OPENSUSE-SU-2026:10633-1
Vulnerability from csaf_opensuse - Published: 2026-04-28 00:00 - Updated: 2026-04-28 00:00Summary
freerdp-3.24.2-1.1 on GA media
Severity
Moderate
Notes
Title of the patch: freerdp-3.24.2-1.1 on GA media
Description of the patch: These are all security issues fixed in the freerdp-3.24.2-1.1 package on the GA media of openSUSE Tumbleweed.
Patchnames: openSUSE-Tumbleweed-2026-10633
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.5 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.9 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.5 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
References
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "freerdp-3.24.2-1.1 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the freerdp-3.24.2-1.1 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2026-10633",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2026_10633-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-33952 page",
"url": "https://www.suse.com/security/cve/CVE-2026-33952/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-33977 page",
"url": "https://www.suse.com/security/cve/CVE-2026-33977/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-33982 page",
"url": "https://www.suse.com/security/cve/CVE-2026-33982/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-33983 page",
"url": "https://www.suse.com/security/cve/CVE-2026-33983/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-33984 page",
"url": "https://www.suse.com/security/cve/CVE-2026-33984/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-33985 page",
"url": "https://www.suse.com/security/cve/CVE-2026-33985/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-33986 page",
"url": "https://www.suse.com/security/cve/CVE-2026-33986/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-33987 page",
"url": "https://www.suse.com/security/cve/CVE-2026-33987/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-33995 page",
"url": "https://www.suse.com/security/cve/CVE-2026-33995/"
}
],
"title": "freerdp-3.24.2-1.1 on GA media",
"tracking": {
"current_release_date": "2026-04-28T00:00:00Z",
"generator": {
"date": "2026-04-28T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2026:10633-1",
"initial_release_date": "2026-04-28T00:00:00Z",
"revision_history": [
{
"date": "2026-04-28T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "freerdp-3.24.2-1.1.aarch64",
"product": {
"name": "freerdp-3.24.2-1.1.aarch64",
"product_id": "freerdp-3.24.2-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "freerdp-devel-3.24.2-1.1.aarch64",
"product": {
"name": "freerdp-devel-3.24.2-1.1.aarch64",
"product_id": "freerdp-devel-3.24.2-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-3.24.2-1.1.aarch64",
"product": {
"name": "freerdp-proxy-3.24.2-1.1.aarch64",
"product_id": "freerdp-proxy-3.24.2-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-plugins-3.24.2-1.1.aarch64",
"product": {
"name": "freerdp-proxy-plugins-3.24.2-1.1.aarch64",
"product_id": "freerdp-proxy-plugins-3.24.2-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "freerdp-sdl-3.24.2-1.1.aarch64",
"product": {
"name": "freerdp-sdl-3.24.2-1.1.aarch64",
"product_id": "freerdp-sdl-3.24.2-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "freerdp-server-3.24.2-1.1.aarch64",
"product": {
"name": "freerdp-server-3.24.2-1.1.aarch64",
"product_id": "freerdp-server-3.24.2-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "freerdp-wayland-3.24.2-1.1.aarch64",
"product": {
"name": "freerdp-wayland-3.24.2-1.1.aarch64",
"product_id": "freerdp-wayland-3.24.2-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "libfreerdp-server-proxy3-3-3.24.2-1.1.aarch64",
"product": {
"name": "libfreerdp-server-proxy3-3-3.24.2-1.1.aarch64",
"product_id": "libfreerdp-server-proxy3-3-3.24.2-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "libfreerdp3-3-3.24.2-1.1.aarch64",
"product": {
"name": "libfreerdp3-3-3.24.2-1.1.aarch64",
"product_id": "libfreerdp3-3-3.24.2-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "librdtk0-0-3.24.2-1.1.aarch64",
"product": {
"name": "librdtk0-0-3.24.2-1.1.aarch64",
"product_id": "librdtk0-0-3.24.2-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "libuwac0-0-3.24.2-1.1.aarch64",
"product": {
"name": "libuwac0-0-3.24.2-1.1.aarch64",
"product_id": "libuwac0-0-3.24.2-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "libwinpr3-3-3.24.2-1.1.aarch64",
"product": {
"name": "libwinpr3-3-3.24.2-1.1.aarch64",
