounds seek in update_read_synchronize that could lead to a later out-of-bounds read.

Пакет	Статус	Версия исправления	Релиз	Тип
freerdp2	fixed	2.1.1+dfsg1-1		package
freerdp	removed			package

https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-hx48-wmmm-mr5q
Fixed by: https://github.com/FreeRDP/FreeRDP/commit/ed53cd148f43cbab905eaa0f5308c2bf3c48cc37
https://github.com/FreeRDP/FreeRDP/issues/6006

EPSS

Процентиль: 28%

0.00094

Низкий

CVE-2020-11046

CVSS3: 5.5

ubuntu

около 5 лет назад

In FreeRDP after 1.0 and before 2.0.0, there is a stream out-of-bounds seek in update_read_synchronize that could lead to a later out-of-bounds read.

CVE-2020-11046

CVSS3: 2.2

redhat

около 5 лет назад

In FreeRDP after 1.0 and before 2.0.0, there is a stream out-of-bounds seek in update_read_synchronize that could lead to a later out-of-bounds read.

CVE-2020-11046

CVSS3: 5.5

nvd

около 5 лет назад

In FreeRDP after 1.0 and before 2.0.0, there is a stream out-of-bounds seek in update_read_synchronize that could lead to a later out-of-bounds read.

RLSA-2020:4647

rocky

больше 4 лет назад

Moderate: freerdp and vinagre security, bug fix, and enhancement update

ELSA-2020-4647

oracle-oval

больше 4 лет назад

ELSA-2020-4647: freerdp and vinagre security, bug fix, and enhancement update (MODERATE)

EPSS

Процентиль: 28%

0.00094

Низкий