Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2024-32658 (GCVE-0-2024-32658)
Vulnerability from cvelistv5 – Published: 2024-04-23 17:41 – Updated: 2025-11-03 20:37
VLAI?
EPSS
Title
FreeRDP ExtractRunLengthRegular* out of bound read
Summary
FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients prior to version 3.5.1 are vulnerable to out-of-bounds read. Version 3.5.1 contains a patch for the issue. No known workarounds are available.
Severity ?
9.8 (Critical)
CWE
- CWE-125 - Out-of-bounds Read
Assigner
References
{
"containers": {
"adp": [
{
"affected": [
{
"cpes": [
"cpe:2.3:a:freerdp:freerdp:*:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "freerdp",
"vendor": "freerdp",
"versions": [
{
"lessThan": "3.5.1",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
}
],
"metrics": [
{
"other": {
"content": {
"id": "CVE-2024-32658",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "yes"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-07-25T17:56:15.856790Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-07-26T19:34:55.765Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
},
{
"providerMetadata": {
"dateUpdated": "2025-11-03T20:37:24.166Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vpv3-m3m9-4c2v",
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vpv3-m3m9-4c2v"
},
{
"name": "https://github.com/FreeRDP/FreeRDP/commit/1a755d898ddc028cc818d0dd9d49d5acff4c44bf",
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://github.com/FreeRDP/FreeRDP/commit/1a755d898ddc028cc818d0dd9d49d5acff4c44bf"
},
{
"name": "https://oss-fuzz.com/testcase-detail/4852534033317888",
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://oss-fuzz.com/testcase-detail/4852534033317888"
},
{
"name": "https://oss-fuzz.com/testcase-detail/6196819496337408",
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://oss-fuzz.com/testcase-detail/6196819496337408"
},
{
"tags": [
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZKI4UISUXYNBPN4K6TIQKDRTIJ6CDCKJ/"
},
{
"tags": [
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7SIS6NUNLUBOV4CPCSWKDE6T6C2W3WTR/"
},
{
"tags": [
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PX3U6YPZQ7PEJBVKSBUOLWVH7DHROHY5/"
},
{
"tags": [
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5JL476WVJSIE7SBUKVJRVA6A52V2HOLZ/"
},
{
"url": "https://lists.debian.org/debian-lts-announce/2025/02/msg00016.html"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "FreeRDP",
"vendor": "FreeRDP",
"versions": [
{
"status": "affected",
"version": "\u003c 3.5.1"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients prior to version 3.5.1 are vulnerable to out-of-bounds read. Version 3.5.1 contains a patch for the issue. No known workarounds are available."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-125",
"description": "CWE-125: Out-of-bounds Read",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2024-06-10T16:10:00.859Z",
"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"shortName": "GitHub_M"
},
"references": [
{
"name": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vpv3-m3m9-4c2v",
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vpv3-m3m9-4c2v"
},
{
"name": "https://github.com/FreeRDP/FreeRDP/commit/1a755d898ddc028cc818d0dd9d49d5acff4c44bf",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/FreeRDP/FreeRDP/commit/1a755d898ddc028cc818d0dd9d49d5acff4c44bf"
},
{
"name": "https://oss-fuzz.com/testcase-detail/4852534033317888",
"tags": [
"x_refsource_MISC"
],
"url": "https://oss-fuzz.com/testcase-detail/4852534033317888"
},
{
"name": "https://oss-fuzz.com/testcase-detail/6196819496337408",
"tags": [
"x_refsource_MISC"
],
"url": "https://oss-fuzz.com/testcase-detail/6196819496337408"
},
{
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZKI4UISUXYNBPN4K6TIQKDRTIJ6CDCKJ/"
},
{
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7SIS6NUNLUBOV4CPCSWKDE6T6C2W3WTR/"
},
{
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PX3U6YPZQ7PEJBVKSBUOLWVH7DHROHY5/"
},
{
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5JL476WVJSIE7SBUKVJRVA6A52V2HOLZ/"
}
],
"source": {
"advisory": "GHSA-vpv3-m3m9-4c2v",
"discovery": "UNKNOWN"
},
"title": "FreeRDP ExtractRunLengthRegular* out of bound read"
}
},
"cveMetadata": {
"assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"assignerShortName": "GitHub_M",
"cveId": "CVE-2024-32658",
"datePublished": "2024-04-23T17:41:21.212Z",
"dateReserved": "2024-04-16T14:15:26.877Z",
"dateUpdated": "2025-11-03T20:37:24.166Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2",
"vulnerability-lookup:meta": {
"fkie_nvd": {
"descriptions": "[{\"lang\": \"en\", \"value\": \"FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients prior to version 3.5.1 are vulnerable to out-of-bounds read. Version 3.5.1 contains a patch for the issue. No known workarounds are available.\"}, {\"lang\": \"es\", \"value\": \"FreeRDP es una implementaci\\u00f3n gratuita del protocolo de escritorio remoto. Los clientes basados en FreeRDP anteriores a la versi\\u00f3n 3.5.1 son vulnerables a lecturas fuera de los l\\u00edmites. La versi\\u00f3n 3.5.1 contiene un parche para el problema. No hay workarounds disponibles.\"}]",
"id": "CVE-2024-32658",
"lastModified": "2024-11-21T09:15:24.807",
"metrics": "{\"cvssMetricV31\": [{\"source\": \"security-advisories@github.com\", \"type\": \"Secondary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\", \"baseScore\": 9.8, \"baseSeverity\": \"CRITICAL\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 3.9, \"impactScore\": 5.9}]}",
"published": "2024-04-23T18:15:15.000",
"references": "[{\"url\": \"https://github.com/FreeRDP/FreeRDP/commit/1a755d898ddc028cc818d0dd9d49d5acff4c44bf\", \"source\": \"security-advisories@github.com\"}, {\"url\": \"https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vpv3-m3m9-4c2v\", \"source\": \"security-advisories@github.com\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5JL476WVJSIE7SBUKVJRVA6A52V2HOLZ/\", \"source\": \"security-advisories@github.com\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7SIS6NUNLUBOV4CPCSWKDE6T6C2W3WTR/\", \"source\": \"security-advisories@github.com\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PX3U6YPZQ7PEJBVKSBUOLWVH7DHROHY5/\", \"source\": \"security-advisories@github.com\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZKI4UISUXYNBPN4K6TIQKDRTIJ6CDCKJ/\", \"source\": \"security-advisories@github.com\"}, {\"url\": \"https://oss-fuzz.com/testcase-detail/4852534033317888\", \"source\": \"security-advisories@github.com\"}, {\"url\": \"https://oss-fuzz.com/testcase-detail/6196819496337408\", \"source\": \"security-advisories@github.com\"}, {\"url\": \"https://github.com/FreeRDP/FreeRDP/commit/1a755d898ddc028cc818d0dd9d49d5acff4c44bf\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vpv3-m3m9-4c2v\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5JL476WVJSIE7SBUKVJRVA6A52V2HOLZ/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7SIS6NUNLUBOV4CPCSWKDE6T6C2W3WTR/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PX3U6YPZQ7PEJBVKSBUOLWVH7DHROHY5/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZKI4UISUXYNBPN4K6TIQKDRTIJ6CDCKJ/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://oss-fuzz.com/testcase-detail/4852534033317888\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://oss-fuzz.com/testcase-detail/6196819496337408\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
"sourceIdentifier": "security-advisories@github.com",
"vulnStatus": "Awaiting Analysis",
"weaknesses": "[{\"source\": \"security-advisories@github.com\", \"type\": \"Secondary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-125\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2024-32658\",\"sourceIdentifier\":\"security-advisories@github.com\",\"published\":\"2024-04-23T18:15:15.000\",\"lastModified\":\"2025-11-03T21:16:10.507\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients prior to version 3.5.1 are vulnerable to out-of-bounds read. Version 3.5.1 contains a patch for the issue. No known workarounds are available.\"},{\"lang\":\"es\",\"value\":\"FreeRDP es una implementaci\u00f3n gratuita del protocolo de escritorio remoto. Los clientes basados en FreeRDP anteriores a la versi\u00f3n 3.5.1 son vulnerables a lecturas fuera de los l\u00edmites. La versi\u00f3n 3.5.1 contiene un parche para el problema. No hay workarounds disponibles.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":9.8,\"baseSeverity\":\"CRITICAL\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":5.9},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":9.8,\"baseSeverity\":\"CRITICAL\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":5.9}]},\"weaknesses\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-125\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-125\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:freerdp:freerdp:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"2.11.7\",\"matchCriteriaId\":\"5E541F36-8F9A-475F-9501-180852C800A4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:freerdp:freerdp:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"3.0.0\",\"versionEndExcluding\":\"3.5.1\",\"matchCriteriaId\":\"1465A966-298D-4E3D-9011-7FB98B75B2E2\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:38:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CC559B26-5DFC-4B7A-A27C-B77DE755DFF9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:39:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B8EDB836-4E6A-4B71-B9B2-AA3E03E0F646\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:40:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CA277A6C-83EC-4536-9125-97B84C4FAF59\"}]}]}],\"references\":[{\"url\":\"https://github.com/FreeRDP/FreeRDP/commit/1a755d898ddc028cc818d0dd9d49d5acff4c44bf\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Patch\"]},{\"url\":\"https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vpv3-m3m9-4c2v\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5JL476WVJSIE7SBUKVJRVA6A52V2HOLZ/\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7SIS6NUNLUBOV4CPCSWKDE6T6C2W3WTR/\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PX3U6YPZQ7PEJBVKSBUOLWVH7DHROHY5/\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZKI4UISUXYNBPN4K6TIQKDRTIJ6CDCKJ/\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://oss-fuzz.com/testcase-detail/4852534033317888\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Permissions Required\"]},{\"url\":\"https://oss-fuzz.com/testcase-detail/6196819496337408\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Permissions Required\"]},{\"url\":\"https://github.com/FreeRDP/FreeRDP/commit/1a755d898ddc028cc818d0dd9d49d5acff4c44bf\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]},{\"url\":\"https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vpv3-m3m9-4c2v\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2025/02/msg00016.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5JL476WVJSIE7SBUKVJRVA6A52V2HOLZ/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7SIS6NUNLUBOV4CPCSWKDE6T6C2W3WTR/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PX3U6YPZQ7PEJBVKSBUOLWVH7DHROHY5/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZKI4UISUXYNBPN4K6TIQKDRTIJ6CDCKJ/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://oss-fuzz.com/testcase-detail/4852534033317888\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Permissions Required\"]},{\"url\":\"https://oss-fuzz.com/testcase-detail/6196819496337408\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Permissions Required\"]}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vpv3-m3m9-4c2v\", \"name\": \"https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vpv3-m3m9-4c2v\", \"tags\": [\"x_refsource_CONFIRM\", \"x_transferred\"]}, {\"url\": \"https://github.com/FreeRDP/FreeRDP/commit/1a755d898ddc028cc818d0dd9d49d5acff4c44bf\", \"name\": \"https://github.com/FreeRDP/FreeRDP/commit/1a755d898ddc028cc818d0dd9d49d5acff4c44bf\", \"tags\": [\"x_refsource_MISC\", \"x_transferred\"]}, {\"url\": \"https://oss-fuzz.com/testcase-detail/4852534033317888\", \"name\": \"https://oss-fuzz.com/testcase-detail/4852534033317888\", \"tags\": [\"x_refsource_MISC\", \"x_transferred\"]}, {\"url\": \"https://oss-fuzz.com/testcase-detail/6196819496337408\", \"name\": \"https://oss-fuzz.com/testcase-detail/6196819496337408\", \"tags\": [\"x_refsource_MISC\", \"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZKI4UISUXYNBPN4K6TIQKDRTIJ6CDCKJ/\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7SIS6NUNLUBOV4CPCSWKDE6T6C2W3WTR/\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PX3U6YPZQ7PEJBVKSBUOLWVH7DHROHY5/\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5JL476WVJSIE7SBUKVJRVA6A52V2HOLZ/\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2025/02/msg00016.html\"}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2025-11-03T20:37:24.166Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2024-32658\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"yes\"}, {\"Technical Impact\": \"total\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-07-25T17:56:15.856790Z\"}}}], \"affected\": [{\"cpes\": [\"cpe:2.3:a:freerdp:freerdp:*:*:*:*:*:*:*:*\"], \"vendor\": \"freerdp\", \"product\": \"freerdp\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"3.5.1\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-07-25T18:04:45.590Z\"}}], \"cna\": {\"title\": \"FreeRDP ExtractRunLengthRegular* out of bound read\", \"source\": {\"advisory\": \"GHSA-vpv3-m3m9-4c2v\", \"discovery\": \"UNKNOWN\"}, \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 9.8, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"CRITICAL\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\", \"integrityImpact\": \"HIGH\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"HIGH\"}}], \"affected\": [{\"vendor\": \"FreeRDP\", \"product\": \"FreeRDP\", \"versions\": [{\"status\": \"affected\", \"version\": \"\u003c 3.5.1\"}]}], \"references\": [{\"url\": \"https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vpv3-m3m9-4c2v\", \"name\": \"https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vpv3-m3m9-4c2v\", \"tags\": [\"x_refsource_CONFIRM\"]}, {\"url\": \"https://github.com/FreeRDP/FreeRDP/commit/1a755d898ddc028cc818d0dd9d49d5acff4c44bf\", \"name\": \"https://github.com/FreeRDP/FreeRDP/commit/1a755d898ddc028cc818d0dd9d49d5acff4c44bf\", \"tags\": [\"x_refsource_MISC\"]}, {\"url\": \"https://oss-fuzz.com/testcase-detail/4852534033317888\", \"name\": \"https://oss-fuzz.com/testcase-detail/4852534033317888\", \"tags\": [\"x_refsource_MISC\"]}, {\"url\": \"https://oss-fuzz.com/testcase-detail/6196819496337408\", \"name\": \"https://oss-fuzz.com/testcase-detail/6196819496337408\", \"tags\": [\"x_refsource_MISC\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZKI4UISUXYNBPN4K6TIQKDRTIJ6CDCKJ/\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7SIS6NUNLUBOV4CPCSWKDE6T6C2W3WTR/\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PX3U6YPZQ7PEJBVKSBUOLWVH7DHROHY5/\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5JL476WVJSIE7SBUKVJRVA6A52V2HOLZ/\"}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients prior to version 3.5.1 are vulnerable to out-of-bounds read. Version 3.5.1 contains a patch for the issue. No known workarounds are available.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-125\", \"description\": \"CWE-125: Out-of-bounds Read\"}]}], \"providerMetadata\": {\"orgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"shortName\": \"GitHub_M\", \"dateUpdated\": \"2024-06-10T16:10:00.859Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2024-32658\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-11-03T20:37:24.166Z\", \"dateReserved\": \"2024-04-16T14:15:26.877Z\", \"assignerOrgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"datePublished\": \"2024-04-23T17:41:21.212Z\", \"assignerShortName\": \"GitHub_M\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
}
}
OPENSUSE-SU-2026:20339-1
Vulnerability from csaf_opensuse - Published: 2026-03-10 12:34 - Updated: 2026-03-10 12:34Summary
Security update for freerdp
Notes
Title of the patch
Security update for freerdp
Description of the patch
This update for freerdp fixes the following issues:
Update to version 3.22.0 (jsc#PED-15526):
+ Major bugfix release:
* Complete overhaul of SDL client
* Introduction of new WINPR_ATTR_NODISCARD macro wrapping compiler or C language version specific [[nodiscard]] attributes
* Addition of WINPR_ATTR_NODISCARD to (some) public API functions so usage errors are producing warnings now
* Add some more stringify functions for logging
* We've received CVE reports, check
https://github.com/FreeRDP/FreeRDP/security/advisories for more details!
@Keryer reported an issue affecting client and proxy:
* CVE-2026-23948
@ehdgks0627 did some more fuzzying and found quite a number of client side bugs.
* CVE-2026-24682
* CVE-2026-24683
* CVE-2026-24676
* CVE-2026-24677
* CVE-2026-24678
* CVE-2026-24684
* CVE-2026-24679
* CVE-2026-24681
* CVE-2026-24675
* CVE-2026-24491
* CVE-2026-24680
- Changes from version 3.21.0
* [core,info] fix missing NULL check (#12157)
* [gateway,tsg] fix TSG_PACKET_RESPONSE parsing (#12161)
* Allow querying auth identity with kerberos when running as a server (#12162)
* Sspi krb heimdal (#12163)
* Tsg fix idleTimeout parsing (#12167)
* [channels,smartcard] revert 649f7de (#12166)
* [crypto] deprecate er and der modules (#12170)
* [channels,rdpei] lock full update, not only parts (#12175)
* [winpr,platform] add WINPR_ATTR_NODISCARD macro (#12178)
* Wlog cleanup (#12179)
* new stringify functions & touch API defines (#12180)
* Add support for querying SECPKG_ATTR_PACKAGE_INFO to NTLM and Kerberos (#12171)
* [channels,video] measure times in ns (#12184)
* [utils] Nodiscard (#12187)
* Error handling fixes (#12186)
* [channels,drdynvc] check pointer before reset (#12189)
* Winpr api def (#12190)
* [winpr,platform] drop C23 [[nodiscard]] (#12192)
* [gdi] add additional checks for a valid rdpGdi (#12194)
* Sdl3 high dpiv2 (#12173)
* peer: Disconnect if Logon() returned FALSE (#12196)
* [channels,rdpecam] fix PROPERTY_DESCRIPTION parsing (#12197)
* [channel,rdpsnd] only clean up thread before free (#12199)
* [channels,rdpei] add RDPINPUT_CONTACT_FLAG_UP (#12195)
- Update to version 3.21.0:
+ Bugfix release with a few new API functions addressing shortcomings with
regard to input data validation.
Thanks to @ehdgks0627 we have fixed the following additional (medium)
client side vulnerabilities:
* CVE-2026-23530
* CVE-2026-23531
* CVE-2026-23532
* CVE-2026-23533
* CVE-2026-23534
* CVE-2026-23732
* CVE-2026-23883
* CVE-2026-23884
- Changes from version 3.20.2
* [client,sdl] fix monitor resolution (#12142)
* [codec,progressive] fix progressive_rfx_upgrade_block (#12143)
* Krb cache fix (#12145)
* Rdpdr improved checks (#12141)
* Codec advanced length checks (#12146)
* Glyph fix length checks (#12151)
* Wlog printf format string checks (#12150)
* [warnings,format] fix format string warnings (#12152)
* Double free fixes (#12153)
* [clang-tidy] clean up code warnings (#12154)
- Update to version 3.20.2:
+ Patch release fixing a regression with gateway connections
introduced with 3.20.1
## What's Changed
* Warnings and missing enumeration types (#12137)
- Changes from version 3.20.1:
+ New years cleanup release. Fixes some issues reported and does
a cleaning sweep to bring down warnings.
Thanks to @ehdgks0627 doing some code review/testing we've
uncovered the following (medium) vulnerabilities:
* CVE-2026-22851
* CVE-2026-22852
* CVE-2026-22853
* CVE-2026-22854
* CVE-2026-22855
* CVE-2026-22856
* CVE-2026-22857
* CVE-2026-22858
* CVE-2026-22859
+ These affect FreeRDP based clients only, with the exception of
CVE-2026-22858 also affecting FreeRDP proxy. FreeRDP based
servers are not affected.
- Update to version 3.20.0:
* Mingw fixes (#12070)
* [crypto,certificate_data] add some hostname sanitation
* [client,common]: Fix loading of rdpsnd channel
* [client,sdl] set touch and pen hints
- Changes from version 3.19.1:
* [core,transport] improve SSL error logging
* [utils,helpers] fix freerdp_settings_get_legacy_config_path
* From stdin and sdl-creds improve
* [crypto,certificate] sanitize hostnames
* [channels,drdynvc] propagate error in dynamic channel
* [CMake] make Mbed-TLS and LibreSSL experimental
* Json fix
* rdpecam: send sample only if it's available
* [channels,rdpecam] allow MJPEG frame skip and direct passthrough
* [winpr,utils] explicit NULL checks in jansson WINPR_JSON_ParseWithLength
- Changes from version 3.19.0:
* [client,common] fix retry counter
* [cmake] fix aarch64 neon detection
* Fix response body existence check when using RDP Gateway
* fix line clipping issue
* Clip coord fix
* [core,input] Add debug log to keyboard state sync
* Update command line usage for gateway option
* [codec,ffmpeg] 8.0 dropped AV_PROFILE_AAC_MAIN
* [channels,audin] fix pulse memory leak
* [channels,drive] Small performance improvements in drive channel
* [winpr,utils] fix command line error logging
* [common,test] Adjust AVC and H264 expectations
* drdynvc: implement compressed packet
* [channels,rdpecam] improve log messages
* Fix remote credential guard channel loading
* Fix inverted ifdef
* [core,nego] disable all enabled modes except the one requested
* rdpear: handle basic NTLM commands and fix server-side
* [smartcardlogon] Fix off-by-one error in `smartcard_hw_enumerateCerts`
* rdpecam: fix camera sample grabbing
- Update to version 3.18.0:
+ Fix a regression reading passwords from stdin
+ Fix a timer regression (µs instead of ms)
+ Improved multitouch support
+ Fix a bug with PLANAR codec (used with /bpp:32 or sometimes with /gfx)
+ Better error handling for ARM transport (Entra)
+ Fix audio encoder lag (microphone/AAC) with FFMPEG
+ Support for janssen JSON library
- Update to version 3.17.2:
+ Minor improvements and bugfix release.
+ Most notably resource usage (file handles) has been greatly reduced and
static build pkg-config have been fixed.
For users of xfreerdp RAILS/RemoteApp mode the switch to DesktopSession
mode has been fixed (working UAC screen)
- Changes from version 3.17.1
+ Minor improvements and bugfix release.
* most notably a memory leak was addressed
* fixed header files missing C++ guards
* xfreerdp as well as the SDL clients now support a system wide configuration file
* Heimdal kerberos support was improved
* builds with [MS-RDPEAR] now properly abort at configure if Heimdal is used
(this configuration was never supported, so ensure nobody compiles it that way)
- Enable openh264 support, we can build against the noopenh264 stub
- Update to 3.17.0:
* [client,sdl2] fix build with webview (#11685)
* [core,nla] use wcslen for password length (#11687)
* Clear channel error prior to call channel init event proc (#11688)
* Warn args (#11689)
* [client,common] fix -mouse-motion (#11690)
* [core,proxy] fix IPv4 and IPv6 length (#11692)
* Regression fix2 (#11696)
* Log fixes (#11693)
* [common,settings] fix int casts (#11699)
* [core,connection] fix log level of several messages (#11697)
* [client,sdl] print current video driver (#11701)
* [crypto,tls] print big warning for /cert:ignore (#11704)
* [client,desktop] fix StartupWMClass setting (#11708)
* [cmake] unify version creation (#11711)
* [common,settings] force reallocation on caps copy (#11715)
* [manpages] Add example of keyboard remapping (#11718)
* Some fixes in Negotiate and NLA (#11722)
* [client,x11] fix clipboard issues (#11724)
* kerberos: do various tries for TGT retrieval in u2u (#11723)
* Cmdline escape strings (#11735)
* [winpr,utils] do not log command line arguments (#11736)
* [api,doc] Add stylesheed for doxygen (#11738)
* [core,proxy] fix BIO read methods (#11739)
* [client,common] fix sso_mib_get_access_token return value in error case (#11741)
* [crypto,tls] do not use context->settings->instance (#11749)
* winpr: re-introduce the credentials module (#11734)
* [winpr,timezone] ensure thread-safe initialization (#11754)
* core/redirection: Ensure stream has enough space for the certificate (#11762)
* [client,common] do not log success (#11766)
* Clean up bugs exposed on systems with high core counts (#11761)
* [cmake] add installWithRPATH (#11747)
* [clang-tidy] fix various warnings (#11769)
* Wlog improve type checks (#11774)
* [client,common] fix tenantid command line parsing (#11779)
* Proxy module static and shared linking support (#11768)
* LoadLibrary Null fix (#11786)
* [client,common] add freerdp_client_populate_settings_from_rdp_file_un… (#11780)
* Fullchain support (#11787)
* [client,x11] ignore floatbar events (#11771)
* [winpr,credentials] prefer utf-8 over utf-16-LE #11790
* [proxy,modules] ignore bitmap-filter skip remaining #11789
- Update to 3.16.0:
* Lots of improvements for the SDL3 client
* Various X11 client improvements
* Add a timer implementation
* Various AAD/Azure/Entra improvements
* YUV420 primitives fixes
- Update to 3.15.0:
* [client,sdl] fix crash on suppress output
* [channels,remdesk] fix possible memory leak
* [client,x11] map exit code success
* Hidef rail checks and deprecation fixe
* Standard rdp security network issues
* [core,rdp] fix check for SEC_FLAGSHI_VALID
* [core,caps] fix rdp_apply_order_capability_set
* [core,proxy] align no_proxy to curl
* [core,gateway] fix string reading for TSG
* [client,sdl] refactor display update
- Update to version 3.14.0:
+ Bugfix and cleanup release. Due to some new API functions the
minor version has been increased.
- Changes from version 3.13.0:
+ Friends of old hardware rejoice, serial port redirection got an
update (not kidding you)
+ Android builds have been updated to be usable again
+ Mingw builds now periodically do a shared and static build
+ Fixed some bugs and regressions along the way and improved test
coverage as well
- Changes from version 3.12.0:
+ Multimonitor backward compatibility fixes
+ Smartcard compatibility
+ Improve the [MS-RDPECAM] support
+ Improve smartcard redirection support
+ Refactor SSE optimizations: Split headers, unify load/store,
require SSE3 for all optimized functions
+ Refactors the CMake build to better support configuration based
builders
+ Fix a few regressions from last release (USB redirection and
graphical glitches)
- Changes from version 3.11.0:
+ A new release with bugfixes and code cleanups as well as a few
nifty little features
- CVE-2024-22211: In affected versions an integer overflow in
`freerdp_bitmap_planar_context_reset` leads to heap-buffer
overflow. (bsc#1219049)
- CVE-2024-32658: Fixedout-of-bounds read in Interleaved RLE Bitmap Codec in FreeRDP based clients (bsc#1223353)
- Multiple CVE fixes
+ CVE-2024-32659: Fixed out-of-bounds read if `((nWidth == 0) and (nHeight == 0))`(bsc#1223346)
+ CVE-2024-32660: Fixed client crash via invalid huge allocation size (bsc#1223347)
+ CVE-2024-32661: Fixed client NULL pointer dereference (bsc#1223348)
- Multiple CVE fixes:
* bsc#1223293, CVE-2024-32039
* bsc#1223294, CVE-2024-32040
* bsc#1223295, CVE-2024-32041
* bsc#1223296, CVE-2024-32458
* bsc#1223297, CVE-2024-32459
* bsc#1223298, CVE-2024-32460
* Fix CVE-2023-40574 - bsc#1214869: Out-Of-Bounds Write in general_YUV444ToRGB_8u_P3AC4R_BGRX
* Fix CVE-2023-40575 - bsc#1214870: Out-Of-Bounds Read in general_YUV444ToRGB_8u_P3AC4R_BGRX
* Fix CVE-2023-40576 - bsc#1214871: Out-Of-Bounds Read in RleDecompress
Patchnames
openSUSE-Leap-16.0-368
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for freerdp",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for freerdp fixes the following issues:\n\nUpdate to version 3.22.0 (jsc#PED-15526):\n\n + Major bugfix release:\n\n * Complete overhaul of SDL client\n * Introduction of new WINPR_ATTR_NODISCARD macro wrapping compiler or C language version specific [[nodiscard]] attributes\n * Addition of WINPR_ATTR_NODISCARD to (some) public API functions so usage errors are producing warnings now\n * Add some more stringify functions for logging\n * We\u0027ve received CVE reports, check\n https://github.com/FreeRDP/FreeRDP/security/advisories for more details!\n @Keryer reported an issue affecting client and proxy:\n * CVE-2026-23948\n @ehdgks0627 did some more fuzzying and found quite a number of client side bugs.\n * CVE-2026-24682\n * CVE-2026-24683\n * CVE-2026-24676\n * CVE-2026-24677\n * CVE-2026-24678\n * CVE-2026-24684\n * CVE-2026-24679\n * CVE-2026-24681\n * CVE-2026-24675\n * CVE-2026-24491\n * CVE-2026-24680\n\n- Changes from version 3.21.0\n\n * [core,info] fix missing NULL check (#12157)\n * [gateway,tsg] fix TSG_PACKET_RESPONSE parsing (#12161)\n * Allow querying auth identity with kerberos when running as a server (#12162)\n * Sspi krb heimdal (#12163)\n * Tsg fix idleTimeout parsing (#12167)\n * [channels,smartcard] revert 649f7de (#12166)\n * [crypto] deprecate er and der modules (#12170)\n * [channels,rdpei] lock full update, not only parts (#12175)\n * [winpr,platform] add WINPR_ATTR_NODISCARD macro (#12178)\n * Wlog cleanup (#12179)\n * new stringify functions \u0026 touch API defines (#12180)\n * Add support for querying SECPKG_ATTR_PACKAGE_INFO to NTLM and Kerberos (#12171)\n * [channels,video] measure times in ns (#12184)\n * [utils] Nodiscard (#12187)\n * Error handling fixes (#12186)\n * [channels,drdynvc] check pointer before reset (#12189)\n * Winpr api def (#12190)\n * [winpr,platform] drop C23 [[nodiscard]] (#12192)\n * [gdi] add additional checks for a valid rdpGdi (#12194)\n * Sdl3 high dpiv2 (#12173)\n * peer: Disconnect if Logon() returned FALSE (#12196)\n * [channels,rdpecam] fix PROPERTY_DESCRIPTION parsing (#12197)\n * [channel,rdpsnd] only clean up thread before free (#12199)\n * [channels,rdpei] add RDPINPUT_CONTACT_FLAG_UP (#12195)\n\n- Update to version 3.21.0:\n\n + Bugfix release with a few new API functions addressing shortcomings with\n regard to input data validation.\n Thanks to @ehdgks0627 we have fixed the following additional (medium)\n client side vulnerabilities:\n\n * CVE-2026-23530\n * CVE-2026-23531\n * CVE-2026-23532\n * CVE-2026-23533\n * CVE-2026-23534\n * CVE-2026-23732\n * CVE-2026-23883\n * CVE-2026-23884\n\n- Changes from version 3.20.2\n\n * [client,sdl] fix monitor resolution (#12142)\n * [codec,progressive] fix progressive_rfx_upgrade_block (#12143)\n * Krb cache fix (#12145)\n * Rdpdr improved checks (#12141)\n * Codec advanced length checks (#12146)\n * Glyph fix length checks (#12151)\n * Wlog printf format string checks (#12150)\n * [warnings,format] fix format string warnings (#12152)\n * Double free fixes (#12153)\n * [clang-tidy] clean up code warnings (#12154)\n\n- Update to version 3.20.2:\n\n + Patch release fixing a regression with gateway connections\n introduced with 3.20.1\n ## What\u0027s Changed\n * Warnings and missing enumeration types (#12137)\n\n- Changes from version 3.20.1:\n\n + New years cleanup release. Fixes some issues reported and does\n a cleaning sweep to bring down warnings.\n Thanks to @ehdgks0627 doing some code review/testing we\u0027ve\n uncovered the following (medium) vulnerabilities:\n\n * CVE-2026-22851\n * CVE-2026-22852\n * CVE-2026-22853\n * CVE-2026-22854\n * CVE-2026-22855\n * CVE-2026-22856\n * CVE-2026-22857\n * CVE-2026-22858\n * CVE-2026-22859\n\n + These affect FreeRDP based clients only, with the exception of\n CVE-2026-22858 also affecting FreeRDP proxy. FreeRDP based\n servers are not affected.\n\n- Update to version 3.20.0:\n\n * Mingw fixes (#12070)\n * [crypto,certificate_data] add some hostname sanitation\n * [client,common]: Fix loading of rdpsnd channel\n * [client,sdl] set touch and pen hints\n\n- Changes from version 3.19.1:\n\n * [core,transport] improve SSL error logging\n * [utils,helpers] fix freerdp_settings_get_legacy_config_path\n * From stdin and sdl-creds improve\n * [crypto,certificate] sanitize hostnames\n * [channels,drdynvc] propagate error in dynamic channel\n * [CMake] make Mbed-TLS and LibreSSL experimental\n * Json fix\n * rdpecam: send sample only if it\u0027s available\n * [channels,rdpecam] allow MJPEG frame skip and direct passthrough\n * [winpr,utils] explicit NULL checks in jansson WINPR_JSON_ParseWithLength\n\n- Changes from version 3.19.0:\n\n * [client,common] fix retry counter\n * [cmake] fix aarch64 neon detection\n * Fix response body existence check when using RDP Gateway\n * fix line clipping issue\n * Clip coord fix\n * [core,input] Add debug log to keyboard state sync\n * Update command line usage for gateway option\n * [codec,ffmpeg] 8.0 dropped AV_PROFILE_AAC_MAIN\n * [channels,audin] fix pulse memory leak\n * [channels,drive] Small performance improvements in drive channel\n * [winpr,utils] fix command line error logging\n * [common,test] Adjust AVC and H264 expectations\n * drdynvc: implement compressed packet\n * [channels,rdpecam] improve log messages\n * Fix remote credential guard channel loading\n * Fix inverted ifdef\n * [core,nego] disable all enabled modes except the one requested\n * rdpear: handle basic NTLM commands and fix server-side\n * [smartcardlogon] Fix off-by-one error in `smartcard_hw_enumerateCerts`\n * rdpecam: fix camera sample grabbing\n\n- Update to version 3.18.0:\n\n + Fix a regression reading passwords from stdin\n + Fix a timer regression (\u00b5s instead of ms)\n + Improved multitouch support\n + Fix a bug with PLANAR codec (used with /bpp:32 or sometimes with /gfx)\n + Better error handling for ARM transport (Entra)\n + Fix audio encoder lag (microphone/AAC) with FFMPEG\n + Support for janssen JSON library\n\n- Update to version 3.17.2:\n\n + Minor improvements and bugfix release.\n + Most notably resource usage (file handles) has been greatly reduced and\n static build pkg-config have been fixed.\n For users of xfreerdp RAILS/RemoteApp mode the switch to DesktopSession\n mode has been fixed (working UAC screen)\n\n- Changes from version 3.17.1\n\n + Minor improvements and bugfix release.\n * most notably a memory leak was addressed\n * fixed header files missing C++ guards\n * xfreerdp as well as the SDL clients now support a system wide configuration file\n * Heimdal kerberos support was improved\n * builds with [MS-RDPEAR] now properly abort at configure if Heimdal is used\n (this configuration was never supported, so ensure nobody compiles it that way)\n\n- Enable openh264 support, we can build against the noopenh264 stub\n\n- Update to 3.17.0:\n\n * [client,sdl2] fix build with webview (#11685)\n * [core,nla] use wcslen for password length (#11687)\n * Clear channel error prior to call channel init event proc (#11688)\n * Warn args (#11689)\n * [client,common] fix -mouse-motion (#11690)\n * [core,proxy] fix IPv4 and IPv6 length (#11692)\n * Regression fix2 (#11696)\n * Log fixes (#11693)\n * [common,settings] fix int casts (#11699)\n * [core,connection] fix log level of several messages (#11697)\n * [client,sdl] print current video driver (#11701)\n * [crypto,tls] print big warning for /cert:ignore (#11704)\n * [client,desktop] fix StartupWMClass setting (#11708)\n * [cmake] unify version creation (#11711)\n * [common,settings] force reallocation on caps copy (#11715)\n * [manpages] Add example of keyboard remapping (#11718)\n * Some fixes in Negotiate and NLA (#11722)\n * [client,x11] fix clipboard issues (#11724)\n * kerberos: do various tries for TGT retrieval in u2u (#11723)\n * Cmdline escape strings (#11735)\n * [winpr,utils] do not log command line arguments (#11736)\n * [api,doc] Add stylesheed for doxygen (#11738)\n * [core,proxy] fix BIO read methods (#11739)\n * [client,common] fix sso_mib_get_access_token return value in error case (#11741)\n * [crypto,tls] do not use context-\u003esettings-\u003einstance (#11749)\n * winpr: re-introduce the credentials module (#11734)\n * [winpr,timezone] ensure thread-safe initialization (#11754)\n * core/redirection: Ensure stream has enough space for the certificate (#11762)\n * [client,common] do not log success (#11766)\n * Clean up bugs exposed on systems with high core counts (#11761)\n * [cmake] add installWithRPATH (#11747)\n * [clang-tidy] fix various warnings (#11769)\n * Wlog improve type checks (#11774)\n * [client,common] fix tenantid command line parsing (#11779)\n * Proxy module static and shared linking support (#11768)\n * LoadLibrary Null fix (#11786)\n * [client,common] add freerdp_client_populate_settings_from_rdp_file_un\u2026 (#11780)\n * Fullchain support (#11787)\n * [client,x11] ignore floatbar events (#11771)\n * [winpr,credentials] prefer utf-8 over utf-16-LE #11790\n * [proxy,modules] ignore bitmap-filter skip remaining #11789\n\n- Update to 3.16.0:\n * Lots of improvements for the SDL3 client\n * Various X11 client improvements\n * Add a timer implementation\n * Various AAD/Azure/Entra improvements\n * YUV420 primitives fixes\n- Update to 3.15.0:\n * [client,sdl] fix crash on suppress output\n * [channels,remdesk] fix possible memory leak\n * [client,x11] map exit code success\n * Hidef rail checks and deprecation fixe\n * Standard rdp security network issues\n * [core,rdp] fix check for SEC_FLAGSHI_VALID\n * [core,caps] fix rdp_apply_order_capability_set\n * [core,proxy] align no_proxy to curl\n * [core,gateway] fix string reading for TSG\n * [client,sdl] refactor display update\n\n- Update to version 3.14.0:\n\n + Bugfix and cleanup release. Due to some new API functions the\n minor version has been increased.\n\n- Changes from version 3.13.0:\n\n + Friends of old hardware rejoice, serial port redirection got an\n update (not kidding you)\n + Android builds have been updated to be usable again\n + Mingw builds now periodically do a shared and static build\n + Fixed some bugs and regressions along the way and improved test\n coverage as well\n\n- Changes from version 3.12.0:\n\n + Multimonitor backward compatibility fixes\n + Smartcard compatibility\n + Improve the [MS-RDPECAM] support\n + Improve smartcard redirection support\n + Refactor SSE optimizations: Split headers, unify load/store,\n require SSE3 for all optimized functions\n + Refactors the CMake build to better support configuration based\n builders\n + Fix a few regressions from last release (USB redirection and\n graphical glitches)\n\n- Changes from version 3.11.0:\n\n + A new release with bugfixes and code cleanups as well as a few\n nifty little features\n\n- CVE-2024-22211: In affected versions an integer overflow in\n `freerdp_bitmap_planar_context_reset` leads to heap-buffer\n overflow. (bsc#1219049)\n\n- CVE-2024-32658: Fixedout-of-bounds read in Interleaved RLE Bitmap Codec in FreeRDP based clients (bsc#1223353)\n\n- Multiple CVE fixes\n + CVE-2024-32659: Fixed out-of-bounds read if `((nWidth == 0) and (nHeight == 0))`(bsc#1223346)\n + CVE-2024-32660: Fixed client crash via invalid huge allocation size (bsc#1223347)\n + CVE-2024-32661: Fixed client NULL pointer dereference (bsc#1223348)\n\n- Multiple CVE fixes:\n * bsc#1223293, CVE-2024-32039\n * bsc#1223294, CVE-2024-32040\n * bsc#1223295, CVE-2024-32041\n * bsc#1223296, CVE-2024-32458\n * bsc#1223297, CVE-2024-32459\n * bsc#1223298, CVE-2024-32460\n\n * Fix CVE-2023-40574 - bsc#1214869: Out-Of-Bounds Write in general_YUV444ToRGB_8u_P3AC4R_BGRX\n * Fix CVE-2023-40575 - bsc#1214870: Out-Of-Bounds Read in general_YUV444ToRGB_8u_P3AC4R_BGRX\n * Fix CVE-2023-40576 - bsc#1214871: Out-Of-Bounds Read in RleDecompress\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Leap-16.0-368",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2026_20339-1.json"
},
{
"category": "self",
"summary": "SUSE Bug 1214869",
"url": "https://bugzilla.suse.com/1214869"
},
{
"category": "self",
"summary": "SUSE Bug 1214870",
"url": "https://bugzilla.suse.com/1214870"
},
{
"category": "self",
"summary": "SUSE Bug 1214871",
"url": "https://bugzilla.suse.com/1214871"
},
{
"category": "self",
"summary": "SUSE Bug 1219049",
"url": "https://bugzilla.suse.com/1219049"
},
{
"category": "self",
"summary": "SUSE Bug 1223293",
"url": "https://bugzilla.suse.com/1223293"
},
{
"category": "self",
"summary": "SUSE Bug 1223294",
"url": "https://bugzilla.suse.com/1223294"
},
{
"category": "self",
"summary": "SUSE Bug 1223295",
"url": "https://bugzilla.suse.com/1223295"
},
{
"category": "self",
"summary": "SUSE Bug 1223296",
"url": "https://bugzilla.suse.com/1223296"
},
{
"category": "self",
"summary": "SUSE Bug 1223297",
"url": "https://bugzilla.suse.com/1223297"
},
{
"category": "self",
"summary": "SUSE Bug 1223298",
"url": "https://bugzilla.suse.com/1223298"
},
{
"category": "self",
"summary": "SUSE Bug 1223346",
"url": "https://bugzilla.suse.com/1223346"
},
{
"category": "self",
"summary": "SUSE Bug 1223347",
"url": "https://bugzilla.suse.com/1223347"
},
{
"category": "self",
"summary": "SUSE Bug 1223348",
"url": "https://bugzilla.suse.com/1223348"
},
{
"category": "self",
"summary": "SUSE Bug 1223353",
"url": "https://bugzilla.suse.com/1223353"
},
{
"category": "self",
"summary": "SUSE Bug 1243109",
"url": "https://bugzilla.suse.com/1243109"
},
{
"category": "self",
"summary": "SUSE Bug 1256717",
"url": "https://bugzilla.suse.com/1256717"
},
{
"category": "self",
"summary": "SUSE Bug 1256718",
"url": "https://bugzilla.suse.com/1256718"
},
{
"category": "self",
"summary": "SUSE Bug 1256719",
"url": "https://bugzilla.suse.com/1256719"
},
{
"category": "self",
"summary": "SUSE Bug 1256720",
"url": "https://bugzilla.suse.com/1256720"
},
{
"category": "self",
"summary": "SUSE Bug 1256721",
"url": "https://bugzilla.suse.com/1256721"
},
{
"category": "self",
"summary": "SUSE Bug 1256722",
"url": "https://bugzilla.suse.com/1256722"
},
{
"category": "self",
"summary": "SUSE Bug 1256723",
"url": "https://bugzilla.suse.com/1256723"
},
{
"category": "self",
"summary": "SUSE Bug 1256724",
"url": "https://bugzilla.suse.com/1256724"
},
{
"category": "self",
"summary": "SUSE Bug 1256725",
"url": "https://bugzilla.suse.com/1256725"
},
{
"category": "self",
"summary": "SUSE Bug 1256940",
"url": "https://bugzilla.suse.com/1256940"
},
{
"category": "self",
"summary": "SUSE Bug 1256941",
"url": "https://bugzilla.suse.com/1256941"
},
{
"category": "self",
"summary": "SUSE Bug 1256942",
"url": "https://bugzilla.suse.com/1256942"
},
{
"category": "self",
"summary": "SUSE Bug 1256943",
"url": "https://bugzilla.suse.com/1256943"
},
{
"category": "self",
"summary": "SUSE Bug 1256944",
"url": "https://bugzilla.suse.com/1256944"
},
{
"category": "self",
"summary": "SUSE Bug 1256945",
"url": "https://bugzilla.suse.com/1256945"
},
{
"category": "self",
"summary": "SUSE Bug 1256946",
"url": "https://bugzilla.suse.com/1256946"
},
{
"category": "self",
"summary": "SUSE Bug 1256947",
"url": "https://bugzilla.suse.com/1256947"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-40574 page",
"url": "https://www.suse.com/security/cve/CVE-2023-40574/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-40575 page",
"url": "https://www.suse.com/security/cve/CVE-2023-40575/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-40576 page",
"url": "https://www.suse.com/security/cve/CVE-2023-40576/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-22211 page",
"url": "https://www.suse.com/security/cve/CVE-2024-22211/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-32039 page",
"url": "https://www.suse.com/security/cve/CVE-2024-32039/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-32040 page",
"url": "https://www.suse.com/security/cve/CVE-2024-32040/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-32041 page",
"url": "https://www.suse.com/security/cve/CVE-2024-32041/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-32458 page",
"url": "https://www.suse.com/security/cve/CVE-2024-32458/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-32459 page",
"url": "https://www.suse.com/security/cve/CVE-2024-32459/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-32460 page",
"url": "https://www.suse.com/security/cve/CVE-2024-32460/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-32658 page",
"url": "https://www.suse.com/security/cve/CVE-2024-32658/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-32659 page",
"url": "https://www.suse.com/security/cve/CVE-2024-32659/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-32660 page",
"url": "https://www.suse.com/security/cve/CVE-2024-32660/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-32661 page",
"url": "https://www.suse.com/security/cve/CVE-2024-32661/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-4478 page",
"url": "https://www.suse.com/security/cve/CVE-2025-4478/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22851 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22851/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22852 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22852/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22853 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22853/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22854 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22854/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22855 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22855/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22856 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22856/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22857 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22857/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22858 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22858/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22859 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22859/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23530 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23530/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23531 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23531/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23532 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23532/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23533 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23533/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23534 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23534/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23732 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23732/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23883 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23883/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23884 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23884/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23948 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23948/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-24491 page",
"url": "https://www.suse.com/security/cve/CVE-2026-24491/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-24675 page",
"url": "https://www.suse.com/security/cve/CVE-2026-24675/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-24676 page",
"url": "https://www.suse.com/security/cve/CVE-2026-24676/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-24677 page",
"url": "https://www.suse.com/security/cve/CVE-2026-24677/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-24678 page",
"url": "https://www.suse.com/security/cve/CVE-2026-24678/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-24679 page",
"url": "https://www.suse.com/security/cve/CVE-2026-24679/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-24680 page",
"url": "https://www.suse.com/security/cve/CVE-2026-24680/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-24681 page",
"url": "https://www.suse.com/security/cve/CVE-2026-24681/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-24682 page",
"url": "https://www.suse.com/security/cve/CVE-2026-24682/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-24683 page",
"url": "https://www.suse.com/security/cve/CVE-2026-24683/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-24684 page",
"url": "https://www.suse.com/security/cve/CVE-2026-24684/"
}
],
"title": "Security update for freerdp",
"tracking": {
"current_release_date": "2026-03-10T12:34:56Z",
"generator": {
"date": "2026-03-10T12:34:56Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2026:20339-1",
"initial_release_date": "2026-03-10T12:34:56Z",
"revision_history": [
{
"date": "2026-03-10T12:34:56Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "freerdp-3.22.0-160000.1.1.aarch64",
"product": {
"name": "freerdp-3.22.0-160000.1.1.aarch64",
"product_id": "freerdp-3.22.0-160000.1.1.aarch64"
}
},
{
"category": "product_version",
"name": "freerdp-devel-3.22.0-160000.1.1.aarch64",
"product": {
"name": "freerdp-devel-3.22.0-160000.1.1.aarch64",
"product_id": "freerdp-devel-3.22.0-160000.1.1.aarch64"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-3.22.0-160000.1.1.aarch64",
"product": {
"name": "freerdp-proxy-3.22.0-160000.1.1.aarch64",
"product_id": "freerdp-proxy-3.22.0-160000.1.1.aarch64"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"product": {
"name": "freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"product_id": "freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64"
}
},
{
"category": "product_version",
"name": "freerdp-sdl-3.22.0-160000.1.1.aarch64",
"product": {
"name": "freerdp-sdl-3.22.0-160000.1.1.aarch64",
"product_id": "freerdp-sdl-3.22.0-160000.1.1.aarch64"
}
},
{
"category": "product_version",
"name": "freerdp-server-3.22.0-160000.1.1.aarch64",
"product": {
"name": "freerdp-server-3.22.0-160000.1.1.aarch64",
"product_id": "freerdp-server-3.22.0-160000.1.1.aarch64"
}
},
{
"category": "product_version",
"name": "freerdp-wayland-3.22.0-160000.1.1.aarch64",
"product": {
"name": "freerdp-wayland-3.22.0-160000.1.1.aarch64",
"product_id": "freerdp-wayland-3.22.0-160000.1.1.aarch64"
}
},
{
"category": "product_version",
"name": "libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"product": {
"name": "libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"product_id": "libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64"
}
},
{
"category": "product_version",
"name": "libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"product": {
"name": "libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"product_id": "libfreerdp3-3-3.22.0-160000.1.1.aarch64"
}
},
{
"category": "product_version",
"name": "librdtk0-0-3.22.0-160000.1.1.aarch64",
"product": {
"name": "librdtk0-0-3.22.0-160000.1.1.aarch64",
"product_id": "librdtk0-0-3.22.0-160000.1.1.aarch64"
}
},
{
"category": "product_version",
"name": "libuwac0-0-3.22.0-160000.1.1.aarch64",
"product": {
"name": "libuwac0-0-3.22.0-160000.1.1.aarch64",
"product_id": "libuwac0-0-3.22.0-160000.1.1.aarch64"
}
},
{
"category": "product_version",
"name": "libwinpr3-3-3.22.0-160000.1.1.aarch64",
"product": {
"name": "libwinpr3-3-3.22.0-160000.1.1.aarch64",
"product_id": "libwinpr3-3-3.22.0-160000.1.1.aarch64"
}
},
{
"category": "product_version",
"name": "rdtk0-devel-3.22.0-160000.1.1.aarch64",
"product": {
"name": "rdtk0-devel-3.22.0-160000.1.1.aarch64",
"product_id": "rdtk0-devel-3.22.0-160000.1.1.aarch64"
}
},
{
"category": "product_version",
"name": "uwac0-devel-3.22.0-160000.1.1.aarch64",
"product": {
"name": "uwac0-devel-3.22.0-160000.1.1.aarch64",
"product_id": "uwac0-devel-3.22.0-160000.1.1.aarch64"
}
},
{
"category": "product_version",
"name": "winpr-devel-3.22.0-160000.1.1.aarch64",
"product": {
"name": "winpr-devel-3.22.0-160000.1.1.aarch64",
"product_id": "winpr-devel-3.22.0-160000.1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "freerdp-3.22.0-160000.1.1.ppc64le",
"product": {
"name": "freerdp-3.22.0-160000.1.1.ppc64le",
"product_id": "freerdp-3.22.0-160000.1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "freerdp-devel-3.22.0-160000.1.1.ppc64le",
"product": {
"name": "freerdp-devel-3.22.0-160000.1.1.ppc64le",
"product_id": "freerdp-devel-3.22.0-160000.1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"product": {
"name": "freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"product_id": "freerdp-proxy-3.22.0-160000.1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"product": {
"name": "freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"product_id": "freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"product": {
"name": "freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"product_id": "freerdp-sdl-3.22.0-160000.1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "freerdp-server-3.22.0-160000.1.1.ppc64le",
"product": {
"name": "freerdp-server-3.22.0-160000.1.1.ppc64le",
"product_id": "freerdp-server-3.22.0-160000.1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"product": {
"name": "freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"product_id": "freerdp-wayland-3.22.0-160000.1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"product": {
"name": "libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"product_id": "libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"product": {
"name": "libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"product_id": "libfreerdp3-3-3.22.0-160000.1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "librdtk0-0-3.22.0-160000.1.1.ppc64le",
"product": {
"name": "librdtk0-0-3.22.0-160000.1.1.ppc64le",
"product_id": "librdtk0-0-3.22.0-160000.1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libuwac0-0-3.22.0-160000.1.1.ppc64le",
"product": {
"name": "libuwac0-0-3.22.0-160000.1.1.ppc64le",
