UbuntuUpdates.org

Package "freerdp2"

Name: freerdp2

Description:

This package is just an umbrella for a group of other packages, it has no description.
Description samples from packages in group:

  • FreeRDP x11 shadowing server
  • RDP client for Windows Terminal Services (wayland client)
  • RDP client for Windows Terminal Services (X11 client)

Latest version: 2.1.1+dfsg1-0ubuntu0.20.04.1
Release: focal (20.04)
Level: security
Repository: universe

Links



Other versions of "freerdp2" in Focal

Repository Area Version
base main 2.0.0~git20190204.1.2693389a+dfsg1-2build2
security main 2.1.1+dfsg1-0ubuntu0.20.04.1
updates main 2.1.1+dfsg1-0ubuntu0.20.04.1
updates universe 2.1.1+dfsg1-0ubuntu0.20.04.1

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 2.1.1+dfsg1-0ubuntu0.20.04.1 2020-06-01 19:07:36 UTC

  freerdp2 (2.1.1+dfsg1-0ubuntu0.20.04.1) focal-security; urgency=medium

  * Updated to 2.1.1 to fix multiple security issues.
    - debian/series/0001_CVE-2019-17177.patch: removed, included in new
      version.
    - debian/rules: set WITH_PROXY=OFF for now.
    - debian/control: add libcairo2-dev to Build-Depends.
    - debian/rules: set WITH_CAIRO=ON.
    - debian/*symbols: updated for new version.
    - CVE-2020-11042, CVE-2020-11044, CVE-2020-11045, CVE-2020-11046,
      CVE-2020-11047, CVE-2020-11048, CVE-2020-11049, CVE-2020-11058,
      CVE-2020-11521, CVE-2020-11522, CVE-2020-11523, CVE-2020-11524,
      CVE-2020-11525, CVE-2020-11526, CVE-2020-13396, CVE-2020-13397,
      CVE-2020-13398

 -- Marc Deslauriers <email address hidden> Mon, 25 May 2020 12:58:15 -0400

CVE-2019-17177 libfreerdp/codec/region.c in FreeRDP through 1.1.x and 2.x through 2.0.0-rc4 has memory leaks because a supplied realloc pointer (i.e., the first arg
CVE-2020-11042 In FreeRDP greater than 1.1 and before 2.0.0, there is an out-of-bounds read in update_read_icon_info. It allows reading a attacker-defined amount of
CVE-2020-11044 In FreeRDP greater than 1.2 and before 2.0.0, a double free in update_read_cache_bitmap_v3_order crashes the client application if corrupted data fro
CVE-2020-11045 In FreeRDP after 1.0 and before 2.0.0, there is an out-of-bound read in in update_read_bitmap_data that allows client memory to be read to an image b
CVE-2020-11046 In FreeRDP after 1.0 and before 2.0.0, there is a stream out-of-bounds seek in update_read_synchronize that could lead to a later out-of-bounds read.
CVE-2020-11047 In FreeRDP after 1.1 and before 2.0.0, there is an out-of-bounds read in autodetect_recv_bandwidth_measure_results. A malicious server can extract up
CVE-2020-11048 In FreeRDP after 1.0 and before 2.0.0, there is an out-of-bounds read. It only allows to abort a session. No data extraction is possible. This has be
CVE-2020-11049 In FreeRDP after 1.1 and before 2.0.0, there is an out-of-bound read of client memory that is then passed on to the protocol parser. This has been pa
CVE-2020-11058 In FreeRDP after 1.1 and before 2.0.0, a stream out-of-bounds seek in rdp_read_font_capability_set could lead to a later out-of-bounds read. As a res
CVE-2020-11521 libfreerdp/codec/planar.c in FreeRDP version > 1.0 through 2.0.0-rc4 has an Out-of-bounds Write.
CVE-2020-11522 libfreerdp/gdi/gdi.c in FreeRDP > 1.0 through 2.0.0-rc4 has an Out-of-bounds Read.
CVE-2020-11523 libfreerdp/gdi/region.c in FreeRDP versions > 1.0 through 2.0.0-rc4 has an Integer Overflow.
CVE-2020-11524 libfreerdp/codec/interleaved.c in FreeRDP versions > 1.0 through 2.0.0-rc4 has an Out-of-bounds Write.
CVE-2020-11525 libfreerdp/cache/bitmap.c in FreeRDP versions > 1.0 through 2.0.0-rc4 has an Out of bounds read.
CVE-2020-11526 libfreerdp/core/update.c in FreeRDP versions > 1.1 through 2.0.0-rc4 has an Out-of-bounds Read.
CVE-2020-13396 An issue was discovered in FreeRDP before 2.1.1. An out-of-bounds (OOB) read vulnerability has been detected in ntlm_read_ChallengeMessage in winpr/l
CVE-2020-13397 An issue was discovered in FreeRDP before 2.1.1. An out-of-bounds (OOB) read vulnerability has been detected in security_fips_decrypt in libfreerdp/c
CVE-2020-13398 An issue was discovered in FreeRDP before 2.1.1. An out-of-bounds (OOB) write vulnerability has been detected in crypto_rsa_common in libfreerdp/cryp



About   -   Send Feedback to @ubuntu_updates