Search CVE reports


Toggle filters

1 – 10 of 183 results


CVE-2026-57158

Medium priority
Needs evaluation

planar_decompress_plane_rle_only: heap OOB read — incomplete fix for CVE-2026-23530

3 affected packages

freerdp, freerdp2, freerdp3

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
freerdp Not in release Not in release Not in release Needs evaluation
freerdp2 Not in release Needs evaluation Needs evaluation Needs evaluation Needs evaluation
freerdp3 Needs evaluation Needs evaluation Not in release
Show less packages

CVE-2026-57157

Medium priority
Needs evaluation

Out-of-bounds read in the camera device enumerator server (rdpecam) via unterminated DeviceName / VirtualChannelName

3 affected packages

freerdp, freerdp2, freerdp3

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
freerdp Not in release Not in release Not in release Needs evaluation
freerdp2 Not in release Needs evaluation Needs evaluation Needs evaluation Needs evaluation
freerdp3 Needs evaluation Needs evaluation Not in release
Show less packages

CVE-2026-57156

Medium priority
Needs evaluation

Integer overflow leading to heap buffer overflow in FreeRDP Orders Delta Points parsing

3 affected packages

freerdp, freerdp2, freerdp3

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
freerdp Not in release Not in release Not in release Needs evaluation
freerdp2 Not in release Needs evaluation Needs evaluation Needs evaluation Needs evaluation
freerdp3 Needs evaluation Needs evaluation Not in release
Show less packages

CVE-2026-56297

Medium priority
Needs evaluation

FreeRDP before 3.22.0 contains a use-after-free vulnerability in dvcman_channel_close and dvcman_call_on_receive due to improper synchronization of channel_callback access. A malicious RDP server can trigger a race condition by...

3 affected packages

freerdp, freerdp2, freerdp3

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
freerdp Not in release Not in release Not in release Needs evaluation
freerdp2 Not in release Needs evaluation Needs evaluation Needs evaluation Needs evaluation
freerdp3 Not affected Needs evaluation Not in release
Show less packages

CVE-2026-55827

Medium priority
Needs evaluation

Heap out-of-bounds write in FreeRDP RemoteFX (RFX) Cache Bitmap V3 decode - malicious RDP server achieves controlled `$pc` in a connecting client

3 affected packages

freerdp, freerdp2, freerdp3

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
freerdp Not in release Not in release Not in release Needs evaluation
freerdp2 Not in release Needs evaluation Needs evaluation Needs evaluation Needs evaluation
freerdp3 Needs evaluation Needs evaluation Not in release
Show less packages

CVE-2026-55648

Medium priority
Needs evaluation

Integer Overflow in `freerdp_image_copy_from_icon_data` Bypasses Bounds Check

3 affected packages

freerdp, freerdp2, freerdp3

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
freerdp Not in release Not in release Not in release Needs evaluation
freerdp2 Not in release Needs evaluation Needs evaluation Needs evaluation Needs evaluation
freerdp3 Needs evaluation Needs evaluation Not in release
Show less packages

CVE-2026-55564

Medium priority
Needs evaluation

Out-of-bounds read in glyph_cache_get via crafted glyph fragments

3 affected packages

freerdp, freerdp2, freerdp3

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
freerdp Not in release Not in release Not in release Needs evaluation
freerdp2 Not in release Needs evaluation Needs evaluation Needs evaluation Needs evaluation
freerdp3 Needs evaluation Needs evaluation Not in release
Show less packages

CVE-2026-55194

Medium priority
Needs evaluation

Heap-buffer-overflow write in TS Gateway RPC RESPONSE reassembly due to alloc_hint capacity mismatch

3 affected packages

freerdp, freerdp2, freerdp3

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
freerdp Not in release Not in release Not in release Needs evaluation
freerdp2 Not in release Needs evaluation Needs evaluation Needs evaluation Needs evaluation
freerdp3 Needs evaluation Needs evaluation Not in release
Show less packages

CVE-2026-55193

Medium priority
Needs evaluation

Heap-buffer-overflow write in TS Gateway RPC fragment receive due to uncapped bind_ack max_xmit_frag

3 affected packages

freerdp, freerdp2, freerdp3

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
freerdp Not in release Not in release Not in release Needs evaluation
freerdp2 Not in release Needs evaluation Needs evaluation Needs evaluation Needs evaluation
freerdp3 Needs evaluation Needs evaluation Not in release
Show less packages

CVE-2026-55192

Medium priority
Needs evaluation

Out-of-bounds read in H.264 YUV-to-RGB conversion due to decoder/surface dimension mismatch

3 affected packages

freerdp, freerdp2, freerdp3

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
freerdp Not in release Not in release Not in release Needs evaluation
freerdp2 Not in release Needs evaluation Needs evaluation Needs evaluation Needs evaluation
freerdp3 Needs evaluation Needs evaluation Not in release
Show less packages