SUSE-SU-2026:1633-1
Vulnerability from csaf_suse - Published: 2026-04-27 12:05 - Updated: 2026-04-27 12:05Summary
Security update for freerdp
Severity
Important
Notes
Title of the patch: Security update for freerdp
Description of the patch: This update for freerdp fixes the following issues:
- CVE-2026-25941: Out-of-Bounds Read in client RDPGFX channel via crafted `WIRE_TO_SURFACE_2` PDU (bsc#1258919).
- CVE-2026-25942: Global-buffer-overflow in `xf_rail_server_execute_result` (bsc#1258920).
- CVE-2026-25952: Heap-use-after-free in `xf_SetWindowMinMaxInfo` (bsc#1258921).
- CVE-2026-25953: Heap-use-after-free in `xf_AppUpdateWindowFromSurface` (bsc#1258923).
- CVE-2026-25954: Heap-use-after-free in `xf_rail_server_local_move_size` (bsc#1258924).
- CVE-2026-25955: Heap-use-after-free in `xf_AppUpdateWindowFromSurface` (bsc#1258973).
- CVE-2026-25959: Heap-use-after-free in `xf_cliprdr_provide_data_` (bsc#1258976).
- CVE-2026-25997: Heap-use-after-free in `xf_clipboard_format_equal` (bsc#1258977).
- CVE-2026-26986: Heap-use-after-free in `rail_window_free` (bsc#1258967).
- CVE-2026-27015: Smartcard NDR alignment padding triggers reachable `WINPR_ASSERT` abort (bsc#1258987).
- CVE-2026-27950: Denial of service due to incomplete fix for heap-use-after-free vulnerability (bsc#1258941).
- CVE-2026-27951: Denial of service via endless blocking loop in `Stream_EnsureCapacity` (bsc#1258939).
- CVE-2026-29774: Missing bounds validation can cause a client-side heap buffer overflow (bsc#1259689).
- CVE-2026-29775: Malicious server can trigger a client-side heap out-of-bounds access (bsc#1259684).
- CVE-2026-29776: Missing length check can lead to an integer underflow (bsc#1259692).
- CVE-2026-31897: Missing length check can cause an out-of-bounds read (bsc#1259693).
Patchnames: SUSE-2026-1633,SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2026-1633,SUSE-SLE-Product-WE-15-SP7-2026-1633
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
4.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.9 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
References
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for freerdp",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for freerdp fixes the following issues:\n\n- CVE-2026-25941: Out-of-Bounds Read in client RDPGFX channel via crafted `WIRE_TO_SURFACE_2` PDU (bsc#1258919).\n- CVE-2026-25942: Global-buffer-overflow in `xf_rail_server_execute_result` (bsc#1258920).\n- CVE-2026-25952: Heap-use-after-free in `xf_SetWindowMinMaxInfo` (bsc#1258921).\n- CVE-2026-25953: Heap-use-after-free in `xf_AppUpdateWindowFromSurface` (bsc#1258923).\n- CVE-2026-25954: Heap-use-after-free in `xf_rail_server_local_move_size` (bsc#1258924).\n- CVE-2026-25955: Heap-use-after-free in `xf_AppUpdateWindowFromSurface` (bsc#1258973).\n- CVE-2026-25959: Heap-use-after-free in `xf_cliprdr_provide_data_` (bsc#1258976).\n- CVE-2026-25997: Heap-use-after-free in `xf_clipboard_format_equal` (bsc#1258977).\n- CVE-2026-26986: Heap-use-after-free in `rail_window_free` (bsc#1258967).\n- CVE-2026-27015: Smartcard NDR alignment padding triggers reachable `WINPR_ASSERT` abort (bsc#1258987).\n- CVE-2026-27950: Denial of service due to incomplete fix for heap-use-after-free vulnerability (bsc#1258941).\n- CVE-2026-27951: Denial of service via endless blocking loop in `Stream_EnsureCapacity` (bsc#1258939).\n- CVE-2026-29774: Missing bounds validation can cause a client-side heap buffer overflow (bsc#1259689).\n- CVE-2026-29775: Malicious server can trigger a client-side heap out-of-bounds access (bsc#1259684).\n- CVE-2026-29776: Missing length check can lead to an integer underflow (bsc#1259692).\n- CVE-2026-31897: Missing length check can cause an out-of-bounds read (bsc#1259693).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2026-1633,SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2026-1633,SUSE-SLE-Product-WE-15-SP7-2026-1633",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_1633-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:1633-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20261633-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:1633-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2026-April/046047.html"
},
{
"category": "self",
"summary": "SUSE Bug 1258919",
"url": "https://bugzilla.suse.com/1258919"
},
{
"category": "self",
"summary": "SUSE Bug 1258920",
"url": "https://bugzilla.suse.com/1258920"
},
{
"category": "self",
"summary": "SUSE Bug 1258921",
"url": "https://bugzilla.suse.com/1258921"
},
{
"category": "self",
"summary": "SUSE Bug 1258923",
"url": "https://bugzilla.suse.com/1258923"
},
{
"category": "self",
"summary": "SUSE Bug 1258924",
"url": "https://bugzilla.suse.com/1258924"
},
{
"category": "self",
"summary": "SUSE Bug 1258939",
"url": "https://bugzilla.suse.com/1258939"
},
{
"category": "self",
"summary": "SUSE Bug 1258941",
"url": "https://bugzilla.suse.com/1258941"
},
{
"category": "self",
"summary": "SUSE Bug 1258967",
"url": "https://bugzilla.suse.com/1258967"
},
{
"category": "self",
"summary": "SUSE Bug 1258973",
"url": "https://bugzilla.suse.com/1258973"
},
{
"category": "self",
"summary": "SUSE Bug 1258976",
"url": "https://bugzilla.suse.com/1258976"
},
{
"category": "self",
"summary": "SUSE Bug 1258977",
"url": "https://bugzilla.suse.com/1258977"
},
{
"category": "self",
"summary": "SUSE Bug 1258987",
"url": "https://bugzilla.suse.com/1258987"
},
{
"category": "self",
"summary": "SUSE Bug 1259680",
"url": "https://bugzilla.suse.com/1259680"
},
{
"category": "self",
"summary": "SUSE Bug 1259684",
"url": "https://bugzilla.suse.com/1259684"
},
{
"category": "self",
"summary": "SUSE Bug 1259689",
"url": "https://bugzilla.suse.com/1259689"
},
{
"category": "self",
"summary": "SUSE Bug 1259692",
"url": "https://bugzilla.suse.com/1259692"
},
{
"category": "self",
"summary": "SUSE Bug 1259693",
"url": "https://bugzilla.suse.com/1259693"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-25941 page",