"product_id": "libuwac0-0-3.22.0-160000.1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"product": {
"name": "libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"product_id": "libwinpr3-3-3.22.0-160000.1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"product": {
"name": "rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"product_id": "rdtk0-devel-3.22.0-160000.1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "uwac0-devel-3.22.0-160000.1.1.ppc64le",
"product": {
"name": "uwac0-devel-3.22.0-160000.1.1.ppc64le",
"product_id": "uwac0-devel-3.22.0-160000.1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "winpr-devel-3.22.0-160000.1.1.ppc64le",
"product": {
"name": "winpr-devel-3.22.0-160000.1.1.ppc64le",
"product_id": "winpr-devel-3.22.0-160000.1.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "freerdp-3.22.0-160000.1.1.s390x",
"product": {
"name": "freerdp-3.22.0-160000.1.1.s390x",
"product_id": "freerdp-3.22.0-160000.1.1.s390x"
}
},
{
"category": "product_version",
"name": "freerdp-devel-3.22.0-160000.1.1.s390x",
"product": {
"name": "freerdp-devel-3.22.0-160000.1.1.s390x",
"product_id": "freerdp-devel-3.22.0-160000.1.1.s390x"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-3.22.0-160000.1.1.s390x",
"product": {
"name": "freerdp-proxy-3.22.0-160000.1.1.s390x",
"product_id": "freerdp-proxy-3.22.0-160000.1.1.s390x"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"product": {
"name": "freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"product_id": "freerdp-proxy-plugins-3.22.0-160000.1.1.s390x"
}
},
{
"category": "product_version",
"name": "freerdp-sdl-3.22.0-160000.1.1.s390x",
"product": {
"name": "freerdp-sdl-3.22.0-160000.1.1.s390x",
"product_id": "freerdp-sdl-3.22.0-160000.1.1.s390x"
}
},
{
"category": "product_version",
"name": "freerdp-server-3.22.0-160000.1.1.s390x",
"product": {
"name": "freerdp-server-3.22.0-160000.1.1.s390x",
"product_id": "freerdp-server-3.22.0-160000.1.1.s390x"
}
},
{
"category": "product_version",
"name": "freerdp-wayland-3.22.0-160000.1.1.s390x",
"product": {
"name": "freerdp-wayland-3.22.0-160000.1.1.s390x",
"product_id": "freerdp-wayland-3.22.0-160000.1.1.s390x"
}
},
{
"category": "product_version",
"name": "libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"product": {
"name": "libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"product_id": "libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x"
}
},
{
"category": "product_version",
"name": "libfreerdp3-3-3.22.0-160000.1.1.s390x",
"product": {
"name": "libfreerdp3-3-3.22.0-160000.1.1.s390x",
"product_id": "libfreerdp3-3-3.22.0-160000.1.1.s390x"
}
},
{
"category": "product_version",
"name": "librdtk0-0-3.22.0-160000.1.1.s390x",
"product": {
"name": "librdtk0-0-3.22.0-160000.1.1.s390x",
"product_id": "librdtk0-0-3.22.0-160000.1.1.s390x"
}
},
{
"category": "product_version",
"name": "libuwac0-0-3.22.0-160000.1.1.s390x",
"product": {
"name": "libuwac0-0-3.22.0-160000.1.1.s390x",
"product_id": "libuwac0-0-3.22.0-160000.1.1.s390x"
}
},
{
"category": "product_version",
"name": "libwinpr3-3-3.22.0-160000.1.1.s390x",
"product": {
"name": "libwinpr3-3-3.22.0-160000.1.1.s390x",
"product_id": "libwinpr3-3-3.22.0-160000.1.1.s390x"
}
},
{
"category": "product_version",
"name": "rdtk0-devel-3.22.0-160000.1.1.s390x",
"product": {
"name": "rdtk0-devel-3.22.0-160000.1.1.s390x",
"product_id": "rdtk0-devel-3.22.0-160000.1.1.s390x"
}
},
{
"category": "product_version",
"name": "uwac0-devel-3.22.0-160000.1.1.s390x",
"product": {
"name": "uwac0-devel-3.22.0-160000.1.1.s390x",
"product_id": "uwac0-devel-3.22.0-160000.1.1.s390x"
}
},
{
"category": "product_version",
"name": "winpr-devel-3.22.0-160000.1.1.s390x",
"product": {
"name": "winpr-devel-3.22.0-160000.1.1.s390x",
"product_id": "winpr-devel-3.22.0-160000.1.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "freerdp-3.22.0-160000.1.1.x86_64",
"product": {
"name": "freerdp-3.22.0-160000.1.1.x86_64",
"product_id": "freerdp-3.22.0-160000.1.1.x86_64"
}
},
{
"category": "product_version",
"name": "freerdp-devel-3.22.0-160000.1.1.x86_64",
"product": {
"name": "freerdp-devel-3.22.0-160000.1.1.x86_64",
"product_id": "freerdp-devel-3.22.0-160000.1.1.x86_64"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-3.22.0-160000.1.1.x86_64",
"product": {
"name": "freerdp-proxy-3.22.0-160000.1.1.x86_64",
"product_id": "freerdp-proxy-3.22.0-160000.1.1.x86_64"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"product": {
"name": "freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"product_id": "freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64"
}
},
{
"category": "product_version",
"name": "freerdp-sdl-3.22.0-160000.1.1.x86_64",
"product": {
"name": "freerdp-sdl-3.22.0-160000.1.1.x86_64",
"product_id": "freerdp-sdl-3.22.0-160000.1.1.x86_64"
}
},
{
"category": "product_version",
"name": "freerdp-server-3.22.0-160000.1.1.x86_64",
"product": {
"name": "freerdp-server-3.22.0-160000.1.1.x86_64",
"product_id": "freerdp-server-3.22.0-160000.1.1.x86_64"
}
},
{
"category": "product_version",
"name": "freerdp-wayland-3.22.0-160000.1.1.x86_64",
"product": {
"name": "freerdp-wayland-3.22.0-160000.1.1.x86_64",
"product_id": "freerdp-wayland-3.22.0-160000.1.1.x86_64"
}
},
{
"category": "product_version",
"name": "libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"product": {
"name": "libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"product_id": "libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64"
}
},
{
"category": "product_version",
"name": "libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"product": {
"name": "libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"product_id": "libfreerdp3-3-3.22.0-160000.1.1.x86_64"
}
},
{
"category": "product_version",
"name": "librdtk0-0-3.22.0-160000.1.1.x86_64",
"product": {
"name": "librdtk0-0-3.22.0-160000.1.1.x86_64",
"product_id": "librdtk0-0-3.22.0-160000.1.1.x86_64"
}
},
{
"category": "product_version",
"name": "libuwac0-0-3.22.0-160000.1.1.x86_64",
"product": {
"name": "libuwac0-0-3.22.0-160000.1.1.x86_64",
"product_id": "libuwac0-0-3.22.0-160000.1.1.x86_64"
}
},
{
"category": "product_version",
"name": "libwinpr3-3-3.22.0-160000.1.1.x86_64",
"product": {
"name": "libwinpr3-3-3.22.0-160000.1.1.x86_64",
"product_id": "libwinpr3-3-3.22.0-160000.1.1.x86_64"
}
},
{
"category": "product_version",
"name": "rdtk0-devel-3.22.0-160000.1.1.x86_64",
"product": {
"name": "rdtk0-devel-3.22.0-160000.1.1.x86_64",
"product_id": "rdtk0-devel-3.22.0-160000.1.1.x86_64"
}
},
{
"category": "product_version",
"name": "uwac0-devel-3.22.0-160000.1.1.x86_64",
"product": {
"name": "uwac0-devel-3.22.0-160000.1.1.x86_64",
"product_id": "uwac0-devel-3.22.0-160000.1.1.x86_64"
}
},
{
"category": "product_version",
"name": "winpr-devel-3.22.0-160000.1.1.x86_64",
"product": {
"name": "winpr-devel-3.22.0-160000.1.1.x86_64",
"product_id": "winpr-devel-3.22.0-160000.1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Leap 16.0",
"product": {
"name": "openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0"
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-3.22.0-160000.1.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64"
},
"product_reference": "freerdp-3.22.0-160000.1.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-3.22.0-160000.1.1.ppc64le as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le"
},
"product_reference": "freerdp-3.22.0-160000.1.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-3.22.0-160000.1.1.s390x as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x"
},
"product_reference": "freerdp-3.22.0-160000.1.1.s390x",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-3.22.0-160000.1.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64"
},
"product_reference": "freerdp-3.22.0-160000.1.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-devel-3.22.0-160000.1.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64"
},
"product_reference": "freerdp-devel-3.22.0-160000.1.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-devel-3.22.0-160000.1.1.ppc64le as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le"
},
"product_reference": "freerdp-devel-3.22.0-160000.1.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-devel-3.22.0-160000.1.1.s390x as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x"
},
"product_reference": "freerdp-devel-3.22.0-160000.1.1.s390x",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-devel-3.22.0-160000.1.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64"
},
"product_reference": "freerdp-devel-3.22.0-160000.1.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-proxy-3.22.0-160000.1.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64"
},
"product_reference": "freerdp-proxy-3.22.0-160000.1.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-proxy-3.22.0-160000.1.1.ppc64le as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le"
},
"product_reference": "freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-proxy-3.22.0-160000.1.1.s390x as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x"
},
"product_reference": "freerdp-proxy-3.22.0-160000.1.1.s390x",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-proxy-3.22.0-160000.1.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64"
},
"product_reference": "freerdp-proxy-3.22.0-160000.1.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64"
},
"product_reference": "freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le"
},
"product_reference": "freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-proxy-plugins-3.22.0-160000.1.1.s390x as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x"
},
"product_reference": "freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64"
},
"product_reference": "freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-sdl-3.22.0-160000.1.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64"
},
"product_reference": "freerdp-sdl-3.22.0-160000.1.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-sdl-3.22.0-160000.1.1.ppc64le as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le"
},
"product_reference": "freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-sdl-3.22.0-160000.1.1.s390x as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x"
},
"product_reference": "freerdp-sdl-3.22.0-160000.1.1.s390x",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-sdl-3.22.0-160000.1.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64"
},
"product_reference": "freerdp-sdl-3.22.0-160000.1.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-server-3.22.0-160000.1.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64"
},
"product_reference": "freerdp-server-3.22.0-160000.1.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-server-3.22.0-160000.1.1.ppc64le as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le"
},
"product_reference": "freerdp-server-3.22.0-160000.1.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-server-3.22.0-160000.1.1.s390x as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x"
},
"product_reference": "freerdp-server-3.22.0-160000.1.1.s390x",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-server-3.22.0-160000.1.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64"
},
"product_reference": "freerdp-server-3.22.0-160000.1.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-wayland-3.22.0-160000.1.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64"
},
"product_reference": "freerdp-wayland-3.22.0-160000.1.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-wayland-3.22.0-160000.1.1.ppc64le as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le"
},
"product_reference": "freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-wayland-3.22.0-160000.1.1.s390x as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x"
},
"product_reference": "freerdp-wayland-3.22.0-160000.1.1.s390x",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-wayland-3.22.0-160000.1.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64"
},
"product_reference": "freerdp-wayland-3.22.0-160000.1.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64"
},
"product_reference": "libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le"
},
"product_reference": "libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x"
},
"product_reference": "libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64"
},
"product_reference": "libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp3-3-3.22.0-160000.1.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64"
},
"product_reference": "libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp3-3-3.22.0-160000.1.1.ppc64le as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le"
},
"product_reference": "libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp3-3-3.22.0-160000.1.1.s390x as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x"
},
"product_reference": "libfreerdp3-3-3.22.0-160000.1.1.s390x",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp3-3-3.22.0-160000.1.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64"
},
"product_reference": "libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "librdtk0-0-3.22.0-160000.1.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64"
},
"product_reference": "librdtk0-0-3.22.0-160000.1.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "librdtk0-0-3.22.0-160000.1.1.ppc64le as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le"
},
"product_reference": "librdtk0-0-3.22.0-160000.1.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "librdtk0-0-3.22.0-160000.1.1.s390x as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x"
},
"product_reference": "librdtk0-0-3.22.0-160000.1.1.s390x",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "librdtk0-0-3.22.0-160000.1.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64"
},
"product_reference": "librdtk0-0-3.22.0-160000.1.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libuwac0-0-3.22.0-160000.1.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64"
},
"product_reference": "libuwac0-0-3.22.0-160000.1.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libuwac0-0-3.22.0-160000.1.1.ppc64le as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le"
},
"product_reference": "libuwac0-0-3.22.0-160000.1.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libuwac0-0-3.22.0-160000.1.1.s390x as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x"
},
"product_reference": "libuwac0-0-3.22.0-160000.1.1.s390x",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libuwac0-0-3.22.0-160000.1.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64"
},
"product_reference": "libuwac0-0-3.22.0-160000.1.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr3-3-3.22.0-160000.1.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64"
},
"product_reference": "libwinpr3-3-3.22.0-160000.1.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr3-3-3.22.0-160000.1.1.ppc64le as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le"
},
"product_reference": "libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr3-3-3.22.0-160000.1.1.s390x as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x"
},
"product_reference": "libwinpr3-3-3.22.0-160000.1.1.s390x",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr3-3-3.22.0-160000.1.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64"
},
"product_reference": "libwinpr3-3-3.22.0-160000.1.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rdtk0-devel-3.22.0-160000.1.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64"
},
"product_reference": "rdtk0-devel-3.22.0-160000.1.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rdtk0-devel-3.22.0-160000.1.1.ppc64le as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le"
},
"product_reference": "rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rdtk0-devel-3.22.0-160000.1.1.s390x as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x"
},
"product_reference": "rdtk0-devel-3.22.0-160000.1.1.s390x",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rdtk0-devel-3.22.0-160000.1.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64"
},
"product_reference": "rdtk0-devel-3.22.0-160000.1.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "uwac0-devel-3.22.0-160000.1.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64"
},
"product_reference": "uwac0-devel-3.22.0-160000.1.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "uwac0-devel-3.22.0-160000.1.1.ppc64le as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le"
},
"product_reference": "uwac0-devel-3.22.0-160000.1.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "uwac0-devel-3.22.0-160000.1.1.s390x as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x"
},
"product_reference": "uwac0-devel-3.22.0-160000.1.1.s390x",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "uwac0-devel-3.22.0-160000.1.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64"
},
"product_reference": "uwac0-devel-3.22.0-160000.1.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "winpr-devel-3.22.0-160000.1.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64"
},
"product_reference": "winpr-devel-3.22.0-160000.1.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "winpr-devel-3.22.0-160000.1.1.ppc64le as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le"
},
"product_reference": "winpr-devel-3.22.0-160000.1.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "winpr-devel-3.22.0-160000.1.1.s390x as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x"
},
"product_reference": "winpr-devel-3.22.0-160000.1.1.s390x",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "winpr-devel-3.22.0-160000.1.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
},
"product_reference": "winpr-devel-3.22.0-160000.1.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-40574",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-40574"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. Affected versions are subject to an Out-Of-Bounds Write in the `writePixelBGRX` function. This issue is likely down to incorrect calculations of the `nHeight` and `srcStep` variables. This issue has been addressed in version 3.0.0-beta3. Users are advised to upgrade. There are no known workarounds for this issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-40574",
"url": "https://www.suse.com/security/cve/CVE-2023-40574"
},
{
"category": "external",
"summary": "SUSE Bug 1214869 for CVE-2023-40574",
"url": "https://bugzilla.suse.com/1214869"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-10T12:34:56Z",
"details": "moderate"
}
],
"title": "CVE-2023-40574"
},
{
"cve": "CVE-2023-40575",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-40575"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. Affected versions are subject to an Out-Of-Bounds Read in the `general_YUV444ToRGB_8u_P3AC4R_BGRX` function. This issue is likely down to insufficient data for the `pSrc` variable and results in crashes. This issue has been addressed in version 3.0.0-beta3. Users are advised to upgrade. There are no known workarounds for this issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-40575",
"url": "https://www.suse.com/security/cve/CVE-2023-40575"
},
{
"category": "external",
"summary": "SUSE Bug 1214870 for CVE-2023-40575",
"url": "https://bugzilla.suse.com/1214870"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-10T12:34:56Z",
"details": "moderate"
}
],
"title": "CVE-2023-40575"
},
{
"cve": "CVE-2023-40576",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-40576"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. Affected versions are subject to an Out-Of-Bounds Read in the `RleDecompress` function. This Out-Of-Bounds Read occurs because FreeRDP processes the `pbSrcBuffer` variable without checking if it contains data of sufficient length. Insufficient data in the `pbSrcBuffer` variable may cause errors or crashes. This issue has been addressed in version 3.0.0-beta3. Users are advised to upgrade. There are no known workarounds for this issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-40576",
"url": "https://www.suse.com/security/cve/CVE-2023-40576"
},
{
"category": "external",
"summary": "SUSE Bug 1214871 for CVE-2023-40576",
"url": "https://bugzilla.suse.com/1214871"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-10T12:34:56Z",
"details": "moderate"
}
],
"title": "CVE-2023-40576"
},
{
"cve": "CVE-2024-22211",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-22211"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a set of free and open source remote desktop protocol library and clients. In affected versions an integer overflow in `freerdp_bitmap_planar_context_reset` leads to heap-buffer overflow. This affects FreeRDP based clients. FreeRDP based server implementations and proxy are not affected. A malicious server could prepare a `RDPGFX_RESET_GRAPHICS_PDU` to allocate too small buffers, possibly triggering later out of bound read/write. Data extraction over network is not possible, the buffers are used to display an image. This issue has been addressed in version 2.11.5 and 3.2.0. Users are advised to upgrade. there are no know workarounds for this vulnerability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-22211",
"url": "https://www.suse.com/security/cve/CVE-2024-22211"
},
{
"category": "external",
"summary": "SUSE Bug 1219049 for CVE-2024-22211",
"url": "https://bugzilla.suse.com/1219049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-10T12:34:56Z",
"details": "important"
}
],
"title": "CVE-2024-22211"
},
{
"cve": "CVE-2024-32039",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-32039"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients using a version of FreeRDP prior to 3.5.0 or 2.11.6 are vulnerable to integer overflow and out-of-bounds write. Versions 3.5.0 and 2.11.6 patch the issue. As a workaround, do not use `/gfx` options (e.g. deactivate with `/bpp:32` or `/rfx` as it is on by default).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-32039",
"url": "https://www.suse.com/security/cve/CVE-2024-32039"
},
{
"category": "external",
"summary": "SUSE Bug 1223293 for CVE-2024-32039",
"url": "https://bugzilla.suse.com/1223293"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-10T12:34:56Z",
"details": "important"
}
],
"title": "CVE-2024-32039"
},
{
"cve": "CVE-2024-32040",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-32040"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients that use a version of FreeRDP prior to 3.5.0 or 2.11.6 and have connections to servers using the `NSC` codec are vulnerable to integer underflow. Versions 3.5.0 and 2.11.6 patch the issue. As a workaround, do not use the NSC codec (e.g. use `-nsc`).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-32040",
"url": "https://www.suse.com/security/cve/CVE-2024-32040"
},
{
"category": "external",
"summary": "SUSE Bug 1223294 for CVE-2024-32040",
"url": "https://bugzilla.suse.com/1223294"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-10T12:34:56Z",
"details": "moderate"
}
],
"title": "CVE-2024-32040"
},
{
"cve": "CVE-2024-32041",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-32041"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients that use a version of FreeRDP prior to 3.5.0 or 2.11.6 are vulnerable to out-of-bounds read. Versions 3.5.0 and 2.11.6 patch the issue. As a workaround, deactivate `/gfx` (on by default, set `/bpp` or `/rfx` options instead.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-32041",
"url": "https://www.suse.com/security/cve/CVE-2024-32041"
},
{
"category": "external",
"summary": "SUSE Bug 1223295 for CVE-2024-32041",
"url": "https://bugzilla.suse.com/1223295"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-10T12:34:56Z",
"details": "moderate"
}
],
"title": "CVE-2024-32041"
},
{
"cve": "CVE-2024-32458",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-32458"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients that use a version of FreeRDP prior to 3.5.0 or 2.11.6 are vulnerable to out-of-bounds read. Versions 3.5.0 and 2.11.6 patch the issue. As a workaround, use `/gfx` or `/rfx` modes (on by default, require server side support).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-32458",
"url": "https://www.suse.com/security/cve/CVE-2024-32458"
},
{
"category": "external",
"summary": "SUSE Bug 1223296 for CVE-2024-32458",
"url": "https://bugzilla.suse.com/1223296"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-10T12:34:56Z",
"details": "moderate"
}
],
"title": "CVE-2024-32458"
},
{
"cve": "CVE-2024-32459",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-32459"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients and servers that use a version of FreeRDP prior to 3.5.0 or 2.11.6 are vulnerable to out-of-bounds read. Versions 3.5.0 and 2.11.6 patch the issue. No known workarounds are available.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-32459",
"url": "https://www.suse.com/security/cve/CVE-2024-32459"
},
{
"category": "external",
"summary": "SUSE Bug 1223297 for CVE-2024-32459",
"url": "https://bugzilla.suse.com/1223297"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-10T12:34:56Z",
"details": "moderate"
}
],
"title": "CVE-2024-32459"
},
{
"cve": "CVE-2024-32460",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-32460"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based based clients using `/bpp:32` legacy `GDI` drawing path with a version of FreeRDP prior to 3.5.0 or 2.11.6 are vulnerable to out-of-bounds read. Versions 3.5.0 and 2.11.6 patch the issue. As a workaround, use modern drawing paths (e.g. `/rfx` or `/gfx` options). The workaround requires server side support.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-32460",
"url": "https://www.suse.com/security/cve/CVE-2024-32460"
},
{
"category": "external",
"summary": "SUSE Bug 1223298 for CVE-2024-32460",
"url": "https://bugzilla.suse.com/1223298"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-10T12:34:56Z",
"details": "important"
}
],
"title": "CVE-2024-32460"
},
{
"cve": "CVE-2024-32658",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-32658"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients prior to version 3.5.1 are vulnerable to out-of-bounds read. Version 3.5.1 contains a patch for the issue. No known workarounds are available.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-32658",
"url": "https://www.suse.com/security/cve/CVE-2024-32658"
},
{
"category": "external",
"summary": "SUSE Bug 1223353 for CVE-2024-32658",
"url": "https://bugzilla.suse.com/1223353"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-10T12:34:56Z",
"details": "important"
}
],
"title": "CVE-2024-32658"
},
{
"cve": "CVE-2024-32659",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-32659"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients prior to version 3.5.1 are vulnerable to out-of-bounds read if `((nWidth == 0) and (nHeight == 0))`. Version 3.5.1 contains a patch for the issue. No known workarounds are available.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-32659",
"url": "https://www.suse.com/security/cve/CVE-2024-32659"
},
{
"category": "external",
"summary": "SUSE Bug 1223346 for CVE-2024-32659",
"url": "https://bugzilla.suse.com/1223346"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-10T12:34:56Z",
"details": "important"
}
],
"title": "CVE-2024-32659"
},
{
"cve": "CVE-2024-32660",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-32660"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.5.1, a malicious server can crash the FreeRDP client by sending invalid huge allocation size. Version 3.5.1 contains a patch for the issue. No known workarounds are available.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-32660",
"url": "https://www.suse.com/security/cve/CVE-2024-32660"
},
{
"category": "external",
"summary": "SUSE Bug 1223347 for CVE-2024-32660",
"url": "https://bugzilla.suse.com/1223347"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-10T12:34:56Z",
"details": "moderate"
}
],
"title": "CVE-2024-32660"
},
{
"cve": "CVE-2024-32661",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-32661"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients prior to version 3.5.1 are vulnerable to a possible `NULL` access and crash. Version 3.5.1 contains a patch for the issue. No known workarounds are available.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-32661",
"url": "https://www.suse.com/security/cve/CVE-2024-32661"
},
{
"category": "external",
"summary": "SUSE Bug 1223348 for CVE-2024-32661",
"url": "https://bugzilla.suse.com/1223348"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-10T12:34:56Z",
"details": "moderate"
}
],
"title": "CVE-2024-32661"
},
{
"cve": "CVE-2025-4478",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-4478"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in the FreeRDP used by Anaconda\u0027s remote install feature, where a crafted RDP packet could trigger a segmentation fault. This issue causes the service to crash and remain defunct, resulting in a denial of service. It occurs pre-boot and is likely due to a NULL pointer dereference. Rebooting is required to recover the system.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-4478",
"url": "https://www.suse.com/security/cve/CVE-2025-4478"
},
{
"category": "external",
"summary": "SUSE Bug 1243109 for CVE-2025-4478",
"url": "https://bugzilla.suse.com/1243109"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-10T12:34:56Z",
"details": "important"
}
],
"title": "CVE-2025-4478"
},
{
"cve": "CVE-2026-22851",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22851"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, a race condition between the RDPGFX dynamic virtual channel thread and the SDL render thread leads to a heap use-after-free. Specifically, an escaped pointer to sdl-\u003eprimary (SDL_Surface) is accessed after it has been freed during RDPGFX ResetGraphics handling. This vulnerability is fixed in 3.20.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22851",
"url": "https://www.suse.com/security/cve/CVE-2026-22851"
},
{
"category": "external",
"summary": "SUSE Bug 1256717 for CVE-2026-22851",
"url": "https://bugzilla.suse.com/1256717"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-10T12:34:56Z",
"details": "moderate"
}
],
"title": "CVE-2026-22851"
},
{
"cve": "CVE-2026-22852",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22852"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, a malicious RDP server can trigger a heap-buffer-overflow write in the FreeRDP client when processing Audio Input (AUDIN) format lists. audin_process_formats reuses callback-\u003eformats_count across multiple MSG_SNDIN_FORMATS PDUs and writes past the newly allocated formats array, causing memory corruption and a crash. This vulnerability is fixed in 3.20.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22852",
"url": "https://www.suse.com/security/cve/CVE-2026-22852"
},
{
"category": "external",
"summary": "SUSE Bug 1256718 for CVE-2026-22852",
"url": "https://bugzilla.suse.com/1256718"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-10T12:34:56Z",
"details": "important"
}
],
"title": "CVE-2026-22852"
},
{
"cve": "CVE-2026-22853",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22853"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, RDPEAR\u0027s NDR array reader does not perform bounds checking on the on-wire element count and can write past the heap buffer allocated from hints, causing a heap buffer overflow in ndr_read_uint8Array. This vulnerability is fixed in 3.20.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22853",
"url": "https://www.suse.com/security/cve/CVE-2026-22853"
},
{
"category": "external",
"summary": "SUSE Bug 1256719 for CVE-2026-22853",
"url": "https://bugzilla.suse.com/1256719"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-10T12:34:56Z",
"details": "important"
}
],
"title": "CVE-2026-22853"
},
{
"cve": "CVE-2026-22854",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22854"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, a heap-buffer-overflow occurs in drive read when a server-controlled read length is used to read file data into an IRP output stream buffer without a hard upper bound, allowing an oversized read to overwrite heap memory. This vulnerability is fixed in 3.20.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22854",
"url": "https://www.suse.com/security/cve/CVE-2026-22854"
},
{
"category": "external",
"summary": "SUSE Bug 1256720 for CVE-2026-22854",
"url": "https://bugzilla.suse.com/1256720"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-10T12:34:56Z",
"details": "important"
}
],
"title": "CVE-2026-22854"
},
{
"cve": "CVE-2026-22855",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22855"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, a heap out-of-bounds read occurs in the smartcard SetAttrib path when cbAttrLen does not match the actual NDR buffer length. This vulnerability is fixed in 3.20.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22855",
"url": "https://www.suse.com/security/cve/CVE-2026-22855"
},
{
"category": "external",
"summary": "SUSE Bug 1256721 for CVE-2026-22855",
"url": "https://bugzilla.suse.com/1256721"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-10T12:34:56Z",
"details": "moderate"
}
],
"title": "CVE-2026-22855"
},
{
"cve": "CVE-2026-22856",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22856"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, a race in the serial channel IRP thread tracking allows a heap use-after-free when one thread removes an entry from serial-\u003eIrpThreads while another reads it. This vulnerability is fixed in 3.20.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22856",
"url": "https://www.suse.com/security/cve/CVE-2026-22856"
},
{
"category": "external",
"summary": "SUSE Bug 1256722 for CVE-2026-22856",
"url": "https://bugzilla.suse.com/1256722"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-10T12:34:56Z",
"details": "important"
}
],
"title": "CVE-2026-22856"
},
{
"cve": "CVE-2026-22857",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22857"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, a heap use-after-free occurs in irp_thread_func because the IRP is freed by irp-\u003eComplete() and then accessed again on the error path. This vulnerability is fixed in 3.20.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22857",
"url": "https://www.suse.com/security/cve/CVE-2026-22857"
},
{
"category": "external",
"summary": "SUSE Bug 1256723 for CVE-2026-22857",
"url": "https://bugzilla.suse.com/1256723"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-10T12:34:56Z",
"details": "important"
}
],
"title": "CVE-2026-22857"
},
{
"cve": "CVE-2026-22858",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22858"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, global-buffer-overflow was observed in FreeRDP\u0027s Base64 decoding path. The root cause appears to be implementation-defined char signedness: on Arm/AArch64 builds, plain char is treated as unsigned, so the guard c \u003c= 0 can be optimized into a simple c != 0 check. As a result, non-ASCII bytes (e.g., 0x80-0xFF) may bypass the intended range restriction and be used as an index into a global lookup table, causing out-of-bounds access. This vulnerability is fixed in 3.20.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22858",
"url": "https://www.suse.com/security/cve/CVE-2026-22858"
},
{
"category": "external",
"summary": "SUSE Bug 1256724 for CVE-2026-22858",
"url": "https://bugzilla.suse.com/1256724"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-10T12:34:56Z",
"details": "moderate"
}
],
"title": "CVE-2026-22858"
},
{
"cve": "CVE-2026-22859",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22859"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, the URBDRC client does not perform bounds checking on server-supplied MSUSB_INTERFACE_DESCRIPTOR values and uses them as indices in libusb_udev_complete_msconfig_setup, causing an out-of-bounds read. This vulnerability is fixed in 3.20.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22859",
"url": "https://www.suse.com/security/cve/CVE-2026-22859"
},
{
"category": "external",
"summary": "SUSE Bug 1256725 for CVE-2026-22859",
"url": "https://bugzilla.suse.com/1256725"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-10T12:34:56Z",
"details": "moderate"
}
],
"title": "CVE-2026-22859"
},
{
"cve": "CVE-2026-23530",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23530"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0,`freerdp_bitmap_decompress_planar` does not validate `nSrcWidth`/`nSrcHeight` against `planar-\u003emaxWidth`/`maxHeight` before RLE decode. A malicious server can trigger a client-side heap buffer overflow, causing a crash (DoS) and potential heap corruption with code-execution risk depending on allocator behavior and surrounding heap layout. Version 3.21.0 contains a patch for the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23530",
"url": "https://www.suse.com/security/cve/CVE-2026-23530"
},
{
"category": "external",
"summary": "SUSE Bug 1256940 for CVE-2026-23530",
"url": "https://bugzilla.suse.com/1256940"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-10T12:34:56Z",
"details": "important"
}
],
"title": "CVE-2026-23530"
},
{
"cve": "CVE-2026-23531",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23531"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0, in ClearCodec, when `glyphData` is present, `clear_decompress` calls `freerdp_image_copy_no_overlap` without validating the destination rectangle, allowing an out-of-bounds read/write via crafted RDPGFX surface updates. A malicious server can trigger a client-side heap buffer overflow, causing a crash (DoS) and potential heap corruption with code-execution risk depending on allocator behavior and surrounding heap layout. Version 3.21.0 contains a patch for the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23531",
"url": "https://www.suse.com/security/cve/CVE-2026-23531"
},
{
"category": "external",
"summary": "SUSE Bug 1256941 for CVE-2026-23531",
"url": "https://bugzilla.suse.com/1256941"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-10T12:34:56Z",
"details": "important"
}
],
"title": "CVE-2026-23531"
},
{
"cve": "CVE-2026-23532",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23532"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0, a client-side heap buffer overflow occurs in the FreeRDP client\u0027s `gdi_SurfaceToSurface` path due to a mismatch between destination rectangle clamping and the actual copy size. A malicious server can trigger a client-side heap buffer overflow, causing a crash (DoS) and potential heap corruption with code-execution risk depending on allocator behavior and surrounding heap layout. Version 3.21.0 contains a patch for the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23532",
"url": "https://www.suse.com/security/cve/CVE-2026-23532"
},
{
"category": "external",
"summary": "SUSE Bug 1256942 for CVE-2026-23532",
"url": "https://bugzilla.suse.com/1256942"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-10T12:34:56Z",
"details": "important"
}
],
"title": "CVE-2026-23532"
},
{
"cve": "CVE-2026-23533",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23533"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0, a client-side heap buffer overflow occurs in the RDPGFX ClearCodec decode path when maliciously crafted residual data causes out-of-bounds writes during color output. A malicious server can trigger a client-side heap buffer overflow, causing a crash (DoS) and potential heap corruption with code-execution risk depending on allocator behavior and surrounding heap layout. Version 3.21.0 contains a patch for the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23533",
"url": "https://www.suse.com/security/cve/CVE-2026-23533"
},
{
"category": "external",
"summary": "SUSE Bug 1256943 for CVE-2026-23533",
"url": "https://bugzilla.suse.com/1256943"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-10T12:34:56Z",
"details": "important"
}
],
"title": "CVE-2026-23533"
},
{
"cve": "CVE-2026-23534",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23534"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0, a client-side heap buffer overflow occurs in the ClearCodec bands decode path when crafted band coordinates allow writes past the end of the destination surface buffer. A malicious server can trigger a client-side heap buffer overflow, causing a crash (DoS) and potential heap corruption with code-execution risk depending on allocator behavior and surrounding heap layout. Version 3.21.0 contains a patch for the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23534",
"url": "https://www.suse.com/security/cve/CVE-2026-23534"
},
{
"category": "external",
"summary": "SUSE Bug 1256944 for CVE-2026-23534",
"url": "https://bugzilla.suse.com/1256944"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-10T12:34:56Z",
"details": "important"
}
],
"title": "CVE-2026-23534"
},
{
"cve": "CVE-2026-23732",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23732"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0, FastGlyph parsing trusts `cbData`/remaining length and never validates against the minimum size implied by `cx/cy`. A malicious server can trigger a client-side global buffer overflow, causing a crash (DoS). Version 3.21.0 contains a patch for the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23732",
"url": "https://www.suse.com/security/cve/CVE-2026-23732"
},
{
"category": "external",
"summary": "SUSE Bug 1256945 for CVE-2026-23732",
"url": "https://bugzilla.suse.com/1256945"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-10T12:34:56Z",
"details": "moderate"
}
],
"title": "CVE-2026-23732"
},
{
"cve": "CVE-2026-23883",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23883"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0, `xf_Pointer_New` frees `cursorPixels` on failure, then `pointer_free` calls `xf_Pointer_Free` and frees it again, triggering ASan UAF. A malicious server can trigger a client-side use after free, causing a crash (DoS) and potential heap corruption with code-execution risk depending on allocator behavior and surrounding heap layout. Version 3.21.0 contains a patch for the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23883",
"url": "https://www.suse.com/security/cve/CVE-2026-23883"
},
{
"category": "external",
"summary": "SUSE Bug 1256946 for CVE-2026-23883",
"url": "https://bugzilla.suse.com/1256946"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-10T12:34:56Z",
"details": "important"
}
],
"title": "CVE-2026-23883"
},
{
"cve": "CVE-2026-23884",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23884"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0, offscreen bitmap deletion leaves `gdi-\u003edrawing` pointing to freed memory, causing UAF when related update packets arrive. A malicious server can trigger a client-side use after free, causing a crash (DoS) and potential heap corruption with code-execution risk depending on allocator behavior and surrounding heap layout. Version 3.21.0 contains a patch for the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23884",
"url": "https://www.suse.com/security/cve/CVE-2026-23884"
},
{
"category": "external",
"summary": "SUSE Bug 1256947 for CVE-2026-23884",
"url": "https://bugzilla.suse.com/1256947"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-10T12:34:56Z",
"details": "important"
}
],
"title": "CVE-2026-23884"
},
{
"cve": "CVE-2026-23948",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23948"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, a NULL pointer dereference vulnerability in rdp_write_logon_info_v2() allows a malicious RDP server to crash FreeRDP proxy by sending a specially crafted LogonInfoV2 PDU with cbDomain=0 or cbUserName=0. This vulnerability is fixed in 3.22.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23948",
"url": "https://www.suse.com/security/cve/CVE-2026-23948"
},
{
"category": "external",
"summary": "SUSE Bug 1258001 for CVE-2026-23948",
"url": "https://bugzilla.suse.com/1258001"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-10T12:34:56Z",
"details": "moderate"
}
],
"title": "CVE-2026-23948"
},
{
"cve": "CVE-2026-24491",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-24491"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, video_timer can send client notifications after the control channel is closed, dereferencing a freed callback and triggering a use after free. This vulnerability is fixed in 3.22.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-24491",
"url": "https://www.suse.com/security/cve/CVE-2026-24491"
},
{
"category": "external",
"summary": "SUSE Bug 1257981 for CVE-2026-24491",
"url": "https://bugzilla.suse.com/1257981"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-10T12:34:56Z",
"details": "important"
}
],
"title": "CVE-2026-24491"
},
{
"cve": "CVE-2026-24675",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-24675"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, urb_select_interface can free the device\u0027s MS config on error but later code still dereferences it, leading to a use after free in libusb_udev_select_interface. This vulnerability is fixed in 3.22.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-24675",
"url": "https://www.suse.com/security/cve/CVE-2026-24675"
},
{
"category": "external",
"summary": "SUSE Bug 1257982 for CVE-2026-24675",
"url": "https://bugzilla.suse.com/1257982"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-10T12:34:56Z",
"details": "important"
}
],
"title": "CVE-2026-24675"
},
{
"cve": "CVE-2026-24676",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-24676"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, AUDIN format renegotiation frees the active format list while the capture thread continues using audin-\u003eformat, leading to a use after free in audio_format_compatible. This vulnerability is fixed in 3.22.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-24676",
"url": "https://www.suse.com/security/cve/CVE-2026-24676"
},
{
"category": "external",
"summary": "SUSE Bug 1257983 for CVE-2026-24676",
"url": "https://bugzilla.suse.com/1257983"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-10T12:34:56Z",
"details": "important"
}
],
"title": "CVE-2026-24676"
},
{
"cve": "CVE-2026-24677",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-24677"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, ecam_encoder_compress_h264 trusts server-controlled dimensions and does not validate the source buffer size, leading to an out-of-bounds read in sws_scale. This vulnerability is fixed in 3.22.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-24677",
"url": "https://www.suse.com/security/cve/CVE-2026-24677"
},
{
"category": "external",
"summary": "SUSE Bug 1257984 for CVE-2026-24677",
"url": "https://bugzilla.suse.com/1257984"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-10T12:34:56Z",
"details": "important"
}
],
"title": "CVE-2026-24677"
},
{
"cve": "CVE-2026-24678",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-24678"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, A capture thread sends sample responses using a freed channel callback after a device channel close, leading to a use after free in ecam_channel_write. This vulnerability is fixed in 3.22.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-24678",
"url": "https://www.suse.com/security/cve/CVE-2026-24678"
},
{
"category": "external",
"summary": "SUSE Bug 1257985 for CVE-2026-24678",
"url": "https://bugzilla.suse.com/1257985"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-10T12:34:56Z",
"details": "important"
}
],
"title": "CVE-2026-24678"
},
{
"cve": "CVE-2026-24679",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-24679"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, The URBDRC client uses server-supplied interface numbers as array indices without bounds checks, causing an out-of-bounds read in libusb_udev_select_interface. This vulnerability is fixed in 3.22.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-24679",
"url": "https://www.suse.com/security/cve/CVE-2026-24679"
},
{
"category": "external",
"summary": "SUSE Bug 1257986 for CVE-2026-24679",
"url": "https://bugzilla.suse.com/1257986"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-10T12:34:56Z",
"details": "important"
}
],
"title": "CVE-2026-24679"
},
{
"cve": "CVE-2026-24680",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-24680"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, sdl_Pointer_New frees data on failure, then pointer_free calls sdl_Pointer_Free and frees it again, triggering ASan UAF. This vulnerability is fixed in 3.22.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-24680",
"url": "https://www.suse.com/security/cve/CVE-2026-24680"
},
{
"category": "external",
"summary": "SUSE Bug 1257987 for CVE-2026-24680",
"url": "https://bugzilla.suse.com/1257987"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-10T12:34:56Z",
"details": "important"
}
],
"title": "CVE-2026-24680"
},
{
"cve": "CVE-2026-24681",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-24681"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, aAsynchronous bulk transfer completions can use a freed channel callback after URBDRC channel close, leading to a use after free in urb_write_completion. This vulnerability is fixed in 3.22.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-24681",
"url": "https://www.suse.com/security/cve/CVE-2026-24681"
},
{
"category": "external",
"summary": "SUSE Bug 1257988 for CVE-2026-24681",
"url": "https://bugzilla.suse.com/1257988"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-10T12:34:56Z",
"details": "important"
}
],
"title": "CVE-2026-24681"
},
{
"cve": "CVE-2026-24682",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-24682"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, audin_server_recv_formats frees an incorrect number of audio formats on parse failure (i + i), leading to out-of-bounds access in audio_formats_free. This vulnerability is fixed in 3.22.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-24682",
"url": "https://www.suse.com/security/cve/CVE-2026-24682"
},
{
"category": "external",
"summary": "SUSE Bug 1257989 for CVE-2026-24682",
"url": "https://bugzilla.suse.com/1257989"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-10T12:34:56Z",
"details": "important"
}
],
"title": "CVE-2026-24682"
},
{
"cve": "CVE-2026-24683",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-24683"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. ainput_send_input_event caches channel_callback in a local variable and later uses it without synchronization; a concurrent channel close can free or reinitialize the callback, leading to a use after free. Prior to 3.22.0, This vulnerability is fixed in 3.22.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-24683",
"url": "https://www.suse.com/security/cve/CVE-2026-24683"
},
{
"category": "external",
"summary": "SUSE Bug 1257990 for CVE-2026-24683",
"url": "https://bugzilla.suse.com/1257990"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-10T12:34:56Z",
"details": "important"
}
],
"title": "CVE-2026-24683"
},
{
"cve": "CVE-2026-24684",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-24684"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, the RDPSND async playback thread can process queued PDUs after the channel is closed and internal state is freed, leading to a use after free in rdpsnd_treat_wave. This vulnerability is fixed in 3.22.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-24684",
"url": "https://www.suse.com/security/cve/CVE-2026-24684"
},
{
"category": "external",
"summary": "SUSE Bug 1257991 for CVE-2026-24684",
"url": "https://bugzilla.suse.com/1257991"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-proxy-plugins-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-sdl-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-server-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:freerdp-wayland-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp-server-proxy3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libfreerdp3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:librdtk0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libuwac0-0-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:libwinpr3-3-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:rdtk0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:uwac0-devel-3.22.0-160000.1.1.x86_64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.aarch64",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.ppc64le",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.s390x",
"openSUSE Leap 16.0:winpr-devel-3.22.0-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-10T12:34:56Z",
"details": "important"
}
],
"title": "CVE-2026-24684"
}
]
}
OPENSUSE-SU-2026:10123-1
Vulnerability from csaf_opensuse - Published: 2026-01-30 00:00 - Updated: 2026-01-30 00:00Summary
freerdp-3.21.0-2.1 on GA media
Notes
Title of the patch
freerdp-3.21.0-2.1 on GA media
Description of the patch
These are all security issues fixed in the freerdp-3.21.0-2.1 package on the GA media of openSUSE Tumbleweed.