"product_id": "libwinpr3-3-3.24.2-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "rdtk0-devel-3.24.2-1.1.aarch64",
"product": {
"name": "rdtk0-devel-3.24.2-1.1.aarch64",
"product_id": "rdtk0-devel-3.24.2-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "uwac0-devel-3.24.2-1.1.aarch64",
"product": {
"name": "uwac0-devel-3.24.2-1.1.aarch64",
"product_id": "uwac0-devel-3.24.2-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "winpr-devel-3.24.2-1.1.aarch64",
"product": {
"name": "winpr-devel-3.24.2-1.1.aarch64",
"product_id": "winpr-devel-3.24.2-1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "freerdp-3.24.2-1.1.ppc64le",
"product": {
"name": "freerdp-3.24.2-1.1.ppc64le",
"product_id": "freerdp-3.24.2-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "freerdp-devel-3.24.2-1.1.ppc64le",
"product": {
"name": "freerdp-devel-3.24.2-1.1.ppc64le",
"product_id": "freerdp-devel-3.24.2-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-3.24.2-1.1.ppc64le",
"product": {
"name": "freerdp-proxy-3.24.2-1.1.ppc64le",
"product_id": "freerdp-proxy-3.24.2-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-plugins-3.24.2-1.1.ppc64le",
"product": {
"name": "freerdp-proxy-plugins-3.24.2-1.1.ppc64le",
"product_id": "freerdp-proxy-plugins-3.24.2-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "freerdp-sdl-3.24.2-1.1.ppc64le",
"product": {
"name": "freerdp-sdl-3.24.2-1.1.ppc64le",
"product_id": "freerdp-sdl-3.24.2-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "freerdp-server-3.24.2-1.1.ppc64le",
"product": {
"name": "freerdp-server-3.24.2-1.1.ppc64le",
"product_id": "freerdp-server-3.24.2-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "freerdp-wayland-3.24.2-1.1.ppc64le",
"product": {
"name": "freerdp-wayland-3.24.2-1.1.ppc64le",
"product_id": "freerdp-wayland-3.24.2-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libfreerdp-server-proxy3-3-3.24.2-1.1.ppc64le",
"product": {
"name": "libfreerdp-server-proxy3-3-3.24.2-1.1.ppc64le",
"product_id": "libfreerdp-server-proxy3-3-3.24.2-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libfreerdp3-3-3.24.2-1.1.ppc64le",
"product": {
"name": "libfreerdp3-3-3.24.2-1.1.ppc64le",
"product_id": "libfreerdp3-3-3.24.2-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "librdtk0-0-3.24.2-1.1.ppc64le",
"product": {
"name": "librdtk0-0-3.24.2-1.1.ppc64le",
"product_id": "librdtk0-0-3.24.2-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libuwac0-0-3.24.2-1.1.ppc64le",
"product": {
"name": "libuwac0-0-3.24.2-1.1.ppc64le",
"product_id": "libuwac0-0-3.24.2-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libwinpr3-3-3.24.2-1.1.ppc64le",
"product": {
"name": "libwinpr3-3-3.24.2-1.1.ppc64le",
"product_id": "libwinpr3-3-3.24.2-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "rdtk0-devel-3.24.2-1.1.ppc64le",
"product": {
"name": "rdtk0-devel-3.24.2-1.1.ppc64le",
"product_id": "rdtk0-devel-3.24.2-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "uwac0-devel-3.24.2-1.1.ppc64le",
"product": {
"name": "uwac0-devel-3.24.2-1.1.ppc64le",
"product_id": "uwac0-devel-3.24.2-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "winpr-devel-3.24.2-1.1.ppc64le",
"product": {
"name": "winpr-devel-3.24.2-1.1.ppc64le",
"product_id": "winpr-devel-3.24.2-1.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "freerdp-3.24.2-1.1.s390x",
"product": {
"name": "freerdp-3.24.2-1.1.s390x",
"product_id": "freerdp-3.24.2-1.1.s390x"
}
},
{
"category": "product_version",
"name": "freerdp-devel-3.24.2-1.1.s390x",
"product": {
"name": "freerdp-devel-3.24.2-1.1.s390x",
"product_id": "freerdp-devel-3.24.2-1.1.s390x"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-3.24.2-1.1.s390x",
"product": {
"name": "freerdp-proxy-3.24.2-1.1.s390x",
"product_id": "freerdp-proxy-3.24.2-1.1.s390x"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-plugins-3.24.2-1.1.s390x",
"product": {
"name": "freerdp-proxy-plugins-3.24.2-1.1.s390x",
"product_id": "freerdp-proxy-plugins-3.24.2-1.1.s390x"
}
},
{
"category": "product_version",
"name": "freerdp-sdl-3.24.2-1.1.s390x",
"product": {
"name": "freerdp-sdl-3.24.2-1.1.s390x",
"product_id": "freerdp-sdl-3.24.2-1.1.s390x"
}
},
{
"category": "product_version",
"name": "freerdp-server-3.24.2-1.1.s390x",
"product": {
"name": "freerdp-server-3.24.2-1.1.s390x",
"product_id": "freerdp-server-3.24.2-1.1.s390x"
}
},
{
"category": "product_version",
"name": "freerdp-wayland-3.24.2-1.1.s390x",
"product": {
"name": "freerdp-wayland-3.24.2-1.1.s390x",