"url": "https://www.suse.com/security/cve/CVE-2026-25941/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-25942 page",
"url": "https://www.suse.com/security/cve/CVE-2026-25942/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-25952 page",
"url": "https://www.suse.com/security/cve/CVE-2026-25952/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-25953 page",
"url": "https://www.suse.com/security/cve/CVE-2026-25953/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-25954 page",
"url": "https://www.suse.com/security/cve/CVE-2026-25954/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-25955 page",
"url": "https://www.suse.com/security/cve/CVE-2026-25955/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-25959 page",
"url": "https://www.suse.com/security/cve/CVE-2026-25959/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-25997 page",
"url": "https://www.suse.com/security/cve/CVE-2026-25997/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-26986 page",
"url": "https://www.suse.com/security/cve/CVE-2026-26986/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-27015 page",
"url": "https://www.suse.com/security/cve/CVE-2026-27015/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-27950 page",
"url": "https://www.suse.com/security/cve/CVE-2026-27950/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-27951 page",
"url": "https://www.suse.com/security/cve/CVE-2026-27951/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-29774 page",
"url": "https://www.suse.com/security/cve/CVE-2026-29774/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-29775 page",
"url": "https://www.suse.com/security/cve/CVE-2026-29775/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-29776 page",
"url": "https://www.suse.com/security/cve/CVE-2026-29776/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-31884 page",
"url": "https://www.suse.com/security/cve/CVE-2026-31884/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-31897 page",
"url": "https://www.suse.com/security/cve/CVE-2026-31897/"
}
],
"title": "Security update for freerdp",
"tracking": {
"current_release_date": "2026-04-27T12:05:30Z",
"generator": {
"date": "2026-04-27T12:05:30Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:1633-1",
"initial_release_date": "2026-04-27T12:05:30Z",
"revision_history": [
{
"date": "2026-04-27T12:05:30Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "freerdp-3.10.3-150700.3.14.1.aarch64",
"product": {
"name": "freerdp-3.10.3-150700.3.14.1.aarch64",
"product_id": "freerdp-3.10.3-150700.3.14.1.aarch64"
}
},
{
"category": "product_version",
"name": "freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"product": {
"name": "freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"product_id": "freerdp-devel-3.10.3-150700.3.14.1.aarch64"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"product": {
"name": "freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"product_id": "freerdp-proxy-3.10.3-150700.3.14.1.aarch64"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-plugins-3.10.3-150700.3.14.1.aarch64",
"product": {
"name": "freerdp-proxy-plugins-3.10.3-150700.3.14.1.aarch64",
"product_id": "freerdp-proxy-plugins-3.10.3-150700.3.14.1.aarch64"
}
},
{
"category": "product_version",
"name": "freerdp-sdl-3.10.3-150700.3.14.1.aarch64",
"product": {
"name": "freerdp-sdl-3.10.3-150700.3.14.1.aarch64",
"product_id": "freerdp-sdl-3.10.3-150700.3.14.1.aarch64"
}
},
{
"category": "product_version",
"name": "freerdp-server-3.10.3-150700.3.14.1.aarch64",
"product": {
"name": "freerdp-server-3.10.3-150700.3.14.1.aarch64",
"product_id": "freerdp-server-3.10.3-150700.3.14.1.aarch64"
}
},
{
"category": "product_version",
"name": "freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"product": {
"name": "freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"product_id": "freerdp-wayland-3.10.3-150700.3.14.1.aarch64"
}
},
{
"category": "product_version",
"name": "libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.aarch64",
"product": {
"name": "libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.aarch64",
"product_id": "libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.aarch64"
}
},
{
"category": "product_version",
"name": "libfreerdp3-3-3.10.3-150700.3.14.1.aarch64",
"product": {
"name": "libfreerdp3-3-3.10.3-150700.3.14.1.aarch64",
"product_id": "libfreerdp3-3-3.10.3-150700.3.14.1.aarch64"
}
},
{
"category": "product_version",
"name": "librdtk0-0-3.10.3-150700.3.14.1.aarch64",
"product": {
"name": "librdtk0-0-3.10.3-150700.3.14.1.aarch64",
"product_id": "librdtk0-0-3.10.3-150700.3.14.1.aarch64"
}
},
{
"category": "product_version",
"name": "libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"product": {
"name": "libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"product_id": "libuwac0-0-3.10.3-150700.3.14.1.aarch64"
}
},
{
"category": "product_version",
"name": "libwinpr3-3-3.10.3-150700.3.14.1.aarch64",
"product": {
"name": "libwinpr3-3-3.10.3-150700.3.14.1.aarch64",
"product_id": "libwinpr3-3-3.10.3-150700.3.14.1.aarch64"
}
},
{
"category": "product_version",
"name": "rdtk0-devel-3.10.3-150700.3.14.1.aarch64",
"product": {
"name": "rdtk0-devel-3.10.3-150700.3.14.1.aarch64",
"product_id": "rdtk0-devel-3.10.3-150700.3.14.1.aarch64"
}
},
{
"category": "product_version",
"name": "uwac0-devel-3.10.3-150700.3.14.1.aarch64",
"product": {
"name": "uwac0-devel-3.10.3-150700.3.14.1.aarch64",
"product_id": "uwac0-devel-3.10.3-150700.3.14.1.aarch64"
}
},
{
"category": "product_version",
"name": "winpr-devel-3.10.3-150700.3.14.1.aarch64",
"product": {
"name": "winpr-devel-3.10.3-150700.3.14.1.aarch64",
"product_id": "winpr-devel-3.10.3-150700.3.14.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "freerdp-3.10.3-150700.3.14.1.i586",
"product": {
"name": "freerdp-3.10.3-150700.3.14.1.i586",
"product_id": "freerdp-3.10.3-150700.3.14.1.i586"
}
},
{
"category": "product_version",
"name": "freerdp-devel-3.10.3-150700.3.14.1.i586",
