Search CVE reports
101 – 110 of 157 results
Some fixes available 2 of 3
In FreeRDP before version 2.1.2, there is an integer casting vulnerability in update_recv_secondary_order. All clients with +glyph-cache /relax-order-checks are affected. This is fixed in version 2.1.2.
2 affected packages
freerdp, freerdp2
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| freerdp | — | — | Not in release | Not affected |
| freerdp2 | — | — | Fixed | Fixed |
Some fixes available 2 of 3
In FreeRDP before version 2.1.2, there is a use-after-free in gdi_SelectObject. All FreeRDP clients using compatibility mode with /relax-order-checks are affected. This is fixed in version 2.1.2.
2 affected packages
freerdp, freerdp2
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| freerdp | — | — | Not in release | Not affected |
| freerdp2 | — | — | Fixed | Fixed |
Some fixes available 2 of 5
In FreeRDP before version 2.1.2, there is an out of bounds read in TrioParse. Logging might bypass string length checks due to an integer overflow. This is fixed in version 2.1.2.
2 affected packages
freerdp, freerdp2
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| freerdp | Not in release | Not in release | Not in release | Vulnerable |
| freerdp2 | Not affected | Not affected | Fixed | Fixed |
Some fixes available 2 of 3
In FreeRDP before version 2.1.2, there is an out of bounds read in license_read_new_or_upgrade_license_packet. A manipulated license packet can lead to out of bound reads to an internal buffer. This is fixed in version 2.1.2.
2 affected packages
freerdp, freerdp2
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| freerdp | — | — | Not in release | Not affected |
| freerdp2 | — | — | Fixed | Fixed |
Some fixes available 2 of 5
In FreeRDP before version 2.1.2, there is an out-of-bound read in glyph_cache_put. This affects all FreeRDP clients with `+glyph-cache` option enabled This is fixed in version 2.1.2.
2 affected packages
freerdp2, freerdp
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| freerdp2 | Not affected | Not affected | Fixed | Fixed |
| freerdp | Not in release | Not in release | Not in release | Vulnerable |
Some fixes available 2 of 5
In FreeRDP before version 2.1.2, an out of bounds read occurs resulting in accessing a memory location that is outside of the boundaries of the static array PRIMARY_DRAWING_ORDER_FIELD_BYTES. This is fixed in version 2.1.2.
2 affected packages
freerdp, freerdp2
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| freerdp | Not in release | Not in release | Not in release | Vulnerable |
| freerdp2 | Not affected | Not affected | Fixed | Fixed |
Some fixes available 2 of 5
In FreeRDP before version 2.1.2, there is a global OOB read in update_read_cache_bitmap_v3_order. As a workaround, one can disable bitmap cache with -bitmap-cache (default). This is fixed in version 2.1.2.
2 affected packages
freerdp, freerdp2
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| freerdp | Not in release | Not in release | Not in release | Vulnerable |
| freerdp2 | Not affected | Not affected | Fixed | Fixed |
Some fixes available 2 of 5
In FreeRDP before version 2.1.2, an out of bound reads occurs resulting in accessing a memory location that is outside of the boundaries of the static array PRIMARY_DRAWING_ORDER_FIELD_BYTES. This is fixed in version 2.1.2.
2 affected packages
freerdp, freerdp2
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| freerdp | Not in release | Not in release | Not in release | Vulnerable |
| freerdp2 | Not affected | Not affected | Fixed | Fixed |
Some fixes available 3 of 5
In FreeRDP before 2.1.0, there is an out-of-bound read in irp functions (parallel_process_irp_create, serial_process_irp_create, drive_process_irp_write, printer_process_irp_write, rdpei_recv_pdu, serial_process_irp_write). This...
2 affected packages
freerdp, freerdp2
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| freerdp | Not in release | Not in release | Not in release | Vulnerable |
| freerdp2 | Not affected | Not affected | Fixed | Fixed |
Some fixes available 3 of 5
In FreeRDP less than or equal to 2.0.0, there is an out-of-bound read in ntlm_read_NegotiateMessage. This has been fixed in 2.1.0.
2 affected packages
freerdp, freerdp2
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| freerdp | Not in release | Not in release | Not in release | Vulnerable |
| freerdp2 | Not affected | Not affected | Fixed | Fixed |