RLSA-2024:9092

Опубликовано: 17 мар. 2025

Источник: rocky

Оценка: Moderate

Описание

Moderate: freerdp security update

FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. The xfreerdp client can connect to RDP servers such as Microsoft Windows machines, xrdp, and VirtualBox.

Security Fix(es):

freerdp: Integer Overflow leading to Heap Overflow in freerdp_bitmap_planar_context_reset (CVE-2024-22211)
freerdp: out-of-bounds read in ncrush_decompress (CVE-2024-32459)
freerdp: OutOfBound Read in interleaved_decompress (CVE-2024-32460)
freerdp: Integer overflow & OutOfBound Write in clear_decompress_residual_data (CVE-2024-32039)
freerdp: integer underflow in nsc_rle_decode (CVE-2024-32040)
freerdp: OutOfBound Read in zgfx_decompress_segment (CVE-2024-32041)
freerdp: OutOfBound Read in planar_skip_plane_rle (CVE-2024-32458)
freerdp: out-of-bounds read (CVE-2024-32662)
FreeRDP: ExtractRunLengthRegular* out of bound read (CVE-2024-32658)
freerdp: zgfx_decompress out of memory (CVE-2024-32660)
freerdp: freerdp_image_copy out of bound read (CVE-2024-32659)
freerdp: rdp_write_logon_info_v1 NULL access (CVE-2024-32661)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Additional Changes:

For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section.

Затронутые продукты

Rocky Linux 9

Наименование	Архитектура	Релиз	RPM
freerdp	x86_64	1.el9	freerdp-2.11.7-1.el9.x86_64.rpm
freerdp-libs	i686	1.el9	freerdp-libs-2.11.7-1.el9.i686.rpm
freerdp-libs	x86_64	1.el9	freerdp-libs-2.11.7-1.el9.x86_64.rpm
libwinpr	i686	1.el9	libwinpr-2.11.7-1.el9.i686.rpm
libwinpr	x86_64	1.el9	libwinpr-2.11.7-1.el9.x86_64.rpm

Показывать по

Связанные CVE

Ссылки на источники

Исправления

https://bugzilla.redhat.com/show_bug.cgi?id=2259483
Red Hat - 2259483
https://bugzilla.redhat.com/show_bug.cgi?id=2276721
Red Hat - 2276721
https://bugzilla.redhat.com/show_bug.cgi?id=2276722
Red Hat - 2276722
https://bugzilla.redhat.com/show_bug.cgi?id=2276723
Red Hat - 2276723
https://bugzilla.redhat.com/show_bug.cgi?id=2276724
Red Hat - 2276724
https://bugzilla.redhat.com/show_bug.cgi?id=2276725
Red Hat - 2276725
https://bugzilla.redhat.com/show_bug.cgi?id=2276726
Red Hat - 2276726
https://bugzilla.redhat.com/show_bug.cgi?id=2276804
Red Hat - 2276804
https://bugzilla.redhat.com/show_bug.cgi?id=2276961
Red Hat - 2276961
https://bugzilla.redhat.com/show_bug.cgi?id=2276968
Red Hat - 2276968
https://bugzilla.redhat.com/show_bug.cgi?id=2276970
Red Hat - 2276970
https://bugzilla.redhat.com/show_bug.cgi?id=2276971
Red Hat - 2276971

Связанные уязвимости

ELSA-2024-9092

oracle-oval

около 1 года назад

ELSA-2024-9092: freerdp security update (MODERATE)

ROS-20241210-01

CVSS3: 9.8

redos

около 1 года назад

Множественные уязвимости freerdp

SUSE-SU-2024:1610-1

suse-cvrf

больше 1 года назад

Security update for freerdp

SUSE-SU-2024:1609-1

suse-cvrf

больше 1 года назад

Security update for freerdp

CVE-2024-22211

CVSS3: 3.7

ubuntu

почти 2 года назад

FreeRDP is a set of free and open source remote desktop protocol library and clients. In affected versions an integer overflow in `freerdp_bitmap_planar_context_reset` leads to heap-buffer overflow. This affects FreeRDP based clients. FreeRDP based server implementations and proxy are not affected. A malicious server could prepare a `RDPGFX_RESET_GRAPHICS_PDU` to allocate too small buffers, possibly triggering later out of bound read/write. Data extraction over network is not possible, the buffers are used to display an image. This issue has been addressed in version 2.11.5 and 3.2.0. Users are advised to upgrade. there are no know workarounds for this vulnerability.

exploitDog