"product_id": "freerdp-wayland-3.24.2-1.1.s390x"
}
},
{
"category": "product_version",
"name": "libfreerdp-server-proxy3-3-3.24.2-1.1.s390x",
"product": {
"name": "libfreerdp-server-proxy3-3-3.24.2-1.1.s390x",
"product_id": "libfreerdp-server-proxy3-3-3.24.2-1.1.s390x"
}
},
{
"category": "product_version",
"name": "libfreerdp3-3-3.24.2-1.1.s390x",
"product": {
"name": "libfreerdp3-3-3.24.2-1.1.s390x",
"product_id": "libfreerdp3-3-3.24.2-1.1.s390x"
}
},
{
"category": "product_version",
"name": "librdtk0-0-3.24.2-1.1.s390x",
"product": {
"name": "librdtk0-0-3.24.2-1.1.s390x",
"product_id": "librdtk0-0-3.24.2-1.1.s390x"
}
},
{
"category": "product_version",
"name": "libuwac0-0-3.24.2-1.1.s390x",
"product": {
"name": "libuwac0-0-3.24.2-1.1.s390x",
"product_id": "libuwac0-0-3.24.2-1.1.s390x"
}
},
{
"category": "product_version",
"name": "libwinpr3-3-3.24.2-1.1.s390x",
"product": {
"name": "libwinpr3-3-3.24.2-1.1.s390x",
"product_id": "libwinpr3-3-3.24.2-1.1.s390x"
}
},
{
"category": "product_version",
"name": "rdtk0-devel-3.24.2-1.1.s390x",
"product": {
"name": "rdtk0-devel-3.24.2-1.1.s390x",
"product_id": "rdtk0-devel-3.24.2-1.1.s390x"
}
},
{
"category": "product_version",
"name": "uwac0-devel-3.24.2-1.1.s390x",
"product": {
"name": "uwac0-devel-3.24.2-1.1.s390x",
"product_id": "uwac0-devel-3.24.2-1.1.s390x"
}
},
{
"category": "product_version",
"name": "winpr-devel-3.24.2-1.1.s390x",
"product": {
"name": "winpr-devel-3.24.2-1.1.s390x",
"product_id": "winpr-devel-3.24.2-1.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "freerdp-3.24.2-1.1.x86_64",
"product": {
"name": "freerdp-3.24.2-1.1.x86_64",
"product_id": "freerdp-3.24.2-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "freerdp-devel-3.24.2-1.1.x86_64",
"product": {
"name": "freerdp-devel-3.24.2-1.1.x86_64",
"product_id": "freerdp-devel-3.24.2-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-3.24.2-1.1.x86_64",
"product": {
"name": "freerdp-proxy-3.24.2-1.1.x86_64",
"product_id": "freerdp-proxy-3.24.2-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-plugins-3.24.2-1.1.x86_64",
"product": {
"name": "freerdp-proxy-plugins-3.24.2-1.1.x86_64",
"product_id": "freerdp-proxy-plugins-3.24.2-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "freerdp-sdl-3.24.2-1.1.x86_64",
"product": {
"name": "freerdp-sdl-3.24.2-1.1.x86_64",
"product_id": "freerdp-sdl-3.24.2-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "freerdp-server-3.24.2-1.1.x86_64",
"product": {
"name": "freerdp-server-3.24.2-1.1.x86_64",
"product_id": "freerdp-server-3.24.2-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "freerdp-wayland-3.24.2-1.1.x86_64",
"product": {
"name": "freerdp-wayland-3.24.2-1.1.x86_64",
"product_id": "freerdp-wayland-3.24.2-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "libfreerdp-server-proxy3-3-3.24.2-1.1.x86_64",
"product": {
"name": "libfreerdp-server-proxy3-3-3.24.2-1.1.x86_64",
"product_id": "libfreerdp-server-proxy3-3-3.24.2-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "libfreerdp3-3-3.24.2-1.1.x86_64",
"product": {
"name": "libfreerdp3-3-3.24.2-1.1.x86_64",
"product_id": "libfreerdp3-3-3.24.2-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "librdtk0-0-3.24.2-1.1.x86_64",
"product": {
"name": "librdtk0-0-3.24.2-1.1.x86_64",
"product_id": "librdtk0-0-3.24.2-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "libuwac0-0-3.24.2-1.1.x86_64",
"product": {
"name": "libuwac0-0-3.24.2-1.1.x86_64",
"product_id": "libuwac0-0-3.24.2-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "libwinpr3-3-3.24.2-1.1.x86_64",
"product": {
"name": "libwinpr3-3-3.24.2-1.1.x86_64",
"product_id": "libwinpr3-3-3.24.2-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "rdtk0-devel-3.24.2-1.1.x86_64",
"product": {
"name": "rdtk0-devel-3.24.2-1.1.x86_64",
"product_id": "rdtk0-devel-3.24.2-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "uwac0-devel-3.24.2-1.1.x86_64",
"product": {
"name": "uwac0-devel-3.24.2-1.1.x86_64",
"product_id": "uwac0-devel-3.24.2-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "winpr-devel-3.24.2-1.1.x86_64",
"product": {
"name": "winpr-devel-3.24.2-1.1.x86_64",
"product_id": "winpr-devel-3.24.2-1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-3.24.2-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-3.24.2-1.1.aarch64"
},
"product_reference": "freerdp-3.24.2-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-3.24.2-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-3.24.2-1.1.ppc64le"
