Latest freerdp freerdp Vulnerabilities

CVE-2024-22211
FreeRDP integer Overflow leading to Heap Overflow
FreeRDP FreeRDP<2.11.5
FreeRDP FreeRDP>=3.0.0<3.2.0
ubuntu/freerdp2<2.11.5
ubuntu/freerdp3<3.2.0
debian/freerdp2<=2.0.0~git20190204.1.2693389a+dfsg1-1+deb10u2<=2.3.0+dfsg1-2+deb10u4<=2.3.0+dfsg1-2+deb11u1<=2.10.0+dfsg1-1<=2.11.2+dfsg1-1
CVE-2023-40574
Out-Of-Bounds Write in FreeRDP
=3.0.0-beta1
=3.0.0-beta2
FreeRDP FreeRDP=3.0.0-beta1
FreeRDP FreeRDP=3.0.0-beta2
CVE-2023-40576
Out-Of-Bounds Read in FreeRDP
=3.0.0-beta1
=3.0.0-beta2
FreeRDP FreeRDP=3.0.0-beta1
FreeRDP FreeRDP=3.0.0-beta2
CVE-2023-40575
Out-Of-Bounds Read in FreeRDP
=3.0.0-beta1
=3.0.0-beta2
FreeRDP FreeRDP=3.0.0-beta1
FreeRDP FreeRDP=3.0.0-beta2
CVE-2023-40187
Use-After-Free in FreeRDP
=3.0.0-beta1
=3.0.0-beta2
FreeRDP FreeRDP=3.0.0-beta1
FreeRDP FreeRDP=3.0.0-beta2
CVE-2023-39355
FreeRDP Use-After-Free in RDPGFX_CMDID_RESETGRAPHICS
=3.0.0-beta1
=3.0.0-beta2
=10.0
FreeRDP FreeRDP=3.0.0-beta1
FreeRDP FreeRDP=3.0.0-beta2
Debian Debian Linux=10.0
CVE-2023-40181
Integer-Underflow leading to Out-Of-Bound Read in FreeRDP
FreeRDP FreeRDP<2.11.0
FreeRDP FreeRDP=3.0.0-beta1
FreeRDP FreeRDP=3.0.0-beta2
Debian Debian Linux=10.0
Fedoraproject Fedora=37
Fedoraproject Fedora=38
and 8 more
CVE-2023-40188
Out-Of-Bounds Read in FreeRDP
FreeRDP FreeRDP<2.11.0
FreeRDP FreeRDP=3.0.0-beta1
FreeRDP FreeRDP=3.0.0-beta2
Debian Debian Linux=10.0
Fedoraproject Fedora=37
Fedoraproject Fedora=38
and 8 more
CVE-2023-39353
Missing offset validation leading to Out Of Bound Read in FreeRDP
FreeRDP FreeRDP<2.11.0
FreeRDP FreeRDP=3.0.0-beta1
FreeRDP FreeRDP=3.0.0-beta2
Debian Debian Linux=10.0
Fedoraproject Fedora=37
Fedoraproject Fedora=38
and 8 more
CVE-2023-39351
FreeRDP Null Pointer Dereference leading denial of service
FreeRDP FreeRDP<2.11.0
FreeRDP FreeRDP=3.0.0-beta1
FreeRDP FreeRDP=3.0.0-beta2
Debian Debian Linux=10.0
Fedoraproject Fedora=37
Fedoraproject Fedora=38
and 8 more
CVE-2023-39350
Incorrect offset calculation leading to denial of service in FreeRDP
FreeRDP FreeRDP<2.11.0
FreeRDP FreeRDP=3.0.0-beta1
FreeRDP FreeRDP=3.0.0-beta2
Debian Debian Linux=10.0
Fedoraproject Fedora=37
Fedoraproject Fedora=38
and 8 more
CVE-2023-39352
Invalid offset validation leading to Out Of Bound Write in FreeRDP
FreeRDP FreeRDP<2.11.0
FreeRDP FreeRDP=3.0.0-beta1
FreeRDP FreeRDP=3.0.0-beta2
Debian Debian Linux=10.0
Fedoraproject Fedora=37
Fedoraproject Fedora=38
and 8 more
CVE-2023-39356
Missing offset validation leading to Out-of-Bounds Read in FreeRDP
FreeRDP FreeRDP<2.11.0
FreeRDP FreeRDP=3.0.0-beta1
FreeRDP FreeRDP=3.0.0-beta2
Debian Debian Linux=10.0
Fedoraproject Fedora=37