Patchnames
openSUSE-Tumbleweed-2026-10123
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "freerdp-3.21.0-2.1 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the freerdp-3.21.0-2.1 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2026-10123",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2026_10123-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-22211 page",
"url": "https://www.suse.com/security/cve/CVE-2024-22211/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-32658 page",
"url": "https://www.suse.com/security/cve/CVE-2024-32658/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-32659 page",
"url": "https://www.suse.com/security/cve/CVE-2024-32659/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-32660 page",
"url": "https://www.suse.com/security/cve/CVE-2024-32660/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-32661 page",
"url": "https://www.suse.com/security/cve/CVE-2024-32661/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-4478 page",
"url": "https://www.suse.com/security/cve/CVE-2025-4478/"
}
],
"title": "freerdp-3.21.0-2.1 on GA media",
"tracking": {
"current_release_date": "2026-01-30T00:00:00Z",
"generator": {
"date": "2026-01-30T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2026:10123-1",
"initial_release_date": "2026-01-30T00:00:00Z",
"revision_history": [
{
"date": "2026-01-30T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "freerdp-3.21.0-2.1.aarch64",
"product": {
"name": "freerdp-3.21.0-2.1.aarch64",
"product_id": "freerdp-3.21.0-2.1.aarch64"
}
},
{
"category": "product_version",
"name": "freerdp-devel-3.21.0-2.1.aarch64",
"product": {
"name": "freerdp-devel-3.21.0-2.1.aarch64",
"product_id": "freerdp-devel-3.21.0-2.1.aarch64"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-3.21.0-2.1.aarch64",
"product": {
"name": "freerdp-proxy-3.21.0-2.1.aarch64",
"product_id": "freerdp-proxy-3.21.0-2.1.aarch64"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-plugins-3.21.0-2.1.aarch64",
"product": {
"name": "freerdp-proxy-plugins-3.21.0-2.1.aarch64",
"product_id": "freerdp-proxy-plugins-3.21.0-2.1.aarch64"
}
},
{
"category": "product_version",
"name": "freerdp-sdl-3.21.0-2.1.aarch64",
"product": {
"name": "freerdp-sdl-3.21.0-2.1.aarch64",
"product_id": "freerdp-sdl-3.21.0-2.1.aarch64"
}
},
{
"category": "product_version",
"name": "freerdp-server-3.21.0-2.1.aarch64",
"product": {
"name": "freerdp-server-3.21.0-2.1.aarch64",
"product_id": "freerdp-server-3.21.0-2.1.aarch64"
}
},
{
"category": "product_version",
"name": "freerdp-wayland-3.21.0-2.1.aarch64",
"product": {
"name": "freerdp-wayland-3.21.0-2.1.aarch64",
"product_id": "freerdp-wayland-3.21.0-2.1.aarch64"
}
},
{
"category": "product_version",
"name": "libfreerdp-server-proxy3-3-3.21.0-2.1.aarch64",
"product": {
"name": "libfreerdp-server-proxy3-3-3.21.0-2.1.aarch64",
"product_id": "libfreerdp-server-proxy3-3-3.21.0-2.1.aarch64"
}
},
{
"category": "product_version",
"name": "libfreerdp3-3-3.21.0-2.1.aarch64",
"product": {
"name": "libfreerdp3-3-3.21.0-2.1.aarch64",
"product_id": "libfreerdp3-3-3.21.0-2.1.aarch64"
}
},
{
"category": "product_version",
"name": "librdtk0-0-3.21.0-2.1.aarch64",
"product": {
"name": "librdtk0-0-3.21.0-2.1.aarch64",
"product_id": "librdtk0-0-3.21.0-2.1.aarch64"
}
},
{
"category": "product_version",
"name": "libuwac0-0-3.21.0-2.1.aarch64",
"product": {
"name": "libuwac0-0-3.21.0-2.1.aarch64",
"product_id": "libuwac0-0-3.21.0-2.1.aarch64"
}
},
{
"category": "product_version",
"name": "libwinpr3-3-3.21.0-2.1.aarch64",
"product": {
"name": "libwinpr3-3-3.21.0-2.1.aarch64",
"product_id": "libwinpr3-3-3.21.0-2.1.aarch64"
}
},
{
"category": "product_version",
"name": "rdtk0-devel-3.21.0-2.1.aarch64",
"product": {
"name": "rdtk0-devel-3.21.0-2.1.aarch64",
"product_id": "rdtk0-devel-3.21.0-2.1.aarch64"
}
},
{
"category": "product_version",
"name": "uwac0-devel-3.21.0-2.1.aarch64",
"product": {
"name": "uwac0-devel-3.21.0-2.1.aarch64",
"product_id": "uwac0-devel-3.21.0-2.1.aarch64"
}
},
{
"category": "product_version",
"name": "winpr-devel-3.21.0-2.1.aarch64",
"product": {
"name": "winpr-devel-3.21.0-2.1.aarch64",
"product_id": "winpr-devel-3.21.0-2.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "freerdp-3.21.0-2.1.ppc64le",
"product": {
"name": "freerdp-3.21.0-2.1.ppc64le",
"product_id": "freerdp-3.21.0-2.1.ppc64le"
}
},
{
"category": "product_version",
"name": "freerdp-devel-3.21.0-2.1.ppc64le",
"product": {
"name": "freerdp-devel-3.21.0-2.1.ppc64le",
"product_id": "freerdp-devel-3.21.0-2.1.ppc64le"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-3.21.0-2.1.ppc64le",
"product": {
"name": "freerdp-proxy-3.21.0-2.1.ppc64le",
"product_id": "freerdp-proxy-3.21.0-2.1.ppc64le"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-plugins-3.21.0-2.1.ppc64le",
"product": {
"name": "freerdp-proxy-plugins-3.21.0-2.1.ppc64le",
"product_id": "freerdp-proxy-plugins-3.21.0-2.1.ppc64le"
}
},
{
"category": "product_version",
"name": "freerdp-sdl-3.21.0-2.1.ppc64le",
"product": {
"name": "freerdp-sdl-3.21.0-2.1.ppc64le",
"product_id": "freerdp-sdl-3.21.0-2.1.ppc64le"
}
},
{
"category": "product_version",
"name": "freerdp-server-3.21.0-2.1.ppc64le",
"product": {
"name": "freerdp-server-3.21.0-2.1.ppc64le",
"product_id": "freerdp-server-3.21.0-2.1.ppc64le"
}
},
{
"category": "product_version",
"name": "freerdp-wayland-3.21.0-2.1.ppc64le",
"product": {
"name": "freerdp-wayland-3.21.0-2.1.ppc64le",
"product_id": "freerdp-wayland-3.21.0-2.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libfreerdp-server-proxy3-3-3.21.0-2.1.ppc64le",
"product": {
"name": "libfreerdp-server-proxy3-3-3.21.0-2.1.ppc64le",
"product_id": "libfreerdp-server-proxy3-3-3.21.0-2.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libfreerdp3-3-3.21.0-2.1.ppc64le",
"product": {
"name": "libfreerdp3-3-3.21.0-2.1.ppc64le",
"product_id": "libfreerdp3-3-3.21.0-2.1.ppc64le"
}
},
{
"category": "product_version",
"name": "librdtk0-0-3.21.0-2.1.ppc64le",
"product": {
"name": "librdtk0-0-3.21.0-2.1.ppc64le",
"product_id": "librdtk0-0-3.21.0-2.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libuwac0-0-3.21.0-2.1.ppc64le",
"product": {
"name": "libuwac0-0-3.21.0-2.1.ppc64le",
"product_id": "libuwac0-0-3.21.0-2.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libwinpr3-3-3.21.0-2.1.ppc64le",
"product": {
"name": "libwinpr3-3-3.21.0-2.1.ppc64le",
"product_id": "libwinpr3-3-3.21.0-2.1.ppc64le"
}
},
{
"category": "product_version",
"name": "rdtk0-devel-3.21.0-2.1.ppc64le",
"product": {
"name": "rdtk0-devel-3.21.0-2.1.ppc64le",
"product_id": "rdtk0-devel-3.21.0-2.1.ppc64le"
}
},
{
"category": "product_version",
"name": "uwac0-devel-3.21.0-2.1.ppc64le",
"product": {
"name": "uwac0-devel-3.21.0-2.1.ppc64le",
"product_id": "uwac0-devel-3.21.0-2.1.ppc64le"
}
},
{
"category": "product_version",
"name": "winpr-devel-3.21.0-2.1.ppc64le",
"product": {
"name": "winpr-devel-3.21.0-2.1.ppc64le",
"product_id": "winpr-devel-3.21.0-2.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "freerdp-3.21.0-2.1.s390x",
"product": {
"name": "freerdp-3.21.0-2.1.s390x",
"product_id": "freerdp-3.21.0-2.1.s390x"
}
},
{
"category": "product_version",
"name": "freerdp-devel-3.21.0-2.1.s390x",
"product": {
"name": "freerdp-devel-3.21.0-2.1.s390x",
"product_id": "freerdp-devel-3.21.0-2.1.s390x"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-3.21.0-2.1.s390x",
"product": {
"name": "freerdp-proxy-3.21.0-2.1.s390x",
"product_id": "freerdp-proxy-3.21.0-2.1.s390x"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-plugins-3.21.0-2.1.s390x",
"product": {
"name": "freerdp-proxy-plugins-3.21.0-2.1.s390x",
"product_id": "freerdp-proxy-plugins-3.21.0-2.1.s390x"
}
},
{
"category": "product_version",
"name": "freerdp-sdl-3.21.0-2.1.s390x",
"product": {
"name": "freerdp-sdl-3.21.0-2.1.s390x",
"product_id": "freerdp-sdl-3.21.0-2.1.s390x"
}
},
{
"category": "product_version",
"name": "freerdp-server-3.21.0-2.1.s390x",
"product": {
"name": "freerdp-server-3.21.0-2.1.s390x",
"product_id": "freerdp-server-3.21.0-2.1.s390x"
}
},
{
"category": "product_version",
"name": "freerdp-wayland-3.21.0-2.1.s390x",
"product": {
"name": "freerdp-wayland-3.21.0-2.1.s390x",
"product_id": "freerdp-wayland-3.21.0-2.1.s390x"
}
},
{
"category": "product_version",
"name": "libfreerdp-server-proxy3-3-3.21.0-2.1.s390x",
"product": {
"name": "libfreerdp-server-proxy3-3-3.21.0-2.1.s390x",
"product_id": "libfreerdp-server-proxy3-3-3.21.0-2.1.s390x"
}
},
{
"category": "product_version",
"name": "libfreerdp3-3-3.21.0-2.1.s390x",
"product": {
"name": "libfreerdp3-3-3.21.0-2.1.s390x",
"product_id": "libfreerdp3-3-3.21.0-2.1.s390x"
}
},
{
"category": "product_version",
"name": "librdtk0-0-3.21.0-2.1.s390x",
"product": {
"name": "librdtk0-0-3.21.0-2.1.s390x",
"product_id": "librdtk0-0-3.21.0-2.1.s390x"
}
},
{
"category": "product_version",
"name": "libuwac0-0-3.21.0-2.1.s390x",
"product": {
"name": "libuwac0-0-3.21.0-2.1.s390x",
"product_id": "libuwac0-0-3.21.0-2.1.s390x"
}
},
{
"category": "product_version",
"name": "libwinpr3-3-3.21.0-2.1.s390x",
"product": {
"name": "libwinpr3-3-3.21.0-2.1.s390x",
"product_id": "libwinpr3-3-3.21.0-2.1.s390x"
}
},
{
"category": "product_version",
"name": "rdtk0-devel-3.21.0-2.1.s390x",
"product": {
"name": "rdtk0-devel-3.21.0-2.1.s390x",
"product_id": "rdtk0-devel-3.21.0-2.1.s390x"
}
},
{
"category": "product_version",
"name": "uwac0-devel-3.21.0-2.1.s390x",
"product": {
"name": "uwac0-devel-3.21.0-2.1.s390x",
"product_id": "uwac0-devel-3.21.0-2.1.s390x"
}
},
{
"category": "product_version",
"name": "winpr-devel-3.21.0-2.1.s390x",
"product": {
"name": "winpr-devel-3.21.0-2.1.s390x",
"product_id": "winpr-devel-3.21.0-2.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "freerdp-3.21.0-2.1.x86_64",
"product": {
"name": "freerdp-3.21.0-2.1.x86_64",
"product_id": "freerdp-3.21.0-2.1.x86_64"
}
},
{
"category": "product_version",
"name": "freerdp-devel-3.21.0-2.1.x86_64",
"product": {
"name": "freerdp-devel-3.21.0-2.1.x86_64",
"product_id": "freerdp-devel-3.21.0-2.1.x86_64"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-3.21.0-2.1.x86_64",
"product": {
"name": "freerdp-proxy-3.21.0-2.1.x86_64",
"product_id": "freerdp-proxy-3.21.0-2.1.x86_64"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-plugins-3.21.0-2.1.x86_64",
"product": {
"name": "freerdp-proxy-plugins-3.21.0-2.1.x86_64",
"product_id": "freerdp-proxy-plugins-3.21.0-2.1.x86_64"
}
},
{
"category": "product_version",
"name": "freerdp-sdl-3.21.0-2.1.x86_64",
"product": {
"name": "freerdp-sdl-3.21.0-2.1.x86_64",
"product_id": "freerdp-sdl-3.21.0-2.1.x86_64"
}
},
{
"category": "product_version",
"name": "freerdp-server-3.21.0-2.1.x86_64",
"product": {
"name": "freerdp-server-3.21.0-2.1.x86_64",
"product_id": "freerdp-server-3.21.0-2.1.x86_64"
}
},
{
"category": "product_version",
"name": "freerdp-wayland-3.21.0-2.1.x86_64",
"product": {
"name": "freerdp-wayland-3.21.0-2.1.x86_64",
"product_id": "freerdp-wayland-3.21.0-2.1.x86_64"
}
},
{
"category": "product_version",
"name": "libfreerdp-server-proxy3-3-3.21.0-2.1.x86_64",
"product": {
"name": "libfreerdp-server-proxy3-3-3.21.0-2.1.x86_64",
"product_id": "libfreerdp-server-proxy3-3-3.21.0-2.1.x86_64"
}
},
{
"category": "product_version",
"name": "libfreerdp3-3-3.21.0-2.1.x86_64",
"product": {
"name": "libfreerdp3-3-3.21.0-2.1.x86_64",
"product_id": "libfreerdp3-3-3.21.0-2.1.x86_64"
}
},
{
"category": "product_version",
"name": "librdtk0-0-3.21.0-2.1.x86_64",
"product": {
"name": "librdtk0-0-3.21.0-2.1.x86_64",
"product_id": "librdtk0-0-3.21.0-2.1.x86_64"
}
},
{
"category": "product_version",
"name": "libuwac0-0-3.21.0-2.1.x86_64",
"product": {
"name": "libuwac0-0-3.21.0-2.1.x86_64",
"product_id": "libuwac0-0-3.21.0-2.1.x86_64"
}
},
{
"category": "product_version",
"name": "libwinpr3-3-3.21.0-2.1.x86_64",
"product": {
"name": "libwinpr3-3-3.21.0-2.1.x86_64",
"product_id": "libwinpr3-3-3.21.0-2.1.x86_64"
}
},
{
"category": "product_version",
"name": "rdtk0-devel-3.21.0-2.1.x86_64",
"product": {
"name": "rdtk0-devel-3.21.0-2.1.x86_64",
"product_id": "rdtk0-devel-3.21.0-2.1.x86_64"
}
},
{
"category": "product_version",
"name": "uwac0-devel-3.21.0-2.1.x86_64",
"product": {
"name": "uwac0-devel-3.21.0-2.1.x86_64",
"product_id": "uwac0-devel-3.21.0-2.1.x86_64"
}
},
{
"category": "product_version",
"name": "winpr-devel-3.21.0-2.1.x86_64",
"product": {
"name": "winpr-devel-3.21.0-2.1.x86_64",
"product_id": "winpr-devel-3.21.0-2.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-3.21.0-2.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-3.21.0-2.1.aarch64"
},
"product_reference": "freerdp-3.21.0-2.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-3.21.0-2.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-3.21.0-2.1.ppc64le"
},
"product_reference": "freerdp-3.21.0-2.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-3.21.0-2.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-3.21.0-2.1.s390x"
},
"product_reference": "freerdp-3.21.0-2.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-3.21.0-2.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-3.21.0-2.1.x86_64"
},
"product_reference": "freerdp-3.21.0-2.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-devel-3.21.0-2.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-devel-3.21.0-2.1.aarch64"
},
"product_reference": "freerdp-devel-3.21.0-2.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-devel-3.21.0-2.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-devel-3.21.0-2.1.ppc64le"
},
"product_reference": "freerdp-devel-3.21.0-2.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-devel-3.21.0-2.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-devel-3.21.0-2.1.s390x"
},
"product_reference": "freerdp-devel-3.21.0-2.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-devel-3.21.0-2.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-devel-3.21.0-2.1.x86_64"
},
"product_reference": "freerdp-devel-3.21.0-2.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-proxy-3.21.0-2.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-proxy-3.21.0-2.1.aarch64"
},
"product_reference": "freerdp-proxy-3.21.0-2.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-proxy-3.21.0-2.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-proxy-3.21.0-2.1.ppc64le"
},
"product_reference": "freerdp-proxy-3.21.0-2.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-proxy-3.21.0-2.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-proxy-3.21.0-2.1.s390x"
},
"product_reference": "freerdp-proxy-3.21.0-2.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-proxy-3.21.0-2.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-proxy-3.21.0-2.1.x86_64"
},
"product_reference": "freerdp-proxy-3.21.0-2.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-proxy-plugins-3.21.0-2.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-proxy-plugins-3.21.0-2.1.aarch64"
},
"product_reference": "freerdp-proxy-plugins-3.21.0-2.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-proxy-plugins-3.21.0-2.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-proxy-plugins-3.21.0-2.1.ppc64le"
},
"product_reference": "freerdp-proxy-plugins-3.21.0-2.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-proxy-plugins-3.21.0-2.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-proxy-plugins-3.21.0-2.1.s390x"
},
"product_reference": "freerdp-proxy-plugins-3.21.0-2.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-proxy-plugins-3.21.0-2.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-proxy-plugins-3.21.0-2.1.x86_64"
},
"product_reference": "freerdp-proxy-plugins-3.21.0-2.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-sdl-3.21.0-2.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-sdl-3.21.0-2.1.aarch64"
},
"product_reference": "freerdp-sdl-3.21.0-2.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-sdl-3.21.0-2.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-sdl-3.21.0-2.1.ppc64le"
},
"product_reference": "freerdp-sdl-3.21.0-2.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-sdl-3.21.0-2.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-sdl-3.21.0-2.1.s390x"
},
"product_reference": "freerdp-sdl-3.21.0-2.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-sdl-3.21.0-2.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-sdl-3.21.0-2.1.x86_64"
},
"product_reference": "freerdp-sdl-3.21.0-2.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-server-3.21.0-2.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-server-3.21.0-2.1.aarch64"
},
"product_reference": "freerdp-server-3.21.0-2.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-server-3.21.0-2.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-server-3.21.0-2.1.ppc64le"
},
"product_reference": "freerdp-server-3.21.0-2.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-server-3.21.0-2.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-server-3.21.0-2.1.s390x"
},
"product_reference": "freerdp-server-3.21.0-2.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-server-3.21.0-2.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-server-3.21.0-2.1.x86_64"
},
"product_reference": "freerdp-server-3.21.0-2.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-wayland-3.21.0-2.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-wayland-3.21.0-2.1.aarch64"
},
"product_reference": "freerdp-wayland-3.21.0-2.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-wayland-3.21.0-2.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-wayland-3.21.0-2.1.ppc64le"
},
"product_reference": "freerdp-wayland-3.21.0-2.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-wayland-3.21.0-2.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-wayland-3.21.0-2.1.s390x"
},
"product_reference": "freerdp-wayland-3.21.0-2.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-wayland-3.21.0-2.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-wayland-3.21.0-2.1.x86_64"
},
"product_reference": "freerdp-wayland-3.21.0-2.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp-server-proxy3-3-3.21.0-2.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.21.0-2.1.aarch64"
},
"product_reference": "libfreerdp-server-proxy3-3-3.21.0-2.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp-server-proxy3-3-3.21.0-2.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.21.0-2.1.ppc64le"
},
"product_reference": "libfreerdp-server-proxy3-3-3.21.0-2.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp-server-proxy3-3-3.21.0-2.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.21.0-2.1.s390x"
},
"product_reference": "libfreerdp-server-proxy3-3-3.21.0-2.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp-server-proxy3-3-3.21.0-2.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.21.0-2.1.x86_64"
},
"product_reference": "libfreerdp-server-proxy3-3-3.21.0-2.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp3-3-3.21.0-2.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libfreerdp3-3-3.21.0-2.1.aarch64"
},
"product_reference": "libfreerdp3-3-3.21.0-2.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp3-3-3.21.0-2.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libfreerdp3-3-3.21.0-2.1.ppc64le"
},
"product_reference": "libfreerdp3-3-3.21.0-2.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp3-3-3.21.0-2.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libfreerdp3-3-3.21.0-2.1.s390x"
},
"product_reference": "libfreerdp3-3-3.21.0-2.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp3-3-3.21.0-2.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libfreerdp3-3-3.21.0-2.1.x86_64"
},
"product_reference": "libfreerdp3-3-3.21.0-2.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "librdtk0-0-3.21.0-2.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:librdtk0-0-3.21.0-2.1.aarch64"
},
"product_reference": "librdtk0-0-3.21.0-2.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "librdtk0-0-3.21.0-2.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:librdtk0-0-3.21.0-2.1.ppc64le"
},
"product_reference": "librdtk0-0-3.21.0-2.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "librdtk0-0-3.21.0-2.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:librdtk0-0-3.21.0-2.1.s390x"
},
"product_reference": "librdtk0-0-3.21.0-2.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "librdtk0-0-3.21.0-2.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:librdtk0-0-3.21.0-2.1.x86_64"
},
"product_reference": "librdtk0-0-3.21.0-2.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libuwac0-0-3.21.0-2.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libuwac0-0-3.21.0-2.1.aarch64"
},
"product_reference": "libuwac0-0-3.21.0-2.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libuwac0-0-3.21.0-2.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libuwac0-0-3.21.0-2.1.ppc64le"
},
"product_reference": "libuwac0-0-3.21.0-2.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libuwac0-0-3.21.0-2.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libuwac0-0-3.21.0-2.1.s390x"
},
"product_reference": "libuwac0-0-3.21.0-2.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libuwac0-0-3.21.0-2.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libuwac0-0-3.21.0-2.1.x86_64"
},
"product_reference": "libuwac0-0-3.21.0-2.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr3-3-3.21.0-2.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libwinpr3-3-3.21.0-2.1.aarch64"
},
"product_reference": "libwinpr3-3-3.21.0-2.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr3-3-3.21.0-2.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libwinpr3-3-3.21.0-2.1.ppc64le"
},
"product_reference": "libwinpr3-3-3.21.0-2.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr3-3-3.21.0-2.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libwinpr3-3-3.21.0-2.1.s390x"
},
"product_reference": "libwinpr3-3-3.21.0-2.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr3-3-3.21.0-2.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libwinpr3-3-3.21.0-2.1.x86_64"
},
"product_reference": "libwinpr3-3-3.21.0-2.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rdtk0-devel-3.21.0-2.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:rdtk0-devel-3.21.0-2.1.aarch64"
},
"product_reference": "rdtk0-devel-3.21.0-2.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rdtk0-devel-3.21.0-2.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:rdtk0-devel-3.21.0-2.1.ppc64le"
},
"product_reference": "rdtk0-devel-3.21.0-2.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rdtk0-devel-3.21.0-2.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:rdtk0-devel-3.21.0-2.1.s390x"
},
"product_reference": "rdtk0-devel-3.21.0-2.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rdtk0-devel-3.21.0-2.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:rdtk0-devel-3.21.0-2.1.x86_64"
},
"product_reference": "rdtk0-devel-3.21.0-2.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "uwac0-devel-3.21.0-2.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:uwac0-devel-3.21.0-2.1.aarch64"
},
"product_reference": "uwac0-devel-3.21.0-2.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "uwac0-devel-3.21.0-2.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:uwac0-devel-3.21.0-2.1.ppc64le"
},
"product_reference": "uwac0-devel-3.21.0-2.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "uwac0-devel-3.21.0-2.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:uwac0-devel-3.21.0-2.1.s390x"
},
"product_reference": "uwac0-devel-3.21.0-2.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "uwac0-devel-3.21.0-2.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:uwac0-devel-3.21.0-2.1.x86_64"
},
"product_reference": "uwac0-devel-3.21.0-2.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "winpr-devel-3.21.0-2.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:winpr-devel-3.21.0-2.1.aarch64"
},
"product_reference": "winpr-devel-3.21.0-2.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "winpr-devel-3.21.0-2.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:winpr-devel-3.21.0-2.1.ppc64le"
},
"product_reference": "winpr-devel-3.21.0-2.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "winpr-devel-3.21.0-2.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:winpr-devel-3.21.0-2.1.s390x"
},
"product_reference": "winpr-devel-3.21.0-2.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "winpr-devel-3.21.0-2.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:winpr-devel-3.21.0-2.1.x86_64"
},
"product_reference": "winpr-devel-3.21.0-2.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-22211",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-22211"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a set of free and open source remote desktop protocol library and clients. In affected versions an integer overflow in `freerdp_bitmap_planar_context_reset` leads to heap-buffer overflow. This affects FreeRDP based clients. FreeRDP based server implementations and proxy are not affected. A malicious server could prepare a `RDPGFX_RESET_GRAPHICS_PDU` to allocate too small buffers, possibly triggering later out of bound read/write. Data extraction over network is not possible, the buffers are used to display an image. This issue has been addressed in version 2.11.5 and 3.2.0. Users are advised to upgrade. there are no know workarounds for this vulnerability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:freerdp-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.21.0-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-22211",
"url": "https://www.suse.com/security/cve/CVE-2024-22211"
},
{
"category": "external",
"summary": "SUSE Bug 1219049 for CVE-2024-22211",
"url": "https://bugzilla.suse.com/1219049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:freerdp-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.21.0-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:freerdp-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.21.0-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-01-30T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-22211"
},
{
"cve": "CVE-2024-32658",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-32658"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients prior to version 3.5.1 are vulnerable to out-of-bounds read. Version 3.5.1 contains a patch for the issue. No known workarounds are available.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:freerdp-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.21.0-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-32658",
"url": "https://www.suse.com/security/cve/CVE-2024-32658"
},
{
"category": "external",
"summary": "SUSE Bug 1223353 for CVE-2024-32658",
"url": "https://bugzilla.suse.com/1223353"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:freerdp-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.21.0-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:freerdp-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.21.0-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-01-30T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-32658"
},
{
"cve": "CVE-2024-32659",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-32659"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients prior to version 3.5.1 are vulnerable to out-of-bounds read if `((nWidth == 0) and (nHeight == 0))`. Version 3.5.1 contains a patch for the issue. No known workarounds are available.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:freerdp-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.21.0-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-32659",
"url": "https://www.suse.com/security/cve/CVE-2024-32659"
},
{
"category": "external",
"summary": "SUSE Bug 1223346 for CVE-2024-32659",
"url": "https://bugzilla.suse.com/1223346"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:freerdp-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.21.0-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:freerdp-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.21.0-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-01-30T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-32659"
},
{
"cve": "CVE-2024-32660",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-32660"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.5.1, a malicious server can crash the FreeRDP client by sending invalid huge allocation size. Version 3.5.1 contains a patch for the issue. No known workarounds are available.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:freerdp-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.21.0-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-32660",
"url": "https://www.suse.com/security/cve/CVE-2024-32660"
},
{
"category": "external",
"summary": "SUSE Bug 1223347 for CVE-2024-32660",
"url": "https://bugzilla.suse.com/1223347"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:freerdp-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.21.0-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:freerdp-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.21.0-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-01-30T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-32660"
},
{
"cve": "CVE-2024-32661",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-32661"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients prior to version 3.5.1 are vulnerable to a possible `NULL` access and crash. Version 3.5.1 contains a patch for the issue. No known workarounds are available.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:freerdp-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.21.0-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-32661",
"url": "https://www.suse.com/security/cve/CVE-2024-32661"
},
{
"category": "external",
"summary": "SUSE Bug 1223348 for CVE-2024-32661",
"url": "https://bugzilla.suse.com/1223348"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:freerdp-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.21.0-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:freerdp-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.21.0-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-01-30T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-32661"
},
{
"cve": "CVE-2025-4478",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-4478"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in the FreeRDP used by Anaconda\u0027s remote install feature, where a crafted RDP packet could trigger a segmentation fault. This issue causes the service to crash and remain defunct, resulting in a denial of service. It occurs pre-boot and is likely due to a NULL pointer dereference. Rebooting is required to recover the system.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:freerdp-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.21.0-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-4478",
"url": "https://www.suse.com/security/cve/CVE-2025-4478"
},
{
"category": "external",
"summary": "SUSE Bug 1243109 for CVE-2025-4478",
"url": "https://bugzilla.suse.com/1243109"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:freerdp-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.21.0-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:freerdp-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.21.0-2.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.21.0-2.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.21.0-2.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.21.0-2.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.21.0-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-01-30T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2025-4478"
}
]
}
OPENSUSE-SU-2024:13994-1
Vulnerability from csaf_opensuse - Published: 2024-06-15 00:00 - Updated: 2024-06-15 00:00Summary
freerdp2-devel-2.11.5-3.1 on GA media
Notes
Title of the patch
freerdp2-devel-2.11.5-3.1 on GA media
Description of the patch
These are all security issues fixed in the freerdp2-devel-2.11.5-3.1 package on the GA media of openSUSE Tumbleweed.
Patchnames
openSUSE-Tumbleweed-2024-13994
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "freerdp2-devel-2.11.5-3.1 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the freerdp2-devel-2.11.5-3.1 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2024-13994",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_13994-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-32658 page",
"url": "https://www.suse.com/security/cve/CVE-2024-32658/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-32659 page",
"url": "https://www.suse.com/security/cve/CVE-2024-32659/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-32660 page",
"url": "https://www.suse.com/security/cve/CVE-2024-32660/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-32661 page",
"url": "https://www.suse.com/security/cve/CVE-2024-32661/"
}
],
"title": "freerdp2-devel-2.11.5-3.1 on GA media",
"tracking": {
"current_release_date": "2024-06-15T00:00:00Z",
"generator": {
"date": "2024-06-15T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2024:13994-1",
"initial_release_date": "2024-06-15T00:00:00Z",
"revision_history": [
{
"date": "2024-06-15T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "freerdp2-devel-2.11.5-3.1.aarch64",
"product": {
"name": "freerdp2-devel-2.11.5-3.1.aarch64",
"product_id": "freerdp2-devel-2.11.5-3.1.aarch64"
}
},
{
"category": "product_version",
"name": "freerdp2-proxy-2.11.5-3.1.aarch64",
"product": {
"name": "freerdp2-proxy-2.11.5-3.1.aarch64",
"product_id": "freerdp2-proxy-2.11.5-3.1.aarch64"
}
},
{
"category": "product_version",
"name": "freerdp2-server-2.11.5-3.1.aarch64",
"product": {
"name": "freerdp2-server-2.11.5-3.1.aarch64",
"product_id": "freerdp2-server-2.11.5-3.1.aarch64"
}
},
{
"category": "product_version",
"name": "libfreerdp2-2-2.11.5-3.1.aarch64",
"product": {
"name": "libfreerdp2-2-2.11.5-3.1.aarch64",
"product_id": "libfreerdp2-2-2.11.5-3.1.aarch64"
}
},
{
"category": "product_version",
"name": "libwinpr2-2-2.11.5-3.1.aarch64",
"product": {
"name": "libwinpr2-2-2.11.5-3.1.aarch64",
"product_id": "libwinpr2-2-2.11.5-3.1.aarch64"
}
},
{
"category": "product_version",
"name": "winpr2-devel-2.11.5-3.1.aarch64",
"product": {
"name": "winpr2-devel-2.11.5-3.1.aarch64",
"product_id": "winpr2-devel-2.11.5-3.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "freerdp2-devel-2.11.5-3.1.ppc64le",
"product": {
"name": "freerdp2-devel-2.11.5-3.1.ppc64le",
"product_id": "freerdp2-devel-2.11.5-3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "freerdp2-proxy-2.11.5-3.1.ppc64le",
"product": {
"name": "freerdp2-proxy-2.11.5-3.1.ppc64le",
"product_id": "freerdp2-proxy-2.11.5-3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "freerdp2-server-2.11.5-3.1.ppc64le",
"product": {
"name": "freerdp2-server-2.11.5-3.1.ppc64le",
"product_id": "freerdp2-server-2.11.5-3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libfreerdp2-2-2.11.5-3.1.ppc64le",
"product": {
"name": "libfreerdp2-2-2.11.5-3.1.ppc64le",
"product_id": "libfreerdp2-2-2.11.5-3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libwinpr2-2-2.11.5-3.1.ppc64le",
"product": {
"name": "libwinpr2-2-2.11.5-3.1.ppc64le",
"product_id": "libwinpr2-2-2.11.5-3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "winpr2-devel-2.11.5-3.1.ppc64le",
"product": {
"name": "winpr2-devel-2.11.5-3.1.ppc64le",
"product_id": "winpr2-devel-2.11.5-3.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "freerdp2-devel-2.11.5-3.1.s390x",
"product": {
"name": "freerdp2-devel-2.11.5-3.1.s390x",
"product_id": "freerdp2-devel-2.11.5-3.1.s390x"
}
},
{
"category": "product_version",
"name": "freerdp2-proxy-2.11.5-3.1.s390x",
"product": {
"name": "freerdp2-proxy-2.11.5-3.1.s390x",
"product_id": "freerdp2-proxy-2.11.5-3.1.s390x"
}
},
{
"category": "product_version",
"name": "freerdp2-server-2.11.5-3.1.s390x",
"product": {
"name": "freerdp2-server-2.11.5-3.1.s390x",
"product_id": "freerdp2-server-2.11.5-3.1.s390x"
}
},
{
"category": "product_version",
"name": "libfreerdp2-2-2.11.5-3.1.s390x",
"product": {
"name": "libfreerdp2-2-2.11.5-3.1.s390x",
"product_id": "libfreerdp2-2-2.11.5-3.1.s390x"
}
},
{
"category": "product_version",
"name": "libwinpr2-2-2.11.5-3.1.s390x",
"product": {
"name": "libwinpr2-2-2.11.5-3.1.s390x",
"product_id": "libwinpr2-2-2.11.5-3.1.s390x"
}
},
{
"category": "product_version",
"name": "winpr2-devel-2.11.5-3.1.s390x",
"product": {
"name": "winpr2-devel-2.11.5-3.1.s390x",
"product_id": "winpr2-devel-2.11.5-3.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "freerdp2-devel-2.11.5-3.1.x86_64",
"product": {
"name": "freerdp2-devel-2.11.5-3.1.x86_64",
"product_id": "freerdp2-devel-2.11.5-3.1.x86_64"
}
},
{
"category": "product_version",
"name": "freerdp2-proxy-2.11.5-3.1.x86_64",
"product": {
"name": "freerdp2-proxy-2.11.5-3.1.x86_64",
"product_id": "freerdp2-proxy-2.11.5-3.1.x86_64"
}
},
{
"category": "product_version",
"name": "freerdp2-server-2.11.5-3.1.x86_64",
"product": {
"name": "freerdp2-server-2.11.5-3.1.x86_64",
"product_id": "freerdp2-server-2.11.5-3.1.x86_64"
}
},
{
"category": "product_version",
"name": "libfreerdp2-2-2.11.5-3.1.x86_64",
"product": {
"name": "libfreerdp2-2-2.11.5-3.1.x86_64",
"product_id": "libfreerdp2-2-2.11.5-3.1.x86_64"
}
},
{
"category": "product_version",
"name": "libwinpr2-2-2.11.5-3.1.x86_64",
"product": {
"name": "libwinpr2-2-2.11.5-3.1.x86_64",
"product_id": "libwinpr2-2-2.11.5-3.1.x86_64"
}
},
{
"category": "product_version",
"name": "winpr2-devel-2.11.5-3.1.x86_64",
"product": {
"name": "winpr2-devel-2.11.5-3.1.x86_64",
"product_id": "winpr2-devel-2.11.5-3.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp2-devel-2.11.5-3.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp2-devel-2.11.5-3.1.aarch64"
},
"product_reference": "freerdp2-devel-2.11.5-3.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp2-devel-2.11.5-3.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp2-devel-2.11.5-3.1.ppc64le"
},
"product_reference": "freerdp2-devel-2.11.5-3.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp2-devel-2.11.5-3.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp2-devel-2.11.5-3.1.s390x"
},
"product_reference": "freerdp2-devel-2.11.5-3.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp2-devel-2.11.5-3.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp2-devel-2.11.5-3.1.x86_64"
},
"product_reference": "freerdp2-devel-2.11.5-3.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp2-proxy-2.11.5-3.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp2-proxy-2.11.5-3.1.aarch64"
},
"product_reference": "freerdp2-proxy-2.11.5-3.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp2-proxy-2.11.5-3.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp2-proxy-2.11.5-3.1.ppc64le"
},
"product_reference": "freerdp2-proxy-2.11.5-3.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp2-proxy-2.11.5-3.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp2-proxy-2.11.5-3.1.s390x"
},
"product_reference": "freerdp2-proxy-2.11.5-3.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp2-proxy-2.11.5-3.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp2-proxy-2.11.5-3.1.x86_64"
},
"product_reference": "freerdp2-proxy-2.11.5-3.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp2-server-2.11.5-3.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp2-server-2.11.5-3.1.aarch64"
},
"product_reference": "freerdp2-server-2.11.5-3.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp2-server-2.11.5-3.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp2-server-2.11.5-3.1.ppc64le"
},
"product_reference": "freerdp2-server-2.11.5-3.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp2-server-2.11.5-3.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp2-server-2.11.5-3.1.s390x"
},
"product_reference": "freerdp2-server-2.11.5-3.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp2-server-2.11.5-3.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp2-server-2.11.5-3.1.x86_64"
},
"product_reference": "freerdp2-server-2.11.5-3.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp2-2-2.11.5-3.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libfreerdp2-2-2.11.5-3.1.aarch64"
},
"product_reference": "libfreerdp2-2-2.11.5-3.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp2-2-2.11.5-3.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libfreerdp2-2-2.11.5-3.1.ppc64le"
},
"product_reference": "libfreerdp2-2-2.11.5-3.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp2-2-2.11.5-3.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libfreerdp2-2-2.11.5-3.1.s390x"
},
"product_reference": "libfreerdp2-2-2.11.5-3.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp2-2-2.11.5-3.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libfreerdp2-2-2.11.5-3.1.x86_64"
},
"product_reference": "libfreerdp2-2-2.11.5-3.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr2-2-2.11.5-3.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libwinpr2-2-2.11.5-3.1.aarch64"
},
"product_reference": "libwinpr2-2-2.11.5-3.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr2-2-2.11.5-3.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libwinpr2-2-2.11.5-3.1.ppc64le"
},
"product_reference": "libwinpr2-2-2.11.5-3.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr2-2-2.11.5-3.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libwinpr2-2-2.11.5-3.1.s390x"
},
"product_reference": "libwinpr2-2-2.11.5-3.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr2-2-2.11.5-3.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libwinpr2-2-2.11.5-3.1.x86_64"
},
"product_reference": "libwinpr2-2-2.11.5-3.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "winpr2-devel-2.11.5-3.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:winpr2-devel-2.11.5-3.1.aarch64"
},
"product_reference": "winpr2-devel-2.11.5-3.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "winpr2-devel-2.11.5-3.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:winpr2-devel-2.11.5-3.1.ppc64le"
},
"product_reference": "winpr2-devel-2.11.5-3.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "winpr2-devel-2.11.5-3.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:winpr2-devel-2.11.5-3.1.s390x"
},
"product_reference": "winpr2-devel-2.11.5-3.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "winpr2-devel-2.11.5-3.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:winpr2-devel-2.11.5-3.1.x86_64"
},
"product_reference": "winpr2-devel-2.11.5-3.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-32658",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-32658"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients prior to version 3.5.1 are vulnerable to out-of-bounds read. Version 3.5.1 contains a patch for the issue. No known workarounds are available.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:freerdp2-devel-2.11.5-3.1.aarch64",
"openSUSE Tumbleweed:freerdp2-devel-2.11.5-3.1.ppc64le",
"openSUSE Tumbleweed:freerdp2-devel-2.11.5-3.1.s390x",
"openSUSE Tumbleweed:freerdp2-devel-2.11.5-3.1.x86_64",
"openSUSE Tumbleweed:freerdp2-proxy-2.11.5-3.1.aarch64",
"openSUSE Tumbleweed:freerdp2-proxy-2.11.5-3.1.ppc64le",
"openSUSE Tumbleweed:freerdp2-proxy-2.11.5-3.1.s390x",
"openSUSE Tumbleweed:freerdp2-proxy-2.11.5-3.1.x86_64",
"openSUSE Tumbleweed:freerdp2-server-2.11.5-3.1.aarch64",
"openSUSE Tumbleweed:freerdp2-server-2.11.5-3.1.ppc64le",
"openSUSE Tumbleweed:freerdp2-server-2.11.5-3.1.s390x",
"openSUSE Tumbleweed:freerdp2-server-2.11.5-3.1.x86_64",
"openSUSE Tumbleweed:libfreerdp2-2-2.11.5-3.1.aarch64",
"openSUSE Tumbleweed:libfreerdp2-2-2.11.5-3.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp2-2-2.11.5-3.1.s390x",
"openSUSE Tumbleweed:libfreerdp2-2-2.11.5-3.1.x86_64",
"openSUSE Tumbleweed:libwinpr2-2-2.11.5-3.1.aarch64",
"openSUSE Tumbleweed:libwinpr2-2-2.11.5-3.1.ppc64le",
"openSUSE Tumbleweed:libwinpr2-2-2.11.5-3.1.s390x",
"openSUSE Tumbleweed:libwinpr2-2-2.11.5-3.1.x86_64",
"openSUSE Tumbleweed:winpr2-devel-2.11.5-3.1.aarch64",
"openSUSE Tumbleweed:winpr2-devel-2.11.5-3.1.ppc64le",
"openSUSE Tumbleweed:winpr2-devel-2.11.5-3.1.s390x",
"openSUSE Tumbleweed:winpr2-devel-2.11.5-3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-32658",
"url": "https://www.suse.com/security/cve/CVE-2024-32658"
},
{
"category": "external",
"summary": "SUSE Bug 1223353 for CVE-2024-32658",
"url": "https://bugzilla.suse.com/1223353"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:freerdp2-devel-2.11.5-3.1.aarch64",
"openSUSE Tumbleweed:freerdp2-devel-2.11.5-3.1.ppc64le",
"openSUSE Tumbleweed:freerdp2-devel-2.11.5-3.1.s390x",
"openSUSE Tumbleweed:freerdp2-devel-2.11.5-3.1.x86_64",
"openSUSE Tumbleweed:freerdp2-proxy-2.11.5-3.1.aarch64",
"openSUSE Tumbleweed:freerdp2-proxy-2.11.5-3.1.ppc64le",
"openSUSE Tumbleweed:freerdp2-proxy-2.11.5-3.1.s390x",
"openSUSE Tumbleweed:freerdp2-proxy-2.11.5-3.1.x86_64",
"openSUSE Tumbleweed:freerdp2-server-2.11.5-3.1.aarch64",
"openSUSE Tumbleweed:freerdp2-server-2.11.5-3.1.ppc64le",
"openSUSE Tumbleweed:freerdp2-server-2.11.5-3.1.s390x",
"openSUSE Tumbleweed:freerdp2-server-2.11.5-3.1.x86_64",
"openSUSE Tumbleweed:libfreerdp2-2-2.11.5-3.1.aarch64",
"openSUSE Tumbleweed:libfreerdp2-2-2.11.5-3.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp2-2-2.11.5-3.1.s390x",
"openSUSE Tumbleweed:libfreerdp2-2-2.11.5-3.1.x86_64",
"openSUSE Tumbleweed:libwinpr2-2-2.11.5-3.1.aarch64",
"openSUSE Tumbleweed:libwinpr2-2-2.11.5-3.1.ppc64le",
"openSUSE Tumbleweed:libwinpr2-2-2.11.5-3.1.s390x",
"openSUSE Tumbleweed:libwinpr2-2-2.11.5-3.1.x86_64",
"openSUSE Tumbleweed:winpr2-devel-2.11.5-3.1.aarch64",
"openSUSE Tumbleweed:winpr2-devel-2.11.5-3.1.ppc64le",
"openSUSE Tumbleweed:winpr2-devel-2.11.5-3.1.s390x",
"openSUSE Tumbleweed:winpr2-devel-2.11.5-3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:freerdp2-devel-2.11.5-3.1.aarch64",
"openSUSE Tumbleweed:freerdp2-devel-2.11.5-3.1.ppc64le",
"openSUSE Tumbleweed:freerdp2-devel-2.11.5-3.1.s390x",
"openSUSE Tumbleweed:freerdp2-devel-2.11.5-3.1.x86_64",
"openSUSE Tumbleweed:freerdp2-proxy-2.11.5-3.1.aarch64",
"openSUSE Tumbleweed:freerdp2-proxy-2.11.5-3.1.ppc64le",
"openSUSE Tumbleweed:freerdp2-proxy-2.11.5-3.1.s390x",
"openSUSE Tumbleweed:freerdp2-proxy-2.11.5-3.1.x86_64",
"openSUSE Tumbleweed:freerdp2-server-2.11.5-3.1.aarch64",
"openSUSE Tumbleweed:freerdp2-server-2.11.5-3.1.ppc64le",
"openSUSE Tumbleweed:freerdp2-server-2.11.5-3.1.s390x",
"openSUSE Tumbleweed:freerdp2-server-2.11.5-3.1.x86_64",
"openSUSE Tumbleweed:libfreerdp2-2-2.11.5-3.1.aarch64",
"openSUSE Tumbleweed:libfreerdp2-2-2.11.5-3.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp2-2-2.11.5-3.1.s390x",
"openSUSE Tumbleweed:libfreerdp2-2-2.11.5-3.1.x86_64",
"openSUSE Tumbleweed:libwinpr2-2-2.11.5-3.1.aarch64",
"openSUSE Tumbleweed:libwinpr2-2-2.11.5-3.1.ppc64le",
"openSUSE Tumbleweed:libwinpr2-2-2.11.5-3.1.s390x",
"openSUSE Tumbleweed:libwinpr2-2-2.11.5-3.1.x86_64",
"openSUSE Tumbleweed:winpr2-devel-2.11.5-3.1.aarch64",
"openSUSE Tumbleweed:winpr2-devel-2.11.5-3.1.ppc64le",
"openSUSE Tumbleweed:winpr2-devel-2.11.5-3.1.s390x",
"openSUSE Tumbleweed:winpr2-devel-2.11.5-3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-32658"
},
{
"cve": "CVE-2024-32659",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-32659"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients prior to version 3.5.1 are vulnerable to out-of-bounds read if `((nWidth == 0) and (nHeight == 0))`. Version 3.5.1 contains a patch for the issue. No known workarounds are available.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:freerdp2-devel-2.11.5-3.1.aarch64",
"openSUSE Tumbleweed:freerdp2-devel-2.11.5-3.1.ppc64le",
"openSUSE Tumbleweed:freerdp2-devel-2.11.5-3.1.s390x",
"openSUSE Tumbleweed:freerdp2-devel-2.11.5-3.1.x86_64",
"openSUSE Tumbleweed:freerdp2-proxy-2.11.5-3.1.aarch64",
"openSUSE Tumbleweed:freerdp2-proxy-2.11.5-3.1.ppc64le",
"openSUSE Tumbleweed:freerdp2-proxy-2.11.5-3.1.s390x",
"openSUSE Tumbleweed:freerdp2-proxy-2.11.5-3.1.x86_64",
"openSUSE Tumbleweed:freerdp2-server-2.11.5-3.1.aarch64",
"openSUSE Tumbleweed:freerdp2-server-2.11.5-3.1.ppc64le",
"openSUSE Tumbleweed:freerdp2-server-2.11.5-3.1.s390x",
"openSUSE Tumbleweed:freerdp2-server-2.11.5-3.1.x86_64",
"openSUSE Tumbleweed:libfreerdp2-2-2.11.5-3.1.aarch64",
"openSUSE Tumbleweed:libfreerdp2-2-2.11.5-3.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp2-2-2.11.5-3.1.s390x",
"openSUSE Tumbleweed:libfreerdp2-2-2.11.5-3.1.x86_64",
"openSUSE Tumbleweed:libwinpr2-2-2.11.5-3.1.aarch64",
"openSUSE Tumbleweed:libwinpr2-2-2.11.5-3.1.ppc64le",
"openSUSE Tumbleweed:libwinpr2-2-2.11.5-3.1.s390x",
"openSUSE Tumbleweed:libwinpr2-2-2.11.5-3.1.x86_64",
"openSUSE Tumbleweed:winpr2-devel-2.11.5-3.1.aarch64",
"openSUSE Tumbleweed:winpr2-devel-2.11.5-3.1.ppc64le",
"openSUSE Tumbleweed:winpr2-devel-2.11.5-3.1.s390x",
"openSUSE Tumbleweed:winpr2-devel-2.11.5-3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-32659",
"url": "https://www.suse.com/security/cve/CVE-2024-32659"
},
{
"category": "external",
"summary": "SUSE Bug 1223346 for CVE-2024-32659",
"url": "https://bugzilla.suse.com/1223346"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:freerdp2-devel-2.11.5-3.1.aarch64",
"openSUSE Tumbleweed:freerdp2-devel-2.11.5-3.1.ppc64le",
"openSUSE Tumbleweed:freerdp2-devel-2.11.5-3.1.s390x",
"openSUSE Tumbleweed:freerdp2-devel-2.11.5-3.1.x86_64",
"openSUSE Tumbleweed:freerdp2-proxy-2.11.5-3.1.aarch64",
"openSUSE Tumbleweed:freerdp2-proxy-2.11.5-3.1.ppc64le",
"openSUSE Tumbleweed:freerdp2-proxy-2.11.5-3.1.s390x",
"openSUSE Tumbleweed:freerdp2-proxy-2.11.5-3.1.x86_64",
"openSUSE Tumbleweed:freerdp2-server-2.11.5-3.1.aarch64",
"openSUSE Tumbleweed:freerdp2-server-2.11.5-3.1.ppc64le",
"openSUSE Tumbleweed:freerdp2-server-2.11.5-3.1.s390x",
"openSUSE Tumbleweed:freerdp2-server-2.11.5-3.1.x86_64",
"openSUSE Tumbleweed:libfreerdp2-2-2.11.5-3.1.aarch64",
"openSUSE Tumbleweed:libfreerdp2-2-2.11.5-3.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp2-2-2.11.5-3.1.s390x",
"openSUSE Tumbleweed:libfreerdp2-2-2.11.5-3.1.x86_64",
"openSUSE Tumbleweed:libwinpr2-2-2.11.5-3.1.aarch64",
"openSUSE Tumbleweed:libwinpr2-2-2.11.5-3.1.ppc64le",
"openSUSE Tumbleweed:libwinpr2-2-2.11.5-3.1.s390x",
"openSUSE Tumbleweed:libwinpr2-2-2.11.5-3.1.x86_64",
"openSUSE Tumbleweed:winpr2-devel-2.11.5-3.1.aarch64",
"openSUSE Tumbleweed:winpr2-devel-2.11.5-3.1.ppc64le",
"openSUSE Tumbleweed:winpr2-devel-2.11.5-3.1.s390x",
"openSUSE Tumbleweed:winpr2-devel-2.11.5-3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:freerdp2-devel-2.11.5-3.1.aarch64",
"openSUSE Tumbleweed:freerdp2-devel-2.11.5-3.1.ppc64le",
"openSUSE Tumbleweed:freerdp2-devel-2.11.5-3.1.s390x",
"openSUSE Tumbleweed:freerdp2-devel-2.11.5-3.1.x86_64",
"openSUSE Tumbleweed:freerdp2-proxy-2.11.5-3.1.aarch64",
"openSUSE Tumbleweed:freerdp2-proxy-2.11.5-3.1.ppc64le",
"openSUSE Tumbleweed:freerdp2-proxy-2.11.5-3.1.s390x",
"openSUSE Tumbleweed:freerdp2-proxy-2.11.5-3.1.x86_64",
"openSUSE Tumbleweed:freerdp2-server-2.11.5-3.1.aarch64",
"openSUSE Tumbleweed:freerdp2-server-2.11.5-3.1.ppc64le",
"openSUSE Tumbleweed:freerdp2-server-2.11.5-3.1.s390x",
"openSUSE Tumbleweed:freerdp2-server-2.11.5-3.1.x86_64",
"openSUSE Tumbleweed:libfreerdp2-2-2.11.5-3.1.aarch64",
"openSUSE Tumbleweed:libfreerdp2-2-2.11.5-3.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp2-2-2.11.5-3.1.s390x",
"openSUSE Tumbleweed:libfreerdp2-2-2.11.5-3.1.x86_64",
"openSUSE Tumbleweed:libwinpr2-2-2.11.5-3.1.aarch64",
"openSUSE Tumbleweed:libwinpr2-2-2.11.5-3.1.ppc64le",
"openSUSE Tumbleweed:libwinpr2-2-2.11.5-3.1.s390x",
"openSUSE Tumbleweed:libwinpr2-2-2.11.5-3.1.x86_64",
"openSUSE Tumbleweed:winpr2-devel-2.11.5-3.1.aarch64",
"openSUSE Tumbleweed:winpr2-devel-2.11.5-3.1.ppc64le",
"openSUSE Tumbleweed:winpr2-devel-2.11.5-3.1.s390x",
"openSUSE Tumbleweed:winpr2-devel-2.11.5-3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-32659"
},
{
"cve": "CVE-2024-32660",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-32660"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.5.1, a malicious server can crash the FreeRDP client by sending invalid huge allocation size. Version 3.5.1 contains a patch for the issue. No known workarounds are available.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:freerdp2-devel-2.11.5-3.1.aarch64",
"openSUSE Tumbleweed:freerdp2-devel-2.11.5-3.1.ppc64le",
"openSUSE Tumbleweed:freerdp2-devel-2.11.5-3.1.s390x",
"openSUSE Tumbleweed:freerdp2-devel-2.11.5-3.1.x86_64",
"openSUSE Tumbleweed:freerdp2-proxy-2.11.5-3.1.aarch64",
"openSUSE Tumbleweed:freerdp2-proxy-2.11.5-3.1.ppc64le",
"openSUSE Tumbleweed:freerdp2-proxy-2.11.5-3.1.s390x",
"openSUSE Tumbleweed:freerdp2-proxy-2.11.5-3.1.x86_64",
"openSUSE Tumbleweed:freerdp2-server-2.11.5-3.1.aarch64",
"openSUSE Tumbleweed:freerdp2-server-2.11.5-3.1.ppc64le",
"openSUSE Tumbleweed:freerdp2-server-2.11.5-3.1.s390x",
"openSUSE Tumbleweed:freerdp2-server-2.11.5-3.1.x86_64",
"openSUSE Tumbleweed:libfreerdp2-2-2.11.5-3.1.aarch64",
"openSUSE Tumbleweed:libfreerdp2-2-2.11.5-3.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp2-2-2.11.5-3.1.s390x",
"openSUSE Tumbleweed:libfreerdp2-2-2.11.5-3.1.x86_64",
"openSUSE Tumbleweed:libwinpr2-2-2.11.5-3.1.aarch64",
"openSUSE Tumbleweed:libwinpr2-2-2.11.5-3.1.ppc64le",
"openSUSE Tumbleweed:libwinpr2-2-2.11.5-3.1.s390x",
"openSUSE Tumbleweed:libwinpr2-2-2.11.5-3.1.x86_64",
"openSUSE Tumbleweed:winpr2-devel-2.11.5-3.1.aarch64",
"openSUSE Tumbleweed:winpr2-devel-2.11.5-3.1.ppc64le",
"openSUSE Tumbleweed:winpr2-devel-2.11.5-3.1.s390x",
"openSUSE Tumbleweed:winpr2-devel-2.11.5-3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-32660",
"url": "https://www.suse.com/security/cve/CVE-2024-32660"
},
{
"category": "external",
"summary": "SUSE Bug 1223347 for CVE-2024-32660",
"url": "https://bugzilla.suse.com/1223347"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:freerdp2-devel-2.11.5-3.1.aarch64",
"openSUSE Tumbleweed:freerdp2-devel-2.11.5-3.1.ppc64le",
"openSUSE Tumbleweed:freerdp2-devel-2.11.5-3.1.s390x",
"openSUSE Tumbleweed:freerdp2-devel-2.11.5-3.1.x86_64",
"openSUSE Tumbleweed:freerdp2-proxy-2.11.5-3.1.aarch64",
"openSUSE Tumbleweed:freerdp2-proxy-2.11.5-3.1.ppc64le",
"openSUSE Tumbleweed:freerdp2-proxy-2.11.5-3.1.s390x",
"openSUSE Tumbleweed:freerdp2-proxy-2.11.5-3.1.x86_64",
"openSUSE Tumbleweed:freerdp2-server-2.11.5-3.1.aarch64",
"openSUSE Tumbleweed:freerdp2-server-2.11.5-3.1.ppc64le",
"openSUSE Tumbleweed:freerdp2-server-2.11.5-3.1.s390x",
"openSUSE Tumbleweed:freerdp2-server-2.11.5-3.1.x86_64",
"openSUSE Tumbleweed:libfreerdp2-2-2.11.5-3.1.aarch64",
"openSUSE Tumbleweed:libfreerdp2-2-2.11.5-3.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp2-2-2.11.5-3.1.s390x",
"openSUSE Tumbleweed:libfreerdp2-2-2.11.5-3.1.x86_64",
"openSUSE Tumbleweed:libwinpr2-2-2.11.5-3.1.aarch64",
"openSUSE Tumbleweed:libwinpr2-2-2.11.5-3.1.ppc64le",
"openSUSE Tumbleweed:libwinpr2-2-2.11.5-3.1.s390x",
"openSUSE Tumbleweed:libwinpr2-2-2.11.5-3.1.x86_64",
"openSUSE Tumbleweed:winpr2-devel-2.11.5-3.1.aarch64",
"openSUSE Tumbleweed:winpr2-devel-2.11.5-3.1.ppc64le",
"openSUSE Tumbleweed:winpr2-devel-2.11.5-3.1.s390x",
"openSUSE Tumbleweed:winpr2-devel-2.11.5-3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:freerdp2-devel-2.11.5-3.1.aarch64",
"openSUSE Tumbleweed:freerdp2-devel-2.11.5-3.1.ppc64le",
"openSUSE Tumbleweed:freerdp2-devel-2.11.5-3.1.s390x",
"openSUSE Tumbleweed:freerdp2-devel-2.11.5-3.1.x86_64",
"openSUSE Tumbleweed:freerdp2-proxy-2.11.5-3.1.aarch64",
"openSUSE Tumbleweed:freerdp2-proxy-2.11.5-3.1.ppc64le",
"openSUSE Tumbleweed:freerdp2-proxy-2.11.5-3.1.s390x",
"openSUSE Tumbleweed:freerdp2-proxy-2.11.5-3.1.x86_64",
"openSUSE Tumbleweed:freerdp2-server-2.11.5-3.1.aarch64",
"openSUSE Tumbleweed:freerdp2-server-2.11.5-3.1.ppc64le",
"openSUSE Tumbleweed:freerdp2-server-2.11.5-3.1.s390x",
"openSUSE Tumbleweed:freerdp2-server-2.11.5-3.1.x86_64",
"openSUSE Tumbleweed:libfreerdp2-2-2.11.5-3.1.aarch64",
"openSUSE Tumbleweed:libfreerdp2-2-2.11.5-3.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp2-2-2.11.5-3.1.s390x",
"openSUSE Tumbleweed:libfreerdp2-2-2.11.5-3.1.x86_64",
"openSUSE Tumbleweed:libwinpr2-2-2.11.5-3.1.aarch64",
"openSUSE Tumbleweed:libwinpr2-2-2.11.5-3.1.ppc64le",
"openSUSE Tumbleweed:libwinpr2-2-2.11.5-3.1.s390x",
"openSUSE Tumbleweed:libwinpr2-2-2.11.5-3.1.x86_64",
"openSUSE Tumbleweed:winpr2-devel-2.11.5-3.1.aarch64",
"openSUSE Tumbleweed:winpr2-devel-2.11.5-3.1.ppc64le",
"openSUSE Tumbleweed:winpr2-devel-2.11.5-3.1.s390x",
"openSUSE Tumbleweed:winpr2-devel-2.11.5-3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-32660"
},
{
"cve": "CVE-2024-32661",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-32661"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients prior to version 3.5.1 are vulnerable to a possible `NULL` access and crash. Version 3.5.1 contains a patch for the issue. No known workarounds are available.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:freerdp2-devel-2.11.5-3.1.aarch64",
"openSUSE Tumbleweed:freerdp2-devel-2.11.5-3.1.ppc64le",
"openSUSE Tumbleweed:freerdp2-devel-2.11.5-3.1.s390x",
"openSUSE Tumbleweed:freerdp2-devel-2.11.5-3.1.x86_64",
"openSUSE Tumbleweed:freerdp2-proxy-2.11.5-3.1.aarch64",
"openSUSE Tumbleweed:freerdp2-proxy-2.11.5-3.1.ppc64le",
"openSUSE Tumbleweed:freerdp2-proxy-2.11.5-3.1.s390x",
"openSUSE Tumbleweed:freerdp2-proxy-2.11.5-3.1.x86_64",
"openSUSE Tumbleweed:freerdp2-server-2.11.5-3.1.aarch64",
"openSUSE Tumbleweed:freerdp2-server-2.11.5-3.1.ppc64le",
"openSUSE Tumbleweed:freerdp2-server-2.11.5-3.1.s390x",
"openSUSE Tumbleweed:freerdp2-server-2.11.5-3.1.x86_64",
"openSUSE Tumbleweed:libfreerdp2-2-2.11.5-3.1.aarch64",
"openSUSE Tumbleweed:libfreerdp2-2-2.11.5-3.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp2-2-2.11.5-3.1.s390x",
"openSUSE Tumbleweed:libfreerdp2-2-2.11.5-3.1.x86_64",
"openSUSE Tumbleweed:libwinpr2-2-2.11.5-3.1.aarch64",
"openSUSE Tumbleweed:libwinpr2-2-2.11.5-3.1.ppc64le",
"openSUSE Tumbleweed:libwinpr2-2-2.11.5-3.1.s390x",
"openSUSE Tumbleweed:libwinpr2-2-2.11.5-3.1.x86_64",
"openSUSE Tumbleweed:winpr2-devel-2.11.5-3.1.aarch64",
"openSUSE Tumbleweed:winpr2-devel-2.11.5-3.1.ppc64le",
"openSUSE Tumbleweed:winpr2-devel-2.11.5-3.1.s390x",
"openSUSE Tumbleweed:winpr2-devel-2.11.5-3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-32661",
"url": "https://www.suse.com/security/cve/CVE-2024-32661"
},
{
"category": "external",
"summary": "SUSE Bug 1223348 for CVE-2024-32661",
"url": "https://bugzilla.suse.com/1223348"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:freerdp2-devel-2.11.5-3.1.aarch64",
"openSUSE Tumbleweed:freerdp2-devel-2.11.5-3.1.ppc64le",
"openSUSE Tumbleweed:freerdp2-devel-2.11.5-3.1.s390x",
"openSUSE Tumbleweed:freerdp2-devel-2.11.5-3.1.x86_64",
"openSUSE Tumbleweed:freerdp2-proxy-2.11.5-3.1.aarch64",
"openSUSE Tumbleweed:freerdp2-proxy-2.11.5-3.1.ppc64le",
"openSUSE Tumbleweed:freerdp2-proxy-2.11.5-3.1.s390x",
"openSUSE Tumbleweed:freerdp2-proxy-2.11.5-3.1.x86_64",
"openSUSE Tumbleweed:freerdp2-server-2.11.5-3.1.aarch64",
"openSUSE Tumbleweed:freerdp2-server-2.11.5-3.1.ppc64le",
"openSUSE Tumbleweed:freerdp2-server-2.11.5-3.1.s390x",
"openSUSE Tumbleweed:freerdp2-server-2.11.5-3.1.x86_64",
"openSUSE Tumbleweed:libfreerdp2-2-2.11.5-3.1.aarch64",
"openSUSE Tumbleweed:libfreerdp2-2-2.11.5-3.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp2-2-2.11.5-3.1.s390x",
"openSUSE Tumbleweed:libfreerdp2-2-2.11.5-3.1.x86_64",
"openSUSE Tumbleweed:libwinpr2-2-2.11.5-3.1.aarch64",
"openSUSE Tumbleweed:libwinpr2-2-2.11.5-3.1.ppc64le",
"openSUSE Tumbleweed:libwinpr2-2-2.11.5-3.1.s390x",
"openSUSE Tumbleweed:libwinpr2-2-2.11.5-3.1.x86_64",
"openSUSE Tumbleweed:winpr2-devel-2.11.5-3.1.aarch64",
"openSUSE Tumbleweed:winpr2-devel-2.11.5-3.1.ppc64le",
"openSUSE Tumbleweed:winpr2-devel-2.11.5-3.1.s390x",
"openSUSE Tumbleweed:winpr2-devel-2.11.5-3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:freerdp2-devel-2.11.5-3.1.aarch64",
"openSUSE Tumbleweed:freerdp2-devel-2.11.5-3.1.ppc64le",
"openSUSE Tumbleweed:freerdp2-devel-2.11.5-3.1.s390x",
"openSUSE Tumbleweed:freerdp2-devel-2.11.5-3.1.x86_64",
"openSUSE Tumbleweed:freerdp2-proxy-2.11.5-3.1.aarch64",
"openSUSE Tumbleweed:freerdp2-proxy-2.11.5-3.1.ppc64le",
"openSUSE Tumbleweed:freerdp2-proxy-2.11.5-3.1.s390x",
"openSUSE Tumbleweed:freerdp2-proxy-2.11.5-3.1.x86_64",
"openSUSE Tumbleweed:freerdp2-server-2.11.5-3.1.aarch64",
"openSUSE Tumbleweed:freerdp2-server-2.11.5-3.1.ppc64le",
"openSUSE Tumbleweed:freerdp2-server-2.11.5-3.1.s390x",
"openSUSE Tumbleweed:freerdp2-server-2.11.5-3.1.x86_64",
"openSUSE Tumbleweed:libfreerdp2-2-2.11.5-3.1.aarch64",
"openSUSE Tumbleweed:libfreerdp2-2-2.11.5-3.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp2-2-2.11.5-3.1.s390x",
"openSUSE Tumbleweed:libfreerdp2-2-2.11.5-3.1.x86_64",
"openSUSE Tumbleweed:libwinpr2-2-2.11.5-3.1.aarch64",
"openSUSE Tumbleweed:libwinpr2-2-2.11.5-3.1.ppc64le",
"openSUSE Tumbleweed:libwinpr2-2-2.11.5-3.1.s390x",
"openSUSE Tumbleweed:libwinpr2-2-2.11.5-3.1.x86_64",
"openSUSE Tumbleweed:winpr2-devel-2.11.5-3.1.aarch64",
"openSUSE Tumbleweed:winpr2-devel-2.11.5-3.1.ppc64le",
"openSUSE Tumbleweed:winpr2-devel-2.11.5-3.1.s390x",
"openSUSE Tumbleweed:winpr2-devel-2.11.5-3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-32661"
}
]
}
WID-SEC-W-2024-0954
Vulnerability from csaf_certbund - Published: 2024-04-23 22:00 - Updated: 2025-03-25 23:00Summary
FreeRDP: Mehrere Schwachstellen
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
FreeRDP ist eine freie Implementierung des Remote Desktop Protocol (RDP).