},
"product_reference": "freerdp-3.24.2-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-3.24.2-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-3.24.2-1.1.s390x"
},
"product_reference": "freerdp-3.24.2-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-3.24.2-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-3.24.2-1.1.x86_64"
},
"product_reference": "freerdp-3.24.2-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-devel-3.24.2-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.aarch64"
},
"product_reference": "freerdp-devel-3.24.2-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-devel-3.24.2-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.ppc64le"
},
"product_reference": "freerdp-devel-3.24.2-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-devel-3.24.2-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.s390x"
},
"product_reference": "freerdp-devel-3.24.2-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-devel-3.24.2-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.x86_64"
},
"product_reference": "freerdp-devel-3.24.2-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-proxy-3.24.2-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.aarch64"
},
"product_reference": "freerdp-proxy-3.24.2-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-proxy-3.24.2-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.ppc64le"
},
"product_reference": "freerdp-proxy-3.24.2-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-proxy-3.24.2-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.s390x"
},
"product_reference": "freerdp-proxy-3.24.2-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-proxy-3.24.2-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.x86_64"
},
"product_reference": "freerdp-proxy-3.24.2-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-proxy-plugins-3.24.2-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.aarch64"
},
"product_reference": "freerdp-proxy-plugins-3.24.2-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-proxy-plugins-3.24.2-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.ppc64le"
},
"product_reference": "freerdp-proxy-plugins-3.24.2-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-proxy-plugins-3.24.2-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.s390x"
},
"product_reference": "freerdp-proxy-plugins-3.24.2-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-proxy-plugins-3.24.2-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.x86_64"
},
"product_reference": "freerdp-proxy-plugins-3.24.2-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-sdl-3.24.2-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.aarch64"
},
"product_reference": "freerdp-sdl-3.24.2-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-sdl-3.24.2-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.ppc64le"
},
"product_reference": "freerdp-sdl-3.24.2-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-sdl-3.24.2-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.s390x"
},
"product_reference": "freerdp-sdl-3.24.2-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-sdl-3.24.2-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.x86_64"
},
"product_reference": "freerdp-sdl-3.24.2-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-server-3.24.2-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.aarch64"
},
"product_reference": "freerdp-server-3.24.2-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-server-3.24.2-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.ppc64le"
},
"product_reference": "freerdp-server-3.24.2-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-server-3.24.2-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.s390x"
},
"product_reference": "freerdp-server-3.24.2-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-server-3.24.2-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.x86_64"
},
"product_reference": "freerdp-server-3.24.2-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-wayland-3.24.2-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.aarch64"
},
"product_reference": "freerdp-wayland-3.24.2-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-wayland-3.24.2-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.ppc64le"
},
"product_reference": "freerdp-wayland-3.24.2-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-wayland-3.24.2-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.s390x"
},