"product": {
"name": "freerdp-devel-3.10.3-150700.3.14.1.i586",
"product_id": "freerdp-devel-3.10.3-150700.3.14.1.i586"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-3.10.3-150700.3.14.1.i586",
"product": {
"name": "freerdp-proxy-3.10.3-150700.3.14.1.i586",
"product_id": "freerdp-proxy-3.10.3-150700.3.14.1.i586"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-plugins-3.10.3-150700.3.14.1.i586",
"product": {
"name": "freerdp-proxy-plugins-3.10.3-150700.3.14.1.i586",
"product_id": "freerdp-proxy-plugins-3.10.3-150700.3.14.1.i586"
}
},
{
"category": "product_version",
"name": "freerdp-sdl-3.10.3-150700.3.14.1.i586",
"product": {
"name": "freerdp-sdl-3.10.3-150700.3.14.1.i586",
"product_id": "freerdp-sdl-3.10.3-150700.3.14.1.i586"
}
},
{
"category": "product_version",
"name": "freerdp-server-3.10.3-150700.3.14.1.i586",
"product": {
"name": "freerdp-server-3.10.3-150700.3.14.1.i586",
"product_id": "freerdp-server-3.10.3-150700.3.14.1.i586"
}
},
{
"category": "product_version",
"name": "freerdp-wayland-3.10.3-150700.3.14.1.i586",
"product": {
"name": "freerdp-wayland-3.10.3-150700.3.14.1.i586",
"product_id": "freerdp-wayland-3.10.3-150700.3.14.1.i586"
}
},
{
"category": "product_version",
"name": "libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.i586",
"product": {
"name": "libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.i586",
"product_id": "libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.i586"
}
},
{
"category": "product_version",
"name": "libfreerdp3-3-3.10.3-150700.3.14.1.i586",
"product": {
"name": "libfreerdp3-3-3.10.3-150700.3.14.1.i586",
"product_id": "libfreerdp3-3-3.10.3-150700.3.14.1.i586"
}
},
{
"category": "product_version",
"name": "librdtk0-0-3.10.3-150700.3.14.1.i586",
"product": {
"name": "librdtk0-0-3.10.3-150700.3.14.1.i586",
"product_id": "librdtk0-0-3.10.3-150700.3.14.1.i586"
}
},
{
"category": "product_version",
"name": "libuwac0-0-3.10.3-150700.3.14.1.i586",
"product": {
"name": "libuwac0-0-3.10.3-150700.3.14.1.i586",
"product_id": "libuwac0-0-3.10.3-150700.3.14.1.i586"
}
},
{
"category": "product_version",
"name": "libwinpr3-3-3.10.3-150700.3.14.1.i586",
"product": {
"name": "libwinpr3-3-3.10.3-150700.3.14.1.i586",
"product_id": "libwinpr3-3-3.10.3-150700.3.14.1.i586"
}
},
{
"category": "product_version",
"name": "rdtk0-devel-3.10.3-150700.3.14.1.i586",
"product": {
"name": "rdtk0-devel-3.10.3-150700.3.14.1.i586",
"product_id": "rdtk0-devel-3.10.3-150700.3.14.1.i586"
}
},
{
"category": "product_version",
"name": "uwac0-devel-3.10.3-150700.3.14.1.i586",
"product": {
"name": "uwac0-devel-3.10.3-150700.3.14.1.i586",
"product_id": "uwac0-devel-3.10.3-150700.3.14.1.i586"
}
},
{
"category": "product_version",
"name": "winpr-devel-3.10.3-150700.3.14.1.i586",
"product": {
"name": "winpr-devel-3.10.3-150700.3.14.1.i586",
"product_id": "winpr-devel-3.10.3-150700.3.14.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "freerdp-3.10.3-150700.3.14.1.ppc64le",
"product": {
"name": "freerdp-3.10.3-150700.3.14.1.ppc64le",
"product_id": "freerdp-3.10.3-150700.3.14.1.ppc64le"
}
},
{
"category": "product_version",
"name": "freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"product": {
"name": "freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"product_id": "freerdp-devel-3.10.3-150700.3.14.1.ppc64le"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"product": {
"name": "freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"product_id": "freerdp-proxy-3.10.3-150700.3.14.1.ppc64le"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-plugins-3.10.3-150700.3.14.1.ppc64le",
"product": {
"name": "freerdp-proxy-plugins-3.10.3-150700.3.14.1.ppc64le",
"product_id": "freerdp-proxy-plugins-3.10.3-150700.3.14.1.ppc64le"
}
},
{
"category": "product_version",
"name": "freerdp-sdl-3.10.3-150700.3.14.1.ppc64le",
"product": {
"name": "freerdp-sdl-3.10.3-150700.3.14.1.ppc64le",
"product_id": "freerdp-sdl-3.10.3-150700.3.14.1.ppc64le"
}
},
{
"category": "product_version",
"name": "freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"product": {
"name": "freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"product_id": "freerdp-server-3.10.3-150700.3.14.1.ppc64le"
}
},
{
"category": "product_version",
"name": "freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"product": {
"name": "freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"product_id": "freerdp-wayland-3.10.3-150700.3.14.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.ppc64le",
"product": {
"name": "libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.ppc64le",
"product_id": "libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libfreerdp3-3-3.10.3-150700.3.14.1.ppc64le",
"product": {
"name": "libfreerdp3-3-3.10.3-150700.3.14.1.ppc64le",
"product_id": "libfreerdp3-3-3.10.3-150700.3.14.1.ppc64le"
}
},
{
"category": "product_version",
"name": "librdtk0-0-3.10.3-150700.3.14.1.ppc64le",
"product": {
"name": "librdtk0-0-3.10.3-150700.3.14.1.ppc64le",
"product_id": "librdtk0-0-3.10.3-150700.3.14.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"product": {
"name": "libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"product_id": "libuwac0-0-3.10.3-150700.3.14.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libwinpr3-3-3.10.3-150700.3.14.1.ppc64le",
"product": {
"name": "libwinpr3-3-3.10.3-150700.3.14.1.ppc64le",
"product_id": "libwinpr3-3-3.10.3-150700.3.14.1.ppc64le"
}
},
{
"category": "product_version",
"name": "rdtk0-devel-3.10.3-150700.3.14.1.ppc64le",
"product": {
"name": "rdtk0-devel-3.10.3-150700.3.14.1.ppc64le",
"product_id": "rdtk0-devel-3.10.3-150700.3.14.1.ppc64le"
}
},
{
"category": "product_version",
"name": "uwac0-devel-3.10.3-150700.3.14.1.ppc64le",
"product": {
"name": "uwac0-devel-3.10.3-150700.3.14.1.ppc64le",
"product_id": "uwac0-devel-3.10.3-150700.3.14.1.ppc64le"
}
},
{
"category": "product_version",
"name": "winpr-devel-3.10.3-150700.3.14.1.ppc64le",
"product": {
"name": "winpr-devel-3.10.3-150700.3.14.1.ppc64le",