Fedoraproject Fedora=38
and 8 more
CVE-2023-40186
IntegerOverflow leading to Out-Of-Bound Write Vulnerability in FreeRDP
FreeRDP FreeRDP<2.11.0
FreeRDP FreeRDP=3.0.0-beta1
FreeRDP FreeRDP=3.0.0-beta2
Debian Debian Linux=10.0
Fedoraproject Fedora=37
Fedoraproject Fedora=38
and 8 more
CVE-2023-39354
FreeRDP Out-Of-Bounds Read in nsc_rle_decompress_data
FreeRDP FreeRDP<2.11.0
FreeRDP FreeRDP=3.0.0-beta1
FreeRDP FreeRDP=3.0.0-beta2
Debian Debian Linux=10.0
Fedoraproject Fedora=37
Fedoraproject Fedora=38
and 8 more
CVE-2023-40567
Out-Of-Bounds Write in FreeRDP
FreeRDP FreeRDP<2.11.0
FreeRDP FreeRDP=3.0.0-beta1
FreeRDP FreeRDP=3.0.0-beta2
Debian Debian Linux=10.0
Fedoraproject Fedora=37
Fedoraproject Fedora=38
and 8 more
CVE-2023-40569
Out-Of-Bounds Write in FreeRDP
FreeRDP FreeRDP<2.11.0
FreeRDP FreeRDP=3.0.0-beta1
FreeRDP FreeRDP=3.0.0-beta2
Debian Debian Linux=10.0
Fedoraproject Fedora=37
Fedoraproject Fedora=38
and 8 more
CVE-2023-40589
FreeRDP Global-Buffer-Overflow in ncrush_decompress
FreeRDP FreeRDP<2.11.0
FreeRDP FreeRDP=3.0.0-beta1
FreeRDP FreeRDP=3.0.0-beta2
Fedoraproject Fedora=37
Fedoraproject Fedora=38
Fedoraproject Fedora=39
and 8 more
CVE-2022-39316
Out of bound read in FreeRDP
FreeRDP FreeRDP<2.9.0
Fedoraproject Fedora=36
Fedoraproject Fedora=37
CVE-2022-39317
Out of bounds read in zgfx decoder in FreeRDP
FreeRDP FreeRDP<2.9.0
Fedoraproject Fedora=36
Fedoraproject Fedora=37
CVE-2022-39318
Division by zero in urbdrc channel in FreeRDP
<2.9.0
=36
=37
FreeRDP FreeRDP<2.9.0
Fedoraproject Fedora=36
Fedoraproject Fedora=37
CVE-2022-41877
Missing input length validation in `drive` channel in FreeRDP
FreeRDP FreeRDP<2.9.0
Fedoraproject Fedora=36
Fedoraproject Fedora=37
ubuntu/freerdp2<2.9.0
ubuntu/freerdp2<2.2.0+dfsg1-0ubuntu0.18.04.4+
ubuntu/freerdp2<2.2.0+dfsg1-0ubuntu0.20.04.6
and 2 more
CVE-2022-39347
Missing path sanitation with `drive` channel in FreeRDP
FreeRDP FreeRDP<2.9.0
Fedoraproject Fedora=36
Fedoraproject Fedora=37
CVE-2022-39320
Heap buffer overflow in urbdrc channel
FreeRDP FreeRDP<2.9.0
Fedoraproject Fedora=36
Fedoraproject Fedora=37
CVE-2022-39319
Missing length validation in urbdrc channel in FreeRDP
<2.9.0
=36
=37
FreeRDP FreeRDP<2.9.0
Fedoraproject Fedora=36
Fedoraproject Fedora=37
CVE-2022-39282
RDP client: Read of uninitialized memory with parallel port redirection
FreeRDP FreeRDP<2.8.1
Fedoraproject Fedora=35
Fedoraproject Fedora=36
Fedoraproject Fedora=37
CVE-2022-24882
FreeRDP is a free implementation of the Remote Desktop Protocol (RDP). In versions prior to 2.7.0, NT LAN Manager (NTLM) authentication does not properly abort when someone provides and empty password...