Angriff
Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in FreeRDP ausnutzen, um Sicherheitsvorkehrungen zu umgehen oder einen Denial-of-Service-Zustand zu verursachen.
Betroffene Betriebssysteme
- Sonstiges
- UNIX
- Windows
{
"document": {
"aggregate_severity": {
"text": "hoch"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "FreeRDP ist eine freie Implementierung des Remote Desktop Protocol (RDP).",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in FreeRDP ausnutzen, um Sicherheitsvorkehrungen zu umgehen oder einen Denial-of-Service-Zustand zu verursachen.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Sonstiges\n- UNIX\n- Windows",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2024-0954 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-0954.json"
},
{
"category": "self",
"summary": "WID-SEC-2024-0954 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-0954"
},
{
"category": "external",
"summary": "FreeRDP GitHub vom 2024-04-23",
"url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-8jgr-7r33-x87w"
},
{
"category": "external",
"summary": "FreeRDP GitHub vom 2024-04-23",
"url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-mxv6-2cw6-m3mx"
},
{
"category": "external",
"summary": "FreeRDP GitHub vom 2024-04-23",
"url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-p5m5-342g-pv9m"
},
{
"category": "external",
"summary": "FreeRDP GitHub vom 2024-04-23",
"url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vffh-j6hh-95f4"
},
{
"category": "external",
"summary": "FreeRDP GitHub vom 2024-04-23",
"url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vpv3-m3m9-4c2v"
},
{
"category": "external",
"summary": "NIST Vulnerability Database vom 2024-04-23",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32658"
},
{
"category": "external",
"summary": "NIST Vulnerability Database vom 2024-04-23",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32659"
},
{
"category": "external",
"summary": "NIST Vulnerability Database vom 2024-04-23",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32660"
},
{
"category": "external",
"summary": "NIST Vulnerability Database vom 2024-04-23",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32661"
},
{
"category": "external",
"summary": "NIST Vulnerability Database vom 2024-04-23",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32662"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-6752-1 vom 2024-04-25",
"url": "https://ubuntu.com/security/notices/USN-6752-1"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-6759-1 vom 2024-04-29",
"url": "https://ubuntu.com/security/notices/USN-6759-1"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2024:1835-1 vom 2024-05-29",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-May/018621.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2024:2631-1 vom 2024-07-30",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/HBK55IKTQA23VGL5RAMGC7VKBKONGQPJ/"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2024:1856-1 vom 2024-08-19",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/FXJ7VXU3WD5NGIV3CLIQE4WRKC3O6ZJP/"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:9092 vom 2024-11-12",
"url": "https://access.redhat.com/errata/RHSA-2024:9092"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2024-9092 vom 2024-11-19",
"url": "https://linux.oracle.com/errata/ELSA-2024-9092.html"
},
{
"category": "external",
"summary": "Debian Security Advisory DLA-4053 vom 2025-02-15",
"url": "https://lists.debian.org/debian-lts-announce/2025/02/msg00016.html"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7341-1 vom 2025-03-11",
"url": "https://ubuntu.com/security/notices/USN-7341-1"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7371-1 vom 2025-03-25",
"url": "https://ubuntu.com/security/notices/USN-7371-1"
}
],
"source_lang": "en-US",
"title": "FreeRDP: Mehrere Schwachstellen",
"tracking": {
"current_release_date": "2025-03-25T23:00:00.000+00:00",
"generator": {
"date": "2025-03-26T09:10:40.292+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.3.12"
}
},
"id": "WID-SEC-W-2024-0954",
"initial_release_date": "2024-04-23T22:00:00.000+00:00",
"revision_history": [
{
"date": "2024-04-23T22:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2024-04-25T22:00:00.000+00:00",
"number": "2",
"summary": "Neue Updates von Ubuntu aufgenommen"
},
{
"date": "2024-04-29T22:00:00.000+00:00",
"number": "3",
"summary": "Neue Updates von Ubuntu aufgenommen"
},
{
"date": "2024-05-30T22:00:00.000+00:00",
"number": "4",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2024-07-29T22:00:00.000+00:00",
"number": "5",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2024-08-19T22:00:00.000+00:00",
"number": "6",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2024-11-11T23:00:00.000+00:00",
"number": "7",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-11-18T23:00:00.000+00:00",
"number": "8",
"summary": "Neue Updates von Oracle Linux aufgenommen"
},
{
"date": "2025-02-16T23:00:00.000+00:00",
"number": "9",
"summary": "Neue Updates von Debian aufgenommen"
},
{
"date": "2025-03-11T23:00:00.000+00:00",
"number": "10",
"summary": "Neue Updates von Ubuntu aufgenommen"
},
{
"date": "2025-03-25T23:00:00.000+00:00",
"number": "11",
"summary": "Neue Updates von Ubuntu aufgenommen"
}
],
"status": "final",
"version": "11"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Debian Linux",
"product": {
"name": "Debian Linux",
"product_id": "2951",
"product_identification_helper": {
"cpe": "cpe:/o:debian:debian_linux:-"
}
}
}
],
"category": "vendor",
"name": "Debian"
},
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c3.5.1",
"product": {
"name": "Open Source FreeRDP \u003c3.5.1",
"product_id": "T034365"
}
},
{
"category": "product_version",
"name": "3.5.1",
"product": {
"name": "Open Source FreeRDP 3.5.1",
"product_id": "T034365-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:freerdp:freerdp:3.5.1"
}
}
}
],
"category": "product_name",
"name": "FreeRDP"
}
],
"category": "vendor",
"name": "Open Source"
},
{
"branches": [
{
"category": "product_name",
"name": "Oracle Linux",
"product": {
"name": "Oracle Linux",
"product_id": "T039238",
"product_identification_helper": {
"cpe": "cpe:/o:oracle:linux:-"
}
}
}
],
"category": "vendor",
"name": "Oracle"
},
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux",
"product": {
"name": "Red Hat Enterprise Linux",
"product_id": "67646",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:-"
}
}
}
],
"category": "vendor",
"name": "Red Hat"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux",
"product": {
"name": "SUSE Linux",
"product_id": "T002207",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse_linux:-"
}
}
}
],
"category": "vendor",
"name": "SUSE"
},
{
"branches": [
{
"category": "product_name",
"name": "Ubuntu Linux",
"product": {
"name": "Ubuntu Linux",
"product_id": "T000126",
"product_identification_helper": {
"cpe": "cpe:/o:canonical:ubuntu_linux:-"
}
}
}
],
"category": "vendor",
"name": "Ubuntu"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-32658",
"product_status": {
"known_affected": [
"2951",
"T002207",
"67646",
"T000126",
"T039238",
"T034365"
]
},
"release_date": "2024-04-23T22:00:00.000+00:00",
"title": "CVE-2024-32658"
},
{
"cve": "CVE-2024-32659",
"product_status": {
"known_affected": [
"2951",
"T002207",
"67646",
"T000126",
"T039238",
"T034365"
]
},
"release_date": "2024-04-23T22:00:00.000+00:00",
"title": "CVE-2024-32659"
},
{
"cve": "CVE-2024-32660",
"product_status": {
"known_affected": [
"2951",
"T002207",
"67646",
"T000126",
"T039238",
"T034365"
]
},
"release_date": "2024-04-23T22:00:00.000+00:00",
"title": "CVE-2024-32660"
},
{
"cve": "CVE-2024-32661",
"product_status": {
"known_affected": [
"2951",
"T002207",
"67646",
"T000126",
"T039238",
"T034365"
]
},
"release_date": "2024-04-23T22:00:00.000+00:00",
"title": "CVE-2024-32661"
},
{
"cve": "CVE-2024-32662",
"product_status": {
"known_affected": [
"2951",
"T002207",
"67646",
"T000126",
"T039238",
"T034365"
]
},
"release_date": "2024-04-23T22:00:00.000+00:00",
"title": "CVE-2024-32662"
}
]
}
SUSE-SU-2024:1856-1
Vulnerability from csaf_suse - Published: 2024-05-30 12:12 - Updated: 2024-05-30 12:12Summary
Security update for freerdp
Notes
Title of the patch
Security update for freerdp
Description of the patch
This update for freerdp fixes the following issues:
- CVE-2024-32658: Fixed out-of-bounds read in Interleaved RLE Bitmap Codec (bsc#1223353).
- CVE-2024-32659: Fixed out-of-bounds read if `((nWidth == 0) and (nHeight == 0))` (bsc#1223346)
- CVE-2024-32660: Fixed client crash via invalid huge allocation size (bsc#1223347)
- CVE-2024-32661: Fixed client NULL pointer dereference (bsc#1223348)
Patchnames
SUSE-2024-1856,SUSE-SLE-Module-Packagehub-Subpackages-15-SP5-2024-1856,SUSE-SLE-Module-Packagehub-Subpackages-15-SP6-2024-1856,SUSE-SLE-Product-SLED-15-SP4-LTSS-2024-1856,SUSE-SLE-Product-WE-15-SP5-2024-1856,openSUSE-SLE-15.5-2024-1856
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for freerdp",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for freerdp fixes the following issues:\n\n- CVE-2024-32658: Fixed out-of-bounds read in Interleaved RLE Bitmap Codec (bsc#1223353).\n- CVE-2024-32659: Fixed out-of-bounds read if `((nWidth == 0) and (nHeight == 0))` (bsc#1223346)\n- CVE-2024-32660: Fixed client crash via invalid huge allocation size (bsc#1223347)\n- CVE-2024-32661: Fixed client NULL pointer dereference (bsc#1223348)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2024-1856,SUSE-SLE-Module-Packagehub-Subpackages-15-SP5-2024-1856,SUSE-SLE-Module-Packagehub-Subpackages-15-SP6-2024-1856,SUSE-SLE-Product-SLED-15-SP4-LTSS-2024-1856,SUSE-SLE-Product-WE-15-SP5-2024-1856,openSUSE-SLE-15.5-2024-1856",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2024_1856-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2024:1856-1",
"url": "https://www.suse.com/support/update/announcement/2024/suse-su-20241856-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2024:1856-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-August/019266.html"
},
{
"category": "self",
"summary": "SUSE Bug 1223346",
"url": "https://bugzilla.suse.com/1223346"
},
{
"category": "self",
"summary": "SUSE Bug 1223347",
"url": "https://bugzilla.suse.com/1223347"
},
{
"category": "self",
"summary": "SUSE Bug 1223348",
"url": "https://bugzilla.suse.com/1223348"
},
{
"category": "self",
"summary": "SUSE Bug 1223353",
"url": "https://bugzilla.suse.com/1223353"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-32658 page",
"url": "https://www.suse.com/security/cve/CVE-2024-32658/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-32659 page",
"url": "https://www.suse.com/security/cve/CVE-2024-32659/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-32660 page",
"url": "https://www.suse.com/security/cve/CVE-2024-32660/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-32661 page",
"url": "https://www.suse.com/security/cve/CVE-2024-32661/"
}
],
"title": "Security update for freerdp",
"tracking": {
"current_release_date": "2024-05-30T12:12:31Z",
"generator": {
"date": "2024-05-30T12:12:31Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2024:1856-1",
"initial_release_date": "2024-05-30T12:12:31Z",
"revision_history": [
{
"date": "2024-05-30T12:12:31Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "freerdp-2.4.0-150400.3.32.1.aarch64",
"product": {
"name": "freerdp-2.4.0-150400.3.32.1.aarch64",
"product_id": "freerdp-2.4.0-150400.3.32.1.aarch64"
}
},
{
"category": "product_version",
"name": "freerdp-devel-2.4.0-150400.3.32.1.aarch64",
"product": {
"name": "freerdp-devel-2.4.0-150400.3.32.1.aarch64",
"product_id": "freerdp-devel-2.4.0-150400.3.32.1.aarch64"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-2.4.0-150400.3.32.1.aarch64",
"product": {
"name": "freerdp-proxy-2.4.0-150400.3.32.1.aarch64",
"product_id": "freerdp-proxy-2.4.0-150400.3.32.1.aarch64"
}
},
{
"category": "product_version",
"name": "freerdp-server-2.4.0-150400.3.32.1.aarch64",
"product": {
"name": "freerdp-server-2.4.0-150400.3.32.1.aarch64",
"product_id": "freerdp-server-2.4.0-150400.3.32.1.aarch64"
}
},
{
"category": "product_version",
"name": "freerdp-wayland-2.4.0-150400.3.32.1.aarch64",
"product": {
"name": "freerdp-wayland-2.4.0-150400.3.32.1.aarch64",
"product_id": "freerdp-wayland-2.4.0-150400.3.32.1.aarch64"
}
},
{
"category": "product_version",
"name": "libfreerdp2-2.4.0-150400.3.32.1.aarch64",
"product": {
"name": "libfreerdp2-2.4.0-150400.3.32.1.aarch64",
"product_id": "libfreerdp2-2.4.0-150400.3.32.1.aarch64"
}
},
{
"category": "product_version",
"name": "libuwac0-0-2.4.0-150400.3.32.1.aarch64",
"product": {
"name": "libuwac0-0-2.4.0-150400.3.32.1.aarch64",
"product_id": "libuwac0-0-2.4.0-150400.3.32.1.aarch64"
}
},
{
"category": "product_version",
"name": "libwinpr2-2.4.0-150400.3.32.1.aarch64",
"product": {
"name": "libwinpr2-2.4.0-150400.3.32.1.aarch64",
"product_id": "libwinpr2-2.4.0-150400.3.32.1.aarch64"
}
},
{
"category": "product_version",
"name": "uwac0-0-devel-2.4.0-150400.3.32.1.aarch64",
"product": {
"name": "uwac0-0-devel-2.4.0-150400.3.32.1.aarch64",
"product_id": "uwac0-0-devel-2.4.0-150400.3.32.1.aarch64"
}
},
{
"category": "product_version",
"name": "winpr2-devel-2.4.0-150400.3.32.1.aarch64",
"product": {
"name": "winpr2-devel-2.4.0-150400.3.32.1.aarch64",
"product_id": "winpr2-devel-2.4.0-150400.3.32.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "freerdp-2.4.0-150400.3.32.1.i586",
"product": {
"name": "freerdp-2.4.0-150400.3.32.1.i586",
"product_id": "freerdp-2.4.0-150400.3.32.1.i586"
}
},
{
"category": "product_version",
"name": "freerdp-devel-2.4.0-150400.3.32.1.i586",
"product": {
"name": "freerdp-devel-2.4.0-150400.3.32.1.i586",
"product_id": "freerdp-devel-2.4.0-150400.3.32.1.i586"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-2.4.0-150400.3.32.1.i586",
"product": {
"name": "freerdp-proxy-2.4.0-150400.3.32.1.i586",
"product_id": "freerdp-proxy-2.4.0-150400.3.32.1.i586"
}
},
{
"category": "product_version",
"name": "freerdp-server-2.4.0-150400.3.32.1.i586",
"product": {
"name": "freerdp-server-2.4.0-150400.3.32.1.i586",
"product_id": "freerdp-server-2.4.0-150400.3.32.1.i586"
}
},
{
"category": "product_version",
"name": "freerdp-wayland-2.4.0-150400.3.32.1.i586",
"product": {
"name": "freerdp-wayland-2.4.0-150400.3.32.1.i586",
"product_id": "freerdp-wayland-2.4.0-150400.3.32.1.i586"
}
},
{
"category": "product_version",
"name": "libfreerdp2-2.4.0-150400.3.32.1.i586",
"product": {
"name": "libfreerdp2-2.4.0-150400.3.32.1.i586",
"product_id": "libfreerdp2-2.4.0-150400.3.32.1.i586"
}
},
{
"category": "product_version",
"name": "libuwac0-0-2.4.0-150400.3.32.1.i586",
"product": {
"name": "libuwac0-0-2.4.0-150400.3.32.1.i586",
"product_id": "libuwac0-0-2.4.0-150400.3.32.1.i586"
}
},
{
"category": "product_version",
"name": "libwinpr2-2.4.0-150400.3.32.1.i586",
"product": {
"name": "libwinpr2-2.4.0-150400.3.32.1.i586",
"product_id": "libwinpr2-2.4.0-150400.3.32.1.i586"
}
},
{
"category": "product_version",
"name": "uwac0-0-devel-2.4.0-150400.3.32.1.i586",
"product": {
"name": "uwac0-0-devel-2.4.0-150400.3.32.1.i586",
"product_id": "uwac0-0-devel-2.4.0-150400.3.32.1.i586"
}
},
{
"category": "product_version",
"name": "winpr2-devel-2.4.0-150400.3.32.1.i586",
"product": {
"name": "winpr2-devel-2.4.0-150400.3.32.1.i586",
"product_id": "winpr2-devel-2.4.0-150400.3.32.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "freerdp-2.4.0-150400.3.32.1.ppc64le",
"product": {
"name": "freerdp-2.4.0-150400.3.32.1.ppc64le",
"product_id": "freerdp-2.4.0-150400.3.32.1.ppc64le"
}
},
{
"category": "product_version",
"name": "freerdp-devel-2.4.0-150400.3.32.1.ppc64le",
"product": {
"name": "freerdp-devel-2.4.0-150400.3.32.1.ppc64le",
"product_id": "freerdp-devel-2.4.0-150400.3.32.1.ppc64le"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-2.4.0-150400.3.32.1.ppc64le",
"product": {
"name": "freerdp-proxy-2.4.0-150400.3.32.1.ppc64le",
"product_id": "freerdp-proxy-2.4.0-150400.3.32.1.ppc64le"
}
},
{
"category": "product_version",
"name": "freerdp-server-2.4.0-150400.3.32.1.ppc64le",
"product": {
"name": "freerdp-server-2.4.0-150400.3.32.1.ppc64le",
"product_id": "freerdp-server-2.4.0-150400.3.32.1.ppc64le"
}
},
{
"category": "product_version",
"name": "freerdp-wayland-2.4.0-150400.3.32.1.ppc64le",
"product": {
"name": "freerdp-wayland-2.4.0-150400.3.32.1.ppc64le",
"product_id": "freerdp-wayland-2.4.0-150400.3.32.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libfreerdp2-2.4.0-150400.3.32.1.ppc64le",
"product": {
"name": "libfreerdp2-2.4.0-150400.3.32.1.ppc64le",
"product_id": "libfreerdp2-2.4.0-150400.3.32.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libuwac0-0-2.4.0-150400.3.32.1.ppc64le",
"product": {
"name": "libuwac0-0-2.4.0-150400.3.32.1.ppc64le",
"product_id": "libuwac0-0-2.4.0-150400.3.32.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libwinpr2-2.4.0-150400.3.32.1.ppc64le",
"product": {
"name": "libwinpr2-2.4.0-150400.3.32.1.ppc64le",
"product_id": "libwinpr2-2.4.0-150400.3.32.1.ppc64le"
}
},
{
"category": "product_version",
"name": "uwac0-0-devel-2.4.0-150400.3.32.1.ppc64le",
"product": {
"name": "uwac0-0-devel-2.4.0-150400.3.32.1.ppc64le",
"product_id": "uwac0-0-devel-2.4.0-150400.3.32.1.ppc64le"
}
},
{
"category": "product_version",
"name": "winpr2-devel-2.4.0-150400.3.32.1.ppc64le",
"product": {
"name": "winpr2-devel-2.4.0-150400.3.32.1.ppc64le",
"product_id": "winpr2-devel-2.4.0-150400.3.32.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "freerdp-2.4.0-150400.3.32.1.s390x",
"product": {
"name": "freerdp-2.4.0-150400.3.32.1.s390x",
"product_id": "freerdp-2.4.0-150400.3.32.1.s390x"
}
},
{
"category": "product_version",
"name": "freerdp-devel-2.4.0-150400.3.32.1.s390x",
"product": {
"name": "freerdp-devel-2.4.0-150400.3.32.1.s390x",
"product_id": "freerdp-devel-2.4.0-150400.3.32.1.s390x"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-2.4.0-150400.3.32.1.s390x",
"product": {
"name": "freerdp-proxy-2.4.0-150400.3.32.1.s390x",
"product_id": "freerdp-proxy-2.4.0-150400.3.32.1.s390x"
}
},
{
"category": "product_version",
"name": "freerdp-server-2.4.0-150400.3.32.1.s390x",
"product": {
"name": "freerdp-server-2.4.0-150400.3.32.1.s390x",
"product_id": "freerdp-server-2.4.0-150400.3.32.1.s390x"
}
},
{
"category": "product_version",
"name": "freerdp-wayland-2.4.0-150400.3.32.1.s390x",
"product": {
"name": "freerdp-wayland-2.4.0-150400.3.32.1.s390x",
"product_id": "freerdp-wayland-2.4.0-150400.3.32.1.s390x"
}
},
{
"category": "product_version",
"name": "libfreerdp2-2.4.0-150400.3.32.1.s390x",
"product": {
"name": "libfreerdp2-2.4.0-150400.3.32.1.s390x",
"product_id": "libfreerdp2-2.4.0-150400.3.32.1.s390x"
}
},
{
"category": "product_version",
"name": "libuwac0-0-2.4.0-150400.3.32.1.s390x",
"product": {
"name": "libuwac0-0-2.4.0-150400.3.32.1.s390x",
"product_id": "libuwac0-0-2.4.0-150400.3.32.1.s390x"
}
},
{
"category": "product_version",
"name": "libwinpr2-2.4.0-150400.3.32.1.s390x",
"product": {
"name": "libwinpr2-2.4.0-150400.3.32.1.s390x",
"product_id": "libwinpr2-2.4.0-150400.3.32.1.s390x"
}
},
{
"category": "product_version",
"name": "uwac0-0-devel-2.4.0-150400.3.32.1.s390x",
"product": {
"name": "uwac0-0-devel-2.4.0-150400.3.32.1.s390x",
"product_id": "uwac0-0-devel-2.4.0-150400.3.32.1.s390x"
}
},
{
"category": "product_version",
"name": "winpr2-devel-2.4.0-150400.3.32.1.s390x",
"product": {
"name": "winpr2-devel-2.4.0-150400.3.32.1.s390x",
"product_id": "winpr2-devel-2.4.0-150400.3.32.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "freerdp-2.4.0-150400.3.32.1.x86_64",
"product": {
"name": "freerdp-2.4.0-150400.3.32.1.x86_64",
"product_id": "freerdp-2.4.0-150400.3.32.1.x86_64"
}
},
{
"category": "product_version",
"name": "freerdp-devel-2.4.0-150400.3.32.1.x86_64",
"product": {
"name": "freerdp-devel-2.4.0-150400.3.32.1.x86_64",
"product_id": "freerdp-devel-2.4.0-150400.3.32.1.x86_64"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-2.4.0-150400.3.32.1.x86_64",
"product": {
"name": "freerdp-proxy-2.4.0-150400.3.32.1.x86_64",
"product_id": "freerdp-proxy-2.4.0-150400.3.32.1.x86_64"
}
},
{
"category": "product_version",
"name": "freerdp-server-2.4.0-150400.3.32.1.x86_64",
"product": {
"name": "freerdp-server-2.4.0-150400.3.32.1.x86_64",
"product_id": "freerdp-server-2.4.0-150400.3.32.1.x86_64"
}
},
{
"category": "product_version",
"name": "freerdp-wayland-2.4.0-150400.3.32.1.x86_64",
"product": {
"name": "freerdp-wayland-2.4.0-150400.3.32.1.x86_64",
"product_id": "freerdp-wayland-2.4.0-150400.3.32.1.x86_64"
}
},
{
"category": "product_version",
"name": "libfreerdp2-2.4.0-150400.3.32.1.x86_64",
"product": {
"name": "libfreerdp2-2.4.0-150400.3.32.1.x86_64",
"product_id": "libfreerdp2-2.4.0-150400.3.32.1.x86_64"
}
},
{
"category": "product_version",
"name": "libuwac0-0-2.4.0-150400.3.32.1.x86_64",
"product": {
"name": "libuwac0-0-2.4.0-150400.3.32.1.x86_64",
"product_id": "libuwac0-0-2.4.0-150400.3.32.1.x86_64"
}
},
{
"category": "product_version",
"name": "libwinpr2-2.4.0-150400.3.32.1.x86_64",
"product": {
"name": "libwinpr2-2.4.0-150400.3.32.1.x86_64",
"product_id": "libwinpr2-2.4.0-150400.3.32.1.x86_64"
}
},
{
"category": "product_version",
"name": "uwac0-0-devel-2.4.0-150400.3.32.1.x86_64",
"product": {
"name": "uwac0-0-devel-2.4.0-150400.3.32.1.x86_64",
"product_id": "uwac0-0-devel-2.4.0-150400.3.32.1.x86_64"
}
},
{
"category": "product_version",
"name": "winpr2-devel-2.4.0-150400.3.32.1.x86_64",
"product": {
"name": "winpr2-devel-2.4.0-150400.3.32.1.x86_64",
"product_id": "winpr2-devel-2.4.0-150400.3.32.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Package Hub 15 SP5",
"product": {
"name": "SUSE Linux Enterprise Module for Package Hub 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:packagehub:15:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Package Hub 15 SP6",
"product": {
"name": "SUSE Linux Enterprise Module for Package Hub 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP6",
"product_identification_helper": {
"cpe": "cpe:/o:suse:packagehub:15:sp6"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Workstation Extension 15 SP5",
"product": {
"name": "SUSE Linux Enterprise Workstation Extension 15 SP5",
"product_id": "SUSE Linux Enterprise Workstation Extension 15 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-we:15:sp5"
}
}
},
{
"category": "product_name",
"name": "openSUSE Leap 15.5",
"product": {
"name": "openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.5"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-2.4.0-150400.3.32.1.aarch64 as component of SUSE Linux Enterprise Module for Package Hub 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-2.4.0-150400.3.32.1.aarch64"
},
"product_reference": "freerdp-2.4.0-150400.3.32.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-2.4.0-150400.3.32.1.ppc64le as component of SUSE Linux Enterprise Module for Package Hub 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-2.4.0-150400.3.32.1.ppc64le"
},
"product_reference": "freerdp-2.4.0-150400.3.32.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-2.4.0-150400.3.32.1.s390x as component of SUSE Linux Enterprise Module for Package Hub 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-2.4.0-150400.3.32.1.s390x"
},
"product_reference": "freerdp-2.4.0-150400.3.32.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-devel-2.4.0-150400.3.32.1.aarch64 as component of SUSE Linux Enterprise Module for Package Hub 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-devel-2.4.0-150400.3.32.1.aarch64"
},
"product_reference": "freerdp-devel-2.4.0-150400.3.32.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-devel-2.4.0-150400.3.32.1.ppc64le as component of SUSE Linux Enterprise Module for Package Hub 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-devel-2.4.0-150400.3.32.1.ppc64le"
},
"product_reference": "freerdp-devel-2.4.0-150400.3.32.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-devel-2.4.0-150400.3.32.1.s390x as component of SUSE Linux Enterprise Module for Package Hub 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-devel-2.4.0-150400.3.32.1.s390x"
},
"product_reference": "freerdp-devel-2.4.0-150400.3.32.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-proxy-2.4.0-150400.3.32.1.aarch64 as component of SUSE Linux Enterprise Module for Package Hub 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-proxy-2.4.0-150400.3.32.1.aarch64"
},
"product_reference": "freerdp-proxy-2.4.0-150400.3.32.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-proxy-2.4.0-150400.3.32.1.ppc64le as component of SUSE Linux Enterprise Module for Package Hub 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-proxy-2.4.0-150400.3.32.1.ppc64le"
},
"product_reference": "freerdp-proxy-2.4.0-150400.3.32.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-proxy-2.4.0-150400.3.32.1.s390x as component of SUSE Linux Enterprise Module for Package Hub 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-proxy-2.4.0-150400.3.32.1.s390x"
},
"product_reference": "freerdp-proxy-2.4.0-150400.3.32.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-server-2.4.0-150400.3.32.1.aarch64 as component of SUSE Linux Enterprise Module for Package Hub 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-server-2.4.0-150400.3.32.1.aarch64"
},
"product_reference": "freerdp-server-2.4.0-150400.3.32.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-server-2.4.0-150400.3.32.1.ppc64le as component of SUSE Linux Enterprise Module for Package Hub 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-server-2.4.0-150400.3.32.1.ppc64le"
},
"product_reference": "freerdp-server-2.4.0-150400.3.32.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-server-2.4.0-150400.3.32.1.s390x as component of SUSE Linux Enterprise Module for Package Hub 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-server-2.4.0-150400.3.32.1.s390x"
},
"product_reference": "freerdp-server-2.4.0-150400.3.32.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-wayland-2.4.0-150400.3.32.1.aarch64 as component of SUSE Linux Enterprise Module for Package Hub 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-wayland-2.4.0-150400.3.32.1.aarch64"
},
"product_reference": "freerdp-wayland-2.4.0-150400.3.32.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-wayland-2.4.0-150400.3.32.1.ppc64le as component of SUSE Linux Enterprise Module for Package Hub 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-wayland-2.4.0-150400.3.32.1.ppc64le"
},
"product_reference": "freerdp-wayland-2.4.0-150400.3.32.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-wayland-2.4.0-150400.3.32.1.s390x as component of SUSE Linux Enterprise Module for Package Hub 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-wayland-2.4.0-150400.3.32.1.s390x"
},
"product_reference": "freerdp-wayland-2.4.0-150400.3.32.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp2-2.4.0-150400.3.32.1.aarch64 as component of SUSE Linux Enterprise Module for Package Hub 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP5:libfreerdp2-2.4.0-150400.3.32.1.aarch64"
},
"product_reference": "libfreerdp2-2.4.0-150400.3.32.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp2-2.4.0-150400.3.32.1.ppc64le as component of SUSE Linux Enterprise Module for Package Hub 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP5:libfreerdp2-2.4.0-150400.3.32.1.ppc64le"
},
"product_reference": "libfreerdp2-2.4.0-150400.3.32.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp2-2.4.0-150400.3.32.1.s390x as component of SUSE Linux Enterprise Module for Package Hub 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP5:libfreerdp2-2.4.0-150400.3.32.1.s390x"
},
"product_reference": "libfreerdp2-2.4.0-150400.3.32.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libuwac0-0-2.4.0-150400.3.32.1.aarch64 as component of SUSE Linux Enterprise Module for Package Hub 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP5:libuwac0-0-2.4.0-150400.3.32.1.aarch64"
},
"product_reference": "libuwac0-0-2.4.0-150400.3.32.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libuwac0-0-2.4.0-150400.3.32.1.ppc64le as component of SUSE Linux Enterprise Module for Package Hub 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP5:libuwac0-0-2.4.0-150400.3.32.1.ppc64le"
},
"product_reference": "libuwac0-0-2.4.0-150400.3.32.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libuwac0-0-2.4.0-150400.3.32.1.s390x as component of SUSE Linux Enterprise Module for Package Hub 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP5:libuwac0-0-2.4.0-150400.3.32.1.s390x"
},
"product_reference": "libuwac0-0-2.4.0-150400.3.32.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr2-2.4.0-150400.3.32.1.aarch64 as component of SUSE Linux Enterprise Module for Package Hub 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP5:libwinpr2-2.4.0-150400.3.32.1.aarch64"
},
"product_reference": "libwinpr2-2.4.0-150400.3.32.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr2-2.4.0-150400.3.32.1.ppc64le as component of SUSE Linux Enterprise Module for Package Hub 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP5:libwinpr2-2.4.0-150400.3.32.1.ppc64le"
},
"product_reference": "libwinpr2-2.4.0-150400.3.32.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr2-2.4.0-150400.3.32.1.s390x as component of SUSE Linux Enterprise Module for Package Hub 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP5:libwinpr2-2.4.0-150400.3.32.1.s390x"
},
"product_reference": "libwinpr2-2.4.0-150400.3.32.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "uwac0-0-devel-2.4.0-150400.3.32.1.aarch64 as component of SUSE Linux Enterprise Module for Package Hub 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP5:uwac0-0-devel-2.4.0-150400.3.32.1.aarch64"
},
"product_reference": "uwac0-0-devel-2.4.0-150400.3.32.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "uwac0-0-devel-2.4.0-150400.3.32.1.ppc64le as component of SUSE Linux Enterprise Module for Package Hub 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP5:uwac0-0-devel-2.4.0-150400.3.32.1.ppc64le"
},
"product_reference": "uwac0-0-devel-2.4.0-150400.3.32.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "uwac0-0-devel-2.4.0-150400.3.32.1.s390x as component of SUSE Linux Enterprise Module for Package Hub 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP5:uwac0-0-devel-2.4.0-150400.3.32.1.s390x"
},
"product_reference": "uwac0-0-devel-2.4.0-150400.3.32.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "winpr2-devel-2.4.0-150400.3.32.1.aarch64 as component of SUSE Linux Enterprise Module for Package Hub 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP5:winpr2-devel-2.4.0-150400.3.32.1.aarch64"
},
"product_reference": "winpr2-devel-2.4.0-150400.3.32.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "winpr2-devel-2.4.0-150400.3.32.1.ppc64le as component of SUSE Linux Enterprise Module for Package Hub 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP5:winpr2-devel-2.4.0-150400.3.32.1.ppc64le"
},
"product_reference": "winpr2-devel-2.4.0-150400.3.32.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "winpr2-devel-2.4.0-150400.3.32.1.s390x as component of SUSE Linux Enterprise Module for Package Hub 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP5:winpr2-devel-2.4.0-150400.3.32.1.s390x"
},
"product_reference": "winpr2-devel-2.4.0-150400.3.32.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp2-2.4.0-150400.3.32.1.aarch64 as component of SUSE Linux Enterprise Module for Package Hub 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP6:libfreerdp2-2.4.0-150400.3.32.1.aarch64"
},
"product_reference": "libfreerdp2-2.4.0-150400.3.32.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp2-2.4.0-150400.3.32.1.ppc64le as component of SUSE Linux Enterprise Module for Package Hub 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP6:libfreerdp2-2.4.0-150400.3.32.1.ppc64le"
},
"product_reference": "libfreerdp2-2.4.0-150400.3.32.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp2-2.4.0-150400.3.32.1.s390x as component of SUSE Linux Enterprise Module for Package Hub 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP6:libfreerdp2-2.4.0-150400.3.32.1.s390x"
},
"product_reference": "libfreerdp2-2.4.0-150400.3.32.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr2-2.4.0-150400.3.32.1.aarch64 as component of SUSE Linux Enterprise Module for Package Hub 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP6:libwinpr2-2.4.0-150400.3.32.1.aarch64"
},
"product_reference": "libwinpr2-2.4.0-150400.3.32.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr2-2.4.0-150400.3.32.1.ppc64le as component of SUSE Linux Enterprise Module for Package Hub 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP6:libwinpr2-2.4.0-150400.3.32.1.ppc64le"
},
"product_reference": "libwinpr2-2.4.0-150400.3.32.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr2-2.4.0-150400.3.32.1.s390x as component of SUSE Linux Enterprise Module for Package Hub 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP6:libwinpr2-2.4.0-150400.3.32.1.s390x"
},
"product_reference": "libwinpr2-2.4.0-150400.3.32.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "winpr2-devel-2.4.0-150400.3.32.1.aarch64 as component of SUSE Linux Enterprise Module for Package Hub 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP6:winpr2-devel-2.4.0-150400.3.32.1.aarch64"
},
"product_reference": "winpr2-devel-2.4.0-150400.3.32.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "winpr2-devel-2.4.0-150400.3.32.1.ppc64le as component of SUSE Linux Enterprise Module for Package Hub 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP6:winpr2-devel-2.4.0-150400.3.32.1.ppc64le"
},
"product_reference": "winpr2-devel-2.4.0-150400.3.32.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "winpr2-devel-2.4.0-150400.3.32.1.s390x as component of SUSE Linux Enterprise Module for Package Hub 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP6:winpr2-devel-2.4.0-150400.3.32.1.s390x"
},
"product_reference": "winpr2-devel-2.4.0-150400.3.32.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-2.4.0-150400.3.32.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 15 SP5",
"product_id": "SUSE Linux Enterprise Workstation Extension 15 SP5:freerdp-2.4.0-150400.3.32.1.x86_64"
},
"product_reference": "freerdp-2.4.0-150400.3.32.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-devel-2.4.0-150400.3.32.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 15 SP5",
"product_id": "SUSE Linux Enterprise Workstation Extension 15 SP5:freerdp-devel-2.4.0-150400.3.32.1.x86_64"
},
"product_reference": "freerdp-devel-2.4.0-150400.3.32.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-proxy-2.4.0-150400.3.32.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 15 SP5",
"product_id": "SUSE Linux Enterprise Workstation Extension 15 SP5:freerdp-proxy-2.4.0-150400.3.32.1.x86_64"
},
"product_reference": "freerdp-proxy-2.4.0-150400.3.32.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp2-2.4.0-150400.3.32.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 15 SP5",
"product_id": "SUSE Linux Enterprise Workstation Extension 15 SP5:libfreerdp2-2.4.0-150400.3.32.1.x86_64"
},
"product_reference": "libfreerdp2-2.4.0-150400.3.32.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr2-2.4.0-150400.3.32.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 15 SP5",
"product_id": "SUSE Linux Enterprise Workstation Extension 15 SP5:libwinpr2-2.4.0-150400.3.32.1.x86_64"
},
"product_reference": "libwinpr2-2.4.0-150400.3.32.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "winpr2-devel-2.4.0-150400.3.32.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 15 SP5",
"product_id": "SUSE Linux Enterprise Workstation Extension 15 SP5:winpr2-devel-2.4.0-150400.3.32.1.x86_64"
},
"product_reference": "winpr2-devel-2.4.0-150400.3.32.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-2.4.0-150400.3.32.1.aarch64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:freerdp-2.4.0-150400.3.32.1.aarch64"
},
"product_reference": "freerdp-2.4.0-150400.3.32.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-2.4.0-150400.3.32.1.ppc64le as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:freerdp-2.4.0-150400.3.32.1.ppc64le"
},
"product_reference": "freerdp-2.4.0-150400.3.32.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-2.4.0-150400.3.32.1.s390x as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:freerdp-2.4.0-150400.3.32.1.s390x"
},
"product_reference": "freerdp-2.4.0-150400.3.32.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-2.4.0-150400.3.32.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:freerdp-2.4.0-150400.3.32.1.x86_64"
},
"product_reference": "freerdp-2.4.0-150400.3.32.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-devel-2.4.0-150400.3.32.1.aarch64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:freerdp-devel-2.4.0-150400.3.32.1.aarch64"
},
"product_reference": "freerdp-devel-2.4.0-150400.3.32.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-devel-2.4.0-150400.3.32.1.ppc64le as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:freerdp-devel-2.4.0-150400.3.32.1.ppc64le"
},
"product_reference": "freerdp-devel-2.4.0-150400.3.32.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-devel-2.4.0-150400.3.32.1.s390x as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:freerdp-devel-2.4.0-150400.3.32.1.s390x"
},
"product_reference": "freerdp-devel-2.4.0-150400.3.32.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-devel-2.4.0-150400.3.32.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:freerdp-devel-2.4.0-150400.3.32.1.x86_64"
},
"product_reference": "freerdp-devel-2.4.0-150400.3.32.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-proxy-2.4.0-150400.3.32.1.aarch64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:freerdp-proxy-2.4.0-150400.3.32.1.aarch64"
},
"product_reference": "freerdp-proxy-2.4.0-150400.3.32.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-proxy-2.4.0-150400.3.32.1.ppc64le as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:freerdp-proxy-2.4.0-150400.3.32.1.ppc64le"
},
"product_reference": "freerdp-proxy-2.4.0-150400.3.32.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-proxy-2.4.0-150400.3.32.1.s390x as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:freerdp-proxy-2.4.0-150400.3.32.1.s390x"
},
"product_reference": "freerdp-proxy-2.4.0-150400.3.32.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-proxy-2.4.0-150400.3.32.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:freerdp-proxy-2.4.0-150400.3.32.1.x86_64"
},
"product_reference": "freerdp-proxy-2.4.0-150400.3.32.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-server-2.4.0-150400.3.32.1.aarch64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:freerdp-server-2.4.0-150400.3.32.1.aarch64"
},
"product_reference": "freerdp-server-2.4.0-150400.3.32.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-server-2.4.0-150400.3.32.1.ppc64le as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:freerdp-server-2.4.0-150400.3.32.1.ppc64le"
},
"product_reference": "freerdp-server-2.4.0-150400.3.32.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-server-2.4.0-150400.3.32.1.s390x as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:freerdp-server-2.4.0-150400.3.32.1.s390x"
},
"product_reference": "freerdp-server-2.4.0-150400.3.32.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-server-2.4.0-150400.3.32.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:freerdp-server-2.4.0-150400.3.32.1.x86_64"
},
"product_reference": "freerdp-server-2.4.0-150400.3.32.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-wayland-2.4.0-150400.3.32.1.aarch64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:freerdp-wayland-2.4.0-150400.3.32.1.aarch64"
},
"product_reference": "freerdp-wayland-2.4.0-150400.3.32.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-wayland-2.4.0-150400.3.32.1.ppc64le as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:freerdp-wayland-2.4.0-150400.3.32.1.ppc64le"
},
"product_reference": "freerdp-wayland-2.4.0-150400.3.32.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-wayland-2.4.0-150400.3.32.1.s390x as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:freerdp-wayland-2.4.0-150400.3.32.1.s390x"
},
"product_reference": "freerdp-wayland-2.4.0-150400.3.32.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-wayland-2.4.0-150400.3.32.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:freerdp-wayland-2.4.0-150400.3.32.1.x86_64"
},
"product_reference": "freerdp-wayland-2.4.0-150400.3.32.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp2-2.4.0-150400.3.32.1.aarch64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:libfreerdp2-2.4.0-150400.3.32.1.aarch64"
},
"product_reference": "libfreerdp2-2.4.0-150400.3.32.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp2-2.4.0-150400.3.32.1.ppc64le as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:libfreerdp2-2.4.0-150400.3.32.1.ppc64le"
},
"product_reference": "libfreerdp2-2.4.0-150400.3.32.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp2-2.4.0-150400.3.32.1.s390x as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:libfreerdp2-2.4.0-150400.3.32.1.s390x"
},
"product_reference": "libfreerdp2-2.4.0-150400.3.32.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp2-2.4.0-150400.3.32.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:libfreerdp2-2.4.0-150400.3.32.1.x86_64"
},
"product_reference": "libfreerdp2-2.4.0-150400.3.32.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libuwac0-0-2.4.0-150400.3.32.1.aarch64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:libuwac0-0-2.4.0-150400.3.32.1.aarch64"
},
"product_reference": "libuwac0-0-2.4.0-150400.3.32.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libuwac0-0-2.4.0-150400.3.32.1.ppc64le as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:libuwac0-0-2.4.0-150400.3.32.1.ppc64le"
},
"product_reference": "libuwac0-0-2.4.0-150400.3.32.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libuwac0-0-2.4.0-150400.3.32.1.s390x as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:libuwac0-0-2.4.0-150400.3.32.1.s390x"
},
"product_reference": "libuwac0-0-2.4.0-150400.3.32.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libuwac0-0-2.4.0-150400.3.32.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:libuwac0-0-2.4.0-150400.3.32.1.x86_64"
},
"product_reference": "libuwac0-0-2.4.0-150400.3.32.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr2-2.4.0-150400.3.32.1.aarch64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:libwinpr2-2.4.0-150400.3.32.1.aarch64"
},
"product_reference": "libwinpr2-2.4.0-150400.3.32.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr2-2.4.0-150400.3.32.1.ppc64le as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:libwinpr2-2.4.0-150400.3.32.1.ppc64le"
},
"product_reference": "libwinpr2-2.4.0-150400.3.32.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr2-2.4.0-150400.3.32.1.s390x as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:libwinpr2-2.4.0-150400.3.32.1.s390x"
},
"product_reference": "libwinpr2-2.4.0-150400.3.32.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr2-2.4.0-150400.3.32.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:libwinpr2-2.4.0-150400.3.32.1.x86_64"
},
"product_reference": "libwinpr2-2.4.0-150400.3.32.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "uwac0-0-devel-2.4.0-150400.3.32.1.aarch64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:uwac0-0-devel-2.4.0-150400.3.32.1.aarch64"
},
"product_reference": "uwac0-0-devel-2.4.0-150400.3.32.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "uwac0-0-devel-2.4.0-150400.3.32.1.ppc64le as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:uwac0-0-devel-2.4.0-150400.3.32.1.ppc64le"
},
"product_reference": "uwac0-0-devel-2.4.0-150400.3.32.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "uwac0-0-devel-2.4.0-150400.3.32.1.s390x as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:uwac0-0-devel-2.4.0-150400.3.32.1.s390x"
},
"product_reference": "uwac0-0-devel-2.4.0-150400.3.32.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "uwac0-0-devel-2.4.0-150400.3.32.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:uwac0-0-devel-2.4.0-150400.3.32.1.x86_64"
},
"product_reference": "uwac0-0-devel-2.4.0-150400.3.32.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "winpr2-devel-2.4.0-150400.3.32.1.aarch64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:winpr2-devel-2.4.0-150400.3.32.1.aarch64"
},
"product_reference": "winpr2-devel-2.4.0-150400.3.32.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "winpr2-devel-2.4.0-150400.3.32.1.ppc64le as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:winpr2-devel-2.4.0-150400.3.32.1.ppc64le"
},
"product_reference": "winpr2-devel-2.4.0-150400.3.32.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "winpr2-devel-2.4.0-150400.3.32.1.s390x as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:winpr2-devel-2.4.0-150400.3.32.1.s390x"
},
"product_reference": "winpr2-devel-2.4.0-150400.3.32.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "winpr2-devel-2.4.0-150400.3.32.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:winpr2-devel-2.4.0-150400.3.32.1.x86_64"
},
"product_reference": "winpr2-devel-2.4.0-150400.3.32.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-32658",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-32658"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients prior to version 3.5.1 are vulnerable to out-of-bounds read. Version 3.5.1 contains a patch for the issue. No known workarounds are available.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-devel-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-devel-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-devel-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-proxy-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-proxy-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-proxy-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-server-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-server-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-server-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-wayland-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-wayland-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-wayland-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libfreerdp2-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libfreerdp2-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libfreerdp2-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libuwac0-0-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libuwac0-0-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libuwac0-0-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libwinpr2-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libwinpr2-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libwinpr2-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:uwac0-0-devel-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:uwac0-0-devel-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:uwac0-0-devel-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:winpr2-devel-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:winpr2-devel-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:winpr2-devel-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libfreerdp2-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libfreerdp2-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libfreerdp2-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libwinpr2-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libwinpr2-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libwinpr2-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:winpr2-devel-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:winpr2-devel-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:winpr2-devel-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP5:freerdp-2.4.0-150400.3.32.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP5:freerdp-devel-2.4.0-150400.3.32.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP5:freerdp-proxy-2.4.0-150400.3.32.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP5:libfreerdp2-2.4.0-150400.3.32.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP5:libwinpr2-2.4.0-150400.3.32.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP5:winpr2-devel-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:freerdp-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:freerdp-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:freerdp-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:freerdp-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:freerdp-devel-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:freerdp-devel-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:freerdp-devel-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:freerdp-devel-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:freerdp-proxy-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:freerdp-proxy-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:freerdp-proxy-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:freerdp-proxy-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:freerdp-server-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:freerdp-server-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:freerdp-server-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:freerdp-server-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:freerdp-wayland-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:freerdp-wayland-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:freerdp-wayland-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:freerdp-wayland-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:libfreerdp2-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:libfreerdp2-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:libfreerdp2-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:libfreerdp2-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:libuwac0-0-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:libuwac0-0-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:libuwac0-0-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:libuwac0-0-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:libwinpr2-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:libwinpr2-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:libwinpr2-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:libwinpr2-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:uwac0-0-devel-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:uwac0-0-devel-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:uwac0-0-devel-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:uwac0-0-devel-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:winpr2-devel-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:winpr2-devel-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:winpr2-devel-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:winpr2-devel-2.4.0-150400.3.32.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-32658",
"url": "https://www.suse.com/security/cve/CVE-2024-32658"
},
{
"category": "external",
"summary": "SUSE Bug 1223353 for CVE-2024-32658",
"url": "https://bugzilla.suse.com/1223353"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-devel-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-devel-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-devel-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-proxy-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-proxy-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-proxy-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-server-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-server-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-server-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-wayland-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-wayland-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-wayland-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libfreerdp2-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libfreerdp2-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libfreerdp2-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libuwac0-0-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libuwac0-0-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libuwac0-0-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libwinpr2-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libwinpr2-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libwinpr2-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:uwac0-0-devel-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:uwac0-0-devel-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:uwac0-0-devel-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:winpr2-devel-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:winpr2-devel-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:winpr2-devel-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libfreerdp2-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libfreerdp2-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libfreerdp2-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libwinpr2-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libwinpr2-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libwinpr2-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:winpr2-devel-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:winpr2-devel-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:winpr2-devel-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP5:freerdp-2.4.0-150400.3.32.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP5:freerdp-devel-2.4.0-150400.3.32.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP5:freerdp-proxy-2.4.0-150400.3.32.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP5:libfreerdp2-2.4.0-150400.3.32.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP5:libwinpr2-2.4.0-150400.3.32.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP5:winpr2-devel-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:freerdp-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:freerdp-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:freerdp-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:freerdp-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:freerdp-devel-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:freerdp-devel-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:freerdp-devel-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:freerdp-devel-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:freerdp-proxy-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:freerdp-proxy-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:freerdp-proxy-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:freerdp-proxy-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:freerdp-server-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:freerdp-server-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:freerdp-server-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:freerdp-server-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:freerdp-wayland-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:freerdp-wayland-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:freerdp-wayland-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:freerdp-wayland-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:libfreerdp2-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:libfreerdp2-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:libfreerdp2-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:libfreerdp2-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:libuwac0-0-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:libuwac0-0-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:libuwac0-0-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:libuwac0-0-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:libwinpr2-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:libwinpr2-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:libwinpr2-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:libwinpr2-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:uwac0-0-devel-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:uwac0-0-devel-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:uwac0-0-devel-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:uwac0-0-devel-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:winpr2-devel-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:winpr2-devel-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:winpr2-devel-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:winpr2-devel-2.4.0-150400.3.32.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-devel-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-devel-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-devel-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-proxy-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-proxy-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-proxy-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-server-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-server-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-server-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-wayland-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-wayland-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-wayland-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libfreerdp2-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libfreerdp2-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libfreerdp2-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libuwac0-0-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libuwac0-0-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libuwac0-0-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libwinpr2-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libwinpr2-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libwinpr2-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:uwac0-0-devel-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:uwac0-0-devel-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:uwac0-0-devel-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:winpr2-devel-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:winpr2-devel-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:winpr2-devel-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libfreerdp2-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libfreerdp2-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libfreerdp2-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libwinpr2-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libwinpr2-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libwinpr2-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:winpr2-devel-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:winpr2-devel-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:winpr2-devel-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP5:freerdp-2.4.0-150400.3.32.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP5:freerdp-devel-2.4.0-150400.3.32.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP5:freerdp-proxy-2.4.0-150400.3.32.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP5:libfreerdp2-2.4.0-150400.3.32.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP5:libwinpr2-2.4.0-150400.3.32.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP5:winpr2-devel-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:freerdp-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:freerdp-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:freerdp-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:freerdp-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:freerdp-devel-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:freerdp-devel-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:freerdp-devel-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:freerdp-devel-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:freerdp-proxy-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:freerdp-proxy-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:freerdp-proxy-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:freerdp-proxy-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:freerdp-server-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:freerdp-server-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:freerdp-server-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:freerdp-server-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:freerdp-wayland-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:freerdp-wayland-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:freerdp-wayland-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:freerdp-wayland-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:libfreerdp2-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:libfreerdp2-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:libfreerdp2-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:libfreerdp2-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:libuwac0-0-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:libuwac0-0-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:libuwac0-0-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:libuwac0-0-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:libwinpr2-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:libwinpr2-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:libwinpr2-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:libwinpr2-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:uwac0-0-devel-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:uwac0-0-devel-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:uwac0-0-devel-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:uwac0-0-devel-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:winpr2-devel-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:winpr2-devel-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:winpr2-devel-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:winpr2-devel-2.4.0-150400.3.32.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-05-30T12:12:31Z",
"details": "important"
}
],
"title": "CVE-2024-32658"
},
{
"cve": "CVE-2024-32659",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-32659"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients prior to version 3.5.1 are vulnerable to out-of-bounds read if `((nWidth == 0) and (nHeight == 0))`. Version 3.5.1 contains a patch for the issue. No known workarounds are available.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-devel-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-devel-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-devel-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-proxy-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-proxy-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-proxy-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-server-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-server-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-server-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-wayland-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-wayland-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-wayland-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libfreerdp2-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libfreerdp2-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libfreerdp2-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libuwac0-0-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libuwac0-0-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libuwac0-0-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libwinpr2-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libwinpr2-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libwinpr2-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:uwac0-0-devel-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:uwac0-0-devel-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:uwac0-0-devel-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:winpr2-devel-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:winpr2-devel-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:winpr2-devel-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libfreerdp2-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libfreerdp2-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libfreerdp2-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libwinpr2-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libwinpr2-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libwinpr2-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:winpr2-devel-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:winpr2-devel-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:winpr2-devel-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP5:freerdp-2.4.0-150400.3.32.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP5:freerdp-devel-2.4.0-150400.3.32.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP5:freerdp-proxy-2.4.0-150400.3.32.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP5:libfreerdp2-2.4.0-150400.3.32.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP5:libwinpr2-2.4.0-150400.3.32.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP5:winpr2-devel-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:freerdp-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:freerdp-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:freerdp-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:freerdp-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:freerdp-devel-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:freerdp-devel-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:freerdp-devel-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:freerdp-devel-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:freerdp-proxy-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:freerdp-proxy-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:freerdp-proxy-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:freerdp-proxy-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:freerdp-server-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:freerdp-server-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:freerdp-server-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:freerdp-server-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:freerdp-wayland-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:freerdp-wayland-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:freerdp-wayland-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:freerdp-wayland-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:libfreerdp2-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:libfreerdp2-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:libfreerdp2-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:libfreerdp2-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:libuwac0-0-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:libuwac0-0-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:libuwac0-0-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:libuwac0-0-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:libwinpr2-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:libwinpr2-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:libwinpr2-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:libwinpr2-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:uwac0-0-devel-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:uwac0-0-devel-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:uwac0-0-devel-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:uwac0-0-devel-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:winpr2-devel-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:winpr2-devel-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:winpr2-devel-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:winpr2-devel-2.4.0-150400.3.32.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-32659",
"url": "https://www.suse.com/security/cve/CVE-2024-32659"
},
{
"category": "external",
"summary": "SUSE Bug 1223346 for CVE-2024-32659",
"url": "https://bugzilla.suse.com/1223346"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-devel-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-devel-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-devel-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-proxy-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-proxy-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-proxy-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-server-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-server-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-server-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-wayland-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-wayland-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-wayland-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libfreerdp2-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libfreerdp2-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libfreerdp2-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libuwac0-0-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libuwac0-0-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libuwac0-0-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libwinpr2-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libwinpr2-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libwinpr2-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:uwac0-0-devel-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:uwac0-0-devel-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:uwac0-0-devel-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:winpr2-devel-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:winpr2-devel-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:winpr2-devel-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libfreerdp2-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libfreerdp2-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libfreerdp2-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libwinpr2-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libwinpr2-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libwinpr2-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:winpr2-devel-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:winpr2-devel-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:winpr2-devel-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP5:freerdp-2.4.0-150400.3.32.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP5:freerdp-devel-2.4.0-150400.3.32.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP5:freerdp-proxy-2.4.0-150400.3.32.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP5:libfreerdp2-2.4.0-150400.3.32.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP5:libwinpr2-2.4.0-150400.3.32.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP5:winpr2-devel-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:freerdp-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:freerdp-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:freerdp-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:freerdp-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:freerdp-devel-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:freerdp-devel-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:freerdp-devel-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:freerdp-devel-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:freerdp-proxy-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:freerdp-proxy-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:freerdp-proxy-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:freerdp-proxy-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:freerdp-server-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:freerdp-server-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:freerdp-server-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:freerdp-server-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:freerdp-wayland-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:freerdp-wayland-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:freerdp-wayland-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:freerdp-wayland-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:libfreerdp2-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:libfreerdp2-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:libfreerdp2-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:libfreerdp2-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:libuwac0-0-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:libuwac0-0-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:libuwac0-0-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:libuwac0-0-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:libwinpr2-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:libwinpr2-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:libwinpr2-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:libwinpr2-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:uwac0-0-devel-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:uwac0-0-devel-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:uwac0-0-devel-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:uwac0-0-devel-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:winpr2-devel-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:winpr2-devel-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:winpr2-devel-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:winpr2-devel-2.4.0-150400.3.32.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-devel-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-devel-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-devel-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-proxy-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-proxy-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-proxy-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-server-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-server-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-server-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-wayland-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-wayland-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-wayland-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libfreerdp2-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libfreerdp2-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libfreerdp2-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libuwac0-0-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libuwac0-0-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libuwac0-0-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libwinpr2-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libwinpr2-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libwinpr2-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:uwac0-0-devel-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:uwac0-0-devel-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:uwac0-0-devel-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:winpr2-devel-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:winpr2-devel-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:winpr2-devel-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libfreerdp2-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libfreerdp2-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libfreerdp2-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libwinpr2-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libwinpr2-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libwinpr2-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:winpr2-devel-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:winpr2-devel-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:winpr2-devel-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP5:freerdp-2.4.0-150400.3.32.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP5:freerdp-devel-2.4.0-150400.3.32.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP5:freerdp-proxy-2.4.0-150400.3.32.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP5:libfreerdp2-2.4.0-150400.3.32.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP5:libwinpr2-2.4.0-150400.3.32.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP5:winpr2-devel-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:freerdp-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:freerdp-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:freerdp-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:freerdp-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:freerdp-devel-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:freerdp-devel-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:freerdp-devel-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:freerdp-devel-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:freerdp-proxy-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:freerdp-proxy-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:freerdp-proxy-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:freerdp-proxy-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:freerdp-server-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:freerdp-server-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:freerdp-server-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:freerdp-server-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:freerdp-wayland-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:freerdp-wayland-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:freerdp-wayland-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:freerdp-wayland-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:libfreerdp2-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:libfreerdp2-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:libfreerdp2-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:libfreerdp2-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:libuwac0-0-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:libuwac0-0-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:libuwac0-0-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:libuwac0-0-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:libwinpr2-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:libwinpr2-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:libwinpr2-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:libwinpr2-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:uwac0-0-devel-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:uwac0-0-devel-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:uwac0-0-devel-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:uwac0-0-devel-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:winpr2-devel-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:winpr2-devel-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:winpr2-devel-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:winpr2-devel-2.4.0-150400.3.32.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-05-30T12:12:31Z",
"details": "important"
}
],
"title": "CVE-2024-32659"
},
{
"cve": "CVE-2024-32660",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-32660"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.5.1, a malicious server can crash the FreeRDP client by sending invalid huge allocation size. Version 3.5.1 contains a patch for the issue. No known workarounds are available.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-devel-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-devel-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-devel-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-proxy-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-proxy-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-proxy-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-server-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-server-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-server-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-wayland-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-wayland-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-wayland-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libfreerdp2-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libfreerdp2-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libfreerdp2-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libuwac0-0-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libuwac0-0-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libuwac0-0-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libwinpr2-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libwinpr2-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libwinpr2-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:uwac0-0-devel-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:uwac0-0-devel-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:uwac0-0-devel-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:winpr2-devel-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:winpr2-devel-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:winpr2-devel-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libfreerdp2-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libfreerdp2-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libfreerdp2-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libwinpr2-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libwinpr2-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libwinpr2-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:winpr2-devel-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:winpr2-devel-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:winpr2-devel-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP5:freerdp-2.4.0-150400.3.32.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP5:freerdp-devel-2.4.0-150400.3.32.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP5:freerdp-proxy-2.4.0-150400.3.32.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP5:libfreerdp2-2.4.0-150400.3.32.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP5:libwinpr2-2.4.0-150400.3.32.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP5:winpr2-devel-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:freerdp-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:freerdp-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:freerdp-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:freerdp-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:freerdp-devel-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:freerdp-devel-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:freerdp-devel-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:freerdp-devel-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:freerdp-proxy-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:freerdp-proxy-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:freerdp-proxy-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:freerdp-proxy-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:freerdp-server-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:freerdp-server-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:freerdp-server-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:freerdp-server-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:freerdp-wayland-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:freerdp-wayland-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:freerdp-wayland-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:freerdp-wayland-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:libfreerdp2-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:libfreerdp2-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:libfreerdp2-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:libfreerdp2-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:libuwac0-0-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:libuwac0-0-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:libuwac0-0-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:libuwac0-0-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:libwinpr2-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:libwinpr2-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:libwinpr2-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:libwinpr2-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:uwac0-0-devel-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:uwac0-0-devel-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:uwac0-0-devel-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:uwac0-0-devel-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:winpr2-devel-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:winpr2-devel-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:winpr2-devel-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:winpr2-devel-2.4.0-150400.3.32.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-32660",
