SUSE: 2020:2032-1 Important: FreeRDP Denial Of Service & Buffer Issues

suse

July 23, 2020

An update that fixes 31 vulnerabilities is now available

Summary

This update for freerdp fixes the following issues: frerdp was updated to version 2.1.2 (bsc#1171441,bsc#1173247 and jsc#ECO-2006): - CVE-2020-11017: Fixed a double free which could have denied the server's service. - CVE-2020-11018: Fixed an out of bounds read which a malicious clients could have triggered. - CVE-2020-11019: Fixed an issue which could have led to denial of service if logger was set to "WLOG_TRACE". - CVE-2020-11038: Fixed a buffer overflow when /video redirection was used. - CVE-2020-11039: Fixed an issue which could have allowed arbitrary memory read and write when USB redirection was enabled. - CVE-2020-11040: Fixed an out of bounds data read in clear_decompress_subcode_rlex. - CVE-2020-11041: Fixed an issue with the configuration for sound backend

Topics Covered

security advisory denial of service buffer overflow important SUSE freerdp

References

#1169679 #1169748 #1171441 #1171443 #1171444

#1171445 #1171446 #1171447 #1171474 #1173247

#1173605 #1174200

Cross- CVE-2020-11017 CVE-2020-11018 CVE-2020-11019

CVE-2020-11038 CVE-2020-11039 CVE-2020-11040

CVE-2020-11041 CVE-2020-11043 CVE-2020-11085

CVE-2020-11086 CVE-2020-11087 CVE-2020-11088

CVE-2020-11089 CVE-2020-11095 CVE-2020-11096

CVE-2020-11097 CVE-2020-11098 CVE-2020-11099

CVE-2020-11521 CVE-2020-11522 CVE-2020-11523

CVE-2020-11524 CVE-2020-11525 CVE-2020-11526

CVE-2020-13396 CVE-2020-13397 CVE-2020-13398

CVE-2020-4030 CVE-2020-4031 CVE-2020-4032

CVE-2020-4033

Affected Products:

SUSE Linux Enterprise Workstation Extension 15-SP1

https://www.suse.com/security/cve/CVE-2020-11017.html

https://www.suse.com/security/cve/...

Read the Full Advisory

Severity

important

Lowest

Low

Medium

High

Critical

Announcement ID: SUSE-SU-2020:2032-1

Rating: important

Topics Covered

security advisory denial of service buffer overflow important SUSE freerdp

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Like staying secure? So do we.
Sign up for updates, tips, and alerts!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE: 2020:2032-1 Important: FreeRDP Denial Of Service & Buffer Issues

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE: 2020:2032-1 Important: FreeRDP Denial Of Service & Buffer Issues

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related Articles

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!