Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found -4 articles for you...
89
security advisoryfedoraremote code executionFedora 43 xorgxrdp Important Stack Buffer Overflow 2026-febea89ac3
Release notes for xrdp v0.10.5 (2026/01/27) Security fixes CVE-2025-68670: Improper bounds checking of domain string length leads to Stack- based Buffer Overflow New features. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-febea89ac3 2026-02-08 01:08:54.527996+00:00 -------------------------------------------------------------------------------- Name : xorgxrdp Product : Fedora 43 Version : 0.10.5 Release : 1.fc43 URL : https://github.com/neutrinolabs/xorgxrdp Summary : Implementation of xrdp backend as Xorg modules Description : xorgxrdp is a set of X11 modules that make Xorg act as a backend for xrdp. Xorg with xorgxrdp is the most advanced xrdp backend with support for screen resizing and multiple monitors. -------------------------------------------------------------------------------- Update Information: Release notes for xrdp v0.10.5 (2026/01/27) Security fixes CVE-2025-68670: Improper bounds checking of domain string length leads to Stack- based Buffer Overflow New features It is now possible to start the xrdp daemon entirely unprivileged from the service manager (#3599 #3603). If you do this certain restrictions will apply. See https://github.com/neutrinolabs/xrdp/wiki/Running-the-xrdp-process-as-non- root for details. TLS pre-master secrets can now be recorded for packet captures (#3617) Add a FuseRootReportMaxFree to work around 'no free space' issues with some file managers (#3639) Alternate shell names can now be passed to startwm.sh in an environment variable for more system management control (#3624 #3651) Updated Xorg paths in sesman.ini to include more recent distros (#3663) Add Slovenian keyboard (#3668 #3670) xrdpapi: Add a way to monitor connect/disconnect events (#3693) Bug fixes Allow an empty X11 UTF8_STRING to be pasted to the clipboard (#3580 #3582) Fix a regression introduced in v0.10.x, where it became impossible to connect to a VNC serverwhich did not support the ExtendedDesktopSize encoding (#3540 #3584) Fix a regression introduced in v0.10.x related to PAM groups handling (#3594) Inconsistencies with [MS-RDPBCGR] have been addressed (#3608) A reference to uninitialised data within the verify_user_pam_userpass.c module has been fixed (#3638) Prevent some possible crashes when the RFX encoder is resized (#3590 #3644) Fixes a regression introduced by GFX development which prevented the JPEG encoder from working correctly (#3649) Fixes a regression introduced by #2974 which resulted in the xrdp PID file being deleted unexpectedly (#3650) Do not overwrite a VNC port set by the user when not using sesman (#3674) Fix regression from 0.9.x when freerdp client uses /workarea (#3618 #3676) Fixes a crash where a resize is attempted with drdynvc disabled (#3672 #3680) getgrouplist() now compiles on MacOS (#3575) Various Coverity warnings have been addressed (#3656) Documentation improvements (#3665) Internal changes An unnecessary include of sys/signal.h causing a compile warning on MUSL-C has been removed (#3679) Release notes for xorgxrdp v0.10.5 (2026/01/28) Bug fixes Fix bug in Chrome pointer detection (#394 #396) Internal changes CI: Update FreeBSD xrdp dependency (#398) -------------------------------------------------------------------------------- ChangeLog: * Thu Jan 29 2026 Bojan Smojver - 0.10.5-1 - Update to 0.10.5 * Sat Jan 17 2026 Fedora Release Engineering - 0.10.4-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1908387 - Windows with transparency show whatever is below https://bugzilla.redhat.com/show_bug.cgi?id=1908387 [ 2 ] Bug #2279775 - xrdp socketdir not cleaned up on package removal https://bugzilla.redhat.com/show_bug.cgi?id=2279775 [ 3 ] Bug #2322105 - AltGr on Spanish keyboards https://bugzilla.redhat.com/show_bug.cgi?id=2322105 [ 4 ] Bug #2323097 - Requesting clarification on the License of xrdp rpm. https://bugzilla.redhat.com/show_bug.cgi?id=2323097 [ 5 ] Bug #2433438 - CVE-2025-68670 xorgxrdp: xrdp: Remote code execution via unauthenticated stack-based buffer overflow [epel-8] https://bugzilla.redhat.com/show_bug.cgi?id=2433438 [ 6 ] Bug #2433439 - CVE-2025-68670 xrdp: xrdp: Remote code execution via unauthenticated stack-based buffer overflow [epel-8] https://bugzilla.redhat.com/show_bug.cgi?id=2433439 [ 7 ] Bug #2433440 - CVE-2025-68670 xorgxrdp: xrdp: Remote code execution via unauthenticated stack-based buffer overflow [epel-9] https://bugzilla.redhat.com/show_bug.cgi?id=2433440 [ 8 ] Bug #2433441 - CVE-2025-68670 xrdp: xrdp: Remote code execution via unauthenticated stack-based buffer overflow [epel-9] https://bugzilla.redhat.com/show_bug.cgi?id=2433441 [ 9 ] Bug #2433442 - CVE-2025-68670 xorgxrdp: xrdp: Remote code execution via unauthenticated stack-based buffer overflow [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2433442 [ 10 ] Bug #2433840 - xorgxrdp-0.10.5 is available https://bugzilla.redhat.com/show_bug.cgi?id=2433840 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-febea89ac3' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Feb 08, 2026
