Debian LTS: DLA-4166-1 critical: xrdp session management flaws
debian lts
May 16, 2025
Several vulnerabilities were discovered in xrdp, a Remote Desktop Protocol (RDP) server
Summary
CVE-2023-40184
improper handling of session establishment errors allows bypassing
OS-level session restrictions. The `auth_start_session` function
can return non-zero on PAM error which may result in in session
restrictions such as max concurrent sessions per user by PAM.
CVE-2023-42822
Access to the font glyphs in xrdp_painter.c is not bounds-checked
. Since some of this data is controllable by the user, this can
result in an out-of-bounds read within the xrdp executable. The
vulnerability allows an out-of-bounds read within a potentially
privileged process.
CVE-2024-39917
a vulnerability that allows attackers to make an infinite number
of login attempts. The number of max login attempts is supposed to
be limited by a configuration parameter `MaxLoginRetry` in
`/etc/xrdp/sesman.ini`. However, this mechanism was not
effectively working. As a result, xrdp allows an infinite number
of login attempts.
PREVIOUS 
NEXT Severity
critical
Lowest
Low
Medium
High
Critical
Package: xrdp
Version: 0.9.21.1-1~deb11u2
CVE ID: CVE-2023-40184 CVE-2023-42822 CVE-2024-39917
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!