What is the vulnerability ID for this issue?

The vulnerability ID for this issue is CVE-2020-4031.

What is the severity of CVE-2020-4031?

The severity of CVE-2020-4031 is high with a CVSS score of 7.5.

Which software versions are affected by CVE-2020-4031?

All FreeRDP clients using compatibility mode with /relax-order-checks prior to version 2.1.2 are affected by CVE-2020-4031.

How can I fix CVE-2020-4031?

To fix CVE-2020-4031, update your FreeRDP client to version 2.1.2 or higher.

Where can I find more information about CVE-2020-4031?

You can find more information about CVE-2020-4031 at the following references: [MITRE CVE-2020-4031](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-4031), [GitHub Security Advisory](https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-gwcq-hpq2-m74g), [FreeRDP Release Announcement](http://www.freerdp.com/2020/06/22/2_1_2-released).

Vulnerability/
CVE-2020-4031

high

7.5

CWE

416

22/6/2020

7/11/2023

CVE-2020-4031: Use After Free

First published: Mon Jun 22 2020(Updated: )

In FreeRDP before version 2.1.2, there is a use-after-free in gdi_SelectObject. All FreeRDP clients using compatibility mode with /relax-order-checks are affected. This is fixed in version 2.1.2.

Credit: security-advisories@github.com security-advisories@github.com security-advisories@github.com

Affected Software	Affected Version	How to fix
FreeRDP FreeRDP	<2.1.2
Fedoraproject Fedora	=31
Fedoraproject Fedora	=32
openSUSE Leap	=15.1
Canonical Ubuntu Linux	=18.04
Canonical Ubuntu Linux	=20.04
Debian Debian Linux	=10.0
ubuntu/freerdp2	<2.2.0+dfsg1-0ubuntu0.18.04.1	2.2.0+dfsg1-0ubuntu0.18.04.1
ubuntu/freerdp2	<2.2.0+dfsg1-0ubuntu0.20.04.1	2.2.0+dfsg1-0ubuntu0.20.04.1
debian/freerdp2	<=2.0.0~git20190204.1.2693389a+dfsg1-1+deb10u2	2.3.0+dfsg1-2+deb10u4 2.3.0+dfsg1-2+deb11u1 2.10.0+dfsg1-1 2.11.2+dfsg1-1 2.11.5+dfsg1-1

Remedy

https://github.com/FreeRDP/FreeRDP/commit/6d86e20e1e7caaab4f0c7f89e36d32914dbccc52

Never miss a vulnerability like this again

Reference Links

Parent vulnerabilities

(Appears in the following advisories)

USN-4481-1

Frequently Asked Questions

What is the vulnerability ID for this issue?
The vulnerability ID for this issue is CVE-2020-4031.
What is the severity of CVE-2020-4031?
The severity of CVE-2020-4031 is high with a CVSS score of 7.5.
Which software versions are affected by CVE-2020-4031?
All FreeRDP clients using compatibility mode with /relax-order-checks prior to version 2.1.2 are affected by CVE-2020-4031.
How can I fix CVE-2020-4031?
To fix CVE-2020-4031, update your FreeRDP client to version 2.1.2 or higher.
Where can I find more information about CVE-2020-4031?
You can find more information about CVE-2020-4031 at the following references: [MITRE CVE-2020-4031](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-4031), [GitHub Security Advisory](https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-gwcq-hpq2-m74g), [FreeRDP Release Announcement](http://www.freerdp.com/2020/06/22/2_1_2-released).

collector/nvd-api
collector/nvd-index
agent/type
agent/first-publish-date
agent/last-modified-date
collector/launchpad-cve
source/Launchpad
collector/nvd-cve
source/NVD
agent/software-canonical-lookup
agent/remedy
agent/references
agent/author
agent/severity
agent/description
agent/tags
agent/event
agent/weakness
collector/security-tracker-debian
source/Debian
agent/softwarecombine
collector/usn-cve
source/Ubuntu
vendor/freerdp
canonical/freerdp freerdp
vendor/fedoraproject
canonical/fedoraproject fedora
version/fedoraproject fedora/31
version/fedoraproject fedora/32
vendor/opensuse
canonical/opensuse leap
version/opensuse leap/15.1
vendor/canonical
canonical/canonical ubuntu linux
version/canonical ubuntu linux/18.04
version/canonical ubuntu linux/20.04
vendor/debian
canonical/debian debian linux
version/debian debian linux/10.0
package-manager/debian
package-manager/ubuntu