Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 561
Alerts This Week
Warning Icon 1 561

Ubuntu 26.04 LTS FreeRDP Critical DoS Issue USN-8432-1 CVE-2026-45700

ubuntu
Calendar Grey June 16, 2026
Scroller Ubuntu Esm H88
FreeRDP fixed multiple issues in Ubuntu releases impacting security and possible denial of service attacks.
Several security issues were fixed in FreeRDP.

Summary

Several security issues were fixed in FreeRDP.

Software Description:

- freerdp3: RDP client for Windows Terminal Services

- freerdp2: RDP client for Windows Terminal Services

Details:

It was discovered that FreeRDP incorrectly handled memory under certain

circumstances, which could lead to an out-of-bounds heap write. An

attacker could possibly use this issue to cause a denial of service or

execute arbitrary code. (CVE-2026-45700)

In addition, this update fixes a regression introduced in USN-8105-1.

The update introduces a complete fix for CVE-2026-22858, CVE-2026-23732

and CVE-2026-25952 in Ubuntu 24.04 LTS and Ubuntu 25.10.

Update Instructions

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 26.04 LTS
  freerdp-x11                     3.24.2+dfsg-1ubuntu1.1
  freerdp3-x11                    3.24.2+dfsg-1ubuntu1.1
  libfreerdp3-3                   3.24.2+dfsg-1ubuntu1.1

Ubuntu 25.10
  freerdp3-x11                    3.16.0+dfsg-2ubuntu0.5
  libfreerdp3-3                   3.16.0+dfsg-2ubuntu0.5

Ubuntu 24.04 LTS
  freerdp2-x11                    2.11.5+dfsg1-1ubuntu0.1~esm6
                                  Available with Ubuntu Pro
  freerdp3-x11                    3.5.1+dfsg1-0ubuntu1.6
  libfreerdp2-2t64                2.11.5+dfsg1-1ubuntu0.1~esm6
                                  Available with Ubuntu Pro
  libfreerdp3-3                   3.5.1+dfsg1-0ubuntu1.6

Ubuntu 22.04 LTS
  freerdp2-x11                    2.6.1+dfsg1-3ubuntu2.11
  libfreerdp2-2                   2.6.1+dfsg1-3ubuntu2.11

Ubuntu 20.04 LTS
  freerdp2-x11                    2.6.1+dfsg1-0ubuntu0.20.04.2+esm4
                                  Available with Ubuntu Pro
  libfreerdp2-2                   2.6.1+dfsg1-0ubuntu0.20.04.2+esm4
                                  Available with Ubuntu Pro

Ubuntu 18.04 LTS
  freerdp2-x11                    2.2.0+dfsg1-0ubuntu0.18.04.4+esm6
                                  Available with Ubuntu Pro
  libfreerdp2-2                   2.2.0+dfsg1-0ubuntu0.18.04.4+esm6
                                  Available with Ubuntu Pro

In general, a standard system update will make all the necessary changes.

References

https://ubuntu.com/security/notices/USN-8432-1

CVE-2026-45700, https://launchpad.net/bugs/2149819

Severity
critical
Lowest
Low
Medium
High
Critical

Ubuntu Security Notice USN-8432-1

Package Information

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.