rpm package
opensuse/freerdp&distro=openSUSE Leap 15.6
pkg:rpm/opensuse/freerdp&distro=openSUSE%20Leap%2015.6
Vulnerabilities (33)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2026-23531 | — | < 2.11.2-150600.4.6.1 | 2.11.2-150600.4.6.1 | Jan 19, 2026 | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0, in ClearCodec, when `glyphData` is present, `clear_decompress` calls `freerdp_image_copy_no_overlap` without validating the destination rectangle, allowing an out-of-bounds read/write via cr | ||
| CVE-2026-23530 | — | < 2.11.2-150600.4.6.1 | 2.11.2-150600.4.6.1 | Jan 19, 2026 | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0,`freerdp_bitmap_decompress_planar` does not validate `nSrcWidth`/`nSrcHeight` against `planar->maxWidth`/`maxHeight` before RLE decode. A malicious server can trigger a client‑side heap buffe | ||
| CVE-2026-22859 | — | < 2.11.2-150600.4.6.1 | 2.11.2-150600.4.6.1 | Jan 14, 2026 | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, the URBDRC client does not perform bounds checking on server‑supplied MSUSB_INTERFACE_DESCRIPTOR values and uses them as indices in libusb_udev_complete_msconfig_setup, causing an out‑of‑bounds read | ||
| CVE-2026-22857 | — | < 2.11.2-150600.4.12.1 | 2.11.2-150600.4.12.1 | Jan 14, 2026 | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, a heap use-after-free occurs in irp_thread_func because the IRP is freed by irp->Complete() and then accessed again on the error path. This vulnerability is fixed in 3.20.1. | ||
| CVE-2026-22856 | — | < 2.11.2-150600.4.6.1 | 2.11.2-150600.4.6.1 | Jan 14, 2026 | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, a race in the serial channel IRP thread tracking allows a heap use‑after‑free when one thread removes an entry from serial->IrpThreads while another reads it. This vulnerability is fixed in 3.20.1. | ||
| CVE-2026-22855 | — | < 2.11.2-150600.4.12.1 | 2.11.2-150600.4.12.1 | Jan 14, 2026 | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, a heap out-of-bounds read occurs in the smartcard SetAttrib path when cbAttrLen does not match the actual NDR buffer length. This vulnerability is fixed in 3.20.1. | ||
| CVE-2026-22854 | — | < 2.11.2-150600.4.6.1 | 2.11.2-150600.4.6.1 | Jan 14, 2026 | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, a heap-buffer-overflow occurs in drive read when a server-controlled read length is used to read file data into an IRP output stream buffer without a hard upper bound, allowing an oversized read to | ||
| CVE-2026-22852 | — | < 2.11.2-150600.4.6.1 | 2.11.2-150600.4.6.1 | Jan 14, 2026 | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, a malicious RDP server can trigger a heap-buffer-overflow write in the FreeRDP client when processing Audio Input (AUDIN) format lists. audin_process_formats reuses callback->formats_count across mu | ||
| CVE-2024-32661 | — | < 2.11.2-150600.4.3.1 | 2.11.2-150600.4.3.1 | Apr 23, 2024 | FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients prior to version 3.5.1 are vulnerable to a possible `NULL` access and crash. Version 3.5.1 contains a patch for the issue. No known workarounds are available. | ||
| CVE-2024-32660 | — | < 2.11.2-150600.4.3.1 | 2.11.2-150600.4.3.1 | Apr 23, 2024 | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.5.1, a malicious server can crash the FreeRDP client by sending invalid huge allocation size. Version 3.5.1 contains a patch for the issue. No known workarounds are available. | ||
| CVE-2024-32659 | — | < 2.11.2-150600.4.3.1 | 2.11.2-150600.4.3.1 | Apr 23, 2024 | FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients prior to version 3.5.1 are vulnerable to out-of-bounds read if `((nWidth == 0) and (nHeight == 0))`. Version 3.5.1 contains a patch for the issue. No known workarounds are available. | ||
| CVE-2024-32658 | — | < 2.11.2-150600.4.3.1 | 2.11.2-150600.4.3.1 | Apr 23, 2024 | FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients prior to version 3.5.1 are vulnerable to out-of-bounds read. Version 3.5.1 contains a patch for the issue. No known workarounds are available. | ||
| CVE-2024-22211 | — | < 2.11.2-150600.4.3.1 | 2.11.2-150600.4.3.1 | Jan 19, 2024 | FreeRDP is a set of free and open source remote desktop protocol library and clients. In affected versions an integer overflow in `freerdp_bitmap_planar_context_reset` leads to heap-buffer overflow. This affects FreeRDP based clients. FreeRDP based server implementations and prox |
