Publishing details
Changelog
freerdp2 (2.10.0+dfsg1-1.1ubuntu1) mantic; urgency=medium
* SECURITY UPDATE: integer underflow
- debian/patches/CVE-2023-39350.patch: validates package length to prevent
possible out of bound read
- CVE-2023-39350
* SECURITY UPDATE: null pointer dereference
- debian/patches/CVE-2023-39351.patch: frees content of currentMessage on
fail to prevent null pointer access when processing next package
- CVE-2023-39351
* SECURITY UPDATE: missing offset validation
- debian/patches/CVE-2023-39353-01.patch: validates offset to prevent
possible out of bound read
- debian/patches/CVE-2023-39353-02.patch: fixes issues with the original
patch
- CVE-2023-39353
* SECURITY UPDATE: missing input validation
- debian/patches/CVE-2023-39354.patch: validates input length to prevent
possible out of bound read
- CVE-2023-39354
* SECURITY UPDATE: integer underflow
- debian/patches/CVE-2023-40181.patch: fixes cBitsRemaining calculation to
prevent possible out of bound read
- CVE-2023-40181
* SECURITY UPDATE: integer overflow
- debian/patches/CVE-2023-40186.patch: fixes integer multiplication to
prevent possible out of bound write
- CVE-2023-40186
* SECURITY UPDATE: missing input validation
- debian/patches/ensure_integer_width.patch: ensures integer width
- debian/patches/CVE-2023-40188.patch: validates input length to prevent
possible out of bound read
- CVE-2023-40188
* SECURITY UPDATE: missing offset validation
- debian/patches/CVE-2023-40567.patch: validates offset to prevent
possible out of bound write
- CVE-2023-40567
* SECURITY UPDATE: incorrect parameter calculation
- debian/patches/CVE-2023-40569.patch: fixes nXSrc and nYSrc calculation
to prevent possible out of bound write
- CVE-2023-40569
* SECURITY UPDATE: global buffer overflow
- debian/patches/CVE-2023-40589.patch: fixes index checks
- CVE-2023-40589
-- Jorge Sancho Larraz <email address hidden> Wed, 04 Oct 2023 15:07:16 +0200
Builds
Built packages
-
freerdp2-dev
Free Remote Desktop Protocol library (development files)
-
freerdp2-shadow-x11
FreeRDP x11 shadowing server
-
freerdp2-shadow-x11-dbgsym
debug symbols for freerdp2-shadow-x11
-
freerdp2-wayland
RDP client for Windows Terminal Services (wayland client)
-
freerdp2-wayland-dbgsym
debug symbols for freerdp2-wayland
-
freerdp2-x11
RDP client for Windows Terminal Services (X11 client)
-
freerdp2-x11-dbgsym
debug symbols for freerdp2-x11
-
libfreerdp-client2-2
Free Remote Desktop Protocol library (client library)
-
libfreerdp-client2-2-dbgsym
debug symbols for libfreerdp-client2-2
-
libfreerdp-server2-2
Free Remote Desktop Protocol library (server library)
-
libfreerdp-server2-2-dbgsym
debug symbols for libfreerdp-server2-2
-
libfreerdp-shadow-subsystem2-2
FreeRDP Remote Desktop Protocol shadow subsystem libraries
-
libfreerdp-shadow-subsystem2-2-dbgsym
debug symbols for libfreerdp-shadow-subsystem2-2
-
libfreerdp-shadow2-2
FreeRDP Remote Desktop Protocol shadow libraries
-
libfreerdp-shadow2-2-dbgsym
debug symbols for libfreerdp-shadow2-2
-
libfreerdp2-2
Free Remote Desktop Protocol library (core library)
-
libfreerdp2-2-dbgsym
debug symbols for libfreerdp2-2
-
libuwac0-0
Using wayland as a client library
-
libuwac0-0-dbgsym
debug symbols for libuwac0-0
-
libuwac0-dev
Using wayland as a client (development files)
-
libwinpr-tools2-2
Windows Portable Runtime Tools library
-
libwinpr-tools2-2-dbgsym
debug symbols for libwinpr-tools2-2
-
libwinpr2-2
Windows Portable Runtime library
-
libwinpr2-2-dbgsym
debug symbols for libwinpr2-2
-
libwinpr2-dev
Windows Portable Runtime library (development files)
-
winpr-utils
Windows Portable Runtime library command line utilities
-
winpr-utils-dbgsym
debug symbols for winpr-utils
Package files