"product_id": "winpr-devel-3.10.3-150700.3.14.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "freerdp-3.10.3-150700.3.14.1.s390x",
"product": {
"name": "freerdp-3.10.3-150700.3.14.1.s390x",
"product_id": "freerdp-3.10.3-150700.3.14.1.s390x"
}
},
{
"category": "product_version",
"name": "freerdp-devel-3.10.3-150700.3.14.1.s390x",
"product": {
"name": "freerdp-devel-3.10.3-150700.3.14.1.s390x",
"product_id": "freerdp-devel-3.10.3-150700.3.14.1.s390x"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"product": {
"name": "freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"product_id": "freerdp-proxy-3.10.3-150700.3.14.1.s390x"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-plugins-3.10.3-150700.3.14.1.s390x",
"product": {
"name": "freerdp-proxy-plugins-3.10.3-150700.3.14.1.s390x",
"product_id": "freerdp-proxy-plugins-3.10.3-150700.3.14.1.s390x"
}
},
{
"category": "product_version",
"name": "freerdp-sdl-3.10.3-150700.3.14.1.s390x",
"product": {
"name": "freerdp-sdl-3.10.3-150700.3.14.1.s390x",
"product_id": "freerdp-sdl-3.10.3-150700.3.14.1.s390x"
}
},
{
"category": "product_version",
"name": "freerdp-server-3.10.3-150700.3.14.1.s390x",
"product": {
"name": "freerdp-server-3.10.3-150700.3.14.1.s390x",
"product_id": "freerdp-server-3.10.3-150700.3.14.1.s390x"
}
},
{
"category": "product_version",
"name": "freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"product": {
"name": "freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"product_id": "freerdp-wayland-3.10.3-150700.3.14.1.s390x"
}
},
{
"category": "product_version",
"name": "libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.s390x",
"product": {
"name": "libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.s390x",
"product_id": "libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.s390x"
}
},
{
"category": "product_version",
"name": "libfreerdp3-3-3.10.3-150700.3.14.1.s390x",
"product": {
"name": "libfreerdp3-3-3.10.3-150700.3.14.1.s390x",
"product_id": "libfreerdp3-3-3.10.3-150700.3.14.1.s390x"
}
},
{
"category": "product_version",
"name": "librdtk0-0-3.10.3-150700.3.14.1.s390x",
"product": {
"name": "librdtk0-0-3.10.3-150700.3.14.1.s390x",
"product_id": "librdtk0-0-3.10.3-150700.3.14.1.s390x"
}
},
{
"category": "product_version",
"name": "libuwac0-0-3.10.3-150700.3.14.1.s390x",
"product": {
"name": "libuwac0-0-3.10.3-150700.3.14.1.s390x",
"product_id": "libuwac0-0-3.10.3-150700.3.14.1.s390x"
}
},
{
"category": "product_version",
"name": "libwinpr3-3-3.10.3-150700.3.14.1.s390x",
"product": {
"name": "libwinpr3-3-3.10.3-150700.3.14.1.s390x",
"product_id": "libwinpr3-3-3.10.3-150700.3.14.1.s390x"
}
},
{
"category": "product_version",
"name": "rdtk0-devel-3.10.3-150700.3.14.1.s390x",
"product": {
"name": "rdtk0-devel-3.10.3-150700.3.14.1.s390x",
"product_id": "rdtk0-devel-3.10.3-150700.3.14.1.s390x"
}
},
{
"category": "product_version",
"name": "uwac0-devel-3.10.3-150700.3.14.1.s390x",
"product": {
"name": "uwac0-devel-3.10.3-150700.3.14.1.s390x",
"product_id": "uwac0-devel-3.10.3-150700.3.14.1.s390x"
}
},
{
"category": "product_version",
"name": "winpr-devel-3.10.3-150700.3.14.1.s390x",
"product": {
"name": "winpr-devel-3.10.3-150700.3.14.1.s390x",
"product_id": "winpr-devel-3.10.3-150700.3.14.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "freerdp-3.10.3-150700.3.14.1.x86_64",
"product": {
"name": "freerdp-3.10.3-150700.3.14.1.x86_64",
"product_id": "freerdp-3.10.3-150700.3.14.1.x86_64"
}
},
{
"category": "product_version",
"name": "freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"product": {
"name": "freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"product_id": "freerdp-devel-3.10.3-150700.3.14.1.x86_64"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"product": {
"name": "freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"product_id": "freerdp-proxy-3.10.3-150700.3.14.1.x86_64"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"product": {
"name": "freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"product_id": "freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64"
}
},
{
"category": "product_version",
"name": "freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"product": {
"name": "freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"product_id": "freerdp-sdl-3.10.3-150700.3.14.1.x86_64"
}
},
{
"category": "product_version",
"name": "freerdp-server-3.10.3-150700.3.14.1.x86_64",
"product": {
"name": "freerdp-server-3.10.3-150700.3.14.1.x86_64",
"product_id": "freerdp-server-3.10.3-150700.3.14.1.x86_64"
}
},
{
"category": "product_version",
"name": "freerdp-wayland-3.10.3-150700.3.14.1.x86_64",
"product": {
"name": "freerdp-wayland-3.10.3-150700.3.14.1.x86_64",
"product_id": "freerdp-wayland-3.10.3-150700.3.14.1.x86_64"
}
},
{
"category": "product_version",
"name": "libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"product": {
"name": "libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"product_id": "libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64"
}
},
{
"category": "product_version",
"name": "libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"product": {
"name": "libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"product_id": "libfreerdp3-3-3.10.3-150700.3.14.1.x86_64"
}
},
{
"category": "product_version",
"name": "librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"product": {
"name": "librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"product_id": "librdtk0-0-3.10.3-150700.3.14.1.x86_64"
}
},
{
"category": "product_version",
"name": "libuwac0-0-3.10.3-150700.3.14.1.x86_64",
"product": {
"name": "libuwac0-0-3.10.3-150700.3.14.1.x86_64",
"product_id": "libuwac0-0-3.10.3-150700.3.14.1.x86_64"
}
},
{
"category": "product_version",
"name": "libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"product": {
"name": "libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"product_id": "libwinpr3-3-3.10.3-150700.3.14.1.x86_64"
}
},
{
"category": "product_version",
