Search CVE reports
1 – 10 of 183 results
planar_decompress_plane_rle_only: heap OOB read — incomplete fix for CVE-2026-23530
3 affected packages
freerdp, freerdp2, freerdp3
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| freerdp | Not in release | Not in release | Not in release | — | Needs evaluation |
| freerdp2 | Not in release | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| freerdp3 | Needs evaluation | Needs evaluation | Not in release | — | — |
Out-of-bounds read in the camera device enumerator server (rdpecam) via unterminated DeviceName / VirtualChannelName
3 affected packages
freerdp, freerdp2, freerdp3
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| freerdp | Not in release | Not in release | Not in release | — | Needs evaluation |
| freerdp2 | Not in release | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| freerdp3 | Needs evaluation | Needs evaluation | Not in release | — | — |
Integer overflow leading to heap buffer overflow in FreeRDP Orders Delta Points parsing
3 affected packages
freerdp, freerdp2, freerdp3
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| freerdp | Not in release | Not in release | Not in release | — | Needs evaluation |
| freerdp2 | Not in release | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| freerdp3 | Needs evaluation | Needs evaluation | Not in release | — | — |
FreeRDP before 3.22.0 contains a use-after-free vulnerability in dvcman_channel_close and dvcman_call_on_receive due to improper synchronization of channel_callback access. A malicious RDP server can trigger a race condition by...
3 affected packages
freerdp, freerdp2, freerdp3
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| freerdp | Not in release | Not in release | Not in release | — | Needs evaluation |
| freerdp2 | Not in release | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| freerdp3 | Not affected | Needs evaluation | Not in release | — | — |
Heap out-of-bounds write in FreeRDP RemoteFX (RFX) Cache Bitmap V3 decode - malicious RDP server achieves controlled `$pc` in a connecting client
3 affected packages
freerdp, freerdp2, freerdp3
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| freerdp | Not in release | Not in release | Not in release | — | Needs evaluation |
| freerdp2 | Not in release | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| freerdp3 | Needs evaluation | Needs evaluation | Not in release | — | — |
Integer Overflow in `freerdp_image_copy_from_icon_data` Bypasses Bounds Check
3 affected packages
freerdp, freerdp2, freerdp3
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| freerdp | Not in release | Not in release | Not in release | — | Needs evaluation |
| freerdp2 | Not in release | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| freerdp3 | Needs evaluation | Needs evaluation | Not in release | — | — |
Out-of-bounds read in glyph_cache_get via crafted glyph fragments
3 affected packages
freerdp, freerdp2, freerdp3
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| freerdp | Not in release | Not in release | Not in release | — | Needs evaluation |
| freerdp2 | Not in release | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| freerdp3 | Needs evaluation | Needs evaluation | Not in release | — | — |
Heap-buffer-overflow write in TS Gateway RPC RESPONSE reassembly due to alloc_hint capacity mismatch
3 affected packages
freerdp, freerdp2, freerdp3
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| freerdp | Not in release | Not in release | Not in release | — | Needs evaluation |
| freerdp2 | Not in release | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| freerdp3 | Needs evaluation | Needs evaluation | Not in release | — | — |
Heap-buffer-overflow write in TS Gateway RPC fragment receive due to uncapped bind_ack max_xmit_frag
3 affected packages
freerdp, freerdp2, freerdp3
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| freerdp | Not in release | Not in release | Not in release | — | Needs evaluation |
| freerdp2 | Not in release | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| freerdp3 | Needs evaluation | Needs evaluation | Not in release | — | — |
Out-of-bounds read in H.264 YUV-to-RGB conversion due to decoder/surface dimension mismatch
3 affected packages
freerdp, freerdp2, freerdp3
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| freerdp | Not in release | Not in release | Not in release | — | Needs evaluation |
| freerdp2 | Not in release | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| freerdp3 | Needs evaluation | Needs evaluation | Not in release | — | — |