"product_reference": "freerdp-wayland-3.24.2-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-wayland-3.24.2-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.x86_64"
},
"product_reference": "freerdp-wayland-3.24.2-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp-server-proxy3-3-3.24.2-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.aarch64"
},
"product_reference": "libfreerdp-server-proxy3-3-3.24.2-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp-server-proxy3-3-3.24.2-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.ppc64le"
},
"product_reference": "libfreerdp-server-proxy3-3-3.24.2-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp-server-proxy3-3-3.24.2-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.s390x"
},
"product_reference": "libfreerdp-server-proxy3-3-3.24.2-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp-server-proxy3-3-3.24.2-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.x86_64"
},
"product_reference": "libfreerdp-server-proxy3-3-3.24.2-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp3-3-3.24.2-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.aarch64"
},
"product_reference": "libfreerdp3-3-3.24.2-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp3-3-3.24.2-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.ppc64le"
},
"product_reference": "libfreerdp3-3-3.24.2-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp3-3-3.24.2-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.s390x"
},
"product_reference": "libfreerdp3-3-3.24.2-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp3-3-3.24.2-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.x86_64"
},
"product_reference": "libfreerdp3-3-3.24.2-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "librdtk0-0-3.24.2-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.aarch64"
},
"product_reference": "librdtk0-0-3.24.2-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "librdtk0-0-3.24.2-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.ppc64le"
},
"product_reference": "librdtk0-0-3.24.2-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "librdtk0-0-3.24.2-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.s390x"
},
"product_reference": "librdtk0-0-3.24.2-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "librdtk0-0-3.24.2-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.x86_64"
},
"product_reference": "librdtk0-0-3.24.2-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libuwac0-0-3.24.2-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.aarch64"
},
"product_reference": "libuwac0-0-3.24.2-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libuwac0-0-3.24.2-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.ppc64le"
},
"product_reference": "libuwac0-0-3.24.2-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libuwac0-0-3.24.2-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.s390x"
},
"product_reference": "libuwac0-0-3.24.2-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libuwac0-0-3.24.2-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.x86_64"
},
"product_reference": "libuwac0-0-3.24.2-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr3-3-3.24.2-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.aarch64"
},
"product_reference": "libwinpr3-3-3.24.2-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr3-3-3.24.2-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.ppc64le"
},
"product_reference": "libwinpr3-3-3.24.2-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr3-3-3.24.2-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.s390x"
},
"product_reference": "libwinpr3-3-3.24.2-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr3-3-3.24.2-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.x86_64"
},
"product_reference": "libwinpr3-3-3.24.2-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rdtk0-devel-3.24.2-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.aarch64"
},
"product_reference": "rdtk0-devel-3.24.2-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rdtk0-devel-3.24.2-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.ppc64le"
},
"product_reference": "rdtk0-devel-3.24.2-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rdtk0-devel-3.24.2-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.s390x"
},
"product_reference": "rdtk0-devel-3.24.2-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rdtk0-devel-3.24.2-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.x86_64"
},
