Alerts This Week
Warning Icon 1 714
Alerts This Week
Warning Icon 1 714

Fedora 34: FEDORA-2021-5d227916bc Critical: FreeRDP Security Fix

fedora
Calendar Grey November 25, 2021
Dist Fedora Esm H88
Updates rolled out for FreeRDP and Remmina within Fedora, improving both security measures and overall system reliability.
Security and bug fixes for FreeRDP & Remmina.

Summary

The xfreerdp & wlfreerdp Remote Desktop Protocol (RDP) clients from the FreeRDP

project.

xfreerdp & wlfreerdp can connect to RDP servers such as Microsoft Windows

machines, xrdp and VirtualBox.

Security and bug fixes for FreeRDP & Remmina.

* Wed Nov 10 2021 Ondrej Holy - 2:2.4.1-1

- Update to 2.4.1 (CVE-2021-41159, CVE-2021-41160).

* Tue Sep 14 2021 Sahana Prasad - 2:2.4.0-3

- Rebuilt with OpenSSL 3.0.0

* Wed Aug 11 2021 Ondrej Holy - 2:2.4.0-2

- Preparation for OpenSSL 3.0

* Thu Jul 29 2021 Ondrej Holy - 2:2.4.0-1

- Update to 2.4.0.

* Wed Jul 21 2021 Fedora Release Engineering - 2:2.3.2-3

- Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild

* Wed May 19 2021 Pete Walter - 2:2.3.2-2

- Rebuild for ICU 69

[ 1 ] Bug #1960201 - [abrt] remmina: rcw_after_configure_scrolled(): remmina killed by SIGSEGV

https://bugzilla.redhat.com/show_bug.cgi?id=1960201

[ 2 ] Bug #1986752 - [abrt] remmina: g_type_check_instance_cast(): remmina killed by SIGSEGV

https://bugzilla.redhat.com/show_bug.cgi?id=1986752

[ 3 ] Bug #1997002 - [abrt] remmina: pa_stream_writable_size(): remmina killed by SIGABRT

https://bugzilla.redhat.com/show_bug.cgi?id=1997002

[ 4 ] Bug #2015170 - [abrt] remmina: bio_write_intern(): remmina killed by SIGSEGV

https://bugzilla.redhat.com/show_bug.cgi?id=2015170

[ 5 ] Bug #2015189 - remmina-1.4.21 is available

https://bugzilla.redhat.com/show_bug.cgi?id=2015189

[ 6 ] Bug #2016413 - CVE-2021-41160 freerdp: improper region checks in all clients allow out of bound write to memory [fedora-all]

https://bugzilla.redhat.com/show_bug.cgi?id=2016413

su -c 'dnf upgrade --advisory FEDORA-2021-5d227916bc' at the command

line. For more information, refer to the dnf documentation available at

https://dnf.readthedocs.io/en/latest/command_ref.html

All packages are signed with the Fedora Project GPG key. More details on the

GPG keys used by the Fedora Project can be found at

https://fedoraproject.org/security/

package-announce mailing list -- package-announce@lists.fedoraproject.org

To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/

List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines

List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/

Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure

Topics%20covered

Topics Covered

security advisory security update fedora critical bug fix remote desktop freerdp

Change Log

References

Update Instructions

Severity
critical
Lowest
Low
Medium
High
Critical

Product: Fedora 34
Version: 2.4.1
Release: 1.fc34
URL: https://www.freerdp.com/
Summary: Free implementation of the Remote Desktop Protocol (RDP)

Topics%20covered

Topics Covered

security advisory security update fedora critical bug fix remote desktop freerdp

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here