Описание
FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients that use a version of FreeRDP prior to 3.5.0 or 2.11.6 are vulnerable to out-of-bounds read. Versions 3.5.0 and 2.11.6 patch the issue. As a workaround, deactivate /gfx (on by default, set /bpp or /rfx options instead.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| esm-apps/bionic | needs-triage | |
| esm-infra/focal | DNE | |
| esm-infra/xenial | needs-triage | |
| focal | DNE | |
| jammy | DNE | |
| mantic | DNE | |
| noble | DNE | |
| oracular | DNE | |
| plucky | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 2.11.7+dfsg1-4 |
| esm-apps/noble | released | 2.11.5+dfsg1-1ubuntu0.1~esm1 |
| esm-infra/bionic | needs-triage | |
| esm-infra/focal | not-affected | 2.6.1+dfsg1-0ubuntu0.20.04.1 |
| focal | released | 2.6.1+dfsg1-0ubuntu0.20.04.1 |
| jammy | released | 2.6.1+dfsg1-3ubuntu2.6 |
| mantic | released | 2.10.0+dfsg1-1.1ubuntu1.2 |
| noble | needed | |
| oracular | needed | |
| plucky | not-affected | 2.11.7+dfsg1-4 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 3.5.0+dfsg1-0ubuntu1 |
| esm-infra/focal | DNE | |
| focal | DNE | |
| jammy | DNE | |
| mantic | DNE | |
| noble | released | 3.5.0+dfsg1-0ubuntu1 |
| oracular | released | 3.5.0+dfsg1-0ubuntu1 |
| plucky | released | 3.5.0+dfsg1-0ubuntu1 |
| upstream | released | 3.5.0 |
Показывать по
Ссылки на источники
9.8 Critical
CVSS3
Связанные уязвимости
FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients that use a version of FreeRDP prior to 3.5.0 or 2.11.6 are vulnerable to out-of-bounds read. Versions 3.5.0 and 2.11.6 patch the issue. As a workaround, deactivate `/gfx` (on by default, set `/bpp` or `/rfx` options instead.
FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients that use a version of FreeRDP prior to 3.5.0 or 2.11.6 are vulnerable to out-of-bounds read. Versions 3.5.0 and 2.11.6 patch the issue. As a workaround, deactivate `/gfx` (on by default, set `/bpp` or `/rfx` options instead.
FreeRDP is a free implementation of the Remote Desktop Protocol. FreeR ...
Уязвимость функции zgfx_decompress_segment() RDP-клиента FreeRDP, позволяющая нарушителю раскрыть защищаемую информацию
9.8 Critical
CVSS3