FreeRDP FreeRDP<2.7.0
Fedoraproject Extra Packages For Enterprise Linux=8.0
Fedoraproject Fedora=34
Fedoraproject Fedora=35
Fedoraproject Fedora=36
CVE-2022-24883
FreeRDP Server authentication might allow invalid credentials to pass
FreeRDP FreeRDP<2.7.0
Fedoraproject Fedora=34
Fedoraproject Fedora=35
Fedoraproject Fedora=36
CVE-2021-41159
FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. All FreeRDP clients prior to version 2.4.1 using gateway connections (`/gt:rpc`) fail to valid...
FreeRDP FreeRDP<2.4.1
Fedoraproject Fedora=35
CVE-2021-37594
In FreeRDP before 2.4.0 on Windows, wf_cliprdr_server_file_contents_request in client/Windows/wf_cliprdr.c has missing input checks for a FILECONTENTS_SIZE File Contents Request PDU.
FreeRDP FreeRDP<2.4.0
Microsoft Windows
CVE-2020-15103
In FreeRDP less than or equal to 2.1.2, an integer overflow exists due to missing input sanitation in rdpegfx channel. All FreeRDP clients are affected. The input rectangles from the server are not ch...
FreeRDP FreeRDP<=2.1.2
Fedoraproject Fedora=31
Fedoraproject Fedora=32
openSUSE Leap=15.1
Canonical Ubuntu Linux=18.04
Canonical Ubuntu Linux=20.04
and 4 more
CVE-2020-4031
In FreeRDP before version 2.1.2, there is a use-after-free in gdi_SelectObject. All FreeRDP clients using compatibility mode with /relax-order-checks are affected. This is fixed in version 2.1.2.
FreeRDP FreeRDP<2.1.2
Fedoraproject Fedora=31
Fedoraproject Fedora=32
openSUSE Leap=15.1
Canonical Ubuntu Linux=18.04
Canonical Ubuntu Linux=20.04
and 4 more
CVE-2020-4033
In FreeRDP before version 2.1.2, there is an out of bounds read in RLEDECOMPRESS. All FreeRDP based clients with sessions with color depth < 32 are affected. This is fixed in version 2.1.2.
FreeRDP FreeRDP<2.1.2
Fedoraproject Fedora=31
Fedoraproject Fedora=32
openSUSE Leap=15.1
Canonical Ubuntu Linux=18.04
Canonical Ubuntu Linux=20.04
and 4 more
CVE-2020-11097
In FreeRDP before version 2.1.2, an out of bounds read occurs resulting in accessing a memory location that is outside of the boundaries of the static array PRIMARY_DRAWING_ORDER_FIELD_BYTES. This is ...
FreeRDP FreeRDP<2.1.2
Fedoraproject Fedora=31
Fedoraproject Fedora=32
openSUSE Leap=15.1
Canonical Ubuntu Linux=18.04
Canonical Ubuntu Linux=20.04
and 4 more
CVE-2020-11095
In FreeRDP before version 2.1.2, an out of bound reads occurs resulting in accessing a memory location that is outside of the boundaries of the static array PRIMARY_DRAWING_ORDER_FIELD_BYTES. This is ...
FreeRDP FreeRDP<2.1.2
Fedoraproject Fedora=31
Fedoraproject Fedora=32
openSUSE Leap=15.1
Canonical Ubuntu Linux=18.04
Canonical Ubuntu Linux=20.04
and 4 more
CVE-2020-11096
In FreeRDP before version 2.1.2, there is a global OOB read in update_read_cache_bitmap_v3_order. As a workaround, one can disable bitmap cache with -bitmap-cache (default). This is fixed in version 2...
FreeRDP FreeRDP<2.1.2
Fedoraproject Fedora=31
Fedoraproject Fedora=32
openSUSE Leap=15.1
Canonical Ubuntu Linux=18.04
Canonical Ubuntu Linux=20.04
and 4 more
CVE-2020-11099
In FreeRDP before version 2.1.2, there is an out of bounds read in license_read_new_or_upgrade_license_packet. A manipulated license packet can lead to out of bound reads to an internal buffer. This i...
FreeRDP FreeRDP<2.1.2
openSUSE Leap=15.1
Fedoraproject Fedora=31
Fedoraproject Fedora=32
Canonical Ubuntu Linux=18.04
Canonical Ubuntu Linux=20.04
and 4 more
CVE-2020-4032
In FreeRDP before version 2.1.2, there is an integer casting vulnerability in update_recv_secondary_order. All clients with +glyph-cache /relax-order-checks are affected. This is fixed in version 2.1....