"url": "https://www.suse.com/security/cve/CVE-2024-32660"
},
{
"category": "external",
"summary": "SUSE Bug 1223347 for CVE-2024-32660",
"url": "https://bugzilla.suse.com/1223347"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-devel-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-devel-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-devel-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-proxy-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-proxy-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-proxy-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-server-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-server-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-server-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-wayland-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-wayland-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-wayland-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libfreerdp2-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libfreerdp2-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libfreerdp2-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libuwac0-0-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libuwac0-0-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libuwac0-0-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libwinpr2-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libwinpr2-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libwinpr2-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:uwac0-0-devel-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:uwac0-0-devel-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:uwac0-0-devel-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:winpr2-devel-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:winpr2-devel-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:winpr2-devel-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libfreerdp2-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libfreerdp2-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libfreerdp2-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libwinpr2-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libwinpr2-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libwinpr2-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:winpr2-devel-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:winpr2-devel-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:winpr2-devel-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP5:freerdp-2.4.0-150400.3.32.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP5:freerdp-devel-2.4.0-150400.3.32.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP5:freerdp-proxy-2.4.0-150400.3.32.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP5:libfreerdp2-2.4.0-150400.3.32.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP5:libwinpr2-2.4.0-150400.3.32.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP5:winpr2-devel-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:freerdp-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:freerdp-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:freerdp-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:freerdp-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:freerdp-devel-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:freerdp-devel-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:freerdp-devel-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:freerdp-devel-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:freerdp-proxy-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:freerdp-proxy-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:freerdp-proxy-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:freerdp-proxy-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:freerdp-server-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:freerdp-server-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:freerdp-server-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:freerdp-server-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:freerdp-wayland-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:freerdp-wayland-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:freerdp-wayland-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:freerdp-wayland-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:libfreerdp2-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:libfreerdp2-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:libfreerdp2-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:libfreerdp2-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:libuwac0-0-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:libuwac0-0-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:libuwac0-0-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:libuwac0-0-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:libwinpr2-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:libwinpr2-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:libwinpr2-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:libwinpr2-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:uwac0-0-devel-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:uwac0-0-devel-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:uwac0-0-devel-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:uwac0-0-devel-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:winpr2-devel-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:winpr2-devel-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:winpr2-devel-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:winpr2-devel-2.4.0-150400.3.32.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-devel-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-devel-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-devel-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-proxy-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-proxy-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-proxy-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-server-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-server-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-server-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-wayland-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-wayland-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-wayland-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libfreerdp2-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libfreerdp2-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libfreerdp2-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libuwac0-0-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libuwac0-0-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libuwac0-0-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libwinpr2-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libwinpr2-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libwinpr2-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:uwac0-0-devel-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:uwac0-0-devel-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:uwac0-0-devel-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:winpr2-devel-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:winpr2-devel-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:winpr2-devel-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libfreerdp2-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libfreerdp2-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libfreerdp2-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libwinpr2-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libwinpr2-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libwinpr2-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:winpr2-devel-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:winpr2-devel-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:winpr2-devel-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP5:freerdp-2.4.0-150400.3.32.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP5:freerdp-devel-2.4.0-150400.3.32.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP5:freerdp-proxy-2.4.0-150400.3.32.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP5:libfreerdp2-2.4.0-150400.3.32.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP5:libwinpr2-2.4.0-150400.3.32.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP5:winpr2-devel-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:freerdp-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:freerdp-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:freerdp-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:freerdp-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:freerdp-devel-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:freerdp-devel-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:freerdp-devel-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:freerdp-devel-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:freerdp-proxy-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:freerdp-proxy-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:freerdp-proxy-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:freerdp-proxy-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:freerdp-server-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:freerdp-server-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:freerdp-server-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:freerdp-server-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:freerdp-wayland-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:freerdp-wayland-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:freerdp-wayland-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:freerdp-wayland-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:libfreerdp2-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:libfreerdp2-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:libfreerdp2-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:libfreerdp2-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:libuwac0-0-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:libuwac0-0-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:libuwac0-0-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:libuwac0-0-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:libwinpr2-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:libwinpr2-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:libwinpr2-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:libwinpr2-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:uwac0-0-devel-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:uwac0-0-devel-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:uwac0-0-devel-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:uwac0-0-devel-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:winpr2-devel-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:winpr2-devel-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:winpr2-devel-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:winpr2-devel-2.4.0-150400.3.32.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-05-30T12:12:31Z",
"details": "moderate"
}
],
"title": "CVE-2024-32660"
},
{
"cve": "CVE-2024-32661",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-32661"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients prior to version 3.5.1 are vulnerable to a possible `NULL` access and crash. Version 3.5.1 contains a patch for the issue. No known workarounds are available.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-devel-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-devel-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-devel-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-proxy-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-proxy-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-proxy-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-server-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-server-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-server-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-wayland-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-wayland-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-wayland-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libfreerdp2-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libfreerdp2-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libfreerdp2-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libuwac0-0-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libuwac0-0-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libuwac0-0-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libwinpr2-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libwinpr2-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libwinpr2-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:uwac0-0-devel-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:uwac0-0-devel-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:uwac0-0-devel-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:winpr2-devel-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:winpr2-devel-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:winpr2-devel-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libfreerdp2-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libfreerdp2-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libfreerdp2-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libwinpr2-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libwinpr2-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libwinpr2-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:winpr2-devel-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:winpr2-devel-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:winpr2-devel-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP5:freerdp-2.4.0-150400.3.32.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP5:freerdp-devel-2.4.0-150400.3.32.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP5:freerdp-proxy-2.4.0-150400.3.32.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP5:libfreerdp2-2.4.0-150400.3.32.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP5:libwinpr2-2.4.0-150400.3.32.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP5:winpr2-devel-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:freerdp-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:freerdp-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:freerdp-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:freerdp-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:freerdp-devel-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:freerdp-devel-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:freerdp-devel-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:freerdp-devel-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:freerdp-proxy-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:freerdp-proxy-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:freerdp-proxy-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:freerdp-proxy-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:freerdp-server-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:freerdp-server-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:freerdp-server-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:freerdp-server-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:freerdp-wayland-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:freerdp-wayland-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:freerdp-wayland-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:freerdp-wayland-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:libfreerdp2-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:libfreerdp2-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:libfreerdp2-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:libfreerdp2-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:libuwac0-0-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:libuwac0-0-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:libuwac0-0-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:libuwac0-0-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:libwinpr2-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:libwinpr2-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:libwinpr2-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:libwinpr2-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:uwac0-0-devel-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:uwac0-0-devel-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:uwac0-0-devel-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:uwac0-0-devel-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:winpr2-devel-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:winpr2-devel-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:winpr2-devel-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:winpr2-devel-2.4.0-150400.3.32.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-32661",
"url": "https://www.suse.com/security/cve/CVE-2024-32661"
},
{
"category": "external",
"summary": "SUSE Bug 1223348 for CVE-2024-32661",
"url": "https://bugzilla.suse.com/1223348"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-devel-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-devel-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-devel-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-proxy-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-proxy-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-proxy-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-server-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-server-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-server-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-wayland-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-wayland-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-wayland-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libfreerdp2-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libfreerdp2-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libfreerdp2-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libuwac0-0-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libuwac0-0-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libuwac0-0-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libwinpr2-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libwinpr2-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libwinpr2-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:uwac0-0-devel-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:uwac0-0-devel-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:uwac0-0-devel-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:winpr2-devel-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:winpr2-devel-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:winpr2-devel-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libfreerdp2-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libfreerdp2-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libfreerdp2-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libwinpr2-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libwinpr2-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libwinpr2-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:winpr2-devel-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:winpr2-devel-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:winpr2-devel-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP5:freerdp-2.4.0-150400.3.32.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP5:freerdp-devel-2.4.0-150400.3.32.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP5:freerdp-proxy-2.4.0-150400.3.32.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP5:libfreerdp2-2.4.0-150400.3.32.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP5:libwinpr2-2.4.0-150400.3.32.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP5:winpr2-devel-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:freerdp-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:freerdp-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:freerdp-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:freerdp-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:freerdp-devel-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:freerdp-devel-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:freerdp-devel-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:freerdp-devel-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:freerdp-proxy-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:freerdp-proxy-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:freerdp-proxy-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:freerdp-proxy-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:freerdp-server-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:freerdp-server-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:freerdp-server-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:freerdp-server-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:freerdp-wayland-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:freerdp-wayland-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:freerdp-wayland-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:freerdp-wayland-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:libfreerdp2-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:libfreerdp2-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:libfreerdp2-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:libfreerdp2-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:libuwac0-0-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:libuwac0-0-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:libuwac0-0-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:libuwac0-0-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:libwinpr2-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:libwinpr2-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:libwinpr2-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:libwinpr2-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:uwac0-0-devel-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:uwac0-0-devel-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:uwac0-0-devel-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:uwac0-0-devel-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:winpr2-devel-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:winpr2-devel-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:winpr2-devel-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:winpr2-devel-2.4.0-150400.3.32.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-devel-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-devel-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-devel-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-proxy-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-proxy-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-proxy-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-server-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-server-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-server-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-wayland-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-wayland-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:freerdp-wayland-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libfreerdp2-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libfreerdp2-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libfreerdp2-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libuwac0-0-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libuwac0-0-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libuwac0-0-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libwinpr2-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libwinpr2-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:libwinpr2-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:uwac0-0-devel-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:uwac0-0-devel-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:uwac0-0-devel-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:winpr2-devel-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:winpr2-devel-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP5:winpr2-devel-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libfreerdp2-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libfreerdp2-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libfreerdp2-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libwinpr2-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libwinpr2-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libwinpr2-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:winpr2-devel-2.4.0-150400.3.32.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:winpr2-devel-2.4.0-150400.3.32.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:winpr2-devel-2.4.0-150400.3.32.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP5:freerdp-2.4.0-150400.3.32.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP5:freerdp-devel-2.4.0-150400.3.32.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP5:freerdp-proxy-2.4.0-150400.3.32.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP5:libfreerdp2-2.4.0-150400.3.32.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP5:libwinpr2-2.4.0-150400.3.32.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP5:winpr2-devel-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:freerdp-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:freerdp-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:freerdp-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:freerdp-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:freerdp-devel-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:freerdp-devel-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:freerdp-devel-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:freerdp-devel-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:freerdp-proxy-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:freerdp-proxy-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:freerdp-proxy-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:freerdp-proxy-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:freerdp-server-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:freerdp-server-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:freerdp-server-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:freerdp-server-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:freerdp-wayland-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:freerdp-wayland-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:freerdp-wayland-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:freerdp-wayland-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:libfreerdp2-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:libfreerdp2-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:libfreerdp2-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:libfreerdp2-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:libuwac0-0-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:libuwac0-0-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:libuwac0-0-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:libuwac0-0-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:libwinpr2-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:libwinpr2-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:libwinpr2-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:libwinpr2-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:uwac0-0-devel-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:uwac0-0-devel-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:uwac0-0-devel-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:uwac0-0-devel-2.4.0-150400.3.32.1.x86_64",
"openSUSE Leap 15.5:winpr2-devel-2.4.0-150400.3.32.1.aarch64",
"openSUSE Leap 15.5:winpr2-devel-2.4.0-150400.3.32.1.ppc64le",
"openSUSE Leap 15.5:winpr2-devel-2.4.0-150400.3.32.1.s390x",
"openSUSE Leap 15.5:winpr2-devel-2.4.0-150400.3.32.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-05-30T12:12:31Z",
"details": "moderate"
}
],
"title": "CVE-2024-32661"
}
]
}
SUSE-SU-2024:2631-1
Vulnerability from csaf_suse - Published: 2024-07-30 07:12 - Updated: 2024-07-30 07:12Summary
Security update for freerdp
Notes
Title of the patch
Security update for freerdp
Description of the patch
This update for freerdp fixes the following issues:
- CVE-2024-22211: Fixed integer overflow in `freerdp_bitmap_planar_context_reset` that could lead to heap-buffer overflow (bsc#1219049)
- CVE-2024-32658: Fixed out-of-bounds read in Interleaved RLE Bitmap Codec in FreeRDP based clients (bsc#1223353)
- CVE-2024-32659: Fixed out-of-bounds read if `((nWidth == 0) and (nHeight == 0))` (bsc#1223346)
- CVE-2024-32660: Fixed client crash via invalid huge allocation size (bsc#1223347)
- CVE-2024-32661: Fixed client NULL pointer dereference (bsc#1223348)
Patchnames
SUSE-2024-2631,SUSE-SLE-Module-Packagehub-Subpackages-15-SP6-2024-2631,SUSE-SLE-Product-WE-15-SP6-2024-2631,openSUSE-SLE-15.6-2024-2631
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for freerdp",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for freerdp fixes the following issues:\n\n- CVE-2024-22211: Fixed integer overflow in `freerdp_bitmap_planar_context_reset` that could lead to heap-buffer overflow (bsc#1219049)\n- CVE-2024-32658: Fixed out-of-bounds read in Interleaved RLE Bitmap Codec in FreeRDP based clients (bsc#1223353)\n- CVE-2024-32659: Fixed out-of-bounds read if `((nWidth == 0) and (nHeight == 0))` (bsc#1223346)\n- CVE-2024-32660: Fixed client crash via invalid huge allocation size (bsc#1223347)\n- CVE-2024-32661: Fixed client NULL pointer dereference (bsc#1223348)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2024-2631,SUSE-SLE-Module-Packagehub-Subpackages-15-SP6-2024-2631,SUSE-SLE-Product-WE-15-SP6-2024-2631,openSUSE-SLE-15.6-2024-2631",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2024_2631-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2024:2631-1",
"url": "https://www.suse.com/support/update/announcement/2024/suse-su-20242631-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2024:2631-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-July/019043.html"
},
{
"category": "self",
"summary": "SUSE Bug 1219049",
"url": "https://bugzilla.suse.com/1219049"
},
{
"category": "self",
"summary": "SUSE Bug 1223346",
"url": "https://bugzilla.suse.com/1223346"
},
{
"category": "self",
"summary": "SUSE Bug 1223347",
"url": "https://bugzilla.suse.com/1223347"
},
{
"category": "self",
"summary": "SUSE Bug 1223348",
"url": "https://bugzilla.suse.com/1223348"
},
{
"category": "self",
"summary": "SUSE Bug 1223353",
"url": "https://bugzilla.suse.com/1223353"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-22211 page",
"url": "https://www.suse.com/security/cve/CVE-2024-22211/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-32658 page",
"url": "https://www.suse.com/security/cve/CVE-2024-32658/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-32659 page",
"url": "https://www.suse.com/security/cve/CVE-2024-32659/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-32660 page",
"url": "https://www.suse.com/security/cve/CVE-2024-32660/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-32661 page",
"url": "https://www.suse.com/security/cve/CVE-2024-32661/"
}
],
"title": "Security update for freerdp",
"tracking": {
"current_release_date": "2024-07-30T07:12:56Z",
"generator": {
"date": "2024-07-30T07:12:56Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2024:2631-1",
"initial_release_date": "2024-07-30T07:12:56Z",
"revision_history": [
{
"date": "2024-07-30T07:12:56Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "freerdp-2.11.2-150600.4.3.1.aarch64",
"product": {
"name": "freerdp-2.11.2-150600.4.3.1.aarch64",
"product_id": "freerdp-2.11.2-150600.4.3.1.aarch64"
}
},
{
"category": "product_version",
"name": "freerdp-devel-2.11.2-150600.4.3.1.aarch64",
"product": {
"name": "freerdp-devel-2.11.2-150600.4.3.1.aarch64",
"product_id": "freerdp-devel-2.11.2-150600.4.3.1.aarch64"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-2.11.2-150600.4.3.1.aarch64",
"product": {
"name": "freerdp-proxy-2.11.2-150600.4.3.1.aarch64",
"product_id": "freerdp-proxy-2.11.2-150600.4.3.1.aarch64"
}
},
{
"category": "product_version",
"name": "freerdp-server-2.11.2-150600.4.3.1.aarch64",
"product": {
"name": "freerdp-server-2.11.2-150600.4.3.1.aarch64",
"product_id": "freerdp-server-2.11.2-150600.4.3.1.aarch64"
}
},
{
"category": "product_version",
"name": "freerdp-wayland-2.11.2-150600.4.3.1.aarch64",
"product": {
"name": "freerdp-wayland-2.11.2-150600.4.3.1.aarch64",
"product_id": "freerdp-wayland-2.11.2-150600.4.3.1.aarch64"
}
},
{
"category": "product_version",
"name": "libfreerdp2-2-2.11.2-150600.4.3.1.aarch64",
"product": {
"name": "libfreerdp2-2-2.11.2-150600.4.3.1.aarch64",
"product_id": "libfreerdp2-2-2.11.2-150600.4.3.1.aarch64"
}
},
{
"category": "product_version",
"name": "libuwac0-0-2.11.2-150600.4.3.1.aarch64",
"product": {
"name": "libuwac0-0-2.11.2-150600.4.3.1.aarch64",
"product_id": "libuwac0-0-2.11.2-150600.4.3.1.aarch64"
}
},
{
"category": "product_version",
"name": "libwinpr2-2-2.11.2-150600.4.3.1.aarch64",
"product": {
"name": "libwinpr2-2-2.11.2-150600.4.3.1.aarch64",
"product_id": "libwinpr2-2-2.11.2-150600.4.3.1.aarch64"
}
},
{
"category": "product_version",
"name": "uwac0-0-devel-2.11.2-150600.4.3.1.aarch64",
"product": {
"name": "uwac0-0-devel-2.11.2-150600.4.3.1.aarch64",
"product_id": "uwac0-0-devel-2.11.2-150600.4.3.1.aarch64"
}
},
{
"category": "product_version",
"name": "winpr-devel-2.11.2-150600.4.3.1.aarch64",
"product": {
"name": "winpr-devel-2.11.2-150600.4.3.1.aarch64",
"product_id": "winpr-devel-2.11.2-150600.4.3.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "freerdp-2.11.2-150600.4.3.1.i586",
"product": {
"name": "freerdp-2.11.2-150600.4.3.1.i586",
"product_id": "freerdp-2.11.2-150600.4.3.1.i586"
}
},
{
"category": "product_version",
"name": "freerdp-devel-2.11.2-150600.4.3.1.i586",
"product": {
"name": "freerdp-devel-2.11.2-150600.4.3.1.i586",
"product_id": "freerdp-devel-2.11.2-150600.4.3.1.i586"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-2.11.2-150600.4.3.1.i586",
"product": {
"name": "freerdp-proxy-2.11.2-150600.4.3.1.i586",
"product_id": "freerdp-proxy-2.11.2-150600.4.3.1.i586"
}
},
{
"category": "product_version",
"name": "freerdp-server-2.11.2-150600.4.3.1.i586",
"product": {
"name": "freerdp-server-2.11.2-150600.4.3.1.i586",
"product_id": "freerdp-server-2.11.2-150600.4.3.1.i586"
}
},
{
"category": "product_version",
"name": "freerdp-wayland-2.11.2-150600.4.3.1.i586",
"product": {
"name": "freerdp-wayland-2.11.2-150600.4.3.1.i586",
"product_id": "freerdp-wayland-2.11.2-150600.4.3.1.i586"
}
},
{
"category": "product_version",
"name": "libfreerdp2-2-2.11.2-150600.4.3.1.i586",
"product": {
"name": "libfreerdp2-2-2.11.2-150600.4.3.1.i586",
"product_id": "libfreerdp2-2-2.11.2-150600.4.3.1.i586"
}
},
{
"category": "product_version",
"name": "libuwac0-0-2.11.2-150600.4.3.1.i586",
"product": {
"name": "libuwac0-0-2.11.2-150600.4.3.1.i586",
"product_id": "libuwac0-0-2.11.2-150600.4.3.1.i586"
}
},
{
"category": "product_version",
"name": "libwinpr2-2-2.11.2-150600.4.3.1.i586",
"product": {
"name": "libwinpr2-2-2.11.2-150600.4.3.1.i586",
"product_id": "libwinpr2-2-2.11.2-150600.4.3.1.i586"
}
},
{
"category": "product_version",
"name": "uwac0-0-devel-2.11.2-150600.4.3.1.i586",
"product": {
"name": "uwac0-0-devel-2.11.2-150600.4.3.1.i586",
"product_id": "uwac0-0-devel-2.11.2-150600.4.3.1.i586"
}
},
{
"category": "product_version",
"name": "winpr-devel-2.11.2-150600.4.3.1.i586",
"product": {
"name": "winpr-devel-2.11.2-150600.4.3.1.i586",
"product_id": "winpr-devel-2.11.2-150600.4.3.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "freerdp-2.11.2-150600.4.3.1.ppc64le",
"product": {
"name": "freerdp-2.11.2-150600.4.3.1.ppc64le",
"product_id": "freerdp-2.11.2-150600.4.3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "freerdp-devel-2.11.2-150600.4.3.1.ppc64le",
"product": {
"name": "freerdp-devel-2.11.2-150600.4.3.1.ppc64le",
"product_id": "freerdp-devel-2.11.2-150600.4.3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-2.11.2-150600.4.3.1.ppc64le",
"product": {
"name": "freerdp-proxy-2.11.2-150600.4.3.1.ppc64le",
"product_id": "freerdp-proxy-2.11.2-150600.4.3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "freerdp-server-2.11.2-150600.4.3.1.ppc64le",
"product": {
"name": "freerdp-server-2.11.2-150600.4.3.1.ppc64le",
"product_id": "freerdp-server-2.11.2-150600.4.3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "freerdp-wayland-2.11.2-150600.4.3.1.ppc64le",
"product": {
"name": "freerdp-wayland-2.11.2-150600.4.3.1.ppc64le",
"product_id": "freerdp-wayland-2.11.2-150600.4.3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libfreerdp2-2-2.11.2-150600.4.3.1.ppc64le",
"product": {
"name": "libfreerdp2-2-2.11.2-150600.4.3.1.ppc64le",
"product_id": "libfreerdp2-2-2.11.2-150600.4.3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libuwac0-0-2.11.2-150600.4.3.1.ppc64le",
"product": {
"name": "libuwac0-0-2.11.2-150600.4.3.1.ppc64le",
"product_id": "libuwac0-0-2.11.2-150600.4.3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libwinpr2-2-2.11.2-150600.4.3.1.ppc64le",
"product": {
"name": "libwinpr2-2-2.11.2-150600.4.3.1.ppc64le",
"product_id": "libwinpr2-2-2.11.2-150600.4.3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "uwac0-0-devel-2.11.2-150600.4.3.1.ppc64le",
"product": {
"name": "uwac0-0-devel-2.11.2-150600.4.3.1.ppc64le",
"product_id": "uwac0-0-devel-2.11.2-150600.4.3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "winpr-devel-2.11.2-150600.4.3.1.ppc64le",
"product": {
"name": "winpr-devel-2.11.2-150600.4.3.1.ppc64le",
"product_id": "winpr-devel-2.11.2-150600.4.3.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "freerdp-2.11.2-150600.4.3.1.s390x",
"product": {
"name": "freerdp-2.11.2-150600.4.3.1.s390x",
"product_id": "freerdp-2.11.2-150600.4.3.1.s390x"
}
},
{
"category": "product_version",
"name": "freerdp-devel-2.11.2-150600.4.3.1.s390x",
"product": {
"name": "freerdp-devel-2.11.2-150600.4.3.1.s390x",
"product_id": "freerdp-devel-2.11.2-150600.4.3.1.s390x"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-2.11.2-150600.4.3.1.s390x",
"product": {
"name": "freerdp-proxy-2.11.2-150600.4.3.1.s390x",
"product_id": "freerdp-proxy-2.11.2-150600.4.3.1.s390x"
}
},
{
"category": "product_version",
"name": "freerdp-server-2.11.2-150600.4.3.1.s390x",
"product": {
"name": "freerdp-server-2.11.2-150600.4.3.1.s390x",
"product_id": "freerdp-server-2.11.2-150600.4.3.1.s390x"
}
},
{
"category": "product_version",
"name": "freerdp-wayland-2.11.2-150600.4.3.1.s390x",
"product": {
"name": "freerdp-wayland-2.11.2-150600.4.3.1.s390x",
"product_id": "freerdp-wayland-2.11.2-150600.4.3.1.s390x"
}
},
{
"category": "product_version",
"name": "libfreerdp2-2-2.11.2-150600.4.3.1.s390x",
"product": {
"name": "libfreerdp2-2-2.11.2-150600.4.3.1.s390x",
"product_id": "libfreerdp2-2-2.11.2-150600.4.3.1.s390x"
}
},
{
"category": "product_version",
"name": "libuwac0-0-2.11.2-150600.4.3.1.s390x",
"product": {
"name": "libuwac0-0-2.11.2-150600.4.3.1.s390x",
"product_id": "libuwac0-0-2.11.2-150600.4.3.1.s390x"
}
},
{
"category": "product_version",
"name": "libwinpr2-2-2.11.2-150600.4.3.1.s390x",
"product": {
"name": "libwinpr2-2-2.11.2-150600.4.3.1.s390x",
"product_id": "libwinpr2-2-2.11.2-150600.4.3.1.s390x"
}
},
{
"category": "product_version",
"name": "uwac0-0-devel-2.11.2-150600.4.3.1.s390x",
"product": {
"name": "uwac0-0-devel-2.11.2-150600.4.3.1.s390x",
"product_id": "uwac0-0-devel-2.11.2-150600.4.3.1.s390x"
}
},
{
"category": "product_version",
"name": "winpr-devel-2.11.2-150600.4.3.1.s390x",
"product": {
"name": "winpr-devel-2.11.2-150600.4.3.1.s390x",
"product_id": "winpr-devel-2.11.2-150600.4.3.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "freerdp-2.11.2-150600.4.3.1.x86_64",
"product": {
"name": "freerdp-2.11.2-150600.4.3.1.x86_64",
"product_id": "freerdp-2.11.2-150600.4.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "freerdp-devel-2.11.2-150600.4.3.1.x86_64",
"product": {
"name": "freerdp-devel-2.11.2-150600.4.3.1.x86_64",
"product_id": "freerdp-devel-2.11.2-150600.4.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-2.11.2-150600.4.3.1.x86_64",
"product": {
"name": "freerdp-proxy-2.11.2-150600.4.3.1.x86_64",
"product_id": "freerdp-proxy-2.11.2-150600.4.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "freerdp-server-2.11.2-150600.4.3.1.x86_64",
"product": {
"name": "freerdp-server-2.11.2-150600.4.3.1.x86_64",
"product_id": "freerdp-server-2.11.2-150600.4.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "freerdp-wayland-2.11.2-150600.4.3.1.x86_64",
"product": {
"name": "freerdp-wayland-2.11.2-150600.4.3.1.x86_64",
"product_id": "freerdp-wayland-2.11.2-150600.4.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "libfreerdp2-2-2.11.2-150600.4.3.1.x86_64",
"product": {
"name": "libfreerdp2-2-2.11.2-150600.4.3.1.x86_64",
"product_id": "libfreerdp2-2-2.11.2-150600.4.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "libuwac0-0-2.11.2-150600.4.3.1.x86_64",
"product": {
"name": "libuwac0-0-2.11.2-150600.4.3.1.x86_64",
"product_id": "libuwac0-0-2.11.2-150600.4.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "libwinpr2-2-2.11.2-150600.4.3.1.x86_64",
"product": {
"name": "libwinpr2-2-2.11.2-150600.4.3.1.x86_64",
"product_id": "libwinpr2-2-2.11.2-150600.4.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "uwac0-0-devel-2.11.2-150600.4.3.1.x86_64",
"product": {
"name": "uwac0-0-devel-2.11.2-150600.4.3.1.x86_64",
"product_id": "uwac0-0-devel-2.11.2-150600.4.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "winpr-devel-2.11.2-150600.4.3.1.x86_64",
"product": {
"name": "winpr-devel-2.11.2-150600.4.3.1.x86_64",
"product_id": "winpr-devel-2.11.2-150600.4.3.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Package Hub 15 SP6",
"product": {
"name": "SUSE Linux Enterprise Module for Package Hub 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP6",
"product_identification_helper": {
"cpe": "cpe:/o:suse:packagehub:15:sp6"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Workstation Extension 15 SP6",
"product": {
"name": "SUSE Linux Enterprise Workstation Extension 15 SP6",
"product_id": "SUSE Linux Enterprise Workstation Extension 15 SP6",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-we:15:sp6"
}
}
},
{
"category": "product_name",
"name": "openSUSE Leap 15.6",
"product": {
"name": "openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.6"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-2.11.2-150600.4.3.1.aarch64 as component of SUSE Linux Enterprise Module for Package Hub 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-2.11.2-150600.4.3.1.aarch64"
},
"product_reference": "freerdp-2.11.2-150600.4.3.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-2.11.2-150600.4.3.1.ppc64le as component of SUSE Linux Enterprise Module for Package Hub 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-2.11.2-150600.4.3.1.ppc64le"
},
"product_reference": "freerdp-2.11.2-150600.4.3.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-2.11.2-150600.4.3.1.s390x as component of SUSE Linux Enterprise Module for Package Hub 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-2.11.2-150600.4.3.1.s390x"
},
"product_reference": "freerdp-2.11.2-150600.4.3.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-devel-2.11.2-150600.4.3.1.aarch64 as component of SUSE Linux Enterprise Module for Package Hub 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-devel-2.11.2-150600.4.3.1.aarch64"
},
"product_reference": "freerdp-devel-2.11.2-150600.4.3.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-devel-2.11.2-150600.4.3.1.ppc64le as component of SUSE Linux Enterprise Module for Package Hub 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-devel-2.11.2-150600.4.3.1.ppc64le"
},
"product_reference": "freerdp-devel-2.11.2-150600.4.3.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-devel-2.11.2-150600.4.3.1.s390x as component of SUSE Linux Enterprise Module for Package Hub 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-devel-2.11.2-150600.4.3.1.s390x"
},
"product_reference": "freerdp-devel-2.11.2-150600.4.3.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-proxy-2.11.2-150600.4.3.1.aarch64 as component of SUSE Linux Enterprise Module for Package Hub 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-proxy-2.11.2-150600.4.3.1.aarch64"
},
"product_reference": "freerdp-proxy-2.11.2-150600.4.3.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-proxy-2.11.2-150600.4.3.1.ppc64le as component of SUSE Linux Enterprise Module for Package Hub 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-proxy-2.11.2-150600.4.3.1.ppc64le"
},
"product_reference": "freerdp-proxy-2.11.2-150600.4.3.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-proxy-2.11.2-150600.4.3.1.s390x as component of SUSE Linux Enterprise Module for Package Hub 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-proxy-2.11.2-150600.4.3.1.s390x"
},
"product_reference": "freerdp-proxy-2.11.2-150600.4.3.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-server-2.11.2-150600.4.3.1.aarch64 as component of SUSE Linux Enterprise Module for Package Hub 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-server-2.11.2-150600.4.3.1.aarch64"
},
"product_reference": "freerdp-server-2.11.2-150600.4.3.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-server-2.11.2-150600.4.3.1.ppc64le as component of SUSE Linux Enterprise Module for Package Hub 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-server-2.11.2-150600.4.3.1.ppc64le"
},
"product_reference": "freerdp-server-2.11.2-150600.4.3.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-server-2.11.2-150600.4.3.1.s390x as component of SUSE Linux Enterprise Module for Package Hub 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-server-2.11.2-150600.4.3.1.s390x"
},
"product_reference": "freerdp-server-2.11.2-150600.4.3.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-wayland-2.11.2-150600.4.3.1.aarch64 as component of SUSE Linux Enterprise Module for Package Hub 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-wayland-2.11.2-150600.4.3.1.aarch64"
},
"product_reference": "freerdp-wayland-2.11.2-150600.4.3.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-wayland-2.11.2-150600.4.3.1.ppc64le as component of SUSE Linux Enterprise Module for Package Hub 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-wayland-2.11.2-150600.4.3.1.ppc64le"
},
"product_reference": "freerdp-wayland-2.11.2-150600.4.3.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-wayland-2.11.2-150600.4.3.1.s390x as component of SUSE Linux Enterprise Module for Package Hub 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-wayland-2.11.2-150600.4.3.1.s390x"
},
"product_reference": "freerdp-wayland-2.11.2-150600.4.3.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libuwac0-0-2.11.2-150600.4.3.1.aarch64 as component of SUSE Linux Enterprise Module for Package Hub 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP6:libuwac0-0-2.11.2-150600.4.3.1.aarch64"
},
"product_reference": "libuwac0-0-2.11.2-150600.4.3.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libuwac0-0-2.11.2-150600.4.3.1.ppc64le as component of SUSE Linux Enterprise Module for Package Hub 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP6:libuwac0-0-2.11.2-150600.4.3.1.ppc64le"
},
"product_reference": "libuwac0-0-2.11.2-150600.4.3.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libuwac0-0-2.11.2-150600.4.3.1.s390x as component of SUSE Linux Enterprise Module for Package Hub 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP6:libuwac0-0-2.11.2-150600.4.3.1.s390x"
},
"product_reference": "libuwac0-0-2.11.2-150600.4.3.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "uwac0-0-devel-2.11.2-150600.4.3.1.aarch64 as component of SUSE Linux Enterprise Module for Package Hub 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP6:uwac0-0-devel-2.11.2-150600.4.3.1.aarch64"
},
"product_reference": "uwac0-0-devel-2.11.2-150600.4.3.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "uwac0-0-devel-2.11.2-150600.4.3.1.ppc64le as component of SUSE Linux Enterprise Module for Package Hub 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP6:uwac0-0-devel-2.11.2-150600.4.3.1.ppc64le"
},
"product_reference": "uwac0-0-devel-2.11.2-150600.4.3.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "uwac0-0-devel-2.11.2-150600.4.3.1.s390x as component of SUSE Linux Enterprise Module for Package Hub 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP6:uwac0-0-devel-2.11.2-150600.4.3.1.s390x"
},
"product_reference": "uwac0-0-devel-2.11.2-150600.4.3.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-2.11.2-150600.4.3.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 15 SP6",
"product_id": "SUSE Linux Enterprise Workstation Extension 15 SP6:freerdp-2.11.2-150600.4.3.1.x86_64"
},
"product_reference": "freerdp-2.11.2-150600.4.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-devel-2.11.2-150600.4.3.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 15 SP6",
"product_id": "SUSE Linux Enterprise Workstation Extension 15 SP6:freerdp-devel-2.11.2-150600.4.3.1.x86_64"
},
"product_reference": "freerdp-devel-2.11.2-150600.4.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-proxy-2.11.2-150600.4.3.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 15 SP6",
"product_id": "SUSE Linux Enterprise Workstation Extension 15 SP6:freerdp-proxy-2.11.2-150600.4.3.1.x86_64"
},
"product_reference": "freerdp-proxy-2.11.2-150600.4.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-server-2.11.2-150600.4.3.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 15 SP6",
"product_id": "SUSE Linux Enterprise Workstation Extension 15 SP6:freerdp-server-2.11.2-150600.4.3.1.x86_64"
},
"product_reference": "freerdp-server-2.11.2-150600.4.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp2-2-2.11.2-150600.4.3.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 15 SP6",
"product_id": "SUSE Linux Enterprise Workstation Extension 15 SP6:libfreerdp2-2-2.11.2-150600.4.3.1.x86_64"
},
"product_reference": "libfreerdp2-2-2.11.2-150600.4.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr2-2-2.11.2-150600.4.3.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 15 SP6",
"product_id": "SUSE Linux Enterprise Workstation Extension 15 SP6:libwinpr2-2-2.11.2-150600.4.3.1.x86_64"
},
"product_reference": "libwinpr2-2-2.11.2-150600.4.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "winpr-devel-2.11.2-150600.4.3.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 15 SP6",
"product_id": "SUSE Linux Enterprise Workstation Extension 15 SP6:winpr-devel-2.11.2-150600.4.3.1.x86_64"
},
"product_reference": "winpr-devel-2.11.2-150600.4.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-2.11.2-150600.4.3.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:freerdp-2.11.2-150600.4.3.1.aarch64"
},
"product_reference": "freerdp-2.11.2-150600.4.3.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-2.11.2-150600.4.3.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:freerdp-2.11.2-150600.4.3.1.ppc64le"
},
"product_reference": "freerdp-2.11.2-150600.4.3.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-2.11.2-150600.4.3.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:freerdp-2.11.2-150600.4.3.1.s390x"
},
"product_reference": "freerdp-2.11.2-150600.4.3.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-2.11.2-150600.4.3.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:freerdp-2.11.2-150600.4.3.1.x86_64"
},
"product_reference": "freerdp-2.11.2-150600.4.3.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-devel-2.11.2-150600.4.3.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:freerdp-devel-2.11.2-150600.4.3.1.aarch64"
},
"product_reference": "freerdp-devel-2.11.2-150600.4.3.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-devel-2.11.2-150600.4.3.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:freerdp-devel-2.11.2-150600.4.3.1.ppc64le"
},
"product_reference": "freerdp-devel-2.11.2-150600.4.3.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-devel-2.11.2-150600.4.3.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:freerdp-devel-2.11.2-150600.4.3.1.s390x"
},
"product_reference": "freerdp-devel-2.11.2-150600.4.3.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-devel-2.11.2-150600.4.3.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:freerdp-devel-2.11.2-150600.4.3.1.x86_64"
},
"product_reference": "freerdp-devel-2.11.2-150600.4.3.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-proxy-2.11.2-150600.4.3.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:freerdp-proxy-2.11.2-150600.4.3.1.aarch64"
},
"product_reference": "freerdp-proxy-2.11.2-150600.4.3.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-proxy-2.11.2-150600.4.3.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:freerdp-proxy-2.11.2-150600.4.3.1.ppc64le"
},
"product_reference": "freerdp-proxy-2.11.2-150600.4.3.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-proxy-2.11.2-150600.4.3.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:freerdp-proxy-2.11.2-150600.4.3.1.s390x"
},
"product_reference": "freerdp-proxy-2.11.2-150600.4.3.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-proxy-2.11.2-150600.4.3.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:freerdp-proxy-2.11.2-150600.4.3.1.x86_64"
},
"product_reference": "freerdp-proxy-2.11.2-150600.4.3.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-server-2.11.2-150600.4.3.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:freerdp-server-2.11.2-150600.4.3.1.aarch64"
},
"product_reference": "freerdp-server-2.11.2-150600.4.3.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-server-2.11.2-150600.4.3.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:freerdp-server-2.11.2-150600.4.3.1.ppc64le"
},
"product_reference": "freerdp-server-2.11.2-150600.4.3.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-server-2.11.2-150600.4.3.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:freerdp-server-2.11.2-150600.4.3.1.s390x"
},
"product_reference": "freerdp-server-2.11.2-150600.4.3.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-server-2.11.2-150600.4.3.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:freerdp-server-2.11.2-150600.4.3.1.x86_64"
},
"product_reference": "freerdp-server-2.11.2-150600.4.3.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-wayland-2.11.2-150600.4.3.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:freerdp-wayland-2.11.2-150600.4.3.1.aarch64"
},
"product_reference": "freerdp-wayland-2.11.2-150600.4.3.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-wayland-2.11.2-150600.4.3.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:freerdp-wayland-2.11.2-150600.4.3.1.ppc64le"
},
"product_reference": "freerdp-wayland-2.11.2-150600.4.3.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-wayland-2.11.2-150600.4.3.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:freerdp-wayland-2.11.2-150600.4.3.1.s390x"
},
"product_reference": "freerdp-wayland-2.11.2-150600.4.3.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-wayland-2.11.2-150600.4.3.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:freerdp-wayland-2.11.2-150600.4.3.1.x86_64"
},
"product_reference": "freerdp-wayland-2.11.2-150600.4.3.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp2-2-2.11.2-150600.4.3.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:libfreerdp2-2-2.11.2-150600.4.3.1.aarch64"
},
"product_reference": "libfreerdp2-2-2.11.2-150600.4.3.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp2-2-2.11.2-150600.4.3.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:libfreerdp2-2-2.11.2-150600.4.3.1.ppc64le"
},
"product_reference": "libfreerdp2-2-2.11.2-150600.4.3.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp2-2-2.11.2-150600.4.3.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:libfreerdp2-2-2.11.2-150600.4.3.1.s390x"
},
"product_reference": "libfreerdp2-2-2.11.2-150600.4.3.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp2-2-2.11.2-150600.4.3.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:libfreerdp2-2-2.11.2-150600.4.3.1.x86_64"
},
"product_reference": "libfreerdp2-2-2.11.2-150600.4.3.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libuwac0-0-2.11.2-150600.4.3.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:libuwac0-0-2.11.2-150600.4.3.1.aarch64"
},
"product_reference": "libuwac0-0-2.11.2-150600.4.3.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libuwac0-0-2.11.2-150600.4.3.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:libuwac0-0-2.11.2-150600.4.3.1.ppc64le"
},
"product_reference": "libuwac0-0-2.11.2-150600.4.3.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libuwac0-0-2.11.2-150600.4.3.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:libuwac0-0-2.11.2-150600.4.3.1.s390x"
},
"product_reference": "libuwac0-0-2.11.2-150600.4.3.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libuwac0-0-2.11.2-150600.4.3.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:libuwac0-0-2.11.2-150600.4.3.1.x86_64"
},
"product_reference": "libuwac0-0-2.11.2-150600.4.3.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr2-2-2.11.2-150600.4.3.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:libwinpr2-2-2.11.2-150600.4.3.1.aarch64"
},
"product_reference": "libwinpr2-2-2.11.2-150600.4.3.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr2-2-2.11.2-150600.4.3.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:libwinpr2-2-2.11.2-150600.4.3.1.ppc64le"
},
"product_reference": "libwinpr2-2-2.11.2-150600.4.3.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr2-2-2.11.2-150600.4.3.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:libwinpr2-2-2.11.2-150600.4.3.1.s390x"
},
"product_reference": "libwinpr2-2-2.11.2-150600.4.3.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr2-2-2.11.2-150600.4.3.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:libwinpr2-2-2.11.2-150600.4.3.1.x86_64"
},
"product_reference": "libwinpr2-2-2.11.2-150600.4.3.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "uwac0-0-devel-2.11.2-150600.4.3.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:uwac0-0-devel-2.11.2-150600.4.3.1.aarch64"
},
"product_reference": "uwac0-0-devel-2.11.2-150600.4.3.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "uwac0-0-devel-2.11.2-150600.4.3.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:uwac0-0-devel-2.11.2-150600.4.3.1.ppc64le"
},
"product_reference": "uwac0-0-devel-2.11.2-150600.4.3.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "uwac0-0-devel-2.11.2-150600.4.3.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:uwac0-0-devel-2.11.2-150600.4.3.1.s390x"
},
"product_reference": "uwac0-0-devel-2.11.2-150600.4.3.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "uwac0-0-devel-2.11.2-150600.4.3.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:uwac0-0-devel-2.11.2-150600.4.3.1.x86_64"
},
"product_reference": "uwac0-0-devel-2.11.2-150600.4.3.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "winpr-devel-2.11.2-150600.4.3.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:winpr-devel-2.11.2-150600.4.3.1.aarch64"
},
"product_reference": "winpr-devel-2.11.2-150600.4.3.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "winpr-devel-2.11.2-150600.4.3.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:winpr-devel-2.11.2-150600.4.3.1.ppc64le"
},
"product_reference": "winpr-devel-2.11.2-150600.4.3.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "winpr-devel-2.11.2-150600.4.3.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:winpr-devel-2.11.2-150600.4.3.1.s390x"
},
"product_reference": "winpr-devel-2.11.2-150600.4.3.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "winpr-devel-2.11.2-150600.4.3.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:winpr-devel-2.11.2-150600.4.3.1.x86_64"
},
"product_reference": "winpr-devel-2.11.2-150600.4.3.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-22211",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-22211"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a set of free and open source remote desktop protocol library and clients. In affected versions an integer overflow in `freerdp_bitmap_planar_context_reset` leads to heap-buffer overflow. This affects FreeRDP based clients. FreeRDP based server implementations and proxy are not affected. A malicious server could prepare a `RDPGFX_RESET_GRAPHICS_PDU` to allocate too small buffers, possibly triggering later out of bound read/write. Data extraction over network is not possible, the buffers are used to display an image. This issue has been addressed in version 2.11.5 and 3.2.0. Users are advised to upgrade. there are no know workarounds for this vulnerability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-devel-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-devel-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-devel-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-proxy-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-proxy-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-proxy-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-server-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-server-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-server-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-wayland-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-wayland-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-wayland-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libuwac0-0-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libuwac0-0-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libuwac0-0-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:uwac0-0-devel-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:uwac0-0-devel-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:uwac0-0-devel-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP6:freerdp-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:freerdp-devel-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:freerdp-proxy-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:freerdp-server-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:libfreerdp2-2-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:libwinpr2-2-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:winpr-devel-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:freerdp-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:freerdp-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:freerdp-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:freerdp-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:freerdp-devel-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:freerdp-devel-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:freerdp-devel-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:freerdp-devel-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:freerdp-proxy-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:freerdp-proxy-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:freerdp-proxy-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:freerdp-proxy-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:freerdp-server-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:freerdp-server-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:freerdp-server-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:freerdp-server-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:freerdp-wayland-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:freerdp-wayland-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:freerdp-wayland-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:freerdp-wayland-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:libfreerdp2-2-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:libfreerdp2-2-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:libfreerdp2-2-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:libfreerdp2-2-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:libuwac0-0-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:libuwac0-0-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:libuwac0-0-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:libuwac0-0-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:libwinpr2-2-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:libwinpr2-2-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:libwinpr2-2-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:libwinpr2-2-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:uwac0-0-devel-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:uwac0-0-devel-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:uwac0-0-devel-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:uwac0-0-devel-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:winpr-devel-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:winpr-devel-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:winpr-devel-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:winpr-devel-2.11.2-150600.4.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-22211",
"url": "https://www.suse.com/security/cve/CVE-2024-22211"
},
{
"category": "external",
"summary": "SUSE Bug 1219049 for CVE-2024-22211",
"url": "https://bugzilla.suse.com/1219049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-devel-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-devel-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-devel-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-proxy-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-proxy-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-proxy-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-server-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-server-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-server-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-wayland-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-wayland-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-wayland-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libuwac0-0-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libuwac0-0-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libuwac0-0-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:uwac0-0-devel-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:uwac0-0-devel-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:uwac0-0-devel-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP6:freerdp-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:freerdp-devel-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:freerdp-proxy-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:freerdp-server-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:libfreerdp2-2-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:libwinpr2-2-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:winpr-devel-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:freerdp-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:freerdp-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:freerdp-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:freerdp-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:freerdp-devel-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:freerdp-devel-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:freerdp-devel-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:freerdp-devel-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:freerdp-proxy-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:freerdp-proxy-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:freerdp-proxy-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:freerdp-proxy-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:freerdp-server-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:freerdp-server-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:freerdp-server-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:freerdp-server-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:freerdp-wayland-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:freerdp-wayland-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:freerdp-wayland-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:freerdp-wayland-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:libfreerdp2-2-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:libfreerdp2-2-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:libfreerdp2-2-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:libfreerdp2-2-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:libuwac0-0-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:libuwac0-0-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:libuwac0-0-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:libuwac0-0-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:libwinpr2-2-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:libwinpr2-2-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:libwinpr2-2-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:libwinpr2-2-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:uwac0-0-devel-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:uwac0-0-devel-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:uwac0-0-devel-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:uwac0-0-devel-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:winpr-devel-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:winpr-devel-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:winpr-devel-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:winpr-devel-2.11.2-150600.4.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-devel-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-devel-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-devel-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-proxy-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-proxy-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-proxy-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-server-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-server-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-server-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-wayland-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-wayland-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-wayland-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libuwac0-0-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libuwac0-0-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libuwac0-0-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:uwac0-0-devel-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:uwac0-0-devel-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:uwac0-0-devel-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP6:freerdp-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:freerdp-devel-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:freerdp-proxy-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:freerdp-server-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:libfreerdp2-2-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:libwinpr2-2-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:winpr-devel-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:freerdp-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:freerdp-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:freerdp-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:freerdp-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:freerdp-devel-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:freerdp-devel-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:freerdp-devel-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:freerdp-devel-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:freerdp-proxy-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:freerdp-proxy-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:freerdp-proxy-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:freerdp-proxy-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:freerdp-server-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:freerdp-server-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:freerdp-server-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:freerdp-server-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:freerdp-wayland-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:freerdp-wayland-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:freerdp-wayland-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:freerdp-wayland-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:libfreerdp2-2-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:libfreerdp2-2-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:libfreerdp2-2-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:libfreerdp2-2-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:libuwac0-0-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:libuwac0-0-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:libuwac0-0-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:libuwac0-0-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:libwinpr2-2-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:libwinpr2-2-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:libwinpr2-2-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:libwinpr2-2-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:uwac0-0-devel-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:uwac0-0-devel-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:uwac0-0-devel-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:uwac0-0-devel-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:winpr-devel-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:winpr-devel-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:winpr-devel-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:winpr-devel-2.11.2-150600.4.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-30T07:12:56Z",
"details": "important"
}
],
"title": "CVE-2024-22211"
},
{
"cve": "CVE-2024-32658",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-32658"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients prior to version 3.5.1 are vulnerable to out-of-bounds read. Version 3.5.1 contains a patch for the issue. No known workarounds are available.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-devel-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-devel-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-devel-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-proxy-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-proxy-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-proxy-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-server-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-server-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-server-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-wayland-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-wayland-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-wayland-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libuwac0-0-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libuwac0-0-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libuwac0-0-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:uwac0-0-devel-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:uwac0-0-devel-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:uwac0-0-devel-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP6:freerdp-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:freerdp-devel-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:freerdp-proxy-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:freerdp-server-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:libfreerdp2-2-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:libwinpr2-2-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:winpr-devel-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:freerdp-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:freerdp-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:freerdp-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:freerdp-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:freerdp-devel-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:freerdp-devel-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:freerdp-devel-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:freerdp-devel-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:freerdp-proxy-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:freerdp-proxy-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:freerdp-proxy-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:freerdp-proxy-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:freerdp-server-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:freerdp-server-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:freerdp-server-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:freerdp-server-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:freerdp-wayland-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:freerdp-wayland-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:freerdp-wayland-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:freerdp-wayland-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:libfreerdp2-2-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:libfreerdp2-2-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:libfreerdp2-2-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:libfreerdp2-2-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:libuwac0-0-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:libuwac0-0-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:libuwac0-0-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:libuwac0-0-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:libwinpr2-2-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:libwinpr2-2-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:libwinpr2-2-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:libwinpr2-2-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:uwac0-0-devel-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:uwac0-0-devel-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:uwac0-0-devel-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:uwac0-0-devel-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:winpr-devel-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:winpr-devel-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:winpr-devel-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:winpr-devel-2.11.2-150600.4.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-32658",
"url": "https://www.suse.com/security/cve/CVE-2024-32658"
},
{
"category": "external",
"summary": "SUSE Bug 1223353 for CVE-2024-32658",
"url": "https://bugzilla.suse.com/1223353"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-devel-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-devel-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-devel-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-proxy-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-proxy-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-proxy-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-server-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-server-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-server-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-wayland-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-wayland-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-wayland-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libuwac0-0-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libuwac0-0-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libuwac0-0-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:uwac0-0-devel-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:uwac0-0-devel-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:uwac0-0-devel-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP6:freerdp-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:freerdp-devel-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:freerdp-proxy-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:freerdp-server-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:libfreerdp2-2-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:libwinpr2-2-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:winpr-devel-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:freerdp-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:freerdp-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:freerdp-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:freerdp-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:freerdp-devel-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:freerdp-devel-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:freerdp-devel-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:freerdp-devel-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:freerdp-proxy-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:freerdp-proxy-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:freerdp-proxy-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:freerdp-proxy-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:freerdp-server-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:freerdp-server-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:freerdp-server-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:freerdp-server-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:freerdp-wayland-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:freerdp-wayland-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:freerdp-wayland-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:freerdp-wayland-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:libfreerdp2-2-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:libfreerdp2-2-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:libfreerdp2-2-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:libfreerdp2-2-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:libuwac0-0-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:libuwac0-0-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:libuwac0-0-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:libuwac0-0-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:libwinpr2-2-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:libwinpr2-2-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:libwinpr2-2-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:libwinpr2-2-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:uwac0-0-devel-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:uwac0-0-devel-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:uwac0-0-devel-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:uwac0-0-devel-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:winpr-devel-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:winpr-devel-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:winpr-devel-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:winpr-devel-2.11.2-150600.4.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-devel-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-devel-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-devel-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-proxy-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-proxy-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-proxy-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-server-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-server-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-server-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-wayland-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-wayland-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-wayland-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libuwac0-0-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libuwac0-0-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libuwac0-0-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:uwac0-0-devel-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:uwac0-0-devel-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:uwac0-0-devel-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP6:freerdp-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:freerdp-devel-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:freerdp-proxy-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:freerdp-server-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:libfreerdp2-2-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:libwinpr2-2-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:winpr-devel-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:freerdp-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:freerdp-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:freerdp-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:freerdp-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:freerdp-devel-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:freerdp-devel-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:freerdp-devel-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:freerdp-devel-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:freerdp-proxy-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:freerdp-proxy-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:freerdp-proxy-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:freerdp-proxy-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:freerdp-server-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:freerdp-server-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:freerdp-server-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:freerdp-server-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:freerdp-wayland-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:freerdp-wayland-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:freerdp-wayland-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:freerdp-wayland-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:libfreerdp2-2-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:libfreerdp2-2-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:libfreerdp2-2-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:libfreerdp2-2-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:libuwac0-0-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:libuwac0-0-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:libuwac0-0-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:libuwac0-0-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:libwinpr2-2-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:libwinpr2-2-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:libwinpr2-2-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:libwinpr2-2-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:uwac0-0-devel-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:uwac0-0-devel-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:uwac0-0-devel-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:uwac0-0-devel-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:winpr-devel-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:winpr-devel-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:winpr-devel-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:winpr-devel-2.11.2-150600.4.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-30T07:12:56Z",
