Описание
Security update for freerdp
This update for freerdp fixes the following issues:
- Fixed two input validation issues (bsc#1191895):
- CVE-2021-41159: Fixed an improper validation of client input for gateway connections.
- CVE-2021-41160: Fixed improper region checks that could lead to memory corruption.
Список пакетов
SUSE Linux Enterprise Module for Package Hub 15 SP4
SUSE Linux Enterprise Workstation Extension 15 SP4
openSUSE Leap 15.4
Ссылки
- Link for SUSE-SU-2022:2993-1
- E-Mail link for SUSE-SU-2022:2993-1
- SUSE Security Ratings
- SUSE Bug 1191895
- SUSE CVE CVE-2021-41159 page
- SUSE CVE CVE-2021-41160 page
Описание
FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. All FreeRDP clients prior to version 2.4.1 using gateway connections (`/gt:rpc`) fail to validate input data. A malicious gateway might allow client memory to be written out of bounds. This issue has been resolved in version 2.4.1. If you are unable to update then use `/gt:http` rather than /gt:rdp connections if possible or use a direct connection without a gateway.
Затронутые продукты
Ссылки
- CVE-2021-41159
- SUSE Bug 1191895
Описание
FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. In affected versions a malicious server might trigger out of bound writes in a connected client. Connections using GDI or SurfaceCommands to send graphics updates to the client might send `0` width/height or out of bound rectangles to trigger out of bound writes. With `0` width or heigth the memory allocation will be `0` but the missing bounds checks allow writing to the pointer at this (not allocated) region. This issue has been patched in FreeRDP 2.4.1.
Затронутые продукты
Ссылки
- CVE-2021-41160
- SUSE Bug 1191895