FreeRDP FreeRDP<2.1.2
Fedoraproject Fedora=31
Fedoraproject Fedora=32
openSUSE Leap=15.1
Canonical Ubuntu Linux=18.04
Canonical Ubuntu Linux=20.04
and 4 more
CVE-2020-11098
In FreeRDP before version 2.1.2, there is an out-of-bound read in glyph_cache_put. This affects all FreeRDP clients with `+glyph-cache` option enabled This is fixed in version 2.1.2.
FreeRDP FreeRDP<2.1.2
Fedoraproject Fedora=31
Fedoraproject Fedora=32
openSUSE Leap=15.1
Canonical Ubuntu Linux=18.04
Canonical Ubuntu Linux=20.04
and 4 more
CVE-2020-4030
In FreeRDP before version 2.1.2, there is an out of bounds read in TrioParse. Logging might bypass string length checks due to an integer overflow. This is fixed in version 2.1.2.
FreeRDP FreeRDP<2.1.2
Fedoraproject Fedora=31
Fedoraproject Fedora=32
openSUSE Leap=15.1
Canonical Ubuntu Linux=18.04
Canonical Ubuntu Linux=20.04
and 4 more
CVE-2020-11089
In FreeRDP before 2.1.0, there is an out-of-bound read in irp functions (parallel_process_irp_create, serial_process_irp_create, drive_process_irp_write, printer_process_irp_write, rdpei_recv_pdu, ser...
FreeRDP FreeRDP<2.1.0
openSUSE Leap=15.1
Debian Debian Linux=10.0
CVE-2020-11085
In FreeRDP before 2.1.0, there is an out-of-bounds read in cliprdr_read_format_list. Clipboard format data read (by client or server) might read data out-of-bounds. This has been fixed in 2.1.0.
FreeRDP FreeRDP<2.1.0
openSUSE Leap=15.1
Debian Debian Linux=10.0
CVE-2020-11043
In FreeRDP less than or equal to 2.0.0, there is an out-of-bounds read in rfx_process_message_tileset. Invalid data fed to RFX decoder results in garbage on screen (as colors). This has been patched i...
FreeRDP FreeRDP<2.1.0
openSUSE Leap=15.1
Debian Debian Linux=10.0
CVE-2020-11088
In FreeRDP less than or equal to 2.0.0, there is an out-of-bound read in ntlm_read_NegotiateMessage. This has been fixed in 2.1.0.
FreeRDP FreeRDP<2.1.0
openSUSE Leap=15.1
Debian Debian Linux=10.0
CVE-2020-11086
In FreeRDP less than or equal to 2.0.0, there is an out-of-bound read in ntlm_read_ntlm_v2_client_challenge that reads up to 28 bytes out-of-bound to an internal structure. This has been fixed in 2.1....
FreeRDP FreeRDP<2.1.0
openSUSE Leap=15.1
Debian Debian Linux=10.0
CVE-2020-11087
In FreeRDP less than or equal to 2.0.0, there is an out-of-bound read in ntlm_read_AuthenticateMessage. This has been fixed in 2.1.0.
FreeRDP FreeRDP<2.1.0
openSUSE Leap=15.1
Debian Debian Linux=10.0
CVE-2020-11040
In FreeRDP less than or equal to 2.0.0, there is an out-of-bound data read from memory in clear_decompress_subcode_rlex, visualized on screen as color. This has been patched in 2.1.0.
FreeRDP FreeRDP<2.1.0
openSUSE Leap=15.1
Debian Debian Linux=10.0
CVE-2020-11019
In FreeRDP less than or equal to 2.0.0, when running with logger set to "WLOG_TRACE", a possible crash of application could occur due to a read of an invalid array index. Data could be printed as stri...
FreeRDP FreeRDP<2.1.0
openSUSE Leap=15.1
Debian Debian Linux=10.0
CVE-2020-11041
In FreeRDP less than or equal to 2.0.0, an outside controlled array index is used unchecked for data used as configuration for sound backend (alsa, oss, pulse, ...). The most likely outcome is a crash...
FreeRDP FreeRDP<2.1.0
openSUSE Leap=15.1
Debian Debian Linux=10.0
CVE-2020-11038
In FreeRDP less than or equal to 2.0.0, an Integer Overflow to Buffer Overflow exists. When using /video redirection, a manipulated server can instruct the client to allocate a buffer with a smaller s...
FreeRDP FreeRDP<2.1.0
openSUSE Leap=15.1
Debian Debian Linux=10.0

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203