Unrated severityNVD Advisory· Published May 29, 2020· Updated Aug 4, 2024
Double free in cliprdr_server_receive_capabilities in FreeRDP
CVE-2020-11017
Description
In FreeRDP less than or equal to 2.0.0, by providing manipulated input a malicious client can create a double free condition and crash the server. This is fixed in version 2.1.0.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
9- osv-coords7 versionspkg:rpm/opensuse/freerdp2&distro=openSUSE%20Tumbleweedpkg:rpm/opensuse/freerdp&distro=openSUSE%20Leap%2015.1pkg:rpm/suse/freerdp&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP5pkg:rpm/suse/freerdp&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012%20SP5pkg:rpm/suse/freerdp&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2015%20SP1pkg:rpm/suse/freerdp&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2015%20SP2pkg:rpm/suse/vinagre&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012%20SP5
< 2.4.0-2.1+ 6 more
- (no CPE)range: < 2.4.0-2.1
- (no CPE)range: < 2.1.2-lp151.5.6.1
- (no CPE)range: < 2.1.2-12.20.1
- (no CPE)range: < 2.1.2-12.20.1
- (no CPE)range: < 2.1.2-10.15.1
- (no CPE)range: < 2.1.2-15.7.1
- (no CPE)range: < 3.20.2-16.3.3
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.