"details": "important"
}
],
"title": "CVE-2024-32658"
},
{
"cve": "CVE-2024-32659",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-32659"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients prior to version 3.5.1 are vulnerable to out-of-bounds read if `((nWidth == 0) and (nHeight == 0))`. Version 3.5.1 contains a patch for the issue. No known workarounds are available.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-devel-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-devel-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-devel-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-proxy-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-proxy-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-proxy-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-server-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-server-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-server-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-wayland-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-wayland-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-wayland-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libuwac0-0-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libuwac0-0-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libuwac0-0-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:uwac0-0-devel-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:uwac0-0-devel-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:uwac0-0-devel-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP6:freerdp-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:freerdp-devel-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:freerdp-proxy-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:freerdp-server-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:libfreerdp2-2-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:libwinpr2-2-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:winpr-devel-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:freerdp-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:freerdp-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:freerdp-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:freerdp-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:freerdp-devel-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:freerdp-devel-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:freerdp-devel-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:freerdp-devel-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:freerdp-proxy-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:freerdp-proxy-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:freerdp-proxy-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:freerdp-proxy-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:freerdp-server-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:freerdp-server-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:freerdp-server-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:freerdp-server-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:freerdp-wayland-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:freerdp-wayland-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:freerdp-wayland-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:freerdp-wayland-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:libfreerdp2-2-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:libfreerdp2-2-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:libfreerdp2-2-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:libfreerdp2-2-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:libuwac0-0-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:libuwac0-0-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:libuwac0-0-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:libuwac0-0-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:libwinpr2-2-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:libwinpr2-2-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:libwinpr2-2-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:libwinpr2-2-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:uwac0-0-devel-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:uwac0-0-devel-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:uwac0-0-devel-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:uwac0-0-devel-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:winpr-devel-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:winpr-devel-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:winpr-devel-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:winpr-devel-2.11.2-150600.4.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-32659",
"url": "https://www.suse.com/security/cve/CVE-2024-32659"
},
{
"category": "external",
"summary": "SUSE Bug 1223346 for CVE-2024-32659",
"url": "https://bugzilla.suse.com/1223346"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-devel-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-devel-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-devel-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-proxy-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-proxy-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-proxy-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-server-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-server-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-server-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-wayland-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-wayland-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-wayland-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libuwac0-0-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libuwac0-0-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libuwac0-0-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:uwac0-0-devel-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:uwac0-0-devel-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:uwac0-0-devel-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP6:freerdp-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:freerdp-devel-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:freerdp-proxy-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:freerdp-server-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:libfreerdp2-2-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:libwinpr2-2-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:winpr-devel-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:freerdp-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:freerdp-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:freerdp-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:freerdp-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:freerdp-devel-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:freerdp-devel-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:freerdp-devel-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:freerdp-devel-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:freerdp-proxy-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:freerdp-proxy-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:freerdp-proxy-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:freerdp-proxy-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:freerdp-server-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:freerdp-server-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:freerdp-server-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:freerdp-server-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:freerdp-wayland-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:freerdp-wayland-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:freerdp-wayland-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:freerdp-wayland-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:libfreerdp2-2-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:libfreerdp2-2-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:libfreerdp2-2-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:libfreerdp2-2-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:libuwac0-0-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:libuwac0-0-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:libuwac0-0-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:libuwac0-0-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:libwinpr2-2-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:libwinpr2-2-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:libwinpr2-2-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:libwinpr2-2-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:uwac0-0-devel-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:uwac0-0-devel-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:uwac0-0-devel-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:uwac0-0-devel-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:winpr-devel-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:winpr-devel-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:winpr-devel-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:winpr-devel-2.11.2-150600.4.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-devel-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-devel-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-devel-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-proxy-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-proxy-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-proxy-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-server-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-server-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-server-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-wayland-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-wayland-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-wayland-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libuwac0-0-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libuwac0-0-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libuwac0-0-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:uwac0-0-devel-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:uwac0-0-devel-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:uwac0-0-devel-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP6:freerdp-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:freerdp-devel-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:freerdp-proxy-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:freerdp-server-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:libfreerdp2-2-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:libwinpr2-2-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:winpr-devel-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:freerdp-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:freerdp-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:freerdp-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:freerdp-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:freerdp-devel-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:freerdp-devel-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:freerdp-devel-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:freerdp-devel-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:freerdp-proxy-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:freerdp-proxy-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:freerdp-proxy-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:freerdp-proxy-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:freerdp-server-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:freerdp-server-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:freerdp-server-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:freerdp-server-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:freerdp-wayland-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:freerdp-wayland-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:freerdp-wayland-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:freerdp-wayland-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:libfreerdp2-2-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:libfreerdp2-2-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:libfreerdp2-2-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:libfreerdp2-2-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:libuwac0-0-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:libuwac0-0-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:libuwac0-0-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:libuwac0-0-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:libwinpr2-2-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:libwinpr2-2-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:libwinpr2-2-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:libwinpr2-2-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:uwac0-0-devel-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:uwac0-0-devel-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:uwac0-0-devel-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:uwac0-0-devel-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:winpr-devel-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:winpr-devel-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:winpr-devel-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:winpr-devel-2.11.2-150600.4.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-30T07:12:56Z",
"details": "important"
}
],
"title": "CVE-2024-32659"
},
{
"cve": "CVE-2024-32660",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-32660"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.5.1, a malicious server can crash the FreeRDP client by sending invalid huge allocation size. Version 3.5.1 contains a patch for the issue. No known workarounds are available.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-devel-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-devel-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-devel-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-proxy-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-proxy-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-proxy-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-server-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-server-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-server-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-wayland-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-wayland-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-wayland-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libuwac0-0-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libuwac0-0-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libuwac0-0-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:uwac0-0-devel-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:uwac0-0-devel-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:uwac0-0-devel-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP6:freerdp-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:freerdp-devel-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:freerdp-proxy-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:freerdp-server-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:libfreerdp2-2-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:libwinpr2-2-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:winpr-devel-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:freerdp-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:freerdp-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:freerdp-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:freerdp-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:freerdp-devel-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:freerdp-devel-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:freerdp-devel-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:freerdp-devel-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:freerdp-proxy-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:freerdp-proxy-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:freerdp-proxy-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:freerdp-proxy-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:freerdp-server-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:freerdp-server-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:freerdp-server-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:freerdp-server-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:freerdp-wayland-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:freerdp-wayland-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:freerdp-wayland-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:freerdp-wayland-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:libfreerdp2-2-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:libfreerdp2-2-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:libfreerdp2-2-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:libfreerdp2-2-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:libuwac0-0-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:libuwac0-0-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:libuwac0-0-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:libuwac0-0-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:libwinpr2-2-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:libwinpr2-2-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:libwinpr2-2-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:libwinpr2-2-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:uwac0-0-devel-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:uwac0-0-devel-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:uwac0-0-devel-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:uwac0-0-devel-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:winpr-devel-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:winpr-devel-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:winpr-devel-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:winpr-devel-2.11.2-150600.4.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-32660",
"url": "https://www.suse.com/security/cve/CVE-2024-32660"
},
{
"category": "external",
"summary": "SUSE Bug 1223347 for CVE-2024-32660",
"url": "https://bugzilla.suse.com/1223347"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-devel-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-devel-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-devel-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-proxy-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-proxy-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-proxy-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-server-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-server-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-server-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-wayland-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-wayland-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-wayland-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libuwac0-0-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libuwac0-0-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libuwac0-0-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:uwac0-0-devel-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:uwac0-0-devel-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:uwac0-0-devel-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP6:freerdp-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:freerdp-devel-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:freerdp-proxy-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:freerdp-server-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:libfreerdp2-2-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:libwinpr2-2-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:winpr-devel-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:freerdp-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:freerdp-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:freerdp-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:freerdp-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:freerdp-devel-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:freerdp-devel-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:freerdp-devel-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:freerdp-devel-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:freerdp-proxy-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:freerdp-proxy-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:freerdp-proxy-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:freerdp-proxy-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:freerdp-server-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:freerdp-server-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:freerdp-server-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:freerdp-server-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:freerdp-wayland-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:freerdp-wayland-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:freerdp-wayland-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:freerdp-wayland-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:libfreerdp2-2-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:libfreerdp2-2-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:libfreerdp2-2-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:libfreerdp2-2-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:libuwac0-0-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:libuwac0-0-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:libuwac0-0-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:libuwac0-0-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:libwinpr2-2-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:libwinpr2-2-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:libwinpr2-2-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:libwinpr2-2-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:uwac0-0-devel-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:uwac0-0-devel-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:uwac0-0-devel-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:uwac0-0-devel-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:winpr-devel-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:winpr-devel-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:winpr-devel-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:winpr-devel-2.11.2-150600.4.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-devel-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-devel-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-devel-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-proxy-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-proxy-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-proxy-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-server-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-server-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-server-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-wayland-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-wayland-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-wayland-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libuwac0-0-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libuwac0-0-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libuwac0-0-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:uwac0-0-devel-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:uwac0-0-devel-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:uwac0-0-devel-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP6:freerdp-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:freerdp-devel-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:freerdp-proxy-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:freerdp-server-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:libfreerdp2-2-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:libwinpr2-2-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:winpr-devel-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:freerdp-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:freerdp-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:freerdp-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:freerdp-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:freerdp-devel-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:freerdp-devel-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:freerdp-devel-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:freerdp-devel-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:freerdp-proxy-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:freerdp-proxy-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:freerdp-proxy-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:freerdp-proxy-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:freerdp-server-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:freerdp-server-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:freerdp-server-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:freerdp-server-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:freerdp-wayland-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:freerdp-wayland-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:freerdp-wayland-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:freerdp-wayland-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:libfreerdp2-2-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:libfreerdp2-2-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:libfreerdp2-2-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:libfreerdp2-2-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:libuwac0-0-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:libuwac0-0-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:libuwac0-0-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:libuwac0-0-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:libwinpr2-2-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:libwinpr2-2-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:libwinpr2-2-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:libwinpr2-2-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:uwac0-0-devel-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:uwac0-0-devel-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:uwac0-0-devel-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:uwac0-0-devel-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:winpr-devel-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:winpr-devel-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:winpr-devel-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:winpr-devel-2.11.2-150600.4.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-30T07:12:56Z",
"details": "moderate"
}
],
"title": "CVE-2024-32660"
},
{
"cve": "CVE-2024-32661",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-32661"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients prior to version 3.5.1 are vulnerable to a possible `NULL` access and crash. Version 3.5.1 contains a patch for the issue. No known workarounds are available.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-devel-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-devel-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-devel-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-proxy-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-proxy-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-proxy-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-server-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-server-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-server-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-wayland-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-wayland-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-wayland-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libuwac0-0-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libuwac0-0-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libuwac0-0-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:uwac0-0-devel-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:uwac0-0-devel-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:uwac0-0-devel-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP6:freerdp-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:freerdp-devel-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:freerdp-proxy-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:freerdp-server-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:libfreerdp2-2-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:libwinpr2-2-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:winpr-devel-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:freerdp-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:freerdp-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:freerdp-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:freerdp-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:freerdp-devel-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:freerdp-devel-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:freerdp-devel-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:freerdp-devel-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:freerdp-proxy-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:freerdp-proxy-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:freerdp-proxy-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:freerdp-proxy-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:freerdp-server-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:freerdp-server-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:freerdp-server-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:freerdp-server-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:freerdp-wayland-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:freerdp-wayland-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:freerdp-wayland-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:freerdp-wayland-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:libfreerdp2-2-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:libfreerdp2-2-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:libfreerdp2-2-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:libfreerdp2-2-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:libuwac0-0-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:libuwac0-0-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:libuwac0-0-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:libuwac0-0-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:libwinpr2-2-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:libwinpr2-2-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:libwinpr2-2-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:libwinpr2-2-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:uwac0-0-devel-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:uwac0-0-devel-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:uwac0-0-devel-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:uwac0-0-devel-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:winpr-devel-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:winpr-devel-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:winpr-devel-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:winpr-devel-2.11.2-150600.4.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-32661",
"url": "https://www.suse.com/security/cve/CVE-2024-32661"
},
{
"category": "external",
"summary": "SUSE Bug 1223348 for CVE-2024-32661",
"url": "https://bugzilla.suse.com/1223348"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-devel-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-devel-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-devel-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-proxy-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-proxy-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-proxy-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-server-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-server-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-server-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-wayland-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-wayland-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-wayland-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libuwac0-0-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libuwac0-0-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libuwac0-0-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:uwac0-0-devel-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:uwac0-0-devel-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:uwac0-0-devel-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP6:freerdp-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:freerdp-devel-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:freerdp-proxy-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:freerdp-server-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:libfreerdp2-2-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:libwinpr2-2-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:winpr-devel-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:freerdp-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:freerdp-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:freerdp-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:freerdp-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:freerdp-devel-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:freerdp-devel-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:freerdp-devel-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:freerdp-devel-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:freerdp-proxy-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:freerdp-proxy-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:freerdp-proxy-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:freerdp-proxy-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:freerdp-server-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:freerdp-server-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:freerdp-server-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:freerdp-server-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:freerdp-wayland-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:freerdp-wayland-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:freerdp-wayland-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:freerdp-wayland-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:libfreerdp2-2-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:libfreerdp2-2-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:libfreerdp2-2-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:libfreerdp2-2-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:libuwac0-0-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:libuwac0-0-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:libuwac0-0-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:libuwac0-0-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:libwinpr2-2-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:libwinpr2-2-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:libwinpr2-2-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:libwinpr2-2-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:uwac0-0-devel-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:uwac0-0-devel-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:uwac0-0-devel-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:uwac0-0-devel-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:winpr-devel-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:winpr-devel-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:winpr-devel-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:winpr-devel-2.11.2-150600.4.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-devel-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-devel-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-devel-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-proxy-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-proxy-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-proxy-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-server-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-server-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-server-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-wayland-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-wayland-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:freerdp-wayland-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libuwac0-0-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libuwac0-0-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:libuwac0-0-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:uwac0-0-devel-2.11.2-150600.4.3.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:uwac0-0-devel-2.11.2-150600.4.3.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP6:uwac0-0-devel-2.11.2-150600.4.3.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP6:freerdp-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:freerdp-devel-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:freerdp-proxy-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:freerdp-server-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:libfreerdp2-2-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:libwinpr2-2-2.11.2-150600.4.3.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP6:winpr-devel-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:freerdp-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:freerdp-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:freerdp-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:freerdp-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:freerdp-devel-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:freerdp-devel-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:freerdp-devel-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:freerdp-devel-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:freerdp-proxy-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:freerdp-proxy-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:freerdp-proxy-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:freerdp-proxy-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:freerdp-server-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:freerdp-server-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:freerdp-server-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:freerdp-server-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:freerdp-wayland-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:freerdp-wayland-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:freerdp-wayland-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:freerdp-wayland-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:libfreerdp2-2-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:libfreerdp2-2-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:libfreerdp2-2-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:libfreerdp2-2-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:libuwac0-0-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:libuwac0-0-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:libuwac0-0-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:libuwac0-0-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:libwinpr2-2-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:libwinpr2-2-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:libwinpr2-2-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:libwinpr2-2-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:uwac0-0-devel-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:uwac0-0-devel-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:uwac0-0-devel-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:uwac0-0-devel-2.11.2-150600.4.3.1.x86_64",
"openSUSE Leap 15.6:winpr-devel-2.11.2-150600.4.3.1.aarch64",
"openSUSE Leap 15.6:winpr-devel-2.11.2-150600.4.3.1.ppc64le",
"openSUSE Leap 15.6:winpr-devel-2.11.2-150600.4.3.1.s390x",
"openSUSE Leap 15.6:winpr-devel-2.11.2-150600.4.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-30T07:12:56Z",
"details": "moderate"
}
],
"title": "CVE-2024-32661"
}
]
}
SUSE-SU-2024:1835-1
Vulnerability from csaf_suse - Published: 2024-05-29 12:10 - Updated: 2024-05-29 12:10Summary
Security update for freerdp
Notes
Title of the patch
Security update for freerdp
Description of the patch
This update for freerdp fixes the following issues:
- CVE-2024-32658: Fixed out-of-bounds read in Interleaved RLE Bitmap Codec (bsc#1223353).
- CVE-2024-32659: Fixed out-of-bounds read if `((nWidth == 0) and (nHeight == 0))` (bsc#1223346)
- CVE-2024-32660: Fixed client crash via invalid huge allocation size (bsc#1223347)
- CVE-2024-32661: Fixed client NULL pointer dereference (bsc#1223348)
Patchnames
SUSE-2024-1835,SUSE-SLE-SDK-12-SP5-2024-1835,SUSE-SLE-WE-12-SP5-2024-1835
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for freerdp",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for freerdp fixes the following issues:\n\n- CVE-2024-32658: Fixed out-of-bounds read in Interleaved RLE Bitmap Codec (bsc#1223353).\n- CVE-2024-32659: Fixed out-of-bounds read if `((nWidth == 0) and (nHeight == 0))` (bsc#1223346)\n- CVE-2024-32660: Fixed client crash via invalid huge allocation size (bsc#1223347)\n- CVE-2024-32661: Fixed client NULL pointer dereference (bsc#1223348)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2024-1835,SUSE-SLE-SDK-12-SP5-2024-1835,SUSE-SLE-WE-12-SP5-2024-1835",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2024_1835-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2024:1835-1",
"url": "https://www.suse.com/support/update/announcement/2024/suse-su-20241835-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2024:1835-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-May/018621.html"
},
{
"category": "self",
"summary": "SUSE Bug 1223346",
"url": "https://bugzilla.suse.com/1223346"
},
{
"category": "self",
"summary": "SUSE Bug 1223347",
"url": "https://bugzilla.suse.com/1223347"
},
{
"category": "self",
"summary": "SUSE Bug 1223348",
"url": "https://bugzilla.suse.com/1223348"
},
{
"category": "self",
"summary": "SUSE Bug 1223353",
"url": "https://bugzilla.suse.com/1223353"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-32658 page",
"url": "https://www.suse.com/security/cve/CVE-2024-32658/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-32659 page",
"url": "https://www.suse.com/security/cve/CVE-2024-32659/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-32660 page",
"url": "https://www.suse.com/security/cve/CVE-2024-32660/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-32661 page",
"url": "https://www.suse.com/security/cve/CVE-2024-32661/"
}
],
"title": "Security update for freerdp",
"tracking": {
"current_release_date": "2024-05-29T12:10:41Z",
"generator": {
"date": "2024-05-29T12:10:41Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2024:1835-1",
"initial_release_date": "2024-05-29T12:10:41Z",
"revision_history": [
{
"date": "2024-05-29T12:10:41Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "freerdp-2.1.2-12.47.1.aarch64",
"product": {
"name": "freerdp-2.1.2-12.47.1.aarch64",
"product_id": "freerdp-2.1.2-12.47.1.aarch64"
}
},
{
"category": "product_version",
"name": "freerdp-devel-2.1.2-12.47.1.aarch64",
"product": {
"name": "freerdp-devel-2.1.2-12.47.1.aarch64",
"product_id": "freerdp-devel-2.1.2-12.47.1.aarch64"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-2.1.2-12.47.1.aarch64",
"product": {
"name": "freerdp-proxy-2.1.2-12.47.1.aarch64",
"product_id": "freerdp-proxy-2.1.2-12.47.1.aarch64"
}
},
{
"category": "product_version",
"name": "freerdp-server-2.1.2-12.47.1.aarch64",
"product": {
"name": "freerdp-server-2.1.2-12.47.1.aarch64",
"product_id": "freerdp-server-2.1.2-12.47.1.aarch64"
}
},
{
"category": "product_version",
"name": "freerdp-wayland-2.1.2-12.47.1.aarch64",
"product": {
"name": "freerdp-wayland-2.1.2-12.47.1.aarch64",
"product_id": "freerdp-wayland-2.1.2-12.47.1.aarch64"
}
},
{
"category": "product_version",
"name": "libfreerdp2-2.1.2-12.47.1.aarch64",
"product": {
"name": "libfreerdp2-2.1.2-12.47.1.aarch64",
"product_id": "libfreerdp2-2.1.2-12.47.1.aarch64"
}
},
{
"category": "product_version",
"name": "libuwac0-0-2.1.2-12.47.1.aarch64",
"product": {
"name": "libuwac0-0-2.1.2-12.47.1.aarch64",
"product_id": "libuwac0-0-2.1.2-12.47.1.aarch64"
}
},
{
"category": "product_version",
"name": "libwinpr2-2.1.2-12.47.1.aarch64",
"product": {
"name": "libwinpr2-2.1.2-12.47.1.aarch64",
"product_id": "libwinpr2-2.1.2-12.47.1.aarch64"
}
},
{
"category": "product_version",
"name": "uwac0-0-devel-2.1.2-12.47.1.aarch64",
"product": {
"name": "uwac0-0-devel-2.1.2-12.47.1.aarch64",
"product_id": "uwac0-0-devel-2.1.2-12.47.1.aarch64"
}
},
{
"category": "product_version",
"name": "winpr2-devel-2.1.2-12.47.1.aarch64",
"product": {
"name": "winpr2-devel-2.1.2-12.47.1.aarch64",
"product_id": "winpr2-devel-2.1.2-12.47.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "freerdp-2.1.2-12.47.1.i586",
"product": {
"name": "freerdp-2.1.2-12.47.1.i586",
"product_id": "freerdp-2.1.2-12.47.1.i586"
}
},
{
"category": "product_version",
"name": "freerdp-devel-2.1.2-12.47.1.i586",
"product": {
"name": "freerdp-devel-2.1.2-12.47.1.i586",
"product_id": "freerdp-devel-2.1.2-12.47.1.i586"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-2.1.2-12.47.1.i586",
"product": {
"name": "freerdp-proxy-2.1.2-12.47.1.i586",
"product_id": "freerdp-proxy-2.1.2-12.47.1.i586"
}
},
{
"category": "product_version",
"name": "freerdp-server-2.1.2-12.47.1.i586",
"product": {
"name": "freerdp-server-2.1.2-12.47.1.i586",
"product_id": "freerdp-server-2.1.2-12.47.1.i586"
}
},
{
"category": "product_version",
"name": "freerdp-wayland-2.1.2-12.47.1.i586",
"product": {
"name": "freerdp-wayland-2.1.2-12.47.1.i586",
"product_id": "freerdp-wayland-2.1.2-12.47.1.i586"
}
},
{
"category": "product_version",
"name": "libfreerdp2-2.1.2-12.47.1.i586",
"product": {
"name": "libfreerdp2-2.1.2-12.47.1.i586",
"product_id": "libfreerdp2-2.1.2-12.47.1.i586"
}
},
{
"category": "product_version",
"name": "libuwac0-0-2.1.2-12.47.1.i586",
"product": {
"name": "libuwac0-0-2.1.2-12.47.1.i586",
"product_id": "libuwac0-0-2.1.2-12.47.1.i586"
}
},
{
"category": "product_version",
"name": "libwinpr2-2.1.2-12.47.1.i586",
"product": {
"name": "libwinpr2-2.1.2-12.47.1.i586",
"product_id": "libwinpr2-2.1.2-12.47.1.i586"
}
},
{
"category": "product_version",
"name": "uwac0-0-devel-2.1.2-12.47.1.i586",
"product": {
"name": "uwac0-0-devel-2.1.2-12.47.1.i586",
"product_id": "uwac0-0-devel-2.1.2-12.47.1.i586"
}
},
{
"category": "product_version",
"name": "winpr2-devel-2.1.2-12.47.1.i586",
"product": {
"name": "winpr2-devel-2.1.2-12.47.1.i586",
"product_id": "winpr2-devel-2.1.2-12.47.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "freerdp-2.1.2-12.47.1.ppc64le",
"product": {
"name": "freerdp-2.1.2-12.47.1.ppc64le",
"product_id": "freerdp-2.1.2-12.47.1.ppc64le"
}
},
{
"category": "product_version",
"name": "freerdp-devel-2.1.2-12.47.1.ppc64le",
"product": {
"name": "freerdp-devel-2.1.2-12.47.1.ppc64le",
"product_id": "freerdp-devel-2.1.2-12.47.1.ppc64le"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-2.1.2-12.47.1.ppc64le",
"product": {
"name": "freerdp-proxy-2.1.2-12.47.1.ppc64le",
"product_id": "freerdp-proxy-2.1.2-12.47.1.ppc64le"
}
},
{
"category": "product_version",
"name": "freerdp-server-2.1.2-12.47.1.ppc64le",
"product": {
"name": "freerdp-server-2.1.2-12.47.1.ppc64le",
"product_id": "freerdp-server-2.1.2-12.47.1.ppc64le"
}
},
{
"category": "product_version",
"name": "freerdp-wayland-2.1.2-12.47.1.ppc64le",
"product": {
"name": "freerdp-wayland-2.1.2-12.47.1.ppc64le",
"product_id": "freerdp-wayland-2.1.2-12.47.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libfreerdp2-2.1.2-12.47.1.ppc64le",
"product": {
"name": "libfreerdp2-2.1.2-12.47.1.ppc64le",
"product_id": "libfreerdp2-2.1.2-12.47.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libuwac0-0-2.1.2-12.47.1.ppc64le",
"product": {
"name": "libuwac0-0-2.1.2-12.47.1.ppc64le",
"product_id": "libuwac0-0-2.1.2-12.47.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libwinpr2-2.1.2-12.47.1.ppc64le",
"product": {
"name": "libwinpr2-2.1.2-12.47.1.ppc64le",
"product_id": "libwinpr2-2.1.2-12.47.1.ppc64le"
}
},
{
"category": "product_version",
"name": "uwac0-0-devel-2.1.2-12.47.1.ppc64le",
"product": {
"name": "uwac0-0-devel-2.1.2-12.47.1.ppc64le",
"product_id": "uwac0-0-devel-2.1.2-12.47.1.ppc64le"
}
},
{
"category": "product_version",
"name": "winpr2-devel-2.1.2-12.47.1.ppc64le",
"product": {
"name": "winpr2-devel-2.1.2-12.47.1.ppc64le",
"product_id": "winpr2-devel-2.1.2-12.47.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "freerdp-2.1.2-12.47.1.s390",
"product": {
"name": "freerdp-2.1.2-12.47.1.s390",
"product_id": "freerdp-2.1.2-12.47.1.s390"
}
},
{
"category": "product_version",
"name": "freerdp-devel-2.1.2-12.47.1.s390",
"product": {
"name": "freerdp-devel-2.1.2-12.47.1.s390",
"product_id": "freerdp-devel-2.1.2-12.47.1.s390"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-2.1.2-12.47.1.s390",
"product": {
"name": "freerdp-proxy-2.1.2-12.47.1.s390",
"product_id": "freerdp-proxy-2.1.2-12.47.1.s390"
}
},
{
"category": "product_version",
"name": "freerdp-server-2.1.2-12.47.1.s390",
"product": {
"name": "freerdp-server-2.1.2-12.47.1.s390",
"product_id": "freerdp-server-2.1.2-12.47.1.s390"
}
},
{
"category": "product_version",
"name": "freerdp-wayland-2.1.2-12.47.1.s390",
"product": {
"name": "freerdp-wayland-2.1.2-12.47.1.s390",
"product_id": "freerdp-wayland-2.1.2-12.47.1.s390"
}
},
{
"category": "product_version",
"name": "libfreerdp2-2.1.2-12.47.1.s390",
"product": {
"name": "libfreerdp2-2.1.2-12.47.1.s390",
"product_id": "libfreerdp2-2.1.2-12.47.1.s390"
}
},
{
"category": "product_version",
"name": "libuwac0-0-2.1.2-12.47.1.s390",
"product": {
"name": "libuwac0-0-2.1.2-12.47.1.s390",
"product_id": "libuwac0-0-2.1.2-12.47.1.s390"
}
},
{
"category": "product_version",
"name": "libwinpr2-2.1.2-12.47.1.s390",
"product": {
"name": "libwinpr2-2.1.2-12.47.1.s390",
"product_id": "libwinpr2-2.1.2-12.47.1.s390"
}
},
{
"category": "product_version",
"name": "uwac0-0-devel-2.1.2-12.47.1.s390",
"product": {
"name": "uwac0-0-devel-2.1.2-12.47.1.s390",
"product_id": "uwac0-0-devel-2.1.2-12.47.1.s390"
}
},
{
"category": "product_version",
"name": "winpr2-devel-2.1.2-12.47.1.s390",
"product": {
"name": "winpr2-devel-2.1.2-12.47.1.s390",
"product_id": "winpr2-devel-2.1.2-12.47.1.s390"
}
}
],
"category": "architecture",
"name": "s390"
},
{
"branches": [
{
"category": "product_version",
"name": "freerdp-2.1.2-12.47.1.s390x",
"product": {
"name": "freerdp-2.1.2-12.47.1.s390x",
"product_id": "freerdp-2.1.2-12.47.1.s390x"
}
},
{
"category": "product_version",
"name": "freerdp-devel-2.1.2-12.47.1.s390x",
"product": {
"name": "freerdp-devel-2.1.2-12.47.1.s390x",
"product_id": "freerdp-devel-2.1.2-12.47.1.s390x"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-2.1.2-12.47.1.s390x",
"product": {
"name": "freerdp-proxy-2.1.2-12.47.1.s390x",
"product_id": "freerdp-proxy-2.1.2-12.47.1.s390x"
}
},
{
"category": "product_version",
"name": "freerdp-server-2.1.2-12.47.1.s390x",
"product": {
"name": "freerdp-server-2.1.2-12.47.1.s390x",
"product_id": "freerdp-server-2.1.2-12.47.1.s390x"
}
},
{
"category": "product_version",
"name": "freerdp-wayland-2.1.2-12.47.1.s390x",
"product": {
"name": "freerdp-wayland-2.1.2-12.47.1.s390x",
"product_id": "freerdp-wayland-2.1.2-12.47.1.s390x"
}
},
{
"category": "product_version",
"name": "libfreerdp2-2.1.2-12.47.1.s390x",
"product": {
"name": "libfreerdp2-2.1.2-12.47.1.s390x",
"product_id": "libfreerdp2-2.1.2-12.47.1.s390x"
}
},
{
"category": "product_version",
"name": "libuwac0-0-2.1.2-12.47.1.s390x",
"product": {
"name": "libuwac0-0-2.1.2-12.47.1.s390x",
"product_id": "libuwac0-0-2.1.2-12.47.1.s390x"
}
},
{
"category": "product_version",
"name": "libwinpr2-2.1.2-12.47.1.s390x",
"product": {
"name": "libwinpr2-2.1.2-12.47.1.s390x",
"product_id": "libwinpr2-2.1.2-12.47.1.s390x"
}
},
{
"category": "product_version",
"name": "uwac0-0-devel-2.1.2-12.47.1.s390x",
"product": {
"name": "uwac0-0-devel-2.1.2-12.47.1.s390x",
"product_id": "uwac0-0-devel-2.1.2-12.47.1.s390x"
}
},
{
"category": "product_version",
"name": "winpr2-devel-2.1.2-12.47.1.s390x",
"product": {
"name": "winpr2-devel-2.1.2-12.47.1.s390x",
"product_id": "winpr2-devel-2.1.2-12.47.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "freerdp-2.1.2-12.47.1.x86_64",
"product": {
"name": "freerdp-2.1.2-12.47.1.x86_64",
"product_id": "freerdp-2.1.2-12.47.1.x86_64"
}
},
{
"category": "product_version",
"name": "freerdp-devel-2.1.2-12.47.1.x86_64",
"product": {
"name": "freerdp-devel-2.1.2-12.47.1.x86_64",
"product_id": "freerdp-devel-2.1.2-12.47.1.x86_64"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-2.1.2-12.47.1.x86_64",
"product": {
"name": "freerdp-proxy-2.1.2-12.47.1.x86_64",
"product_id": "freerdp-proxy-2.1.2-12.47.1.x86_64"
}
},
{
"category": "product_version",
"name": "freerdp-server-2.1.2-12.47.1.x86_64",
"product": {
"name": "freerdp-server-2.1.2-12.47.1.x86_64",
"product_id": "freerdp-server-2.1.2-12.47.1.x86_64"
}
},
{
"category": "product_version",
"name": "freerdp-wayland-2.1.2-12.47.1.x86_64",
"product": {
"name": "freerdp-wayland-2.1.2-12.47.1.x86_64",
"product_id": "freerdp-wayland-2.1.2-12.47.1.x86_64"
}
},
{
"category": "product_version",
"name": "libfreerdp2-2.1.2-12.47.1.x86_64",
"product": {
"name": "libfreerdp2-2.1.2-12.47.1.x86_64",
"product_id": "libfreerdp2-2.1.2-12.47.1.x86_64"
}
},
{
"category": "product_version",
"name": "libuwac0-0-2.1.2-12.47.1.x86_64",
"product": {
"name": "libuwac0-0-2.1.2-12.47.1.x86_64",
"product_id": "libuwac0-0-2.1.2-12.47.1.x86_64"
}
},
{
"category": "product_version",
"name": "libwinpr2-2.1.2-12.47.1.x86_64",
"product": {
"name": "libwinpr2-2.1.2-12.47.1.x86_64",
"product_id": "libwinpr2-2.1.2-12.47.1.x86_64"
}
},
{
"category": "product_version",
"name": "uwac0-0-devel-2.1.2-12.47.1.x86_64",
"product": {
"name": "uwac0-0-devel-2.1.2-12.47.1.x86_64",
"product_id": "uwac0-0-devel-2.1.2-12.47.1.x86_64"
}
},
{
"category": "product_version",
"name": "winpr2-devel-2.1.2-12.47.1.x86_64",
"product": {
"name": "winpr2-devel-2.1.2-12.47.1.x86_64",
"product_id": "winpr2-devel-2.1.2-12.47.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Software Development Kit 12 SP5",
"product": {
"name": "SUSE Linux Enterprise Software Development Kit 12 SP5",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-sdk:12:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Workstation Extension 12 SP5",
"product": {
"name": "SUSE Linux Enterprise Workstation Extension 12 SP5",
"product_id": "SUSE Linux Enterprise Workstation Extension 12 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-we:12:sp5"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-devel-2.1.2-12.47.1.aarch64 as component of SUSE Linux Enterprise Software Development Kit 12 SP5",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP5:freerdp-devel-2.1.2-12.47.1.aarch64"
},
"product_reference": "freerdp-devel-2.1.2-12.47.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-devel-2.1.2-12.47.1.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12 SP5",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP5:freerdp-devel-2.1.2-12.47.1.ppc64le"
},
"product_reference": "freerdp-devel-2.1.2-12.47.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-devel-2.1.2-12.47.1.s390x as component of SUSE Linux Enterprise Software Development Kit 12 SP5",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP5:freerdp-devel-2.1.2-12.47.1.s390x"
},
"product_reference": "freerdp-devel-2.1.2-12.47.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-devel-2.1.2-12.47.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12 SP5",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP5:freerdp-devel-2.1.2-12.47.1.x86_64"
},
"product_reference": "freerdp-devel-2.1.2-12.47.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp2-2.1.2-12.47.1.aarch64 as component of SUSE Linux Enterprise Software Development Kit 12 SP5",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP5:libfreerdp2-2.1.2-12.47.1.aarch64"
},
"product_reference": "libfreerdp2-2.1.2-12.47.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp2-2.1.2-12.47.1.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12 SP5",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP5:libfreerdp2-2.1.2-12.47.1.ppc64le"
},
"product_reference": "libfreerdp2-2.1.2-12.47.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp2-2.1.2-12.47.1.s390x as component of SUSE Linux Enterprise Software Development Kit 12 SP5",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP5:libfreerdp2-2.1.2-12.47.1.s390x"
},
"product_reference": "libfreerdp2-2.1.2-12.47.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp2-2.1.2-12.47.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12 SP5",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP5:libfreerdp2-2.1.2-12.47.1.x86_64"
},
"product_reference": "libfreerdp2-2.1.2-12.47.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr2-2.1.2-12.47.1.aarch64 as component of SUSE Linux Enterprise Software Development Kit 12 SP5",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP5:libwinpr2-2.1.2-12.47.1.aarch64"
},
"product_reference": "libwinpr2-2.1.2-12.47.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr2-2.1.2-12.47.1.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12 SP5",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP5:libwinpr2-2.1.2-12.47.1.ppc64le"
},
"product_reference": "libwinpr2-2.1.2-12.47.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr2-2.1.2-12.47.1.s390x as component of SUSE Linux Enterprise Software Development Kit 12 SP5",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP5:libwinpr2-2.1.2-12.47.1.s390x"
},
"product_reference": "libwinpr2-2.1.2-12.47.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr2-2.1.2-12.47.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12 SP5",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP5:libwinpr2-2.1.2-12.47.1.x86_64"
},
"product_reference": "libwinpr2-2.1.2-12.47.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "winpr2-devel-2.1.2-12.47.1.aarch64 as component of SUSE Linux Enterprise Software Development Kit 12 SP5",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP5:winpr2-devel-2.1.2-12.47.1.aarch64"
},
"product_reference": "winpr2-devel-2.1.2-12.47.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "winpr2-devel-2.1.2-12.47.1.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12 SP5",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP5:winpr2-devel-2.1.2-12.47.1.ppc64le"
},
"product_reference": "winpr2-devel-2.1.2-12.47.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "winpr2-devel-2.1.2-12.47.1.s390x as component of SUSE Linux Enterprise Software Development Kit 12 SP5",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP5:winpr2-devel-2.1.2-12.47.1.s390x"
},
"product_reference": "winpr2-devel-2.1.2-12.47.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "winpr2-devel-2.1.2-12.47.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12 SP5",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP5:winpr2-devel-2.1.2-12.47.1.x86_64"
},
"product_reference": "winpr2-devel-2.1.2-12.47.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-2.1.2-12.47.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 12 SP5",
"product_id": "SUSE Linux Enterprise Workstation Extension 12 SP5:freerdp-2.1.2-12.47.1.x86_64"
},
"product_reference": "freerdp-2.1.2-12.47.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-proxy-2.1.2-12.47.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 12 SP5",
"product_id": "SUSE Linux Enterprise Workstation Extension 12 SP5:freerdp-proxy-2.1.2-12.47.1.x86_64"
},
"product_reference": "freerdp-proxy-2.1.2-12.47.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-server-2.1.2-12.47.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 12 SP5",
"product_id": "SUSE Linux Enterprise Workstation Extension 12 SP5:freerdp-server-2.1.2-12.47.1.x86_64"
},
"product_reference": "freerdp-server-2.1.2-12.47.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp2-2.1.2-12.47.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 12 SP5",
"product_id": "SUSE Linux Enterprise Workstation Extension 12 SP5:libfreerdp2-2.1.2-12.47.1.x86_64"
},
"product_reference": "libfreerdp2-2.1.2-12.47.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr2-2.1.2-12.47.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 12 SP5",
"product_id": "SUSE Linux Enterprise Workstation Extension 12 SP5:libwinpr2-2.1.2-12.47.1.x86_64"
},
"product_reference": "libwinpr2-2.1.2-12.47.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 12 SP5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-32658",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-32658"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients prior to version 3.5.1 are vulnerable to out-of-bounds read. Version 3.5.1 contains a patch for the issue. No known workarounds are available.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 12 SP5:freerdp-devel-2.1.2-12.47.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:freerdp-devel-2.1.2-12.47.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:freerdp-devel-2.1.2-12.47.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:freerdp-devel-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libfreerdp2-2.1.2-12.47.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libfreerdp2-2.1.2-12.47.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libfreerdp2-2.1.2-12.47.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libfreerdp2-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwinpr2-2.1.2-12.47.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwinpr2-2.1.2-12.47.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwinpr2-2.1.2-12.47.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwinpr2-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:winpr2-devel-2.1.2-12.47.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:winpr2-devel-2.1.2-12.47.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:winpr2-devel-2.1.2-12.47.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:winpr2-devel-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP5:freerdp-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP5:freerdp-proxy-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP5:freerdp-server-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP5:libfreerdp2-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP5:libwinpr2-2.1.2-12.47.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-32658",
"url": "https://www.suse.com/security/cve/CVE-2024-32658"
},
{
"category": "external",
"summary": "SUSE Bug 1223353 for CVE-2024-32658",
"url": "https://bugzilla.suse.com/1223353"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 12 SP5:freerdp-devel-2.1.2-12.47.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:freerdp-devel-2.1.2-12.47.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:freerdp-devel-2.1.2-12.47.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:freerdp-devel-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libfreerdp2-2.1.2-12.47.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libfreerdp2-2.1.2-12.47.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libfreerdp2-2.1.2-12.47.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libfreerdp2-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwinpr2-2.1.2-12.47.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwinpr2-2.1.2-12.47.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwinpr2-2.1.2-12.47.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwinpr2-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:winpr2-devel-2.1.2-12.47.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:winpr2-devel-2.1.2-12.47.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:winpr2-devel-2.1.2-12.47.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:winpr2-devel-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP5:freerdp-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP5:freerdp-proxy-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP5:freerdp-server-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP5:libfreerdp2-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP5:libwinpr2-2.1.2-12.47.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 12 SP5:freerdp-devel-2.1.2-12.47.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:freerdp-devel-2.1.2-12.47.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:freerdp-devel-2.1.2-12.47.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:freerdp-devel-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libfreerdp2-2.1.2-12.47.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libfreerdp2-2.1.2-12.47.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libfreerdp2-2.1.2-12.47.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libfreerdp2-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwinpr2-2.1.2-12.47.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwinpr2-2.1.2-12.47.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwinpr2-2.1.2-12.47.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwinpr2-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:winpr2-devel-2.1.2-12.47.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:winpr2-devel-2.1.2-12.47.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:winpr2-devel-2.1.2-12.47.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:winpr2-devel-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP5:freerdp-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP5:freerdp-proxy-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP5:freerdp-server-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP5:libfreerdp2-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP5:libwinpr2-2.1.2-12.47.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-05-29T12:10:41Z",
"details": "important"
}
],
"title": "CVE-2024-32658"
},
{
"cve": "CVE-2024-32659",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-32659"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients prior to version 3.5.1 are vulnerable to out-of-bounds read if `((nWidth == 0) and (nHeight == 0))`. Version 3.5.1 contains a patch for the issue. No known workarounds are available.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 12 SP5:freerdp-devel-2.1.2-12.47.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:freerdp-devel-2.1.2-12.47.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:freerdp-devel-2.1.2-12.47.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:freerdp-devel-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libfreerdp2-2.1.2-12.47.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libfreerdp2-2.1.2-12.47.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libfreerdp2-2.1.2-12.47.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libfreerdp2-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwinpr2-2.1.2-12.47.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwinpr2-2.1.2-12.47.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwinpr2-2.1.2-12.47.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwinpr2-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:winpr2-devel-2.1.2-12.47.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:winpr2-devel-2.1.2-12.47.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:winpr2-devel-2.1.2-12.47.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:winpr2-devel-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP5:freerdp-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP5:freerdp-proxy-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP5:freerdp-server-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP5:libfreerdp2-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP5:libwinpr2-2.1.2-12.47.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-32659",
"url": "https://www.suse.com/security/cve/CVE-2024-32659"
},
{
"category": "external",
"summary": "SUSE Bug 1223346 for CVE-2024-32659",
"url": "https://bugzilla.suse.com/1223346"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 12 SP5:freerdp-devel-2.1.2-12.47.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:freerdp-devel-2.1.2-12.47.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:freerdp-devel-2.1.2-12.47.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:freerdp-devel-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libfreerdp2-2.1.2-12.47.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libfreerdp2-2.1.2-12.47.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libfreerdp2-2.1.2-12.47.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libfreerdp2-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwinpr2-2.1.2-12.47.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwinpr2-2.1.2-12.47.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwinpr2-2.1.2-12.47.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwinpr2-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:winpr2-devel-2.1.2-12.47.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:winpr2-devel-2.1.2-12.47.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:winpr2-devel-2.1.2-12.47.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:winpr2-devel-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP5:freerdp-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP5:freerdp-proxy-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP5:freerdp-server-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP5:libfreerdp2-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP5:libwinpr2-2.1.2-12.47.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 12 SP5:freerdp-devel-2.1.2-12.47.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:freerdp-devel-2.1.2-12.47.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:freerdp-devel-2.1.2-12.47.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:freerdp-devel-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libfreerdp2-2.1.2-12.47.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libfreerdp2-2.1.2-12.47.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libfreerdp2-2.1.2-12.47.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libfreerdp2-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwinpr2-2.1.2-12.47.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwinpr2-2.1.2-12.47.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwinpr2-2.1.2-12.47.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwinpr2-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:winpr2-devel-2.1.2-12.47.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:winpr2-devel-2.1.2-12.47.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:winpr2-devel-2.1.2-12.47.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:winpr2-devel-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP5:freerdp-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP5:freerdp-proxy-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP5:freerdp-server-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP5:libfreerdp2-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP5:libwinpr2-2.1.2-12.47.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-05-29T12:10:41Z",
"details": "important"
}
],
"title": "CVE-2024-32659"
},
{
"cve": "CVE-2024-32660",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-32660"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.5.1, a malicious server can crash the FreeRDP client by sending invalid huge allocation size. Version 3.5.1 contains a patch for the issue. No known workarounds are available.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 12 SP5:freerdp-devel-2.1.2-12.47.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:freerdp-devel-2.1.2-12.47.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:freerdp-devel-2.1.2-12.47.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:freerdp-devel-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libfreerdp2-2.1.2-12.47.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libfreerdp2-2.1.2-12.47.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libfreerdp2-2.1.2-12.47.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libfreerdp2-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwinpr2-2.1.2-12.47.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwinpr2-2.1.2-12.47.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwinpr2-2.1.2-12.47.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwinpr2-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:winpr2-devel-2.1.2-12.47.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:winpr2-devel-2.1.2-12.47.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:winpr2-devel-2.1.2-12.47.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:winpr2-devel-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP5:freerdp-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP5:freerdp-proxy-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP5:freerdp-server-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP5:libfreerdp2-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP5:libwinpr2-2.1.2-12.47.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-32660",
"url": "https://www.suse.com/security/cve/CVE-2024-32660"
},
{
"category": "external",
"summary": "SUSE Bug 1223347 for CVE-2024-32660",
"url": "https://bugzilla.suse.com/1223347"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 12 SP5:freerdp-devel-2.1.2-12.47.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:freerdp-devel-2.1.2-12.47.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:freerdp-devel-2.1.2-12.47.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:freerdp-devel-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libfreerdp2-2.1.2-12.47.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libfreerdp2-2.1.2-12.47.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libfreerdp2-2.1.2-12.47.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libfreerdp2-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwinpr2-2.1.2-12.47.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwinpr2-2.1.2-12.47.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwinpr2-2.1.2-12.47.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwinpr2-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:winpr2-devel-2.1.2-12.47.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:winpr2-devel-2.1.2-12.47.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:winpr2-devel-2.1.2-12.47.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:winpr2-devel-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP5:freerdp-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP5:freerdp-proxy-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP5:freerdp-server-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP5:libfreerdp2-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP5:libwinpr2-2.1.2-12.47.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 12 SP5:freerdp-devel-2.1.2-12.47.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:freerdp-devel-2.1.2-12.47.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:freerdp-devel-2.1.2-12.47.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:freerdp-devel-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libfreerdp2-2.1.2-12.47.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libfreerdp2-2.1.2-12.47.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libfreerdp2-2.1.2-12.47.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libfreerdp2-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwinpr2-2.1.2-12.47.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwinpr2-2.1.2-12.47.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwinpr2-2.1.2-12.47.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwinpr2-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:winpr2-devel-2.1.2-12.47.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:winpr2-devel-2.1.2-12.47.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:winpr2-devel-2.1.2-12.47.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:winpr2-devel-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP5:freerdp-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP5:freerdp-proxy-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP5:freerdp-server-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP5:libfreerdp2-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP5:libwinpr2-2.1.2-12.47.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-05-29T12:10:41Z",
"details": "moderate"
}
],
"title": "CVE-2024-32660"
},
{
"cve": "CVE-2024-32661",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-32661"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients prior to version 3.5.1 are vulnerable to a possible `NULL` access and crash. Version 3.5.1 contains a patch for the issue. No known workarounds are available.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 12 SP5:freerdp-devel-2.1.2-12.47.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:freerdp-devel-2.1.2-12.47.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:freerdp-devel-2.1.2-12.47.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:freerdp-devel-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libfreerdp2-2.1.2-12.47.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libfreerdp2-2.1.2-12.47.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libfreerdp2-2.1.2-12.47.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libfreerdp2-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwinpr2-2.1.2-12.47.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwinpr2-2.1.2-12.47.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwinpr2-2.1.2-12.47.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwinpr2-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:winpr2-devel-2.1.2-12.47.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:winpr2-devel-2.1.2-12.47.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:winpr2-devel-2.1.2-12.47.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:winpr2-devel-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP5:freerdp-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP5:freerdp-proxy-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP5:freerdp-server-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP5:libfreerdp2-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP5:libwinpr2-2.1.2-12.47.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-32661",
"url": "https://www.suse.com/security/cve/CVE-2024-32661"
},
{
"category": "external",
"summary": "SUSE Bug 1223348 for CVE-2024-32661",
"url": "https://bugzilla.suse.com/1223348"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 12 SP5:freerdp-devel-2.1.2-12.47.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:freerdp-devel-2.1.2-12.47.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:freerdp-devel-2.1.2-12.47.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:freerdp-devel-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libfreerdp2-2.1.2-12.47.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libfreerdp2-2.1.2-12.47.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libfreerdp2-2.1.2-12.47.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libfreerdp2-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwinpr2-2.1.2-12.47.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwinpr2-2.1.2-12.47.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwinpr2-2.1.2-12.47.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwinpr2-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:winpr2-devel-2.1.2-12.47.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:winpr2-devel-2.1.2-12.47.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:winpr2-devel-2.1.2-12.47.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:winpr2-devel-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP5:freerdp-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP5:freerdp-proxy-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP5:freerdp-server-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP5:libfreerdp2-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP5:libwinpr2-2.1.2-12.47.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 12 SP5:freerdp-devel-2.1.2-12.47.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:freerdp-devel-2.1.2-12.47.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:freerdp-devel-2.1.2-12.47.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:freerdp-devel-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libfreerdp2-2.1.2-12.47.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libfreerdp2-2.1.2-12.47.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libfreerdp2-2.1.2-12.47.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libfreerdp2-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwinpr2-2.1.2-12.47.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwinpr2-2.1.2-12.47.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwinpr2-2.1.2-12.47.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:libwinpr2-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:winpr2-devel-2.1.2-12.47.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:winpr2-devel-2.1.2-12.47.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:winpr2-devel-2.1.2-12.47.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:winpr2-devel-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP5:freerdp-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP5:freerdp-proxy-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP5:freerdp-server-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP5:libfreerdp2-2.1.2-12.47.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP5:libwinpr2-2.1.2-12.47.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-05-29T12:10:41Z",
"details": "moderate"
}
],
"title": "CVE-2024-32661"
}
]
}
RHSA-2024_9092
Vulnerability from csaf_redhat - Published: 2024-11-12 09:36 - Updated: 2024-11-24 14:15Summary
Red Hat Security Advisory: freerdp security update
Notes
Topic
An update for freerdp is now available for Red Hat Enterprise Linux 9.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. The xfreerdp client can connect to RDP servers such as Microsoft Windows machines, xrdp, and VirtualBox.
