Important Input Validation Vulnerability in guacamole-server for Fedora 42

Guacamole is an HTML5 remote desktop gateway.

Guacamole provides access to desktop environments using remote desktop protocols

like VNC and RDP. A centralized server acts as a tunnel and proxy, allowing

access to multiple desktops through a web browser.

No browser plugins are needed, and no client software needs to be installed. The

client requires nothing more than a web browser supporting HTML5 and AJAX.

The main web application is provided by the "guacamole-client" package.

Apache Guacamole 1.6.0 User interface / platform Add the ability to specify separate permissions for \u201cHistory\u201d and \u201cActive sessions\u201d tabs (GUACAMOLE-538) Support batch import of connections from CSV (GUACAMOLE-926) Add parameter token for connection name (GUACAMOLE-1177) Provide audit log for system modifications (GUACAMOLE-1224) Configurable username case sensitivity (GUACAMOLE-1239) Provide chunked file upload mechanism (GUACAMOLE-1320) Display whether user groups are disabled in group list (GUACAMOLE-1479) Support for true fullscreen mode and keyboard lock (GUACAMOLE-1525) Allow branding/customization of the section headers on the user home page (GUACAMOLE-1584) Add support for specifying VNC \u201cencodings\u201d parameter in webapp UI (GUACAMOLE-1642) Automatically clear view if session expires in background (GUACAMOLE-1744) Base64 encoding of image/binary data results in excessive syscalls that can degrade performance (GUACAMOLE-1776) Upda...