"name": "rdtk0-devel-3.10.3-150700.3.14.1.x86_64",
"product": {
"name": "rdtk0-devel-3.10.3-150700.3.14.1.x86_64",
"product_id": "rdtk0-devel-3.10.3-150700.3.14.1.x86_64"
}
},
{
"category": "product_version",
"name": "uwac0-devel-3.10.3-150700.3.14.1.x86_64",
"product": {
"name": "uwac0-devel-3.10.3-150700.3.14.1.x86_64",
"product_id": "uwac0-devel-3.10.3-150700.3.14.1.x86_64"
}
},
{
"category": "product_version",
"name": "winpr-devel-3.10.3-150700.3.14.1.x86_64",
"product": {
"name": "winpr-devel-3.10.3-150700.3.14.1.x86_64",
"product_id": "winpr-devel-3.10.3-150700.3.14.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Package Hub 15 SP7",
"product": {
"name": "SUSE Linux Enterprise Module for Package Hub 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP7",
"product_identification_helper": {
"cpe": "cpe:/o:suse:packagehub:15:sp7"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Workstation Extension 15 SP7",
"product": {
"name": "SUSE Linux Enterprise Workstation Extension 15 SP7",
"product_id": "SUSE Linux Enterprise Workstation Extension 15 SP7",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-we:15:sp7"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-3.10.3-150700.3.14.1.aarch64 as component of SUSE Linux Enterprise Module for Package Hub 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64"
},
"product_reference": "freerdp-3.10.3-150700.3.14.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-3.10.3-150700.3.14.1.ppc64le as component of SUSE Linux Enterprise Module for Package Hub 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le"
},
"product_reference": "freerdp-3.10.3-150700.3.14.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-3.10.3-150700.3.14.1.s390x as component of SUSE Linux Enterprise Module for Package Hub 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x"
},
"product_reference": "freerdp-3.10.3-150700.3.14.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-devel-3.10.3-150700.3.14.1.aarch64 as component of SUSE Linux Enterprise Module for Package Hub 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64"
},
"product_reference": "freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-devel-3.10.3-150700.3.14.1.ppc64le as component of SUSE Linux Enterprise Module for Package Hub 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le"
},
"product_reference": "freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-devel-3.10.3-150700.3.14.1.s390x as component of SUSE Linux Enterprise Module for Package Hub 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x"
},
"product_reference": "freerdp-devel-3.10.3-150700.3.14.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-proxy-3.10.3-150700.3.14.1.aarch64 as component of SUSE Linux Enterprise Module for Package Hub 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64"
},
"product_reference": "freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-proxy-3.10.3-150700.3.14.1.ppc64le as component of SUSE Linux Enterprise Module for Package Hub 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le"
},
"product_reference": "freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-proxy-3.10.3-150700.3.14.1.s390x as component of SUSE Linux Enterprise Module for Package Hub 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x"
},
"product_reference": "freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-server-3.10.3-150700.3.14.1.aarch64 as component of SUSE Linux Enterprise Module for Package Hub 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64"
},
"product_reference": "freerdp-server-3.10.3-150700.3.14.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-server-3.10.3-150700.3.14.1.ppc64le as component of SUSE Linux Enterprise Module for Package Hub 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le"
},
"product_reference": "freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-server-3.10.3-150700.3.14.1.s390x as component of SUSE Linux Enterprise Module for Package Hub 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x"
},
"product_reference": "freerdp-server-3.10.3-150700.3.14.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-wayland-3.10.3-150700.3.14.1.aarch64 as component of SUSE Linux Enterprise Module for Package Hub 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64"
},
"product_reference": "freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-wayland-3.10.3-150700.3.14.1.ppc64le as component of SUSE Linux Enterprise Module for Package Hub 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le"
},
"product_reference": "freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-wayland-3.10.3-150700.3.14.1.s390x as component of SUSE Linux Enterprise Module for Package Hub 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x"
},
"product_reference": "freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libuwac0-0-3.10.3-150700.3.14.1.aarch64 as component of SUSE Linux Enterprise Module for Package Hub 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64"
},
"product_reference": "libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libuwac0-0-3.10.3-150700.3.14.1.ppc64le as component of SUSE Linux Enterprise Module for Package Hub 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le"
},
"product_reference": "libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libuwac0-0-3.10.3-150700.3.14.1.s390x as component of SUSE Linux Enterprise Module for Package Hub 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x"
},
"product_reference": "libuwac0-0-3.10.3-150700.3.14.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-3.10.3-150700.3.14.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 15 SP7",
"product_id": "SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64"
},
"product_reference": "freerdp-3.10.3-150700.3.14.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-devel-3.10.3-150700.3.14.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 15 SP7",
