Описание
FreeRDP prior to version 2.0.0-rc4 contains a Heap-Based Buffer Overflow in function zgfx_decompress_segment() that results in a memory corruption and probably even a remote code execution.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | not-affected | code not present |
| cosmic | not-affected | code not present |
| devel | DNE | |
| disco | DNE | |
| esm-apps/bionic | not-affected | code not present |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was not-affected [code not present]] |
| esm-infra/xenial | not-affected | code not present |
| precise/esm | DNE | |
| trusty | not-affected | code not present |
| trusty/esm | DNE | trusty was not-affected [code not present] |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | released | 2.0.0~git20170725.1.1648deb+dfsg1-7ubuntu0.1 |
| cosmic | released | 2.0.0~git20180411.1.7a7b1802+dfsg1-2ubuntu0.1 |
| devel | released | 2.0.0~git20181120.1.e21b72c95+dfsg1-1 |
| disco | released | 2.0.0~git20181120.1.e21b72c95+dfsg1-1 |
| esm-infra-legacy/trusty | DNE | |
| esm-infra/bionic | released | 2.0.0~git20170725.1.1648deb+dfsg1-7ubuntu0.1 |
| precise/esm | DNE | |
| trusty | DNE | |
| trusty/esm | DNE | |
| upstream | released | 2.0.0~git20181120.1.e21b72c95+dfsg1-1 |
Показывать по
7.5 High
CVSS2
9.8 Critical
CVSS3
Связанные уязвимости
FreeRDP prior to version 2.0.0-rc4 contains a Heap-Based Buffer Overflow in function zgfx_decompress_segment() that results in a memory corruption and probably even a remote code execution.
FreeRDP prior to version 2.0.0-rc4 contains a Heap-Based Buffer Overflow in function zgfx_decompress_segment() that results in a memory corruption and probably even a remote code execution.
FreeRDP prior to version 2.0.0-rc4 contains a Heap-Based Buffer Overfl ...
FreeRDP prior to version 2.0.0-rc4 contains a Heap-Based Buffer Overflow in function zgfx_decompress_segment() that results in a memory corruption and probably even a remote code execution.
Уязвимость функции zgfx_decompress_segment() RDP-клиента FreeRDP, позволяющая нарушителю выполнить произвольный код
7.5 High
CVSS2
9.8 Critical
CVSS3