"product_reference": "rdtk0-devel-3.24.2-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "uwac0-devel-3.24.2-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.aarch64"
},
"product_reference": "uwac0-devel-3.24.2-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "uwac0-devel-3.24.2-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.ppc64le"
},
"product_reference": "uwac0-devel-3.24.2-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "uwac0-devel-3.24.2-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.s390x"
},
"product_reference": "uwac0-devel-3.24.2-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "uwac0-devel-3.24.2-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.x86_64"
},
"product_reference": "uwac0-devel-3.24.2-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "winpr-devel-3.24.2-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.aarch64"
},
"product_reference": "winpr-devel-3.24.2-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "winpr-devel-3.24.2-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.ppc64le"
},
"product_reference": "winpr-devel-3.24.2-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "winpr-devel-3.24.2-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.s390x"
},
"product_reference": "winpr-devel-3.24.2-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "winpr-devel-3.24.2-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.x86_64"
},
"product_reference": "winpr-devel-3.24.2-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-33952",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-33952"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, an unvalidated auth_length field read from the network triggers a WINPR_ASSERT() failure in rts_read_auth_verifier_no_checks(), causing any FreeRDP client connecting through a malicious RDP Gateway to crash with SIGABRT. This is a pre-authentication denial of service affecting all FreeRDP clients using RPC-over-HTTP gateway transport. The assertion is active in default release builds (WITH_VERBOSE_WINPR_ASSERT=ON). This issue has been patched in version 3.24.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-33952",
"url": "https://www.suse.com/security/cve/CVE-2026-33952"
},
{
"category": "external",
"summary": "SUSE Bug 1261196 for CVE-2026-33952",
"url": "https://bugzilla.suse.com/1261196"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2026-33952"
},
{
"cve": "CVE-2026-33977",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-33977"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, a malicious RDP server can crash the FreeRDP client by sending audio data in IMA ADPCM format with an invalid initial step index value (\u003e= 89). The unvalidated step index is read directly from the network and used to index into a 89-entry lookup table, triggering a WINPR_ASSERT() failure and process abort via SIGABRT. This affects any FreeRDP client that has audio redirection (RDPSND) enabled, which is the default configuration. This issue has been patched in version 3.24.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-33977",
"url": "https://www.suse.com/security/cve/CVE-2026-33977"
},
{
"category": "external",
"summary": "SUSE Bug 1261198 for CVE-2026-33977",
"url": "https://bugzilla.suse.com/1261198"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2026-33977"
},
{
"cve": "CVE-2026-33982",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-33982"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, there is a heap-buffer-overflow READ vulnerability at 24 bytes before the allocation, in winpr_aligned_offset_recalloc(). This issue has been patched in version 3.24.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-33982",
"url": "https://www.suse.com/security/cve/CVE-2026-33982"
},
{
"category": "external",
"summary": "SUSE Bug 1261222 for CVE-2026-33982",
"url": "https://bugzilla.suse.com/1261222"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2026-33982"
},
{
"cve": "CVE-2026-33983",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-33983"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, progressive_decompress_tile_upgrade() detects a mismatch via progressive_rfx_quant_cmp_equal() but only emits WLog_WARN, execution continues. The wrapped value (247) is used as a shift exponent, causing undefined behavior and an approximately 80 billion iteration loop (CPU DoS). This issue has been patched in version 3.24.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-33983",
