VYPR

apk package

chainguard/freerdp-libs

pkg:apk/chainguard/freerdp-libs

Vulnerabilities (8)

  • CVE-2025-68118Dec 17, 2025
    affected < 0fixed 0

    FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.20.0, a vulnerability exists in FreeRDP’s certificate handling code on Windows platforms. The function `freerdp_certificate_data_hash_ uses` the Microsoft-specific `_snprintf` function to format c

  • CVE-2025-4478May 16, 2025
    affected < 0fixed 0

    A flaw was found in the FreeRDP used by Anaconda's remote install feature, where a crafted RDP packet could trigger a segmentation fault. This issue causes the service to crash and remain defunct, resulting in a denial of service. It occurs pre-boot and is likely due to a NULL po

  • CVE-2024-32662Apr 23, 2024
    affected < 2.11.7-r8fixed 2.11.7-r8

    FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients prior to version 3.5.1 are vulnerable to out-of-bounds read. This occurs when `WCHAR` string is read with twice the size it has and converted to `UTF-8`, `base64` decoded. The string is only us

  • CVE-2024-32661Apr 23, 2024
    affected < 2.11.7-r8fixed 2.11.7-r8

    FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients prior to version 3.5.1 are vulnerable to a possible `NULL` access and crash. Version 3.5.1 contains a patch for the issue. No known workarounds are available.

  • CVE-2024-32660Apr 23, 2024
    affected < 0fixed 0

    FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.5.1, a malicious server can crash the FreeRDP client by sending invalid huge allocation size. Version 3.5.1 contains a patch for the issue. No known workarounds are available.

  • CVE-2024-32659Apr 23, 2024
    affected < 0fixed 0

    FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients prior to version 3.5.1 are vulnerable to out-of-bounds read if `((nWidth == 0) and (nHeight == 0))`. Version 3.5.1 contains a patch for the issue. No known workarounds are available.

  • CVE-2024-32658Apr 23, 2024
    affected < 0fixed 0

    FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients prior to version 3.5.1 are vulnerable to out-of-bounds read. Version 3.5.1 contains a patch for the issue. No known workarounds are available.

  • CVE-2024-22211Jan 19, 2024
    affected < 2.11.5-r0fixed 2.11.5-r0

    FreeRDP is a set of free and open source remote desktop protocol library and clients. In affected versions an integer overflow in `freerdp_bitmap_planar_context_reset` leads to heap-buffer overflow. This affects FreeRDP based clients. FreeRDP based server implementations and prox