Описание
In FreeRDP less than or equal to 2.0.0, there is an out-of-bound read in ntlm_read_AuthenticateMessage. This has been fixed in 2.1.0.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 6 | freerdp | Out of support scope | ||
| Red Hat Enterprise Linux 7 | freerdp | Fixed | RHSA-2020:4031 | 29.09.2020 |
| Red Hat Enterprise Linux 8 | freerdp | Fixed | RHSA-2020:4647 | 04.11.2020 |
| Red Hat Enterprise Linux 8 | vinagre | Fixed | RHSA-2020:4647 | 04.11.2020 |
Показывать по
10
Дополнительная информация
Статус:
Low
Дефект:
CWE-20->CWE-125
https://bugzilla.redhat.com/show_bug.cgi?id=1844171freerdp: out-of-bounds read in ntlm_read_AuthenticateMessage
EPSS
Процентиль: 41%
0.0019
Низкий
5.4 Medium
CVSS3
Связанные уязвимости
CVSS3: 3.1
ubuntu
больше 5 лет назад
In FreeRDP less than or equal to 2.0.0, there is an out-of-bound read in ntlm_read_AuthenticateMessage. This has been fixed in 2.1.0.
CVSS3: 3.1
nvd
больше 5 лет назад
In FreeRDP less than or equal to 2.0.0, there is an out-of-bound read in ntlm_read_AuthenticateMessage. This has been fixed in 2.1.0.
CVSS3: 3.1
debian
больше 5 лет назад
In FreeRDP less than or equal to 2.0.0, there is an out-of-bound read ...
rocky
около 5 лет назад
Moderate: freerdp and vinagre security, bug fix, and enhancement update
oracle-oval
около 5 лет назад
ELSA-2020-4647: freerdp and vinagre security, bug fix, and enhancement update (MODERATE)
EPSS
Процентиль: 41%
0.0019
Низкий
5.4 Medium
CVSS3