Security Fix(es):
* freerdp: Integer Overflow leading to Heap Overflow in freerdp_bitmap_planar_context_reset (CVE-2024-22211)
* freerdp: out-of-bounds read in ncrush_decompress (CVE-2024-32459)
* freerdp: OutOfBound Read in interleaved_decompress (CVE-2024-32460)
* freerdp: Integer overflow & OutOfBound Write in clear_decompress_residual_data (CVE-2024-32039)
* freerdp: integer underflow in nsc_rle_decode (CVE-2024-32040)
* freerdp: OutOfBound Read in zgfx_decompress_segment (CVE-2024-32041)
* freerdp: OutOfBound Read in planar_skip_plane_rle (CVE-2024-32458)
* freerdp: out-of-bounds read (CVE-2024-32662)
* FreeRDP: ExtractRunLengthRegular* out of bound read (CVE-2024-32658)
* freerdp: zgfx_decompress out of memory (CVE-2024-32660)
* freerdp: freerdp_image_copy out of bound read (CVE-2024-32659)
* freerdp: rdp_write_logon_info_v1 NULL access (CVE-2024-32661)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Red Hat Enterprise Linux 9.5 Release Notes linked from the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for freerdp is now available for Red Hat Enterprise Linux 9.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. The xfreerdp client can connect to RDP servers such as Microsoft Windows machines, xrdp, and VirtualBox.\n\nSecurity Fix(es):\n\n* freerdp: Integer Overflow leading to Heap Overflow in freerdp_bitmap_planar_context_reset (CVE-2024-22211)\n\n* freerdp: out-of-bounds read in ncrush_decompress (CVE-2024-32459)\n\n* freerdp: OutOfBound Read in interleaved_decompress (CVE-2024-32460)\n\n* freerdp: Integer overflow \u0026 OutOfBound Write in clear_decompress_residual_data (CVE-2024-32039)\n\n* freerdp: integer underflow in nsc_rle_decode (CVE-2024-32040)\n\n* freerdp: OutOfBound Read in zgfx_decompress_segment (CVE-2024-32041)\n\n* freerdp: OutOfBound Read in planar_skip_plane_rle (CVE-2024-32458)\n\n* freerdp: out-of-bounds read (CVE-2024-32662)\n\n* FreeRDP: ExtractRunLengthRegular* out of bound read (CVE-2024-32658)\n\n* freerdp: zgfx_decompress out of memory (CVE-2024-32660)\n\n* freerdp: freerdp_image_copy out of bound read (CVE-2024-32659)\n\n* freerdp: rdp_write_logon_info_v1 NULL access (CVE-2024-32661)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAdditional Changes:\n\nFor detailed information on changes in this release, see the Red Hat Enterprise Linux 9.5 Release Notes linked from the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:9092",
"url": "https://access.redhat.com/errata/RHSA-2024:9092"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/red_hat_enterprise_linux/9/html/9.5_release_notes/index",
"url": "https://docs.redhat.com/en/documentation/red_hat_enterprise_linux/9/html/9.5_release_notes/index"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "2259483",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2259483"
},
{
"category": "external",
"summary": "2276721",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276721"
},
{
"category": "external",
"summary": "2276722",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276722"
},
{
"category": "external",
"summary": "2276723",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276723"
},
{
"category": "external",
"summary": "2276724",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276724"
},
{
"category": "external",
"summary": "2276725",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276725"
},
{
"category": "external",
"summary": "2276726",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276726"
},
{
"category": "external",
"summary": "2276804",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276804"
},
{
"category": "external",
"summary": "2276961",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276961"
},
{
"category": "external",
"summary": "2276968",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276968"
},
{
"category": "external",
"summary": "2276970",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276970"
},
{
"category": "external",
"summary": "2276971",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276971"
},
{
"category": "external",
"summary": "RHEL-33988",
"url": "https://issues.redhat.com/browse/RHEL-33988"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_9092.json"
}
],
"title": "Red Hat Security Advisory: freerdp security update",
"tracking": {
"current_release_date": "2024-11-24T14:15:37+00:00",
"generator": {
"date": "2024-11-24T14:15:37+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2024:9092",
"initial_release_date": "2024-11-12T09:36:13+00:00",
"revision_history": [
{
"date": "2024-11-12T09:36:13+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-11-12T09:36:13+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-24T14:15:37+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream (v. 9)",
"product": {
"name": "Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:9::appstream"
}
}
},
{
"category": "product_name",
"name": "Red Hat CodeReady Linux Builder (v. 9)",
"product": {
"name": "Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:9::crb"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "freerdp-devel-2:2.11.7-1.el9.aarch64",
"product": {
"name": "freerdp-devel-2:2.11.7-1.el9.aarch64",
"product_id": "freerdp-devel-2:2.11.7-1.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/freerdp-devel@2.11.7-1.el9?arch=aarch64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "libwinpr-devel-2:2.11.7-1.el9.aarch64",
"product": {
"name": "libwinpr-devel-2:2.11.7-1.el9.aarch64",
"product_id": "libwinpr-devel-2:2.11.7-1.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libwinpr-devel@2.11.7-1.el9?arch=aarch64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"product": {
"name": "freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"product_id": "freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/freerdp-debugsource@2.11.7-1.el9?arch=aarch64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"product": {
"name": "freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"product_id": "freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/freerdp-debuginfo@2.11.7-1.el9?arch=aarch64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"product": {
"name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"product_id": "freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/freerdp-libs-debuginfo@2.11.7-1.el9?arch=aarch64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"product": {
"name": "libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"product_id": "libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libwinpr-debuginfo@2.11.7-1.el9?arch=aarch64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "freerdp-2:2.11.7-1.el9.aarch64",
"product": {
"name": "freerdp-2:2.11.7-1.el9.aarch64",
"product_id": "freerdp-2:2.11.7-1.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/freerdp@2.11.7-1.el9?arch=aarch64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "freerdp-libs-2:2.11.7-1.el9.aarch64",
"product": {
"name": "freerdp-libs-2:2.11.7-1.el9.aarch64",
"product_id": "freerdp-libs-2:2.11.7-1.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/freerdp-libs@2.11.7-1.el9?arch=aarch64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "libwinpr-2:2.11.7-1.el9.aarch64",
"product": {
"name": "libwinpr-2:2.11.7-1.el9.aarch64",
"product_id": "libwinpr-2:2.11.7-1.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libwinpr@2.11.7-1.el9?arch=aarch64\u0026epoch=2"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "freerdp-devel-2:2.11.7-1.el9.ppc64le",
"product": {
"name": "freerdp-devel-2:2.11.7-1.el9.ppc64le",
"product_id": "freerdp-devel-2:2.11.7-1.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/freerdp-devel@2.11.7-1.el9?arch=ppc64le\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"product": {
"name": "libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"product_id": "libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libwinpr-devel@2.11.7-1.el9?arch=ppc64le\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"product": {
"name": "freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"product_id": "freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/freerdp-debugsource@2.11.7-1.el9?arch=ppc64le\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"product": {
"name": "freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"product_id": "freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/freerdp-debuginfo@2.11.7-1.el9?arch=ppc64le\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"product": {
"name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"product_id": "freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/freerdp-libs-debuginfo@2.11.7-1.el9?arch=ppc64le\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"product": {
"name": "libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"product_id": "libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libwinpr-debuginfo@2.11.7-1.el9?arch=ppc64le\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "freerdp-2:2.11.7-1.el9.ppc64le",
"product": {
"name": "freerdp-2:2.11.7-1.el9.ppc64le",
"product_id": "freerdp-2:2.11.7-1.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/freerdp@2.11.7-1.el9?arch=ppc64le\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "freerdp-libs-2:2.11.7-1.el9.ppc64le",
"product": {
"name": "freerdp-libs-2:2.11.7-1.el9.ppc64le",
"product_id": "freerdp-libs-2:2.11.7-1.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/freerdp-libs@2.11.7-1.el9?arch=ppc64le\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "libwinpr-2:2.11.7-1.el9.ppc64le",
"product": {
"name": "libwinpr-2:2.11.7-1.el9.ppc64le",
"product_id": "libwinpr-2:2.11.7-1.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libwinpr@2.11.7-1.el9?arch=ppc64le\u0026epoch=2"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "freerdp-devel-2:2.11.7-1.el9.i686",
"product": {
"name": "freerdp-devel-2:2.11.7-1.el9.i686",
"product_id": "freerdp-devel-2:2.11.7-1.el9.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/freerdp-devel@2.11.7-1.el9?arch=i686\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "libwinpr-devel-2:2.11.7-1.el9.i686",
"product": {
"name": "libwinpr-devel-2:2.11.7-1.el9.i686",
"product_id": "libwinpr-devel-2:2.11.7-1.el9.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libwinpr-devel@2.11.7-1.el9?arch=i686\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "freerdp-debugsource-2:2.11.7-1.el9.i686",
"product": {
"name": "freerdp-debugsource-2:2.11.7-1.el9.i686",
"product_id": "freerdp-debugsource-2:2.11.7-1.el9.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/freerdp-debugsource@2.11.7-1.el9?arch=i686\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "freerdp-debuginfo-2:2.11.7-1.el9.i686",
"product": {
"name": "freerdp-debuginfo-2:2.11.7-1.el9.i686",
"product_id": "freerdp-debuginfo-2:2.11.7-1.el9.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/freerdp-debuginfo@2.11.7-1.el9?arch=i686\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"product": {
"name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"product_id": "freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/freerdp-libs-debuginfo@2.11.7-1.el9?arch=i686\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"product": {
"name": "libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"product_id": "libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libwinpr-debuginfo@2.11.7-1.el9?arch=i686\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "freerdp-libs-2:2.11.7-1.el9.i686",
"product": {
"name": "freerdp-libs-2:2.11.7-1.el9.i686",
"product_id": "freerdp-libs-2:2.11.7-1.el9.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/freerdp-libs@2.11.7-1.el9?arch=i686\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "libwinpr-2:2.11.7-1.el9.i686",
"product": {
"name": "libwinpr-2:2.11.7-1.el9.i686",
"product_id": "libwinpr-2:2.11.7-1.el9.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libwinpr@2.11.7-1.el9?arch=i686\u0026epoch=2"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "freerdp-devel-2:2.11.7-1.el9.x86_64",
"product": {
"name": "freerdp-devel-2:2.11.7-1.el9.x86_64",
"product_id": "freerdp-devel-2:2.11.7-1.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/freerdp-devel@2.11.7-1.el9?arch=x86_64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "libwinpr-devel-2:2.11.7-1.el9.x86_64",
"product": {
"name": "libwinpr-devel-2:2.11.7-1.el9.x86_64",
"product_id": "libwinpr-devel-2:2.11.7-1.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libwinpr-devel@2.11.7-1.el9?arch=x86_64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"product": {
"name": "freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"product_id": "freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/freerdp-debugsource@2.11.7-1.el9?arch=x86_64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"product": {
"name": "freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"product_id": "freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/freerdp-debuginfo@2.11.7-1.el9?arch=x86_64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"product": {
"name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"product_id": "freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/freerdp-libs-debuginfo@2.11.7-1.el9?arch=x86_64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"product": {
"name": "libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"product_id": "libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libwinpr-debuginfo@2.11.7-1.el9?arch=x86_64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "freerdp-2:2.11.7-1.el9.x86_64",
"product": {
"name": "freerdp-2:2.11.7-1.el9.x86_64",
"product_id": "freerdp-2:2.11.7-1.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/freerdp@2.11.7-1.el9?arch=x86_64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "freerdp-libs-2:2.11.7-1.el9.x86_64",
"product": {
"name": "freerdp-libs-2:2.11.7-1.el9.x86_64",
"product_id": "freerdp-libs-2:2.11.7-1.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/freerdp-libs@2.11.7-1.el9?arch=x86_64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "libwinpr-2:2.11.7-1.el9.x86_64",
"product": {
"name": "libwinpr-2:2.11.7-1.el9.x86_64",
"product_id": "libwinpr-2:2.11.7-1.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libwinpr@2.11.7-1.el9?arch=x86_64\u0026epoch=2"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "freerdp-devel-2:2.11.7-1.el9.s390x",
"product": {
"name": "freerdp-devel-2:2.11.7-1.el9.s390x",
"product_id": "freerdp-devel-2:2.11.7-1.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/freerdp-devel@2.11.7-1.el9?arch=s390x\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "libwinpr-devel-2:2.11.7-1.el9.s390x",
"product": {
"name": "libwinpr-devel-2:2.11.7-1.el9.s390x",
"product_id": "libwinpr-devel-2:2.11.7-1.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libwinpr-devel@2.11.7-1.el9?arch=s390x\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "freerdp-debugsource-2:2.11.7-1.el9.s390x",
"product": {
"name": "freerdp-debugsource-2:2.11.7-1.el9.s390x",
"product_id": "freerdp-debugsource-2:2.11.7-1.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/freerdp-debugsource@2.11.7-1.el9?arch=s390x\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"product": {
"name": "freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"product_id": "freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/freerdp-debuginfo@2.11.7-1.el9?arch=s390x\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"product": {
"name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"product_id": "freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/freerdp-libs-debuginfo@2.11.7-1.el9?arch=s390x\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"product": {
"name": "libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"product_id": "libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libwinpr-debuginfo@2.11.7-1.el9?arch=s390x\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "freerdp-2:2.11.7-1.el9.s390x",
"product": {
"name": "freerdp-2:2.11.7-1.el9.s390x",
"product_id": "freerdp-2:2.11.7-1.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/freerdp@2.11.7-1.el9?arch=s390x\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "freerdp-libs-2:2.11.7-1.el9.s390x",
"product": {
"name": "freerdp-libs-2:2.11.7-1.el9.s390x",
"product_id": "freerdp-libs-2:2.11.7-1.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/freerdp-libs@2.11.7-1.el9?arch=s390x\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "libwinpr-2:2.11.7-1.el9.s390x",
"product": {
"name": "libwinpr-2:2.11.7-1.el9.s390x",
"product_id": "libwinpr-2:2.11.7-1.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libwinpr@2.11.7-1.el9?arch=s390x\u0026epoch=2"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "freerdp-2:2.11.7-1.el9.src",
"product": {
"name": "freerdp-2:2.11.7-1.el9.src",
"product_id": "freerdp-2:2.11.7-1.el9.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/freerdp@2.11.7-1.el9?arch=src\u0026epoch=2"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-2:2.11.7-1.el9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64"
},
"product_reference": "freerdp-2:2.11.7-1.el9.aarch64",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-2:2.11.7-1.el9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le"
},
"product_reference": "freerdp-2:2.11.7-1.el9.ppc64le",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-2:2.11.7-1.el9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x"
},
"product_reference": "freerdp-2:2.11.7-1.el9.s390x",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-2:2.11.7-1.el9.src as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src"
},
"product_reference": "freerdp-2:2.11.7-1.el9.src",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-2:2.11.7-1.el9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64"
},
"product_reference": "freerdp-2:2.11.7-1.el9.x86_64",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-debuginfo-2:2.11.7-1.el9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64"
},
"product_reference": "freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-debuginfo-2:2.11.7-1.el9.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686"
},
"product_reference": "freerdp-debuginfo-2:2.11.7-1.el9.i686",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-debuginfo-2:2.11.7-1.el9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le"
},
"product_reference": "freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-debuginfo-2:2.11.7-1.el9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x"
},
"product_reference": "freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-debuginfo-2:2.11.7-1.el9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64"
},
"product_reference": "freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-debugsource-2:2.11.7-1.el9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64"
},
"product_reference": "freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-debugsource-2:2.11.7-1.el9.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686"
},
"product_reference": "freerdp-debugsource-2:2.11.7-1.el9.i686",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-debugsource-2:2.11.7-1.el9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le"
},
"product_reference": "freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-debugsource-2:2.11.7-1.el9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x"
},
"product_reference": "freerdp-debugsource-2:2.11.7-1.el9.s390x",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-debugsource-2:2.11.7-1.el9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64"
},
"product_reference": "freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-devel-2:2.11.7-1.el9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64"
},
"product_reference": "freerdp-devel-2:2.11.7-1.el9.aarch64",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-devel-2:2.11.7-1.el9.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686"
},
"product_reference": "freerdp-devel-2:2.11.7-1.el9.i686",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-devel-2:2.11.7-1.el9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le"
},
"product_reference": "freerdp-devel-2:2.11.7-1.el9.ppc64le",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-devel-2:2.11.7-1.el9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x"
},
"product_reference": "freerdp-devel-2:2.11.7-1.el9.s390x",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-devel-2:2.11.7-1.el9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64"
},
"product_reference": "freerdp-devel-2:2.11.7-1.el9.x86_64",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-libs-2:2.11.7-1.el9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64"
},
"product_reference": "freerdp-libs-2:2.11.7-1.el9.aarch64",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-libs-2:2.11.7-1.el9.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686"
},
"product_reference": "freerdp-libs-2:2.11.7-1.el9.i686",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-libs-2:2.11.7-1.el9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le"
},
"product_reference": "freerdp-libs-2:2.11.7-1.el9.ppc64le",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-libs-2:2.11.7-1.el9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x"
},
"product_reference": "freerdp-libs-2:2.11.7-1.el9.s390x",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-libs-2:2.11.7-1.el9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64"
},
"product_reference": "freerdp-libs-2:2.11.7-1.el9.x86_64",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64"
},
"product_reference": "freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686"
},
"product_reference": "freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le"
},
"product_reference": "freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x"
},
"product_reference": "freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64"
},
"product_reference": "freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr-2:2.11.7-1.el9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64"
},
"product_reference": "libwinpr-2:2.11.7-1.el9.aarch64",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr-2:2.11.7-1.el9.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686"
},
"product_reference": "libwinpr-2:2.11.7-1.el9.i686",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr-2:2.11.7-1.el9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le"
},
"product_reference": "libwinpr-2:2.11.7-1.el9.ppc64le",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr-2:2.11.7-1.el9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x"
},
"product_reference": "libwinpr-2:2.11.7-1.el9.s390x",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr-2:2.11.7-1.el9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64"
},
"product_reference": "libwinpr-2:2.11.7-1.el9.x86_64",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr-debuginfo-2:2.11.7-1.el9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64"
},
"product_reference": "libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr-debuginfo-2:2.11.7-1.el9.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686"
},
"product_reference": "libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le"
},
"product_reference": "libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr-debuginfo-2:2.11.7-1.el9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x"
},
"product_reference": "libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr-debuginfo-2:2.11.7-1.el9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64"
},
"product_reference": "libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr-devel-2:2.11.7-1.el9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64"
},
"product_reference": "libwinpr-devel-2:2.11.7-1.el9.aarch64",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr-devel-2:2.11.7-1.el9.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686"
},
"product_reference": "libwinpr-devel-2:2.11.7-1.el9.i686",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr-devel-2:2.11.7-1.el9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le"
},
"product_reference": "libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr-devel-2:2.11.7-1.el9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x"
},
"product_reference": "libwinpr-devel-2:2.11.7-1.el9.s390x",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr-devel-2:2.11.7-1.el9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
},
"product_reference": "libwinpr-devel-2:2.11.7-1.el9.x86_64",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-2:2.11.7-1.el9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64"
},
"product_reference": "freerdp-2:2.11.7-1.el9.aarch64",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-2:2.11.7-1.el9.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le"
},
"product_reference": "freerdp-2:2.11.7-1.el9.ppc64le",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-2:2.11.7-1.el9.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x"
},
"product_reference": "freerdp-2:2.11.7-1.el9.s390x",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-2:2.11.7-1.el9.src as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src"
},
"product_reference": "freerdp-2:2.11.7-1.el9.src",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-2:2.11.7-1.el9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64"
},
"product_reference": "freerdp-2:2.11.7-1.el9.x86_64",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-debuginfo-2:2.11.7-1.el9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64"
},
"product_reference": "freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-debuginfo-2:2.11.7-1.el9.i686 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686"
},
"product_reference": "freerdp-debuginfo-2:2.11.7-1.el9.i686",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-debuginfo-2:2.11.7-1.el9.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le"
},
"product_reference": "freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-debuginfo-2:2.11.7-1.el9.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x"
},
"product_reference": "freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-debuginfo-2:2.11.7-1.el9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64"
},
"product_reference": "freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-debugsource-2:2.11.7-1.el9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64"
},
"product_reference": "freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-debugsource-2:2.11.7-1.el9.i686 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686"
},
"product_reference": "freerdp-debugsource-2:2.11.7-1.el9.i686",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-debugsource-2:2.11.7-1.el9.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le"
},
"product_reference": "freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-debugsource-2:2.11.7-1.el9.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x"
},
"product_reference": "freerdp-debugsource-2:2.11.7-1.el9.s390x",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-debugsource-2:2.11.7-1.el9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64"
},
"product_reference": "freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-devel-2:2.11.7-1.el9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64"
},
"product_reference": "freerdp-devel-2:2.11.7-1.el9.aarch64",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-devel-2:2.11.7-1.el9.i686 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686"
},
"product_reference": "freerdp-devel-2:2.11.7-1.el9.i686",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-devel-2:2.11.7-1.el9.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le"
},
"product_reference": "freerdp-devel-2:2.11.7-1.el9.ppc64le",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-devel-2:2.11.7-1.el9.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x"
},
"product_reference": "freerdp-devel-2:2.11.7-1.el9.s390x",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-devel-2:2.11.7-1.el9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64"
},
"product_reference": "freerdp-devel-2:2.11.7-1.el9.x86_64",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-libs-2:2.11.7-1.el9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64"
},
"product_reference": "freerdp-libs-2:2.11.7-1.el9.aarch64",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-libs-2:2.11.7-1.el9.i686 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686"
},
"product_reference": "freerdp-libs-2:2.11.7-1.el9.i686",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-libs-2:2.11.7-1.el9.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le"
},
"product_reference": "freerdp-libs-2:2.11.7-1.el9.ppc64le",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-libs-2:2.11.7-1.el9.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x"
},
"product_reference": "freerdp-libs-2:2.11.7-1.el9.s390x",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-libs-2:2.11.7-1.el9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64"
},
"product_reference": "freerdp-libs-2:2.11.7-1.el9.x86_64",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64"
},
"product_reference": "freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.i686 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686"
},
"product_reference": "freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le"
},
"product_reference": "freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x"
},
"product_reference": "freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64"
},
"product_reference": "freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr-2:2.11.7-1.el9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64"
},
"product_reference": "libwinpr-2:2.11.7-1.el9.aarch64",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr-2:2.11.7-1.el9.i686 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686"
},
"product_reference": "libwinpr-2:2.11.7-1.el9.i686",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr-2:2.11.7-1.el9.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le"
},
"product_reference": "libwinpr-2:2.11.7-1.el9.ppc64le",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr-2:2.11.7-1.el9.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x"
},
"product_reference": "libwinpr-2:2.11.7-1.el9.s390x",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr-2:2.11.7-1.el9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64"
},
"product_reference": "libwinpr-2:2.11.7-1.el9.x86_64",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr-debuginfo-2:2.11.7-1.el9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64"
},
"product_reference": "libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr-debuginfo-2:2.11.7-1.el9.i686 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686"
},
"product_reference": "libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le"
},
"product_reference": "libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr-debuginfo-2:2.11.7-1.el9.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x"
},
"product_reference": "libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr-debuginfo-2:2.11.7-1.el9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64"
},
"product_reference": "libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr-devel-2:2.11.7-1.el9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64"
},
"product_reference": "libwinpr-devel-2:2.11.7-1.el9.aarch64",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr-devel-2:2.11.7-1.el9.i686 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686"
},
"product_reference": "libwinpr-devel-2:2.11.7-1.el9.i686",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr-devel-2:2.11.7-1.el9.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le"
},
"product_reference": "libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr-devel-2:2.11.7-1.el9.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x"
},
"product_reference": "libwinpr-devel-2:2.11.7-1.el9.s390x",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr-devel-2:2.11.7-1.el9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
},
"product_reference": "libwinpr-devel-2:2.11.7-1.el9.x86_64",
"relates_to_product_reference": "CRB-9.5.0.GA"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-22211",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2024-01-22T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2259483"
}
],
"notes": [
{
"category": "description",
"text": "FreeRDP is a collection of remote desktop protocol library and client software that is both free and open source. An integer overflow within freerdp_bitmap_planar_context_reset results in a heap-buffer overflow. This impacts clients built on FreeRDP. However, server implementations and proxies based on FreeRDP are unaffected. A malevolent server could create a RDPGFX_RESET_GRAPHICS_PDU to allocate buffers that are too small, potentially causing subsequent out-of-bounds reads/writes. It\u0027s important to note that data extraction over the network is not feasible; these buffers are utilized solely for displaying images.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "freerdp: Integer Overflow leading to Heap Overflow in freerdp_bitmap_planar_context_reset",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in FreeRDP, resulting from an integer overflow in certain versions, poses a low severity risk due to several mitigating factors. Firstly, it primarily affects FreeRDP-based clients, while server implementations and proxies remain unaffected. Additionally, the potential for exploitation is limited as it requires interaction with a malicious server, and data extraction over the network is not feasible; the vulnerability pertains solely to image display buffers.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-22211"
},
{
"category": "external",
"summary": "RHBZ#2259483",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2259483"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-22211",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-22211"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-22211",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-22211"
},
{
"category": "external",
"summary": "https://github.com/FreeRDP/FreeRDP/commit/939e922936e9c3ae8fc204968645e5e7563a2fff",
"url": "https://github.com/FreeRDP/FreeRDP/commit/939e922936e9c3ae8fc204968645e5e7563a2fff"
},
{
"category": "external",
"summary": "https://github.com/FreeRDP/FreeRDP/commit/aeac3040cc99eeaff1e1171a822114c857b9dca9",
"url": "https://github.com/FreeRDP/FreeRDP/commit/aeac3040cc99eeaff1e1171a822114c857b9dca9"
},
{
"category": "external",
"summary": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-rjhp-44rv-7v59",
"url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-rjhp-44rv-7v59"
}
],
"release_date": "2024-01-19T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-12T09:36:13+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:9092"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 3.7,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "freerdp: Integer Overflow leading to Heap Overflow in freerdp_bitmap_planar_context_reset"
},
{
"cve": "CVE-2024-32039",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2024-04-23T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2276723"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in FreeRDP-based clients. Affected versions of FreeRDP are vulnerable to an integer overflow and out-of-bounds write. This issue occurs when the sum of the `runLengthFactor` and `pixelIndex` values become large enough to overflow the uint32 type and bypass an error check when clearing residual data.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "freerdp: Integer overflow \u0026 OutOfBound Write in clear_decompress_residual_data",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-32039"
},
{
"category": "external",
"summary": "RHBZ#2276723",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276723"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-32039",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32039"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32039",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32039"
},
{
"category": "external",
"summary": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-q5h8-7j42-j4r9",
"url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-q5h8-7j42-j4r9"
}
],
"release_date": "2024-04-22T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-12T09:36:13+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:9092"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "freerdp: Integer overflow \u0026 OutOfBound Write in clear_decompress_residual_data"
},
{
"cve": "CVE-2024-32040",
"cwe": {
"id": "CWE-191",
"name": "Integer Underflow (Wrap or Wraparound)"
},
"discovery_date": "2024-04-23T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2276724"
}
],
"notes": [
{
"category": "description",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients that use a version of FreeRDP prior to 3.5.0 or 2.11.6 and have connections to servers using the `NSC` codec are vulnerable to integer underflow. Versions 3.5.0 and 2.11.6 patch the issue. As a workaround, do not use the NSC codec (e.g. use `-nsc`).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "freerdp: integer underflow in nsc_rle_decode",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-32040"
},
{
"category": "external",
"summary": "RHBZ#2276724",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276724"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-32040",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32040"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32040",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32040"
},
{
"category": "external",
"summary": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-23c5-cp23-h2h5",
"url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-23c5-cp23-h2h5"
}
],
"release_date": "2024-04-22T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-12T09:36:13+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:9092"
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "freerdp: integer underflow in nsc_rle_decode"
},
{
"cve": "CVE-2024-32041",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2024-04-23T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2276725"
}
],
"notes": [
{
"category": "description",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients that use a version of FreeRDP prior to 3.5.0 or 2.11.6 are vulnerable to out-of-bounds read. Versions 3.5.0 and 2.11.6 patch the issue. As a workaround, deactivate `/gfx` (on by default, set `/bpp` or `/rfx` options instead.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "freerdp: OutOfBound Read in zgfx_decompress_segment",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-32041"
},
{
"category": "external",
"summary": "RHBZ#2276725",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276725"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-32041",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32041"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32041",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32041"
},
{
"category": "external",
"summary": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-5r4p-mfx2-m44r",
"url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-5r4p-mfx2-m44r"
}
],
"release_date": "2024-04-22T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-12T09:36:13+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:9092"
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "freerdp: OutOfBound Read in zgfx_decompress_segment"
},
{
"cve": "CVE-2024-32458",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2024-04-23T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2276726"
}
],
"notes": [
{
"category": "description",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients that use a version of FreeRDP prior to 3.5.0 or 2.11.6 are vulnerable to out-of-bounds read. Versions 3.5.0 and 2.11.6 patch the issue. As a workaround, use `/gfx` or `/rfx` modes (on by default, require server side support).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "freerdp: OutOfBound Read in planar_skip_plane_rle",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-32458"
},
{
"category": "external",
"summary": "RHBZ#2276726",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276726"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-32458",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32458"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32458",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32458"
},
{
"category": "external",
"summary": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vvr6-h646-mp4p",
"url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vvr6-h646-mp4p"
}
],
"release_date": "2024-04-22T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-12T09:36:13+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:9092"
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "freerdp: OutOfBound Read in planar_skip_plane_rle"
},
{
"cve": "CVE-2024-32459",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2024-04-23T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2276721"
}
],
"notes": [
{
"category": "description",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients and servers that use a version of FreeRDP prior to 3.5.0 or 2.11.6 are vulnerable to out-of-bounds read. Versions 3.5.0 and 2.11.6 patch the issue. No known workarounds are available.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "freerdp: out-of-bounds read in ncrush_decompress",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-32459"
},
{
"category": "external",
"summary": "RHBZ#2276721",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276721"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-32459",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32459"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32459",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32459"
},
{
"category": "external",
"summary": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-cp4q-p737-rmw9",
"url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-cp4q-p737-rmw9"
}
],
"release_date": "2024-04-22T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-12T09:36:13+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:9092"
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "freerdp: out-of-bounds read in ncrush_decompress"
},
{
"cve": "CVE-2024-32460",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2024-04-23T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2276722"
}
],
"notes": [
{
"category": "description",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based based clients using `/bpp:32` legacy `GDI` drawing path with a version of FreeRDP prior to 3.5.0 or 2.11.6 are vulnerable to out-of-bounds read. Versions 3.5.0 and 2.11.6 patch the issue. As a workaround, use modern drawing paths (e.g. `/rfx` or `/gfx` options). The workaround requires server side support.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "freerdp: OutOfBound Read in interleaved_decompress",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-32460"
},
{
"category": "external",
"summary": "RHBZ#2276722",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276722"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-32460",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32460"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32460",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32460"
},
{
"category": "external",
"summary": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-4rr8-gr65-vqrr",
"url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-4rr8-gr65-vqrr"
}
],
"release_date": "2024-04-22T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-12T09:36:13+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:9092"
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "freerdp: OutOfBound Read in interleaved_decompress"
},
{
"cve": "CVE-2024-32658",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2024-04-24T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2276961"
}
],
"notes": [
{
"category": "description",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients prior to version 3.5.1 are vulnerable to out-of-bounds read. Version 3.5.1 contains a patch for the issue. No known workarounds are available.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "FreeRDP: ExtractRunLengthRegular* out of bound read",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-32658"
},
{
"category": "external",
"summary": "RHBZ#2276961",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276961"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-32658",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32658"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32658",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32658"
},
{
"category": "external",
"summary": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vpv3-m3m9-4c2v",
"url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vpv3-m3m9-4c2v"
}
],
"release_date": "2024-04-23T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-12T09:36:13+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:9092"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "FreeRDP: ExtractRunLengthRegular* out of bound read"
},
{
"cve": "CVE-2024-32659",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2024-04-24T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2276970"
}
],
"notes": [
{
"category": "description",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients prior to version 3.5.1 are vulnerable to out-of-bounds read if `((nWidth == 0) and (nHeight == 0))`. Version 3.5.1 contains a patch for the issue. No known workarounds are available.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "freerdp: freerdp_image_copy out of bound read",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-32659"
},
{
"category": "external",
"summary": "RHBZ#2276970",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276970"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-32659",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32659"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32659",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32659"
},
{
"category": "external",
"summary": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-8jgr-7r33-x87w",
"url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-8jgr-7r33-x87w"
}
],
"release_date": "2024-04-23T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-12T09:36:13+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:9092"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "freerdp: freerdp_image_copy out of bound read"
},
{
"cve": "CVE-2024-32660",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2024-04-24T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2276968"
}
],
"notes": [
{
"category": "description",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.5.1, a malicious server can crash the FreeRDP client by sending invalid huge allocation size. Version 3.5.1 contains a patch for the issue. No known workarounds are available.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "freerdp: zgfx_decompress out of memory",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-32660"
},
{
"category": "external",
"summary": "RHBZ#2276968",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276968"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-32660",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32660"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32660",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32660"
},
{
"category": "external",
"summary": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-mxv6-2cw6-m3mx",
"url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-mxv6-2cw6-m3mx"
}
],
"release_date": "2024-04-23T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-12T09:36:13+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:9092"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "freerdp: zgfx_decompress out of memory"
},
{
"cve": "CVE-2024-32661",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"discovery_date": "2024-04-24T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2276971"
}
],
"notes": [
{
"category": "description",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients prior to version 3.5.1 are vulnerable to a possible `NULL` access and crash. Version 3.5.1 contains a patch for the issue. No known workarounds are available.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "freerdp: rdp_write_logon_info_v1 NULL access",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-32661"
},
{
"category": "external",
"summary": "RHBZ#2276971",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276971"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-32661",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32661"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32661",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32661"
},
{
"category": "external",
"summary": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-p5m5-342g-pv9m",
"url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-p5m5-342g-pv9m"
}
],
"release_date": "2024-04-23T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-12T09:36:13+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:9092"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "freerdp: rdp_write_logon_info_v1 NULL access"
},
{
"cve": "CVE-2024-32662",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2024-04-24T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2276804"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in FreeRDP-based clients. Affected versions of FreeRDP are vulnerable to an out-of-bounds read. This issue occurs when the `WCHAR` string is read with twice the size it has and converted to `UTF-8`, `base64` decoded. The string is only used to compare against the redirection server certificate.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "freerdp: out-of-bounds read",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-32662"
},
{
"category": "external",
"summary": "RHBZ#2276804",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276804"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-32662",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32662"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32662",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32662"
},
{
"category": "external",
"summary": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vffh-j6hh-95f4",
"url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vffh-j6hh-95f4"
}
],
"release_date": "2024-04-23T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-12T09:36:13+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:9092"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "freerdp: out-of-bounds read"
}
]
}
RHSA-2024:9092
Vulnerability from csaf_redhat - Published: 2024-11-12 09:36 - Updated: 2025-11-21 19:15Summary
Red Hat Security Advisory: freerdp security update
Notes
Topic
An update for freerdp is now available for Red Hat Enterprise Linux 9.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. The xfreerdp client can connect to RDP servers such as Microsoft Windows machines, xrdp, and VirtualBox.
