Alerts This Week
Warning Icon 1 916
Alerts This Week
Warning Icon 1 916

Mageia 9 MGASA-2024-0157 Critical: freerdp buffer overflow issues

mageia
Calendar Grey April 30, 2024
Dist Mageia Esm H88
Mageia 2024-0158 delivers enhancements for libjpeg addressing various vulnerabilities related to memory corruption.
This release is a security release and addresses multiple issues: [Low] OutOfBound Read in zgfx_decompress_segment

Summary

This release is a security release and addresses multiple issues: [Low] OutOfBound Read in zgfx_decompress_segment. [Moderate] Integer overflow & OutOfBound Write in clear_decompress_residual_data. [Low] integer underflow in nsc_rle_decode. [Low] OutOfBound Read in planar_skip_plane_rle. [Low] OutOfBound Read in ncrush_decompress. [Low] OutOfBound Read in interleaved_decompress.

References

- https://bugs.mageia.org/show_bug.cgi?id=33129

-

- https://www.cve.org/CVERecord?id=CVE-2024-32039

- https://www.cve.org/CVERecord?id=CVE-2024-32040

- https://www.cve.org/CVERecord?id=CVE-2024-32041

- https://www.cve.org/CVERecord?id=CVE-2024-32458

- https://www.cve.org/CVERecord?id=CVE-2024-32459

- https://www.cve.org/CVERecord?id=CVE-2024-32460

Topics%20covered

Topics Covered

security advisory buffer overflow critical software update freerdp Mageia FreeRDP

Resolution

SRPMS

- 9/core/freerdp-2.11.7-1.mga9

Severity
critical
Lowest
Low
Medium
High
Critical

Publication date: 30 Apr 2024
URL: https://advisories.mageia.org/MGASA-2024-0157.html
Type: security
CVE: CVE-2024-32039, CVE-2024-32040, CVE-2024-32041, CVE-2024-32458, CVE-2024-32459, CVE-2024-32460

Topics%20covered

Topics Covered

security advisory buffer overflow critical software update freerdp Mageia FreeRDP

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here