"product_id": "SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64"
},
"product_reference": "freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-proxy-3.10.3-150700.3.14.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 15 SP7",
"product_id": "SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64"
},
"product_reference": "freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 15 SP7",
"product_id": "SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64"
},
"product_reference": "freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-sdl-3.10.3-150700.3.14.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 15 SP7",
"product_id": "SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64"
},
"product_reference": "freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-server-3.10.3-150700.3.14.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 15 SP7",
"product_id": "SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64"
},
"product_reference": "freerdp-server-3.10.3-150700.3.14.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 15 SP7",
"product_id": "SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64"
},
"product_reference": "libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp3-3-3.10.3-150700.3.14.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 15 SP7",
"product_id": "SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64"
},
"product_reference": "libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "librdtk0-0-3.10.3-150700.3.14.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 15 SP7",
"product_id": "SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64"
},
"product_reference": "librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr3-3-3.10.3-150700.3.14.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 15 SP7",
"product_id": "SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64"
},
"product_reference": "libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "winpr-devel-3.10.3-150700.3.14.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 15 SP7",
"product_id": "SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
},
"product_reference": "winpr-devel-3.10.3-150700.3.14.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 15 SP7"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-25941",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-25941"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Versions on the 2.x branch prior to to 2.11.8 and on the 3.x branch prior to 3.23.0 have an out-of-bounds read vulnerability in the FreeRDP client\u0027s RDPGFX channel that allows a malicious RDP server to read uninitialized heap memory by sending a crafted WIRE_TO_SURFACE_2 PDU with a `bitmapDataLength` value larger than the actual data in the packet. This can lead to information disclosure or client crashes when a user connects to a malicious server. Versions 2.11.8 and 3.23.0 fix the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-25941",
"url": "https://www.suse.com/security/cve/CVE-2026-25941"
},
{
"category": "external",
"summary": "SUSE Bug 1258919 for CVE-2026-25941",
"url": "https://bugzilla.suse.com/1258919"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-27T12:05:30Z",
"details": "moderate"
}
],
"title": "CVE-2026-25941"
},
{
"cve": "CVE-2026-25942",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-25942"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `xf_rail_server_execute_result` indexes the global `error_code_names[]` array (7 elements, indices 0-6) with an unchecked `execResult-\u003eexecResult` value received from the server, allowing an out-of-bounds read when the server sends an `execResult` value of 7 or greater. Version 3.23.0 fixes the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-25942",
"url": "https://www.suse.com/security/cve/CVE-2026-25942"
},
{
"category": "external",
"summary": "SUSE Bug 1258920 for CVE-2026-25942",
"url": "https://bugzilla.suse.com/1258920"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-27T12:05:30Z",
"details": "moderate"
}
],
"title": "CVE-2026-25942"
},
{
"cve": "CVE-2026-25952",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-25952"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `xf_SetWindowMinMaxInfo` dereferences a freed `xfAppWindow` pointer because `xf_rail_get_window` in `xf_rail_server_min_max_info` returns an unprotected pointer from the `railWindows` hash table, and the main thread can concurrently delete the window (via a window delete order) while the RAIL channel thread is still using the pointer. Version 3.23.0 fixes the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-25952",
"url": "https://www.suse.com/security/cve/CVE-2026-25952"
},
{
"category": "external",
"summary": "SUSE Bug 1258921 for CVE-2026-25952",
"url": "https://bugzilla.suse.com/1258921"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-27T12:05:30Z",
"details": "moderate"
}
],
"title": "CVE-2026-25952"
},
{
"cve": "CVE-2026-25953",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-25953"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `xf_AppUpdateWindowFromSurface` reads from a freed `xfAppWindow` because the RDPGFX DVC thread obtains a bare pointer via `xf_rail_get_window` without any lifetime protection, while the main thread can concurrently delete the window through a fastpath window-delete order. Version 3.23.0 fixes the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-25953",
"url": "https://www.suse.com/security/cve/CVE-2026-25953"
},
{
"category": "external",
"summary": "SUSE Bug 1258923 for CVE-2026-25953",
"url": "https://bugzilla.suse.com/1258923"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-27T12:05:30Z",
"details": "moderate"
}
],
"title": "CVE-2026-25953"
},
{