- CVE-2026-23531Jan 19, 2026affected < 2.11.2-150600.4.6.1fixed 2.11.2-150600.4.6.1
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0, in ClearCodec, when `glyphData` is present, `clear_decompress` calls `freerdp_image_copy_no_overlap` without validating the destination rectangle, allowing an out-of-bounds read/write via cr
- CVE-2026-23530Jan 19, 2026affected < 2.11.2-150600.4.6.1fixed 2.11.2-150600.4.6.1
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0,`freerdp_bitmap_decompress_planar` does not validate `nSrcWidth`/`nSrcHeight` against `planar->maxWidth`/`maxHeight` before RLE decode. A malicious server can trigger a client‑side heap buffe
- CVE-2026-22859Jan 14, 2026affected < 2.11.2-150600.4.6.1fixed 2.11.2-150600.4.6.1
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, the URBDRC client does not perform bounds checking on server‑supplied MSUSB_INTERFACE_DESCRIPTOR values and uses them as indices in libusb_udev_complete_msconfig_setup, causing an out‑of‑bounds read
- CVE-2026-22857Jan 14, 2026affected < 2.11.2-150600.4.12.1fixed 2.11.2-150600.4.12.1
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, a heap use-after-free occurs in irp_thread_func because the IRP is freed by irp->Complete() and then accessed again on the error path. This vulnerability is fixed in 3.20.1.
- CVE-2026-22856Jan 14, 2026affected < 2.11.2-150600.4.6.1fixed 2.11.2-150600.4.6.1
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, a race in the serial channel IRP thread tracking allows a heap use‑after‑free when one thread removes an entry from serial->IrpThreads while another reads it. This vulnerability is fixed in 3.20.1.
- CVE-2026-22855Jan 14, 2026affected < 2.11.2-150600.4.12.1fixed 2.11.2-150600.4.12.1
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, a heap out-of-bounds read occurs in the smartcard SetAttrib path when cbAttrLen does not match the actual NDR buffer length. This vulnerability is fixed in 3.20.1.
- CVE-2026-22854Jan 14, 2026affected < 2.11.2-150600.4.6.1fixed 2.11.2-150600.4.6.1
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, a heap-buffer-overflow occurs in drive read when a server-controlled read length is used to read file data into an IRP output stream buffer without a hard upper bound, allowing an oversized read to
- CVE-2026-22852Jan 14, 2026affected < 2.11.2-150600.4.6.1fixed 2.11.2-150600.4.6.1
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, a malicious RDP server can trigger a heap-buffer-overflow write in the FreeRDP client when processing Audio Input (AUDIN) format lists. audin_process_formats reuses callback->formats_count across mu
- CVE-2024-32661Apr 23, 2024affected < 2.11.2-150600.4.3.1fixed 2.11.2-150600.4.3.1
FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients prior to version 3.5.1 are vulnerable to a possible `NULL` access and crash. Version 3.5.1 contains a patch for the issue. No known workarounds are available.
- CVE-2024-32660Apr 23, 2024affected < 2.11.2-150600.4.3.1fixed 2.11.2-150600.4.3.1
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.5.1, a malicious server can crash the FreeRDP client by sending invalid huge allocation size. Version 3.5.1 contains a patch for the issue. No known workarounds are available.
- CVE-2024-32659Apr 23, 2024affected < 2.11.2-150600.4.3.1fixed 2.11.2-150600.4.3.1
FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients prior to version 3.5.1 are vulnerable to out-of-bounds read if `((nWidth == 0) and (nHeight == 0))`. Version 3.5.1 contains a patch for the issue. No known workarounds are available.
- CVE-2024-32658Apr 23, 2024affected < 2.11.2-150600.4.3.1fixed 2.11.2-150600.4.3.1
FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients prior to version 3.5.1 are vulnerable to out-of-bounds read. Version 3.5.1 contains a patch for the issue. No known workarounds are available.
- CVE-2024-22211Jan 19, 2024affected < 2.11.2-150600.4.3.1fixed 2.11.2-150600.4.3.1
FreeRDP is a set of free and open source remote desktop protocol library and clients. In affected versions an integer overflow in `freerdp_bitmap_planar_context_reset` leads to heap-buffer overflow. This affects FreeRDP based clients. FreeRDP based server implementations and prox
Page 2 of 2