Debian 10 Buster: DLA-3607-1 Critical: Gnome-Boxes RDP Errors
debian lts
October 7, 2023
It has been found that the update of freerdp2 (see DLA-3606-1) exposed a bug in gnome-boxes, which breaks RDP connections with the symtoms of hangs and black screens
Topics Covered
Summary
Note: sha256 is now used instead of sha1 to fingerprint certificates. This will
invalidate all hosts in FreeRDP known_hosts2 file, $HOME/.config/freerdp/known_hosts2.
In case of problems with the connection, try removing that file.
For Debian 10 buster, this problem has been fixed in version
3.30.3-2+deb10u1.
We recommend that you upgrade your gnome-boxes packages.
For the detailed security status of gnome-boxes please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/source-package/gnome-boxes
Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
PREVIOUS 
NEXT Severity
critical
Lowest
Low
Medium
High
Critical
Package: gnome-boxes
Version: 3.30.3-2+deb10u1
CVE ID:
Debian Bug:
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!