"cve": "CVE-2026-25954",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-25954"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `xf_rail_server_local_move_size` dereferences a freed `xfAppWindow` pointer because `xf_rail_get_window` returns an unprotected pointer from the `railWindows` hash table, and the main thread can concurrently delete the window (via a window delete order) while the RAIL channel thread is still using the pointer. Version 3.23.0 fixes the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-25954",
"url": "https://www.suse.com/security/cve/CVE-2026-25954"
},
{
"category": "external",
"summary": "SUSE Bug 1258924 for CVE-2026-25954",
"url": "https://bugzilla.suse.com/1258924"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-27T12:05:30Z",
"details": "moderate"
}
],
"title": "CVE-2026-25954"
},
{
"cve": "CVE-2026-25955",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-25955"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `xf_AppUpdateWindowFromSurface` reuses a cached `XImage` whose `data` pointer references a freed RDPGFX surface buffer, because `gdi_DeleteSurface` frees `surface-\u003edata` without invalidating the `appWindow-\u003eimage` that aliases it. Version 3.23.0 fixes the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-25955",
"url": "https://www.suse.com/security/cve/CVE-2026-25955"
},
{
"category": "external",
"summary": "SUSE Bug 1258973 for CVE-2026-25955",
"url": "https://bugzilla.suse.com/1258973"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-27T12:05:30Z",
"details": "moderate"
}
],
"title": "CVE-2026-25955"
},
{
"cve": "CVE-2026-25959",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-25959"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `xf_cliprdr_provide_data_` passes freed `pDstData` to `XChangeProperty` because the cliprdr channel thread calls `xf_cliprdr_server_format_data_response` which converts and uses the clipboard data without holding any lock, while the X11 event thread concurrently calls `xf_cliprdr_clear_cached_data` -\u003e `HashTable_Clear` which frees the same data via `xf_cached_data_free`, triggering a heap use after free. Version 3.23.0 fixes the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-25959",
"url": "https://www.suse.com/security/cve/CVE-2026-25959"
},
{
"category": "external",
"summary": "SUSE Bug 1258976 for CVE-2026-25959",
"url": "https://bugzilla.suse.com/1258976"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-27T12:05:30Z",
"details": "moderate"
}
],
"title": "CVE-2026-25959"
},
{
"cve": "CVE-2026-25997",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-25997"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `xf_clipboard_format_equal` reads freed `lastSentFormats` memory because `xf_clipboard_formats_free` (called from the cliprdr channel thread during auto-reconnect) frees the array while the X11 event thread concurrently iterates it in `xf_clipboard_changed`, triggering a heap use after free. Version 3.23.0 fixes the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-25997",
"url": "https://www.suse.com/security/cve/CVE-2026-25997"
},
{
"category": "external",
"summary": "SUSE Bug 1258977 for CVE-2026-25997",
"url": "https://bugzilla.suse.com/1258977"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-27T12:05:30Z",
"details": "moderate"
}
],
"title": "CVE-2026-25997"
},
{
"cve": "CVE-2026-26986",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-26986"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `rail_window_free` dereferences a freed `xfAppWindow` pointer during `HashTable_Free` cleanup because `xf_rail_window_common` calls `free(appWindow)` on title allocation failure without first removing the entry from the `railWindows` hash table, leaving a dangling pointer that is freed again on disconnect. Version 3.23.0 fixes the vulnerability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-26986",
"url": "https://www.suse.com/security/cve/CVE-2026-26986"
},
{
"category": "external",
"summary": "SUSE Bug 1258967 for CVE-2026-26986",
"url": "https://bugzilla.suse.com/1258967"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-27T12:05:30Z",
"details": "moderate"
}
],
"title": "CVE-2026-26986"
},
{
"cve": "CVE-2026-27015",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-27015"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, a missing bounds check in `smartcard_unpack_read_size_align()` (`libfreerdp/utils/smartcard_pack.c:1703`) allows a malicious RDP server to crash the FreeRDP client via a reachable `WINPR_ASSERT` -\u003e `abort()`. The crash occurs in upstream builds where `WITH_VERBOSE_WINPR_ASSERT=ON` (default in FreeRDP 3.22.0 / current WinPR CMake defaults). Smartcard redirection must be explicitly enabled by the user (e.g., `xfreerdp /smartcard`; `/smartcard-logon` implies `/smartcard`). Version 3.23.0 fixes the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-27015",
"url": "https://www.suse.com/security/cve/CVE-2026-27015"
},
{
"category": "external",
"summary": "SUSE Bug 1258987 for CVE-2026-27015",
"url": "https://bugzilla.suse.com/1258987"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-27T12:05:30Z",
"details": "moderate"
}
],
"title": "CVE-2026-27015"
},
{
"cve": "CVE-2026-27950",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-27950"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, the fix for the heap-use-after-free described in CVE-2026-24680 is incomplete. While the vulnerable execution flow referenced in the advisory exists in the SDL2 implementation, the fix appears to have been applied only to the SDL3 code path. In the SDL2 implementation, the pointer is not nulled after free. This creates a situation where the advisory suggests the vulnerability is fully resolved, while builds or environments still using SDL2 may retain the vulnerable logic. A complete fix is available in version 3.23.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-27950",
"url": "https://www.suse.com/security/cve/CVE-2026-27950"
},
{
"category": "external",
"summary": "SUSE Bug 1258941 for CVE-2026-27950",
"url": "https://bugzilla.suse.com/1258941"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-27T12:05:30Z",
"details": "moderate"
