Описание
In FreeRDP after 1.1 and before 2.0.0, there is an out-of-bound read of client memory that is then passed on to the protocol parser. This has been patched in 2.0.0.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| freerdp2 | fixed | 2.1.1+dfsg1-1 | package | |
| freerdp | removed | package |
Примечания
https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-wwh7-r2r8-xjpr
Fixed with: https://github.com/FreeRDP/FreeRDP/pull/6019
https://github.com/FreeRDP/FreeRDP/issues/6008
EPSS
Связанные уязвимости
In FreeRDP after 1.1 and before 2.0.0, there is an out-of-bound read of client memory that is then passed on to the protocol parser. This has been patched in 2.0.0.
In FreeRDP after 1.1 and before 2.0.0, there is an out-of-bound read of client memory that is then passed on to the protocol parser. This has been patched in 2.0.0.
In FreeRDP after 1.1 and before 2.0.0, there is an out-of-bound read of client memory that is then passed on to the protocol parser. This has been patched in 2.0.0.
Moderate: freerdp and vinagre security, bug fix, and enhancement update
ELSA-2020-4647: freerdp and vinagre security, bug fix, and enhancement update (MODERATE)
EPSS