"url": "https://www.suse.com/security/cve/CVE-2026-33983"
},
{
"category": "external",
"summary": "SUSE Bug 1261200 for CVE-2026-33983",
"url": "https://bugzilla.suse.com/1261200"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2026-33983"
},
{
"cve": "CVE-2026-33984",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-33984"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, in resize_vbar_entry() in libfreerdp/codec/clear.c, vBarEntry-\u003esize is updated to vBarEntry-\u003ecount before the winpr_aligned_recalloc() call. If realloc fails, size is inflated while pixels still points to the old, smaller buffer. On a subsequent call where count \u003c= size (the inflated value), realloc is skipped. The caller then writes count * bpp bytes of attacker-controlled pixel data into the undersized buffer, causing a heap buffer overflow. This issue has been patched in version 3.24.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-33984",
"url": "https://www.suse.com/security/cve/CVE-2026-33984"
},
{
"category": "external",
"summary": "SUSE Bug 1261211 for CVE-2026-33984",
"url": "https://bugzilla.suse.com/1261211"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-28T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2026-33984"
},
{
"cve": "CVE-2026-33985",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-33985"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, pixel data from adjacent heap memory is rendered to screen, potentially leaking sensitive data to the attacker. This issue has been patched in version 3.24.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-33985",
"url": "https://www.suse.com/security/cve/CVE-2026-33985"
},
{
"category": "external",
"summary": "SUSE Bug 1261217 for CVE-2026-33985",
"url": "https://bugzilla.suse.com/1261217"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2026-33985"
},
{
"cve": "CVE-2026-33986",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-33986"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, in yuv_ensure_buffer() in libfreerdp/codec/h264.c, h264-\u003ewidth and h264-\u003eheight are updated before the reallocation loop. If any winpr_aligned_recalloc() call fails, the function returns FALSE but width/height are already inflated. This issue has been patched in version 3.24.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-33986",
"url": "https://www.suse.com/security/cve/CVE-2026-33986"
},
{
"category": "external",
"summary": "SUSE Bug 1261223 for CVE-2026-33986",
"url": "https://bugzilla.suse.com/1261223"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-28T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2026-33986"
},
{
"cve": "CVE-2026-33987",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-33987"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, in persistent_cache_read_entry_v3() in libfreerdp/cache/persistent.c, persistent-\u003ebmpSize is updated before winpr_aligned_recalloc(). If realloc fails, bmpSize is inflated while bmpData points to the old buffer. This issue has been patched in version 3.24.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-33987",
"url": "https://www.suse.com/security/cve/CVE-2026-33987"
},
{
"category": "external",
"summary": "SUSE Bug 1261226 for CVE-2026-33987",
"url": "https://bugzilla.suse.com/1261226"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2026-33987"
},
{
"cve": "CVE-2026-33995",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-33995"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, a double-free vulnerability in kerberos_AcceptSecurityContext() and kerberos_InitializeSecurityContextA() (WinPR, winpr/libwinpr/sspi/Kerberos/kerberos.c) can cause a crash in any FreeRDP clients on systems where Kerberos and/or Kerberos U2U is configured (Samba AD member, or krb5 for NFS). The crash is triggered during NLA connection teardown and requires a failed authentication attempt. This issue has been patched in version 3.24.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-33995",
"url": "https://www.suse.com/security/cve/CVE-2026-33995"
},
{
"category": "external",
"summary": "SUSE Bug 1261227 for CVE-2026-33995",
"url": "https://bugzilla.suse.com/1261227"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.2-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.2-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-28T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2026-33995"
}
]
}
Loading…
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…