}
],
"title": "CVE-2026-27950"
},
{
"cve": "CVE-2026-27951",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-27951"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, the function `Stream_EnsureCapacity` can create an endless blocking loop. This may affect all client and server implementations using `FreeRDP`. For practical exploitation this will only work on 32bit systems where the available physical memory is `\u003e= SIZE_MAX`. Version 3.23.0 contains a patch. No known workarounds are available.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-27951",
"url": "https://www.suse.com/security/cve/CVE-2026-27951"
},
{
"category": "external",
"summary": "SUSE Bug 1258939 for CVE-2026-27951",
"url": "https://bugzilla.suse.com/1258939"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-27T12:05:30Z",
"details": "moderate"
}
],
"title": "CVE-2026-27951"
},
{
"cve": "CVE-2026-29774",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-29774"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, a client-side heap buffer overflow occurs in the FreeRDP client\u0027s AVC420/AVC444 YUV-to-RGB conversion path due to missing horizontal bounds validation of H.264 metablock regionRects coordinates. In yuv.c, the clamp() function (line 347) only validates top/bottom against the surface/YUV height, but never checks left/right against the surface width. When avc420_yuv_to_rgb (line 67) computes destination and source pointers using rect-\u003eleft, it performs unchecked pointer arithmetic that can reach far beyond the allocated surface buffer. A malicious server sends a WIRE_TO_SURFACE_PDU_1 with AVC420 codec containing a regionRects entry where left greatly exceeds the surface width (e.g., left=60000 on a 128px surface). The H.264 bitstream decodes successfully, then yuv420_process_work_callback calls avc420_yuv_to_rgb which computes pDstPoint = pDstData + rect-\u003etop * nDstStep + rect-\u003eleft * 4, writing 16-byte SSE vectors 1888+ bytes past the allocated heap region. This vulnerability is fixed in 3.24.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-29774",
"url": "https://www.suse.com/security/cve/CVE-2026-29774"
},
{
"category": "external",
"summary": "SUSE Bug 1259689 for CVE-2026-29774",
"url": "https://bugzilla.suse.com/1259689"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-27T12:05:30Z",
"details": "moderate"
}
],
"title": "CVE-2026-29774"
},
{
"cve": "CVE-2026-29775",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-29775"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, a client-side heap out-of-bounds read/write occurs in FreeRDP\u0027s bitmap cache subsystem due to an off-by-one boundary check in bitmap_cache_put. A malicious server can send a CACHE_BITMAP_ORDER (Rev1) with cacheId equal to maxCells, bypassing the guard and accessing cells[] one element past the allocated array. This vulnerability is fixed in 3.24.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-29775",
"url": "https://www.suse.com/security/cve/CVE-2026-29775"
},
{
"category": "external",
"summary": "SUSE Bug 1259684 for CVE-2026-29775",
"url": "https://bugzilla.suse.com/1259684"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.7,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-27T12:05:30Z",
"details": "low"
}
],
"title": "CVE-2026-29775"
},
{
"cve": "CVE-2026-29776",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-29776"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, Integer Underflow in update_read_cache_bitmap_order Function of FreeRDP\u0027s Core Library This vulnerability is fixed in 3.24.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-29776",
"url": "https://www.suse.com/security/cve/CVE-2026-29776"
},
{
"category": "external",
"summary": "SUSE Bug 1259692 for CVE-2026-29776",
"url": "https://bugzilla.suse.com/1259692"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.1,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-27T12:05:30Z",
"details": "low"
}
],
"title": "CVE-2026-29776"
},
{
"cve": "CVE-2026-31884",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-31884"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, division by zero in MS-ADPCM and IMA-ADPCM decoders when nBlockAlign is 0, leading to a crash. In libfreerdp/codec/dsp.c, both ADPCM decoders use size % block_size where block_size = context-\u003ecommon.format.nBlockAlign. The nBlockAlign value comes from the Server Audio Formats PDU on the RDPSND channel. The value 0 is not validated anywhere before reaching the decoder. When nBlockAlign = 0, the modulo operation causes a SIGFPE (floating point exception) crash. This vulnerability is fixed in 3.24.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-31884",
"url": "https://www.suse.com/security/cve/CVE-2026-31884"
},
{
"category": "external",
"summary": "SUSE Bug 1259680 for CVE-2026-31884",
"url": "https://bugzilla.suse.com/1259680"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-27T12:05:30Z",
"details": "moderate"
}
],
"title": "CVE-2026-31884"
},
{
"cve": "CVE-2026-31897",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-31897"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, there is an out-of-bounds read in freerdp_bitmap_decompress_planar when SrcSize is 0. The function dereferences *srcp (which points to pSrcData) without first verifying that SrcSize \u003e= 1. When SrcSize is 0 and pSrcData is non-NULL, this reads one byte past the end of the source buffer. This vulnerability is fixed in 3.24.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-31897",
"url": "https://www.suse.com/security/cve/CVE-2026-31897"
},
{
"category": "external",
"summary": "SUSE Bug 1259693 for CVE-2026-31897",
"url": "https://bugzilla.suse.com/1259693"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.1,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-27T12:05:30Z",
"details": "low"
}
],
"title": "CVE-2026-31897"
}
]
}
Loading…
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…