Your submission was sent successfully! Close

Thank you for contacting us. A member of our team will be in touch shortly. Close

You have successfully unsubscribed! Close

Thank you for signing up for our newsletter!
In these regular emails you will find the latest updates about Ubuntu and upcoming events where you can meet our team.Close

Search CVE reports


Toggle filters

21 – 30 of 93 results


CVE-2023-40181

Medium priority
Fixed

FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. Affected versions are subject to an Integer-Underflow leading to Out-Of-Bound Read in the `zgfx_decompress_segment`...

1 affected packages

freerdp2

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
freerdp2 Fixed Fixed Fixed Ignored
Show less packages

CVE-2023-39356

Medium priority
Fixed

FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. In affected versions a missing offset validation may lead to an Out Of Bound Read in the function `gdi_multi_opaque_rect`....

1 affected packages

freerdp2

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
freerdp2 Fixed Fixed Fixed Ignored
Show less packages

CVE-2023-39353

Medium priority
Fixed

FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. Affected versions are subject to a missing offset validation leading to Out Of Bound Read. In the `libfreerdp/codec/rfx.c`...

1 affected packages

freerdp2

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
freerdp2 Fixed Fixed Fixed Ignored
Show less packages

CVE-2023-39352

Medium priority
Fixed

FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. Affected versions are subject to an invalid offset validation leading to Out Of Bound Write. This can be triggered when the...

1 affected packages

freerdp2

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
freerdp2 Fixed Fixed Fixed Ignored
Show less packages

CVE-2023-39355

Medium priority
Not affected

FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. Versions of FreeRDP on the 3.x release branch before beta3 are subject to a Use-After-Free in...

1 affected packages

freerdp2

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
freerdp2 Not affected Not affected Not affected Ignored
Show less packages

CVE-2023-39354

Medium priority
Fixed

FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. Affected versions are subject to an Out-Of-Bounds Read in the `nsc_rle_decompress_data` function. The Out-Of-Bounds Read...

1 affected packages

freerdp2

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
freerdp2 Fixed Fixed Fixed Ignored
Show less packages

CVE-2023-39351

Medium priority
Fixed

FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. Affected versions of FreeRDP are subject to a Null Pointer Dereference leading a crash in the RemoteFX (rfx) handling....

1 affected packages

freerdp2

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
freerdp2 Fixed Fixed Fixed Ignored
Show less packages

CVE-2023-39350

Low priority
Fixed

FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. This issue affects Clients only. Integer underflow leading to DOS (e.g. abort due to `WINPR_ASSERT` with default compilation...

1 affected packages

freerdp2

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
freerdp2 Fixed Fixed Fixed Ignored
Show less packages

CVE-2023-40589

Medium priority
Fixed

FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. In affected versions there is a Global-Buffer-Overflow in the ncrush_decompress function. Feeding crafted input into this...

1 affected packages

freerdp2

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
freerdp2 Fixed Fixed Fixed Ignored
Show less packages

CVE-2022-39347

Medium priority

Some fixes available 8 of 10

FreeRDP is a free remote desktop protocol library and clients. Affected versions of FreeRDP are missing path canonicalization and base path check for `drive` channel. A malicious server can trick a FreeRDP based client to read...

2 affected packages

freerdp, freerdp2

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
freerdp Not in release Not in release Vulnerable Vulnerable
freerdp2 Fixed Fixed Fixed Fixed Ignored
Show less packages