Security Fix(es):
* freerdp: Integer Overflow leading to Heap Overflow in freerdp_bitmap_planar_context_reset (CVE-2024-22211)
* freerdp: out-of-bounds read in ncrush_decompress (CVE-2024-32459)
* freerdp: OutOfBound Read in interleaved_decompress (CVE-2024-32460)
* freerdp: Integer overflow & OutOfBound Write in clear_decompress_residual_data (CVE-2024-32039)
* freerdp: integer underflow in nsc_rle_decode (CVE-2024-32040)
* freerdp: OutOfBound Read in zgfx_decompress_segment (CVE-2024-32041)
* freerdp: OutOfBound Read in planar_skip_plane_rle (CVE-2024-32458)
* freerdp: out-of-bounds read (CVE-2024-32662)
* FreeRDP: ExtractRunLengthRegular* out of bound read (CVE-2024-32658)
* freerdp: zgfx_decompress out of memory (CVE-2024-32660)
* freerdp: freerdp_image_copy out of bound read (CVE-2024-32659)
* freerdp: rdp_write_logon_info_v1 NULL access (CVE-2024-32661)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Red Hat Enterprise Linux 9.5 Release Notes linked from the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for freerdp is now available for Red Hat Enterprise Linux 9.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. The xfreerdp client can connect to RDP servers such as Microsoft Windows machines, xrdp, and VirtualBox.\n\nSecurity Fix(es):\n\n* freerdp: Integer Overflow leading to Heap Overflow in freerdp_bitmap_planar_context_reset (CVE-2024-22211)\n\n* freerdp: out-of-bounds read in ncrush_decompress (CVE-2024-32459)\n\n* freerdp: OutOfBound Read in interleaved_decompress (CVE-2024-32460)\n\n* freerdp: Integer overflow \u0026 OutOfBound Write in clear_decompress_residual_data (CVE-2024-32039)\n\n* freerdp: integer underflow in nsc_rle_decode (CVE-2024-32040)\n\n* freerdp: OutOfBound Read in zgfx_decompress_segment (CVE-2024-32041)\n\n* freerdp: OutOfBound Read in planar_skip_plane_rle (CVE-2024-32458)\n\n* freerdp: out-of-bounds read (CVE-2024-32662)\n\n* FreeRDP: ExtractRunLengthRegular* out of bound read (CVE-2024-32658)\n\n* freerdp: zgfx_decompress out of memory (CVE-2024-32660)\n\n* freerdp: freerdp_image_copy out of bound read (CVE-2024-32659)\n\n* freerdp: rdp_write_logon_info_v1 NULL access (CVE-2024-32661)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAdditional Changes:\n\nFor detailed information on changes in this release, see the Red Hat Enterprise Linux 9.5 Release Notes linked from the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:9092",
"url": "https://access.redhat.com/errata/RHSA-2024:9092"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/red_hat_enterprise_linux/9/html/9.5_release_notes/index",
"url": "https://docs.redhat.com/en/documentation/red_hat_enterprise_linux/9/html/9.5_release_notes/index"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "2259483",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2259483"
},
{
"category": "external",
"summary": "2276721",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276721"
},
{
"category": "external",
"summary": "2276722",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276722"
},
{
"category": "external",
"summary": "2276723",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276723"
},
{
"category": "external",
"summary": "2276724",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276724"
},
{
"category": "external",
"summary": "2276725",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276725"
},
{
"category": "external",
"summary": "2276726",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276726"
},
{
"category": "external",
"summary": "2276804",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276804"
},
{
"category": "external",
"summary": "2276961",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276961"
},
{
"category": "external",
"summary": "2276968",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276968"
},
{
"category": "external",
"summary": "2276970",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276970"
},
{
"category": "external",
"summary": "2276971",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276971"
},
{
"category": "external",
"summary": "RHEL-33988",
"url": "https://issues.redhat.com/browse/RHEL-33988"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_9092.json"
}
],
"title": "Red Hat Security Advisory: freerdp security update",
"tracking": {
"current_release_date": "2025-11-21T19:15:56+00:00",
"generator": {
"date": "2025-11-21T19:15:56+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2024:9092",
"initial_release_date": "2024-11-12T09:36:13+00:00",
"revision_history": [
{
"date": "2024-11-12T09:36:13+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-11-12T09:36:13+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T19:15:56+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream (v. 9)",
"product": {
"name": "Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:9::appstream"
}
}
},
{
"category": "product_name",
"name": "Red Hat CodeReady Linux Builder (v. 9)",
"product": {
"name": "Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:9::crb"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "freerdp-devel-2:2.11.7-1.el9.aarch64",
"product": {
"name": "freerdp-devel-2:2.11.7-1.el9.aarch64",
"product_id": "freerdp-devel-2:2.11.7-1.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/freerdp-devel@2.11.7-1.el9?arch=aarch64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "libwinpr-devel-2:2.11.7-1.el9.aarch64",
"product": {
"name": "libwinpr-devel-2:2.11.7-1.el9.aarch64",
"product_id": "libwinpr-devel-2:2.11.7-1.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libwinpr-devel@2.11.7-1.el9?arch=aarch64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"product": {
"name": "freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"product_id": "freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/freerdp-debugsource@2.11.7-1.el9?arch=aarch64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"product": {
"name": "freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"product_id": "freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/freerdp-debuginfo@2.11.7-1.el9?arch=aarch64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"product": {
"name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"product_id": "freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/freerdp-libs-debuginfo@2.11.7-1.el9?arch=aarch64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"product": {
"name": "libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"product_id": "libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libwinpr-debuginfo@2.11.7-1.el9?arch=aarch64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "freerdp-2:2.11.7-1.el9.aarch64",
"product": {
"name": "freerdp-2:2.11.7-1.el9.aarch64",
"product_id": "freerdp-2:2.11.7-1.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/freerdp@2.11.7-1.el9?arch=aarch64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "freerdp-libs-2:2.11.7-1.el9.aarch64",
"product": {
"name": "freerdp-libs-2:2.11.7-1.el9.aarch64",
"product_id": "freerdp-libs-2:2.11.7-1.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/freerdp-libs@2.11.7-1.el9?arch=aarch64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "libwinpr-2:2.11.7-1.el9.aarch64",
"product": {
"name": "libwinpr-2:2.11.7-1.el9.aarch64",
"product_id": "libwinpr-2:2.11.7-1.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libwinpr@2.11.7-1.el9?arch=aarch64\u0026epoch=2"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "freerdp-devel-2:2.11.7-1.el9.ppc64le",
"product": {
"name": "freerdp-devel-2:2.11.7-1.el9.ppc64le",
"product_id": "freerdp-devel-2:2.11.7-1.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/freerdp-devel@2.11.7-1.el9?arch=ppc64le\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"product": {
"name": "libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"product_id": "libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libwinpr-devel@2.11.7-1.el9?arch=ppc64le\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"product": {
"name": "freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"product_id": "freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/freerdp-debugsource@2.11.7-1.el9?arch=ppc64le\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"product": {
"name": "freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"product_id": "freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/freerdp-debuginfo@2.11.7-1.el9?arch=ppc64le\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"product": {
"name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"product_id": "freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/freerdp-libs-debuginfo@2.11.7-1.el9?arch=ppc64le\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"product": {
"name": "libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"product_id": "libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libwinpr-debuginfo@2.11.7-1.el9?arch=ppc64le\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "freerdp-2:2.11.7-1.el9.ppc64le",
"product": {
"name": "freerdp-2:2.11.7-1.el9.ppc64le",
"product_id": "freerdp-2:2.11.7-1.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/freerdp@2.11.7-1.el9?arch=ppc64le\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "freerdp-libs-2:2.11.7-1.el9.ppc64le",
"product": {
"name": "freerdp-libs-2:2.11.7-1.el9.ppc64le",
"product_id": "freerdp-libs-2:2.11.7-1.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/freerdp-libs@2.11.7-1.el9?arch=ppc64le\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "libwinpr-2:2.11.7-1.el9.ppc64le",
"product": {
"name": "libwinpr-2:2.11.7-1.el9.ppc64le",
"product_id": "libwinpr-2:2.11.7-1.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libwinpr@2.11.7-1.el9?arch=ppc64le\u0026epoch=2"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "freerdp-devel-2:2.11.7-1.el9.i686",
"product": {
"name": "freerdp-devel-2:2.11.7-1.el9.i686",
"product_id": "freerdp-devel-2:2.11.7-1.el9.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/freerdp-devel@2.11.7-1.el9?arch=i686\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "libwinpr-devel-2:2.11.7-1.el9.i686",
"product": {
"name": "libwinpr-devel-2:2.11.7-1.el9.i686",
"product_id": "libwinpr-devel-2:2.11.7-1.el9.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libwinpr-devel@2.11.7-1.el9?arch=i686\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "freerdp-debugsource-2:2.11.7-1.el9.i686",
"product": {
"name": "freerdp-debugsource-2:2.11.7-1.el9.i686",
"product_id": "freerdp-debugsource-2:2.11.7-1.el9.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/freerdp-debugsource@2.11.7-1.el9?arch=i686\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "freerdp-debuginfo-2:2.11.7-1.el9.i686",
"product": {
"name": "freerdp-debuginfo-2:2.11.7-1.el9.i686",
"product_id": "freerdp-debuginfo-2:2.11.7-1.el9.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/freerdp-debuginfo@2.11.7-1.el9?arch=i686\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"product": {
"name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"product_id": "freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/freerdp-libs-debuginfo@2.11.7-1.el9?arch=i686\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"product": {
"name": "libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"product_id": "libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libwinpr-debuginfo@2.11.7-1.el9?arch=i686\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "freerdp-libs-2:2.11.7-1.el9.i686",
"product": {
"name": "freerdp-libs-2:2.11.7-1.el9.i686",
"product_id": "freerdp-libs-2:2.11.7-1.el9.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/freerdp-libs@2.11.7-1.el9?arch=i686\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "libwinpr-2:2.11.7-1.el9.i686",
"product": {
"name": "libwinpr-2:2.11.7-1.el9.i686",
"product_id": "libwinpr-2:2.11.7-1.el9.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libwinpr@2.11.7-1.el9?arch=i686\u0026epoch=2"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "freerdp-devel-2:2.11.7-1.el9.x86_64",
"product": {
"name": "freerdp-devel-2:2.11.7-1.el9.x86_64",
"product_id": "freerdp-devel-2:2.11.7-1.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/freerdp-devel@2.11.7-1.el9?arch=x86_64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "libwinpr-devel-2:2.11.7-1.el9.x86_64",
"product": {
"name": "libwinpr-devel-2:2.11.7-1.el9.x86_64",
"product_id": "libwinpr-devel-2:2.11.7-1.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libwinpr-devel@2.11.7-1.el9?arch=x86_64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"product": {
"name": "freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"product_id": "freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/freerdp-debugsource@2.11.7-1.el9?arch=x86_64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"product": {
"name": "freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"product_id": "freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/freerdp-debuginfo@2.11.7-1.el9?arch=x86_64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"product": {
"name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"product_id": "freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/freerdp-libs-debuginfo@2.11.7-1.el9?arch=x86_64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"product": {
"name": "libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"product_id": "libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libwinpr-debuginfo@2.11.7-1.el9?arch=x86_64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "freerdp-2:2.11.7-1.el9.x86_64",
"product": {
"name": "freerdp-2:2.11.7-1.el9.x86_64",
"product_id": "freerdp-2:2.11.7-1.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/freerdp@2.11.7-1.el9?arch=x86_64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "freerdp-libs-2:2.11.7-1.el9.x86_64",
"product": {
"name": "freerdp-libs-2:2.11.7-1.el9.x86_64",
"product_id": "freerdp-libs-2:2.11.7-1.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/freerdp-libs@2.11.7-1.el9?arch=x86_64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "libwinpr-2:2.11.7-1.el9.x86_64",
"product": {
"name": "libwinpr-2:2.11.7-1.el9.x86_64",
"product_id": "libwinpr-2:2.11.7-1.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libwinpr@2.11.7-1.el9?arch=x86_64\u0026epoch=2"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "freerdp-devel-2:2.11.7-1.el9.s390x",
"product": {
"name": "freerdp-devel-2:2.11.7-1.el9.s390x",
"product_id": "freerdp-devel-2:2.11.7-1.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/freerdp-devel@2.11.7-1.el9?arch=s390x\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "libwinpr-devel-2:2.11.7-1.el9.s390x",
"product": {
"name": "libwinpr-devel-2:2.11.7-1.el9.s390x",
"product_id": "libwinpr-devel-2:2.11.7-1.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libwinpr-devel@2.11.7-1.el9?arch=s390x\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "freerdp-debugsource-2:2.11.7-1.el9.s390x",
"product": {
"name": "freerdp-debugsource-2:2.11.7-1.el9.s390x",
"product_id": "freerdp-debugsource-2:2.11.7-1.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/freerdp-debugsource@2.11.7-1.el9?arch=s390x\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"product": {
"name": "freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"product_id": "freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/freerdp-debuginfo@2.11.7-1.el9?arch=s390x\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"product": {
"name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"product_id": "freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/freerdp-libs-debuginfo@2.11.7-1.el9?arch=s390x\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"product": {
"name": "libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"product_id": "libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libwinpr-debuginfo@2.11.7-1.el9?arch=s390x\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "freerdp-2:2.11.7-1.el9.s390x",
"product": {
"name": "freerdp-2:2.11.7-1.el9.s390x",
"product_id": "freerdp-2:2.11.7-1.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/freerdp@2.11.7-1.el9?arch=s390x\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "freerdp-libs-2:2.11.7-1.el9.s390x",
"product": {
"name": "freerdp-libs-2:2.11.7-1.el9.s390x",
"product_id": "freerdp-libs-2:2.11.7-1.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/freerdp-libs@2.11.7-1.el9?arch=s390x\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "libwinpr-2:2.11.7-1.el9.s390x",
"product": {
"name": "libwinpr-2:2.11.7-1.el9.s390x",
"product_id": "libwinpr-2:2.11.7-1.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libwinpr@2.11.7-1.el9?arch=s390x\u0026epoch=2"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "freerdp-2:2.11.7-1.el9.src",
"product": {
"name": "freerdp-2:2.11.7-1.el9.src",
"product_id": "freerdp-2:2.11.7-1.el9.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/freerdp@2.11.7-1.el9?arch=src\u0026epoch=2"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-2:2.11.7-1.el9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64"
},
"product_reference": "freerdp-2:2.11.7-1.el9.aarch64",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-2:2.11.7-1.el9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le"
},
"product_reference": "freerdp-2:2.11.7-1.el9.ppc64le",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-2:2.11.7-1.el9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x"
},
"product_reference": "freerdp-2:2.11.7-1.el9.s390x",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-2:2.11.7-1.el9.src as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src"
},
"product_reference": "freerdp-2:2.11.7-1.el9.src",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-2:2.11.7-1.el9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64"
},
"product_reference": "freerdp-2:2.11.7-1.el9.x86_64",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-debuginfo-2:2.11.7-1.el9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64"
},
"product_reference": "freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-debuginfo-2:2.11.7-1.el9.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686"
},
"product_reference": "freerdp-debuginfo-2:2.11.7-1.el9.i686",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-debuginfo-2:2.11.7-1.el9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le"
},
"product_reference": "freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-debuginfo-2:2.11.7-1.el9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x"
},
"product_reference": "freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-debuginfo-2:2.11.7-1.el9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64"
},
"product_reference": "freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-debugsource-2:2.11.7-1.el9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64"
},
"product_reference": "freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-debugsource-2:2.11.7-1.el9.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686"
},
"product_reference": "freerdp-debugsource-2:2.11.7-1.el9.i686",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-debugsource-2:2.11.7-1.el9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le"
},
"product_reference": "freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-debugsource-2:2.11.7-1.el9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x"
},
"product_reference": "freerdp-debugsource-2:2.11.7-1.el9.s390x",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-debugsource-2:2.11.7-1.el9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64"
},
"product_reference": "freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-devel-2:2.11.7-1.el9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64"
},
"product_reference": "freerdp-devel-2:2.11.7-1.el9.aarch64",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-devel-2:2.11.7-1.el9.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686"
},
"product_reference": "freerdp-devel-2:2.11.7-1.el9.i686",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-devel-2:2.11.7-1.el9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le"
},
"product_reference": "freerdp-devel-2:2.11.7-1.el9.ppc64le",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-devel-2:2.11.7-1.el9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x"
},
"product_reference": "freerdp-devel-2:2.11.7-1.el9.s390x",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-devel-2:2.11.7-1.el9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64"
},
"product_reference": "freerdp-devel-2:2.11.7-1.el9.x86_64",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-libs-2:2.11.7-1.el9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64"
},
"product_reference": "freerdp-libs-2:2.11.7-1.el9.aarch64",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-libs-2:2.11.7-1.el9.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686"
},
"product_reference": "freerdp-libs-2:2.11.7-1.el9.i686",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-libs-2:2.11.7-1.el9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le"
},
"product_reference": "freerdp-libs-2:2.11.7-1.el9.ppc64le",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-libs-2:2.11.7-1.el9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x"
},
"product_reference": "freerdp-libs-2:2.11.7-1.el9.s390x",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-libs-2:2.11.7-1.el9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64"
},
"product_reference": "freerdp-libs-2:2.11.7-1.el9.x86_64",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64"
},
"product_reference": "freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686"
},
"product_reference": "freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le"
},
"product_reference": "freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x"
},
"product_reference": "freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64"
},
"product_reference": "freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr-2:2.11.7-1.el9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64"
},
"product_reference": "libwinpr-2:2.11.7-1.el9.aarch64",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr-2:2.11.7-1.el9.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686"
},
"product_reference": "libwinpr-2:2.11.7-1.el9.i686",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr-2:2.11.7-1.el9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le"
},
"product_reference": "libwinpr-2:2.11.7-1.el9.ppc64le",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr-2:2.11.7-1.el9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x"
},
"product_reference": "libwinpr-2:2.11.7-1.el9.s390x",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr-2:2.11.7-1.el9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64"
},
"product_reference": "libwinpr-2:2.11.7-1.el9.x86_64",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr-debuginfo-2:2.11.7-1.el9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64"
},
"product_reference": "libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr-debuginfo-2:2.11.7-1.el9.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686"
},
"product_reference": "libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le"
},
"product_reference": "libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr-debuginfo-2:2.11.7-1.el9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x"
},
"product_reference": "libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr-debuginfo-2:2.11.7-1.el9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64"
},
"product_reference": "libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr-devel-2:2.11.7-1.el9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64"
},
"product_reference": "libwinpr-devel-2:2.11.7-1.el9.aarch64",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr-devel-2:2.11.7-1.el9.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686"
},
"product_reference": "libwinpr-devel-2:2.11.7-1.el9.i686",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr-devel-2:2.11.7-1.el9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le"
},
"product_reference": "libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr-devel-2:2.11.7-1.el9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x"
},
"product_reference": "libwinpr-devel-2:2.11.7-1.el9.s390x",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr-devel-2:2.11.7-1.el9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
},
"product_reference": "libwinpr-devel-2:2.11.7-1.el9.x86_64",
"relates_to_product_reference": "AppStream-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-2:2.11.7-1.el9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64"
},
"product_reference": "freerdp-2:2.11.7-1.el9.aarch64",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-2:2.11.7-1.el9.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le"
},
"product_reference": "freerdp-2:2.11.7-1.el9.ppc64le",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-2:2.11.7-1.el9.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x"
},
"product_reference": "freerdp-2:2.11.7-1.el9.s390x",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-2:2.11.7-1.el9.src as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src"
},
"product_reference": "freerdp-2:2.11.7-1.el9.src",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-2:2.11.7-1.el9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64"
},
"product_reference": "freerdp-2:2.11.7-1.el9.x86_64",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-debuginfo-2:2.11.7-1.el9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64"
},
"product_reference": "freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-debuginfo-2:2.11.7-1.el9.i686 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686"
},
"product_reference": "freerdp-debuginfo-2:2.11.7-1.el9.i686",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-debuginfo-2:2.11.7-1.el9.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le"
},
"product_reference": "freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-debuginfo-2:2.11.7-1.el9.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x"
},
"product_reference": "freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-debuginfo-2:2.11.7-1.el9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64"
},
"product_reference": "freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-debugsource-2:2.11.7-1.el9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64"
},
"product_reference": "freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-debugsource-2:2.11.7-1.el9.i686 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686"
},
"product_reference": "freerdp-debugsource-2:2.11.7-1.el9.i686",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-debugsource-2:2.11.7-1.el9.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le"
},
"product_reference": "freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-debugsource-2:2.11.7-1.el9.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x"
},
"product_reference": "freerdp-debugsource-2:2.11.7-1.el9.s390x",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-debugsource-2:2.11.7-1.el9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64"
},
"product_reference": "freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-devel-2:2.11.7-1.el9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64"
},
"product_reference": "freerdp-devel-2:2.11.7-1.el9.aarch64",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-devel-2:2.11.7-1.el9.i686 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686"
},
"product_reference": "freerdp-devel-2:2.11.7-1.el9.i686",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-devel-2:2.11.7-1.el9.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le"
},
"product_reference": "freerdp-devel-2:2.11.7-1.el9.ppc64le",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-devel-2:2.11.7-1.el9.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x"
},
"product_reference": "freerdp-devel-2:2.11.7-1.el9.s390x",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-devel-2:2.11.7-1.el9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64"
},
"product_reference": "freerdp-devel-2:2.11.7-1.el9.x86_64",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-libs-2:2.11.7-1.el9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64"
},
"product_reference": "freerdp-libs-2:2.11.7-1.el9.aarch64",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-libs-2:2.11.7-1.el9.i686 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686"
},
"product_reference": "freerdp-libs-2:2.11.7-1.el9.i686",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-libs-2:2.11.7-1.el9.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le"
},
"product_reference": "freerdp-libs-2:2.11.7-1.el9.ppc64le",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-libs-2:2.11.7-1.el9.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x"
},
"product_reference": "freerdp-libs-2:2.11.7-1.el9.s390x",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-libs-2:2.11.7-1.el9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64"
},
"product_reference": "freerdp-libs-2:2.11.7-1.el9.x86_64",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64"
},
"product_reference": "freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.i686 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686"
},
"product_reference": "freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le"
},
"product_reference": "freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x"
},
"product_reference": "freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64"
},
"product_reference": "freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr-2:2.11.7-1.el9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64"
},
"product_reference": "libwinpr-2:2.11.7-1.el9.aarch64",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr-2:2.11.7-1.el9.i686 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686"
},
"product_reference": "libwinpr-2:2.11.7-1.el9.i686",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr-2:2.11.7-1.el9.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le"
},
"product_reference": "libwinpr-2:2.11.7-1.el9.ppc64le",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr-2:2.11.7-1.el9.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x"
},
"product_reference": "libwinpr-2:2.11.7-1.el9.s390x",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr-2:2.11.7-1.el9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64"
},
"product_reference": "libwinpr-2:2.11.7-1.el9.x86_64",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr-debuginfo-2:2.11.7-1.el9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64"
},
"product_reference": "libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr-debuginfo-2:2.11.7-1.el9.i686 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686"
},
"product_reference": "libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le"
},
"product_reference": "libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr-debuginfo-2:2.11.7-1.el9.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x"
},
"product_reference": "libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr-debuginfo-2:2.11.7-1.el9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64"
},
"product_reference": "libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr-devel-2:2.11.7-1.el9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64"
},
"product_reference": "libwinpr-devel-2:2.11.7-1.el9.aarch64",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr-devel-2:2.11.7-1.el9.i686 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686"
},
"product_reference": "libwinpr-devel-2:2.11.7-1.el9.i686",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr-devel-2:2.11.7-1.el9.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le"
},
"product_reference": "libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr-devel-2:2.11.7-1.el9.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x"
},
"product_reference": "libwinpr-devel-2:2.11.7-1.el9.s390x",
"relates_to_product_reference": "CRB-9.5.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr-devel-2:2.11.7-1.el9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
},
"product_reference": "libwinpr-devel-2:2.11.7-1.el9.x86_64",
"relates_to_product_reference": "CRB-9.5.0.GA"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-22211",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2024-01-22T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2259483"
}
],
"notes": [
{
"category": "description",
"text": "FreeRDP is a collection of remote desktop protocol library and client software that is both free and open source. An integer overflow within freerdp_bitmap_planar_context_reset results in a heap-buffer overflow. This impacts clients built on FreeRDP. However, server implementations and proxies based on FreeRDP are unaffected. A malevolent server could create a RDPGFX_RESET_GRAPHICS_PDU to allocate buffers that are too small, potentially causing subsequent out-of-bounds reads/writes. It\u0027s important to note that data extraction over the network is not feasible; these buffers are utilized solely for displaying images.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "freerdp: Integer Overflow leading to Heap Overflow in freerdp_bitmap_planar_context_reset",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in FreeRDP, resulting from an integer overflow in certain versions, poses a low severity risk due to several mitigating factors. Firstly, it primarily affects FreeRDP-based clients, while server implementations and proxies remain unaffected. Additionally, the potential for exploitation is limited as it requires interaction with a malicious server, and data extraction over the network is not feasible; the vulnerability pertains solely to image display buffers.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-22211"
},
{
"category": "external",
"summary": "RHBZ#2259483",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2259483"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-22211",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-22211"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-22211",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-22211"
},
{
"category": "external",
"summary": "https://github.com/FreeRDP/FreeRDP/commit/939e922936e9c3ae8fc204968645e5e7563a2fff",
"url": "https://github.com/FreeRDP/FreeRDP/commit/939e922936e9c3ae8fc204968645e5e7563a2fff"
},
{
"category": "external",
"summary": "https://github.com/FreeRDP/FreeRDP/commit/aeac3040cc99eeaff1e1171a822114c857b9dca9",
"url": "https://github.com/FreeRDP/FreeRDP/commit/aeac3040cc99eeaff1e1171a822114c857b9dca9"
},
{
"category": "external",
"summary": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-rjhp-44rv-7v59",
"url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-rjhp-44rv-7v59"
}
],
"release_date": "2024-01-19T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-12T09:36:13+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:9092"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 3.7,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "freerdp: Integer Overflow leading to Heap Overflow in freerdp_bitmap_planar_context_reset"
},
{
"cve": "CVE-2024-32039",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2024-04-23T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2276723"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in FreeRDP-based clients. Affected versions of FreeRDP are vulnerable to an integer overflow and out-of-bounds write. This issue occurs when the sum of the `runLengthFactor` and `pixelIndex` values become large enough to overflow the uint32 type and bypass an error check when clearing residual data.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "freerdp: Integer overflow \u0026 OutOfBound Write in clear_decompress_residual_data",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-32039"
},
{
"category": "external",
"summary": "RHBZ#2276723",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276723"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-32039",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32039"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32039",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32039"
},
{
"category": "external",
"summary": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-q5h8-7j42-j4r9",
"url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-q5h8-7j42-j4r9"
}
],
"release_date": "2024-04-22T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-12T09:36:13+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:9092"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "freerdp: Integer overflow \u0026 OutOfBound Write in clear_decompress_residual_data"
},
{
"cve": "CVE-2024-32040",
"cwe": {
"id": "CWE-191",
"name": "Integer Underflow (Wrap or Wraparound)"
},
"discovery_date": "2024-04-23T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2276724"
}
],
"notes": [
{
"category": "description",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients that use a version of FreeRDP prior to 3.5.0 or 2.11.6 and have connections to servers using the `NSC` codec are vulnerable to integer underflow. Versions 3.5.0 and 2.11.6 patch the issue. As a workaround, do not use the NSC codec (e.g. use `-nsc`).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "freerdp: integer underflow in nsc_rle_decode",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-32040"
},
{
"category": "external",
"summary": "RHBZ#2276724",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276724"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-32040",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32040"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32040",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32040"
},
{
"category": "external",
"summary": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-23c5-cp23-h2h5",
"url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-23c5-cp23-h2h5"
}
],
"release_date": "2024-04-22T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-12T09:36:13+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:9092"
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "freerdp: integer underflow in nsc_rle_decode"
},
{
"cve": "CVE-2024-32041",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2024-04-23T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2276725"
}
],
"notes": [
{
"category": "description",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients that use a version of FreeRDP prior to 3.5.0 or 2.11.6 are vulnerable to out-of-bounds read. Versions 3.5.0 and 2.11.6 patch the issue. As a workaround, deactivate `/gfx` (on by default, set `/bpp` or `/rfx` options instead.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "freerdp: OutOfBound Read in zgfx_decompress_segment",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-32041"
},
{
"category": "external",
"summary": "RHBZ#2276725",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276725"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-32041",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32041"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32041",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32041"
},
{
"category": "external",
"summary": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-5r4p-mfx2-m44r",
"url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-5r4p-mfx2-m44r"
}
],
"release_date": "2024-04-22T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-12T09:36:13+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:9092"
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "freerdp: OutOfBound Read in zgfx_decompress_segment"
},
{
"cve": "CVE-2024-32458",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2024-04-23T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2276726"
}
],
"notes": [
{
"category": "description",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients that use a version of FreeRDP prior to 3.5.0 or 2.11.6 are vulnerable to out-of-bounds read. Versions 3.5.0 and 2.11.6 patch the issue. As a workaround, use `/gfx` or `/rfx` modes (on by default, require server side support).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "freerdp: OutOfBound Read in planar_skip_plane_rle",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-32458"
},
{
"category": "external",
"summary": "RHBZ#2276726",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276726"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-32458",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32458"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32458",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32458"
},
{
"category": "external",
"summary": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vvr6-h646-mp4p",
"url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vvr6-h646-mp4p"
}
],
"release_date": "2024-04-22T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-12T09:36:13+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:9092"
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "freerdp: OutOfBound Read in planar_skip_plane_rle"
},
{
"cve": "CVE-2024-32459",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2024-04-23T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2276721"
}
],
"notes": [
{
"category": "description",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients and servers that use a version of FreeRDP prior to 3.5.0 or 2.11.6 are vulnerable to out-of-bounds read. Versions 3.5.0 and 2.11.6 patch the issue. No known workarounds are available.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "freerdp: out-of-bounds read in ncrush_decompress",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-32459"
},
{
"category": "external",
"summary": "RHBZ#2276721",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276721"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-32459",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32459"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32459",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32459"
},
{
"category": "external",
"summary": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-cp4q-p737-rmw9",
"url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-cp4q-p737-rmw9"
}
],
"release_date": "2024-04-22T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-12T09:36:13+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:9092"
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "freerdp: out-of-bounds read in ncrush_decompress"
},
{
"cve": "CVE-2024-32460",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2024-04-23T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2276722"
}
],
"notes": [
{
"category": "description",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based based clients using `/bpp:32` legacy `GDI` drawing path with a version of FreeRDP prior to 3.5.0 or 2.11.6 are vulnerable to out-of-bounds read. Versions 3.5.0 and 2.11.6 patch the issue. As a workaround, use modern drawing paths (e.g. `/rfx` or `/gfx` options). The workaround requires server side support.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "freerdp: OutOfBound Read in interleaved_decompress",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-32460"
},
{
"category": "external",
"summary": "RHBZ#2276722",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276722"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-32460",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32460"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32460",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32460"
},
{
"category": "external",
"summary": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-4rr8-gr65-vqrr",
"url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-4rr8-gr65-vqrr"
}
],
"release_date": "2024-04-22T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-12T09:36:13+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:9092"
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "freerdp: OutOfBound Read in interleaved_decompress"
},
{
"cve": "CVE-2024-32658",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2024-04-24T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2276961"
}
],
"notes": [
{
"category": "description",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients prior to version 3.5.1 are vulnerable to out-of-bounds read. Version 3.5.1 contains a patch for the issue. No known workarounds are available.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "FreeRDP: ExtractRunLengthRegular* out of bound read",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-32658"
},
{
"category": "external",
"summary": "RHBZ#2276961",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276961"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-32658",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32658"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32658",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32658"
},
{
"category": "external",
"summary": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vpv3-m3m9-4c2v",
"url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vpv3-m3m9-4c2v"
}
],
"release_date": "2024-04-23T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-12T09:36:13+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:9092"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "FreeRDP: ExtractRunLengthRegular* out of bound read"
},
{
"cve": "CVE-2024-32659",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2024-04-24T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2276970"
}
],
"notes": [
{
"category": "description",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients prior to version 3.5.1 are vulnerable to out-of-bounds read if `((nWidth == 0) and (nHeight == 0))`. Version 3.5.1 contains a patch for the issue. No known workarounds are available.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "freerdp: freerdp_image_copy out of bound read",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-32659"
},
{
"category": "external",
"summary": "RHBZ#2276970",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276970"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-32659",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32659"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32659",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32659"
},
{
"category": "external",
"summary": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-8jgr-7r33-x87w",
"url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-8jgr-7r33-x87w"
}
],
"release_date": "2024-04-23T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-12T09:36:13+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:9092"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "freerdp: freerdp_image_copy out of bound read"
},
{
"cve": "CVE-2024-32660",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2024-04-24T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2276968"
}
],
"notes": [
{
"category": "description",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.5.1, a malicious server can crash the FreeRDP client by sending invalid huge allocation size. Version 3.5.1 contains a patch for the issue. No known workarounds are available.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "freerdp: zgfx_decompress out of memory",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-32660"
},
{
"category": "external",
"summary": "RHBZ#2276968",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276968"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-32660",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32660"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32660",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32660"
},
{
"category": "external",
"summary": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-mxv6-2cw6-m3mx",
"url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-mxv6-2cw6-m3mx"
}
],
"release_date": "2024-04-23T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-12T09:36:13+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:9092"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "freerdp: zgfx_decompress out of memory"
},
{
"cve": "CVE-2024-32661",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"discovery_date": "2024-04-24T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2276971"
}
],
"notes": [
{
"category": "description",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients prior to version 3.5.1 are vulnerable to a possible `NULL` access and crash. Version 3.5.1 contains a patch for the issue. No known workarounds are available.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "freerdp: rdp_write_logon_info_v1 NULL access",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-32661"
},
{
"category": "external",
"summary": "RHBZ#2276971",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276971"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-32661",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32661"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32661",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32661"
},
{
"category": "external",
"summary": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-p5m5-342g-pv9m",
"url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-p5m5-342g-pv9m"
}
],
"release_date": "2024-04-23T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-12T09:36:13+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:9092"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "freerdp: rdp_write_logon_info_v1 NULL access"
},
{
"cve": "CVE-2024-32662",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2024-04-24T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2276804"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in FreeRDP-based clients. Affected versions of FreeRDP are vulnerable to an out-of-bounds read. This issue occurs when the `WCHAR` string is read with twice the size it has and converted to `UTF-8`, `base64` decoded. The string is only used to compare against the redirection server certificate.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "freerdp: out-of-bounds read",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-32662"
},
{
"category": "external",
"summary": "RHBZ#2276804",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276804"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-32662",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32662"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32662",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32662"
},
{
"category": "external",
"summary": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vffh-j6hh-95f4",
"url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vffh-j6hh-95f4"
}
],
"release_date": "2024-04-23T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-12T09:36:13+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:9092"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
"CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
"CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "freerdp: out-of-bounds read"
}
]
}
CNVD-2024-23309
Vulnerability from cnvd - Published: 2024-05-23
VLAI Severity ?
Title
FreeRDP ExtractRunLengthRegular*函数存在内存越界读取漏洞
Description
FreeRDP是一款实现远程桌面协议的免费软件,它主要用于远程连接和管理Windows服务器。
FreeRDP在3.5.1之前的版本存在内存越界读取漏洞。该漏洞产生的原因是程序未能正确处理ExtractRunLengthRegular*函数中的内存读取操作。攻击者可利用该漏洞导致服务中断或数据泄露。
Severity
高
Patch Name
FreeRDP ExtractRunLengthRegular*函数存在内存越界读取漏洞的补丁
Patch Description
FreeRDP是一款实现远程桌面协议的免费软件,它主要用于远程连接和管理Windows服务器。
FreeRDP在3.5.1之前的版本存在内存越界读取漏洞。该漏洞产生的原因是程序未能正确处理ExtractRunLengthRegular*函数中的内存读取操作。攻击者可利用该漏洞导致服务中断或数据泄露。目前,供应商发布了安全公告及相关补丁信息,修复了此漏洞。
Formal description
目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: https://www.freerdp.com/
Reference
https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vpv3-m3m9-4c2v
Impacted products
| Name | FreeRDP FreeRDP <3.5.1 |
|---|
{
"cves": {
"cve": {
"cveNumber": "CVE-2024-32658",
"cveUrl": "https://nvd.nist.gov/vuln/detail/CVE-2024-32658"
}
},
"description": "FreeRDP\u662f\u4e00\u6b3e\u5b9e\u73b0\u8fdc\u7a0b\u684c\u9762\u534f\u8bae\u7684\u514d\u8d39\u8f6f\u4ef6\uff0c\u5b83\u4e3b\u8981\u7528\u4e8e\u8fdc\u7a0b\u8fde\u63a5\u548c\u7ba1\u7406Windows\u670d\u52a1\u5668\u3002\n\nFreeRDP\u57283.5.1\u4e4b\u524d\u7684\u7248\u672c\u5b58\u5728\u5185\u5b58\u8d8a\u754c\u8bfb\u53d6\u6f0f\u6d1e\u3002\u8be5\u6f0f\u6d1e\u4ea7\u751f\u7684\u539f\u56e0\u662f\u7a0b\u5e8f\u672a\u80fd\u6b63\u786e\u5904\u7406ExtractRunLengthRegular*\u51fd\u6570\u4e2d\u7684\u5185\u5b58\u8bfb\u53d6\u64cd\u4f5c\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u5bfc\u81f4\u670d\u52a1\u4e2d\u65ad\u6216\u6570\u636e\u6cc4\u9732\u3002",
"formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u7ecf\u53d1\u5e03\u4e86\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u8fd9\u4e2a\u5b89\u5168\u95ee\u9898\uff0c\u8bf7\u5230\u5382\u5546\u7684\u4e3b\u9875\u4e0b\u8f7d\uff1a\r\nhttps://www.freerdp.com/",
"isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
"number": "CNVD-2024-23309",
"openTime": "2024-05-23",
"patchDescription": "FreeRDP\u662f\u4e00\u6b3e\u5b9e\u73b0\u8fdc\u7a0b\u684c\u9762\u534f\u8bae\u7684\u514d\u8d39\u8f6f\u4ef6\uff0c\u5b83\u4e3b\u8981\u7528\u4e8e\u8fdc\u7a0b\u8fde\u63a5\u548c\u7ba1\u7406Windows\u670d\u52a1\u5668\u3002\r\n\r\nFreeRDP\u57283.5.1\u4e4b\u524d\u7684\u7248\u672c\u5b58\u5728\u5185\u5b58\u8d8a\u754c\u8bfb\u53d6\u6f0f\u6d1e\u3002\u8be5\u6f0f\u6d1e\u4ea7\u751f\u7684\u539f\u56e0\u662f\u7a0b\u5e8f\u672a\u80fd\u6b63\u786e\u5904\u7406ExtractRunLengthRegular*\u51fd\u6570\u4e2d\u7684\u5185\u5b58\u8bfb\u53d6\u64cd\u4f5c\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u5bfc\u81f4\u670d\u52a1\u4e2d\u65ad\u6216\u6570\u636e\u6cc4\u9732\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
"patchName": "FreeRDP ExtractRunLengthRegular*\u51fd\u6570\u5b58\u5728\u5185\u5b58\u8d8a\u754c\u8bfb\u53d6\u6f0f\u6d1e\u7684\u8865\u4e01",
"products": {
"product": "FreeRDP FreeRDP \u003c3.5.1"
},
"referenceLink": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vpv3-m3m9-4c2v",
"serverity": "\u9ad8",
"submitTime": "2024-04-24",
"title": "FreeRDP ExtractRunLengthRegular*\u51fd\u6570\u5b58\u5728\u5185\u5b58\u8d8a\u754c\u8bfb\u53d6\u6f0f\u6d1e"
}
FKIE_CVE-2024-32658
Vulnerability from fkie_nvd - Published: 2024-04-23 18:15 - Updated: 2025-11-03 21:16
Severity ?
9.8 (Critical) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
9.8 (Critical) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
9.8 (Critical) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Summary
FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients prior to version 3.5.1 are vulnerable to out-of-bounds read. Version 3.5.1 contains a patch for the issue. No known workarounds are available.
References
| URL | Tags | ||
|---|---|---|---|
| security-advisories@github.com | https://github.com/FreeRDP/FreeRDP/commit/1a755d898ddc028cc818d0dd9d49d5acff4c44bf | Patch | |
| security-advisories@github.com | https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vpv3-m3m9-4c2v | Vendor Advisory | |
| security-advisories@github.com | https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5JL476WVJSIE7SBUKVJRVA6A52V2HOLZ/ | Third Party Advisory | |
| security-advisories@github.com | https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7SIS6NUNLUBOV4CPCSWKDE6T6C2W3WTR/ | Third Party Advisory | |
| security-advisories@github.com | https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PX3U6YPZQ7PEJBVKSBUOLWVH7DHROHY5/ | Third Party Advisory | |
| security-advisories@github.com | https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZKI4UISUXYNBPN4K6TIQKDRTIJ6CDCKJ/ | Third Party Advisory | |
| security-advisories@github.com | https://oss-fuzz.com/testcase-detail/4852534033317888 | Permissions Required | |
| security-advisories@github.com | https://oss-fuzz.com/testcase-detail/6196819496337408 | Permissions Required | |
| af854a3a-2127-422b-91ae-364da2661108 | https://github.com/FreeRDP/FreeRDP/commit/1a755d898ddc028cc818d0dd9d49d5acff4c44bf | Patch | |
| af854a3a-2127-422b-91ae-364da2661108 | https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vpv3-m3m9-4c2v | Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://lists.debian.org/debian-lts-announce/2025/02/msg00016.html | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5JL476WVJSIE7SBUKVJRVA6A52V2HOLZ/ | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7SIS6NUNLUBOV4CPCSWKDE6T6C2W3WTR/ | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PX3U6YPZQ7PEJBVKSBUOLWVH7DHROHY5/ | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZKI4UISUXYNBPN4K6TIQKDRTIJ6CDCKJ/ | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://oss-fuzz.com/testcase-detail/4852534033317888 | Permissions Required | |
| af854a3a-2127-422b-91ae-364da2661108 | https://oss-fuzz.com/testcase-detail/6196819496337408 | Permissions Required |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| freerdp | freerdp | * | |
| freerdp | freerdp | * | |
| fedoraproject | fedora | 38 | |
| fedoraproject | fedora | 39 | |
| fedoraproject | fedora | 40 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:freerdp:freerdp:*:*:*:*:*:*:*:*",
"matchCriteriaId": "5E541F36-8F9A-475F-9501-180852C800A4",
"versionEndExcluding": "2.11.7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:freerdp:freerdp:*:*:*:*:*:*:*:*",
"matchCriteriaId": "1465A966-298D-4E3D-9011-7FB98B75B2E2",
"versionEndExcluding": "3.5.1",
"versionStartIncluding": "3.0.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:fedoraproject:fedora:38:*:*:*:*:*:*:*",
"matchCriteriaId": "CC559B26-5DFC-4B7A-A27C-B77DE755DFF9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fedoraproject:fedora:39:*:*:*:*:*:*:*",
"matchCriteriaId": "B8EDB836-4E6A-4B71-B9B2-AA3E03E0F646",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fedoraproject:fedora:40:*:*:*:*:*:*:*",
"matchCriteriaId": "CA277A6C-83EC-4536-9125-97B84C4FAF59",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients prior to version 3.5.1 are vulnerable to out-of-bounds read. Version 3.5.1 contains a patch for the issue. No known workarounds are available."
},
{
"lang": "es",
"value": "FreeRDP es una implementaci\u00f3n gratuita del protocolo de escritorio remoto. Los clientes basados en FreeRDP anteriores a la versi\u00f3n 3.5.1 son vulnerables a lecturas fuera de los l\u00edmites. La versi\u00f3n 3.5.1 contiene un parche para el problema. No hay workarounds disponibles."
}
],
"id": "CVE-2024-32658",
"lastModified": "2025-11-03T21:16:10.507",
"metrics": {
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9,
"source": "security-advisories@github.com",
"type": "Secondary"
},
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2024-04-23T18:15:15.000",
"references": [
{
"source": "security-advisories@github.com",
"tags": [
"Patch"
],
"url": "https://github.com/FreeRDP/FreeRDP/commit/1a755d898ddc028cc818d0dd9d49d5acff4c44bf"
},
{
"source": "security-advisories@github.com",
"tags": [
"Vendor Advisory"
],
"url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vpv3-m3m9-4c2v"
},
{
"source": "security-advisories@github.com",
"tags": [
"Third Party Advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5JL476WVJSIE7SBUKVJRVA6A52V2HOLZ/"
},
{
"source": "security-advisories@github.com",
"tags": [
"Third Party Advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7SIS6NUNLUBOV4CPCSWKDE6T6C2W3WTR/"
},
{
"source": "security-advisories@github.com",
"tags": [
"Third Party Advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PX3U6YPZQ7PEJBVKSBUOLWVH7DHROHY5/"
},
{
"source": "security-advisories@github.com",
"tags": [
"Third Party Advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZKI4UISUXYNBPN4K6TIQKDRTIJ6CDCKJ/"
},
{
"source": "security-advisories@github.com",
"tags": [
"Permissions Required"
],
"url": "https://oss-fuzz.com/testcase-detail/4852534033317888"
},
{
"source": "security-advisories@github.com",
"tags": [
"Permissions Required"
],
"url": "https://oss-fuzz.com/testcase-detail/6196819496337408"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch"
],
"url": "https://github.com/FreeRDP/FreeRDP/commit/1a755d898ddc028cc818d0dd9d49d5acff4c44bf"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vpv3-m3m9-4c2v"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.debian.org/debian-lts-announce/2025/02/msg00016.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5JL476WVJSIE7SBUKVJRVA6A52V2HOLZ/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7SIS6NUNLUBOV4CPCSWKDE6T6C2W3WTR/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PX3U6YPZQ7PEJBVKSBUOLWVH7DHROHY5/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZKI4UISUXYNBPN4K6TIQKDRTIJ6CDCKJ/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Permissions Required"
],
"url": "https://oss-fuzz.com/testcase-detail/4852534033317888"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Permissions Required"
],
"url": "https://oss-fuzz.com/testcase-detail/6196819496337408"
}
],
"sourceIdentifier": "security-advisories@github.com",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-125"
}
],
"source": "security-advisories@github.com",
"type": "Secondary"
},
{
"description": [
{
"lang": "en",
"value": "CWE-125"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
GSD-2024-32658
Vulnerability from gsd - Updated: 2024-04-17 05:01Details
FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients prior to version 3.5.1 are vulnerable to out-of-bounds read. Version 3.5.1 contains a patch for the issue. No known workarounds are available.
Aliases
{
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2024-32658"
],
"details": "FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients prior to version 3.5.1 are vulnerable to out-of-bounds read. Version 3.5.1 contains a patch for the issue. No known workarounds are available.",
"id": "GSD-2024-32658",
"modified": "2024-04-17T05:01:56.896503Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "security-advisories@github.com",
"ID": "CVE-2024-32658",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "FreeRDP",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "\u003c 3.5.1"
}
]
}
}
]
},
"vendor_name": "FreeRDP"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients prior to version 3.5.1 are vulnerable to out-of-bounds read. Version 3.5.1 contains a patch for the issue. No known workarounds are available."
}
]
},
"impact": {
"cvss": [
{
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"cweId": "CWE-125",
"lang": "eng",
"value": "CWE-125: Out-of-bounds Read"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vpv3-m3m9-4c2v",
"refsource": "MISC",
"url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vpv3-m3m9-4c2v"
},
{
"name": "https://github.com/FreeRDP/FreeRDP/commit/1a755d898ddc028cc818d0dd9d49d5acff4c44bf",
"refsource": "MISC",
"url": "https://github.com/FreeRDP/FreeRDP/commit/1a755d898ddc028cc818d0dd9d49d5acff4c44bf"
},
{
"name": "https://oss-fuzz.com/testcase-detail/4852534033317888",
"refsource": "MISC",
"url": "https://oss-fuzz.com/testcase-detail/4852534033317888"
},
{
"name": "https://oss-fuzz.com/testcase-detail/6196819496337408",
"refsource": "MISC",
"url": "https://oss-fuzz.com/testcase-detail/6196819496337408"
}
]
},
"source": {
"advisory": "GHSA-vpv3-m3m9-4c2v",
"discovery": "UNKNOWN"
}
},
"nvd.nist.gov": {
"cve": {
"descriptions": [
{
"lang": "en",
"value": "FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients prior to version 3.5.1 are vulnerable to out-of-bounds read. Version 3.5.1 contains a patch for the issue. No known workarounds are available."
},
{
"lang": "es",
"value": "FreeRDP es una implementaci\u00f3n gratuita del protocolo de escritorio remoto. Los clientes basados en FreeRDP anteriores a la versi\u00f3n 3.5.1 son vulnerables a lecturas fuera de los l\u00edmites. La versi\u00f3n 3.5.1 contiene un parche para el problema. No hay workarounds disponibles."
}
],
"id": "CVE-2024-32658",
"lastModified": "2024-04-24T13:39:42.883",
"metrics": {
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9,
"source": "security-advisories@github.com",
"type": "Secondary"
}
]
},
"published": "2024-04-23T18:15:15.000",
"references": [
{
"source": "security-advisories@github.com",
"url": "https://github.com/FreeRDP/FreeRDP/commit/1a755d898ddc028cc818d0dd9d49d5acff4c44bf"
},
{
"source": "security-advisories@github.com",
"url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vpv3-m3m9-4c2v"
},
{
"source": "security-advisories@github.com",
"url": "https://oss-fuzz.com/testcase-detail/4852534033317888"
},
{
"source": "security-advisories@github.com",
"url": "https://oss-fuzz.com/testcase-detail/6196819496337408"
}
],
"sourceIdentifier": "security-advisories@github.com",
"vulnStatus": "Awaiting Analysis",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-125"
}
],
"source": "security-advisories@github.com",
"type": "Secondary"
}
]
}
}
}
}
CVE-2024-32658
Vulnerability from fstec - Published: 23.04.2024
VLAI Severity ?
Title
Уязвимость RDP-клиента FreeRDP, связанная с чтением за границами памяти, позволяющая нарушителю оказать воздействие на конфиденциальность, целостность и доступность защищаемой информации
Description
Уязвимость RDP-клиента FreeRDP связана с чтением за границами памяти. Эксплуатация уязвимости может позволить нарушителю, действующему удаленно, оказать воздействие на конфиденциальность, целостность и доступность защищаемой информации
Severity ?
Vendor
Red Hat Inc., Сообщество свободного программного обеспечения, Canonical Ltd., ООО «Ред Софт», ООО «РусБИТех-Астра», АО «ИВК», Free Software Foundation, Inc., АО "НППКТ", ООО «НЦПР»
Software Name
Red Hat Enterprise Linux, Debian GNU/Linux, Ubuntu, РЕД ОС (запись в едином реестре российских программ №3751), Astra Linux Special Edition (запись в едином реестре российских программ №369), Альт 8 СП (запись в едином реестре российских программ №4305), FreeRDP, ОСОН ОСнова Оnyx (запись в едином реестре российских программ №5913), МСВСфера
Software Version
8 (Red Hat Enterprise Linux), 10 (Debian GNU/Linux), 20.04 LTS (Ubuntu), 11 (Debian GNU/Linux), 12 (Debian GNU/Linux), 7.3 (РЕД ОС), 1.7 (Astra Linux Special Edition), - (Альт 8 СП), 22.04 LTS (Ubuntu), 9 (Red Hat Enterprise Linux), 4.7 (Astra Linux Special Edition), 23.10 (Ubuntu), от 3.5.0 до 3.5.1 (FreeRDP), 24.04 LTS (Ubuntu), от 2.11.6 до 2.11.7 (FreeRDP), до 2.12 (ОСОН ОСнова Оnyx), 9.5 (МСВСфера)
Possible Mitigations
Установка обновлений из доверенных источников.
В связи со сложившейся обстановкой и введенными санкциями против Российской Федерации рекомендуется устанавливать обновления программного обеспечения только после оценки всех сопутствующих рисков.
Использование рекомендаций:
Для FreeRDP:
https://github.com/FreeRDP/FreeRDP/commit/1a755d898ddc028cc818d0dd9d49d5acff4c44bf
https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vpv3-m3m9-4c2v
Для Debian GNU/Linux:
https://security-tracker.debian.org/tracker/CVE-2024-32658
Для программных продуктов Red Hat Inc.:
https://access.redhat.com/security/cve/cve-2024-32658
Для Ubuntu:
https://ubuntu.com/security/notices/USN-6759-1
https://ubuntu.com/security/notices/USN-6752-1
Для ОС Astra Linux:
обновить пакет freerdp2 до 2.11.7-0astra2 или более высокой версии, используя рекомендации производителя: https://wiki.astralinux.ru/astra-linux-se17-bulletin-2024-0830SE17
Для Astra Linux Special Edition 4.7 для архитектуры ARM:
обновить пакет freerdp2 до 2.11.7-0astra2 или более высокой версии, используя рекомендации производителя: https://wiki.astralinux.ru/astra-linux-se47-bulletin-2024-1031SE47
Для РедОС: http://repo.red-soft.ru/redos/7.3c/x86_64/updates/
Обновление программного обеспечения freerdp2 до версии 2.11.7+repack2-4osnova2u1
Для ОС Альт 8 СП: установка обновления из публичного репозитория программного средства: https://altsp.su/obnovleniya-bezopasnosti/
Для МСВСфера: https://errata.msvsphere-os.ru/definition/9/INFCSA-2024:9092?lang=ru
Reference
https://github.com/FreeRDP/FreeRDP/commit/1a755d898ddc028cc818d0dd9d49d5acff4c44bf
https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vpv3-m3m9-4c2v
https://oss-fuzz.com/testcase-detail/4852534033317888
https://oss-fuzz.com/testcase-detail/6196819496337408
https://vuldb.com/?id.261815
https://security-tracker.debian.org/tracker/CVE-2024-32658
https://access.redhat.com/security/cve/cve-2024-32658
https://ubuntu.com/security/notices/USN-6759-1
https://ubuntu.com/security/notices/USN-6752-1
https://wiki.astralinux.ru/astra-linux-se17-bulletin-2024-0830SE17
https://wiki.astralinux.ru/astra-linux-se47-bulletin-2024-1031SE47
http://repo.red-soft.ru/redos/7.3c/x86_64/updates/
https://поддержка.нппкт.рф/bin/view/ОСнова/Обновления/2.12/
https://altsp.su/obnovleniya-bezopasnosti/
https://errata.msvsphere-os.ru/definition/9/INFCSA-2024:9092?lang=ru
CWE
CWE-125
{
"CVSS 2.0": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
"CVSS 3.0": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"CVSS 4.0": null,
"remediation_\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": null,
"remediation_\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435": null,
"\u0412\u0435\u043d\u0434\u043e\u0440 \u041f\u041e": "Red Hat Inc., \u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f, Canonical Ltd., \u041e\u041e\u041e \u00ab\u0420\u0435\u0434 \u0421\u043e\u0444\u0442\u00bb, \u041e\u041e\u041e \u00ab\u0420\u0443\u0441\u0411\u0418\u0422\u0435\u0445-\u0410\u0441\u0442\u0440\u0430\u00bb, \u0410\u041e \u00ab\u0418\u0412\u041a\u00bb, Free Software Foundation, Inc., \u0410\u041e \"\u041d\u041f\u041f\u041a\u0422\", \u041e\u041e\u041e \u00ab\u041d\u0426\u041f\u0420\u00bb",
"\u0412\u0435\u0440\u0441\u0438\u044f \u041f\u041e": "8 (Red Hat Enterprise Linux), 10 (Debian GNU/Linux), 20.04 LTS (Ubuntu), 11 (Debian GNU/Linux), 12 (Debian GNU/Linux), 7.3 (\u0420\u0415\u0414 \u041e\u0421), 1.7 (Astra Linux Special Edition), - (\u0410\u043b\u044c\u0442 8 \u0421\u041f), 22.04 LTS (Ubuntu), 9 (Red Hat Enterprise Linux), 4.7 (Astra Linux Special Edition), 23.10 (Ubuntu), \u043e\u0442 3.5.0 \u0434\u043e 3.5.1 (FreeRDP), 24.04 LTS (Ubuntu), \u043e\u0442 2.11.6 \u0434\u043e 2.11.7 (FreeRDP), \u0434\u043e 2.12 (\u041e\u0421\u041e\u041d \u041e\u0421\u043d\u043e\u0432\u0430 \u041enyx), 9.5 (\u041c\u0421\u0412\u0421\u0444\u0435\u0440\u0430)",
"\u0412\u043e\u0437\u043c\u043e\u0436\u043d\u044b\u0435 \u043c\u0435\u0440\u044b \u043f\u043e \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044e": "\u0423\u0441\u0442\u0430\u043d\u043e\u0432\u043a\u0430 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0439 \u0438\u0437 \u0434\u043e\u0432\u0435\u0440\u0435\u043d\u043d\u044b\u0445 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u043e\u0432.\n\u0412 \u0441\u0432\u044f\u0437\u0438 \u0441\u043e \u0441\u043b\u043e\u0436\u0438\u0432\u0448\u0435\u0439\u0441\u044f \u043e\u0431\u0441\u0442\u0430\u043d\u043e\u0432\u043a\u043e\u0439 \u0438 \u0432\u0432\u0435\u0434\u0435\u043d\u043d\u044b\u043c\u0438 \u0441\u0430\u043d\u043a\u0446\u0438\u044f\u043c\u0438 \u043f\u0440\u043e\u0442\u0438\u0432 \u0420\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u043e\u0439 \u0424\u0435\u0434\u0435\u0440\u0430\u0446\u0438\u0438 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0443\u0435\u0442\u0441\u044f \u0443\u0441\u0442\u0430\u043d\u0430\u0432\u043b\u0438\u0432\u0430\u0442\u044c \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f \u0442\u043e\u043b\u044c\u043a\u043e \u043f\u043e\u0441\u043b\u0435 \u043e\u0446\u0435\u043d\u043a\u0438 \u0432\u0441\u0435\u0445 \u0441\u043e\u043f\u0443\u0442\u0441\u0442\u0432\u0443\u044e\u0449\u0438\u0445 \u0440\u0438\u0441\u043a\u043e\u0432.\n\n\u0418\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439:\n\u0414\u043b\u044f FreeRDP:\nhttps://github.com/FreeRDP/FreeRDP/commit/1a755d898ddc028cc818d0dd9d49d5acff4c44bf\nhttps://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vpv3-m3m9-4c2v\n\n\u0414\u043b\u044f Debian GNU/Linux:\nhttps://security-tracker.debian.org/tracker/CVE-2024-32658\n\n\u0414\u043b\u044f \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u044b\u0445 \u043f\u0440\u043e\u0434\u0443\u043a\u0442\u043e\u0432 Red Hat Inc.:\nhttps://access.redhat.com/security/cve/cve-2024-32658\n\n\u0414\u043b\u044f Ubuntu:\nhttps://ubuntu.com/security/notices/USN-6759-1\nhttps://ubuntu.com/security/notices/USN-6752-1\n\n\u0414\u043b\u044f \u041e\u0421 Astra Linux:\n\u043e\u0431\u043d\u043e\u0432\u0438\u0442\u044c \u043f\u0430\u043a\u0435\u0442 freerdp2 \u0434\u043e 2.11.7-0astra2 \u0438\u043b\u0438 \u0431\u043e\u043b\u0435\u0435 \u0432\u044b\u0441\u043e\u043a\u043e\u0439 \u0432\u0435\u0440\u0441\u0438\u0438, \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u044f \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0438 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u044f: https://wiki.astralinux.ru/astra-linux-se17-bulletin-2024-0830SE17\n\n\u0414\u043b\u044f Astra Linux Special Edition 4.7 \u0434\u043b\u044f \u0430\u0440\u0445\u0438\u0442\u0435\u043a\u0442\u0443\u0440\u044b ARM:\n\u043e\u0431\u043d\u043e\u0432\u0438\u0442\u044c \u043f\u0430\u043a\u0435\u0442 freerdp2 \u0434\u043e 2.11.7-0astra2 \u0438\u043b\u0438 \u0431\u043e\u043b\u0435\u0435 \u0432\u044b\u0441\u043e\u043a\u043e\u0439 \u0432\u0435\u0440\u0441\u0438\u0438, \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u044f \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0438 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u044f: https://wiki.astralinux.ru/astra-linux-se47-bulletin-2024-1031SE47\n\n\u0414\u043b\u044f \u0420\u0435\u0434\u041e\u0421: http://repo.red-soft.ru/redos/7.3c/x86_64/updates/\n\n\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f freerdp2 \u0434\u043e \u0432\u0435\u0440\u0441\u0438\u0438 2.11.7+repack2-4osnova2u1\n\n\u0414\u043b\u044f \u041e\u0421 \u0410\u043b\u044c\u0442 8 \u0421\u041f: \u0443\u0441\u0442\u0430\u043d\u043e\u0432\u043a\u0430 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f \u0438\u0437 \u043f\u0443\u0431\u043b\u0438\u0447\u043d\u043e\u0433\u043e \u0440\u0435\u043f\u043e\u0437\u0438\u0442\u043e\u0440\u0438\u044f \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u0441\u0440\u0435\u0434\u0441\u0442\u0432\u0430: https://altsp.su/obnovleniya-bezopasnosti/\n\n\u0414\u043b\u044f \u041c\u0421\u0412\u0421\u0444\u0435\u0440\u0430: https://errata.msvsphere-os.ru/definition/9/INFCSA-2024:9092?lang=ru",
"\u0414\u0430\u0442\u0430 \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0438\u044f": "23.04.2024",
"\u0414\u0430\u0442\u0430 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0435\u0433\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f": "19.11.2025",
"\u0414\u0430\u0442\u0430 \u043f\u0443\u0431\u043b\u0438\u043a\u0430\u0446\u0438\u0438": "02.05.2024",
"\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": "BDU:2024-03401",
"\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440\u044b \u0434\u0440\u0443\u0433\u0438\u0445 \u0441\u0438\u0441\u0442\u0435\u043c \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "CVE-2024-32658",
"\u0418\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f \u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0430",
"\u041a\u043b\u0430\u0441\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u0434\u0430",
"\u041d\u0430\u0437\u0432\u0430\u043d\u0438\u0435 \u041f\u041e": "Red Hat Enterprise Linux, Debian GNU/Linux, Ubuntu, \u0420\u0415\u0414 \u041e\u0421 (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21163751), Astra Linux Special Edition (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u2116369), \u0410\u043b\u044c\u0442 8 \u0421\u041f (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21164305), FreeRDP, \u041e\u0421\u041e\u041d \u041e\u0421\u043d\u043e\u0432\u0430 \u041enyx (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21165913), \u041c\u0421\u0412\u0421\u0444\u0435\u0440\u0430",
"\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u041e\u0421 \u0438 \u0442\u0438\u043f \u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0439 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u044b": "Red Hat Inc. Red Hat Enterprise Linux 8 , \u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f Debian GNU/Linux 10 , Canonical Ltd. Ubuntu 20.04 LTS , \u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f Debian GNU/Linux 11 , \u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f Debian GNU/Linux 12 , \u041e\u041e\u041e \u00ab\u0420\u0435\u0434 \u0421\u043e\u0444\u0442\u00bb \u0420\u0415\u0414 \u041e\u0421 7.3 (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21163751), \u041e\u041e\u041e \u00ab\u0420\u0443\u0441\u0411\u0418\u0422\u0435\u0445-\u0410\u0441\u0442\u0440\u0430\u00bb Astra Linux Special Edition 1.7 (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u2116369), \u0410\u041e \u00ab\u0418\u0412\u041a\u00bb \u0410\u043b\u044c\u0442 8 \u0421\u041f - (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21164305), Canonical Ltd. Ubuntu 22.04 LTS , Red Hat Inc. Red Hat Enterprise Linux 9 , \u041e\u041e\u041e \u00ab\u0420\u0443\u0441\u0411\u0418\u0422\u0435\u0445-\u0410\u0441\u0442\u0440\u0430\u00bb Astra Linux Special Edition 4.7 ARM (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u2116369), Canonical Ltd. Ubuntu 23.10 , Canonical Ltd. Ubuntu 24.04 LTS , \u0410\u041e \"\u041d\u041f\u041f\u041a\u0422\" \u041e\u0421\u041e\u041d \u041e\u0421\u043d\u043e\u0432\u0430 \u041enyx \u0434\u043e 2.12 (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21165913), \u041e\u041e\u041e \u00ab\u041d\u0426\u041f\u0420\u00bb \u041c\u0421\u0412\u0421\u0444\u0435\u0440\u0430 9.5 ",
"\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c RDP-\u043a\u043b\u0438\u0435\u043d\u0442\u0430 FreeRDP, \u0441\u0432\u044f\u0437\u0430\u043d\u043d\u0430\u044f \u0441 \u0447\u0442\u0435\u043d\u0438\u0435\u043c \u0437\u0430 \u0433\u0440\u0430\u043d\u0438\u0446\u0430\u043c\u0438 \u043f\u0430\u043c\u044f\u0442\u0438, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u043e\u043a\u0430\u0437\u0430\u0442\u044c \u0432\u043e\u0437\u0434\u0435\u0439\u0441\u0442\u0432\u0438\u0435 \u043d\u0430 \u043a\u043e\u043d\u0444\u0438\u0434\u0435\u043d\u0446\u0438\u0430\u043b\u044c\u043d\u043e\u0441\u0442\u044c, \u0446\u0435\u043b\u043e\u0441\u0442\u043d\u043e\u0441\u0442\u044c \u0438 \u0434\u043e\u0441\u0442\u0443\u043f\u043d\u043e\u0441\u0442\u044c \u0437\u0430\u0449\u0438\u0449\u0430\u0435\u043c\u043e\u0439 \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0438",
"\u041d\u0430\u043b\u0438\u0447\u0438\u0435 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u0430": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
"\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "\u0427\u0442\u0435\u043d\u0438\u0435 \u0437\u0430 \u0433\u0440\u0430\u043d\u0438\u0446\u0430\u043c\u0438 \u0431\u0443\u0444\u0435\u0440\u0430 (CWE-125)",
"\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c RDP-\u043a\u043b\u0438\u0435\u043d\u0442\u0430 FreeRDP \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 \u0447\u0442\u0435\u043d\u0438\u0435\u043c \u0437\u0430 \u0433\u0440\u0430\u043d\u0438\u0446\u0430\u043c\u0438 \u043f\u0430\u043c\u044f\u0442\u0438. \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e, \u0434\u0435\u0439\u0441\u0442\u0432\u0443\u044e\u0449\u0435\u043c\u0443 \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e, \u043e\u043a\u0430\u0437\u0430\u0442\u044c \u0432\u043e\u0437\u0434\u0435\u0439\u0441\u0442\u0432\u0438\u0435 \u043d\u0430 \u043a\u043e\u043d\u0444\u0438\u0434\u0435\u043d\u0446\u0438\u0430\u043b\u044c\u043d\u043e\u0441\u0442\u044c, \u0446\u0435\u043b\u043e\u0441\u0442\u043d\u043e\u0441\u0442\u044c \u0438 \u0434\u043e\u0441\u0442\u0443\u043f\u043d\u043e\u0441\u0442\u044c \u0437\u0430\u0449\u0438\u0449\u0430\u0435\u043c\u043e\u0439 \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0438",
"\u041f\u043e\u0441\u043b\u0435\u0434\u0441\u0442\u0432\u0438\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": null,
"\u041f\u0440\u043e\u0447\u0430\u044f \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f": null,
"\u0421\u0432\u044f\u0437\u044c \u0441 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u0430\u043c\u0438 \u0418\u0411": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
"\u0421\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043d\u0430",
"\u0421\u043f\u043e\u0441\u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f": "\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f",
"\u0421\u043f\u043e\u0441\u043e\u0431 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438": "\u041c\u0430\u043d\u0438\u043f\u0443\u043b\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u0435 \u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u0430\u043c\u0438 \u0434\u0430\u043d\u043d\u044b\u0445",
"\u0421\u0441\u044b\u043b\u043a\u0438 \u043d\u0430 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u0438": "https://github.com/FreeRDP/FreeRDP/commit/1a755d898ddc028cc818d0dd9d49d5acff4c44bf\nhttps://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vpv3-m3m9-4c2v\nhttps://oss-fuzz.com/testcase-detail/4852534033317888\nhttps://oss-fuzz.com/testcase-detail/6196819496337408\nhttps://vuldb.com/?id.261815\nhttps://security-tracker.debian.org/tracker/CVE-2024-32658\nhttps://access.redhat.com/security/cve/cve-2024-32658\nhttps://ubuntu.com/security/notices/USN-6759-1\nhttps://ubuntu.com/security/notices/USN-6752-1\nhttps://wiki.astralinux.ru/astra-linux-se17-bulletin-2024-0830SE17\nhttps://wiki.astralinux.ru/astra-linux-se47-bulletin-2024-1031SE47\nhttp://repo.red-soft.ru/redos/7.3c/x86_64/updates/\nhttps://\u043f\u043e\u0434\u0434\u0435\u0440\u0436\u043a\u0430.\u043d\u043f\u043f\u043a\u0442.\u0440\u0444/bin/view/\u041e\u0421\u043d\u043e\u0432\u0430/\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f/2.12/\nhttps://altsp.su/obnovleniya-bezopasnosti/\nhttps://errata.msvsphere-os.ru/definition/9/INFCSA-2024:9092?lang=ru",
"\u0421\u0442\u0430\u0442\u0443\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041f\u043e\u0434\u0442\u0432\u0435\u0440\u0436\u0434\u0435\u043d\u0430 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u0435\u043c",
"\u0422\u0438\u043f \u041f\u041e": "\u041e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u0430\u044f \u0441\u0438\u0441\u0442\u0435\u043c\u0430, \u041f\u0440\u0438\u043a\u043b\u0430\u0434\u043d\u043e\u0435 \u041f\u041e \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u043e\u043d\u043d\u044b\u0445 \u0441\u0438\u0441\u0442\u0435\u043c",
"\u0422\u0438\u043f \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "CWE-125",
"\u0423\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 2.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 10)\n\u041a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 3.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 9,8)"
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…