•Important
Fedora
89
security advisoryfedorabuffer overflowFedora 42 xorgxrdp Critical Buffer Overflow CVE-2025-68670 Advisory
Release notes for xrdp v0.10.5 (2026/01/27) Security fixes CVE-2025-68670: Improper bounds checking of domain string length leads to Stack- based Buffer Overflow New features. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-b409dad73e 2026-02-08 00:51:49.071197+00:00 -------------------------------------------------------------------------------- Name : xorgxrdp Product : Fedora 42 Version : 0.10.5 Release : 1.fc42 URL : https://github.com/neutrinolabs/xorgxrdp Summary : Implementation of xrdp backend as Xorg modules Description : xorgxrdp is a set of X11 modules that make Xorg act as a backend for xrdp. Xorg with xorgxrdp is the most advanced xrdp backend with support for screen resizing and multiple monitors. -------------------------------------------------------------------------------- Update Information: Release notes for xrdp v0.10.5 (2026/01/27) Security fixes CVE-2025-68670: Improper bounds checking of domain string length leads to Stack- based Buffer Overflow New features It is now possible to start the xrdp daemon entirely unprivileged from the service manager (#3599 #3603). If you do this certain restrictions will apply. See https://github.com/neutrinolabs/xrdp/wiki/Running-the-xrdp-process-as-non- root for details. TLS pre-master secrets can now be recorded for packet captures (#3617) Add a FuseRootReportMaxFree to work around 'no free space' issues with some file managers (#3639) Alternate shell names can now be passed to startwm.sh in an environment variable for more system management control (#3624 #3651) Updated Xorg paths in sesman.ini to include more recent distros (#3663) Add Slovenian keyboard (#3668 #3670) xrdpapi: Add a way to monitor connect/disconnect events (#3693) Bug fixes Allow an empty X11 UTF8_STRING to be pasted to the clipboard (#3580 #3582) Fix a regression introduced in v0.10.x, where it became impossible to connect to a VNC serverwhich did not support the ExtendedDesktopSize encoding (#3540 #3584) Fix a regression introduced in v0.10.x related to PAM groups handling (#3594) Inconsistencies with [MS-RDPBCGR] have been addressed (#3608) A reference to uninitialised data within the verify_user_pam_userpass.c module has been fixed (#3638) Prevent some possible crashes when the RFX encoder is resized (#3590 #3644) Fixes a regression introduced by GFX development which prevented the JPEG encoder from working correctly (#3649) Fixes a regression introduced by #2974 which resulted in the xrdp PID file being deleted unexpectedly (#3650) Do not overwrite a VNC port set by the user when not using sesman (#3674) Fix regression from 0.9.x when freerdp client uses /workarea (#3618 #3676) Fixes a crash where a resize is attempted with drdynvc disabled (#3672 #3680) getgrouplist() now compiles on MacOS (#3575) Various Coverity warnings have been addressed (#3656) Documentation improvements (#3665) Internal changes An unnecessary include of sys/signal.h causing a compile warning on MUSL-C has been removed (#3679) Release notes for xorgxrdp v0.10.5 (2026/01/28) Bug fixes Fix bug in Chrome pointer detection (#394 #396) Internal changes CI: Update FreeBSD xrdp dependency (#398) -------------------------------------------------------------------------------- ChangeLog: * Thu Jan 29 2026 Bojan Smojver - 0.10.5-1 - Update to 0.10.5 * Sat Jan 17 2026 Fedora Release Engineering - 0.10.4-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild * Fri Jul 25 2025 Fedora Release Engineering - 0.10.4-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_43_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1908387 - Windows with transparency show whatever is below https://bugzilla.redhat.com/show_bug.cgi?id=1908387 [ 2 ] Bug #2279775 - xrdp socketdir not cleaned up on package removal https://bugzilla.redhat.com/show_bug.cgi?id=2279775 [ 3 ] Bug #2322105 - AltGr on Spanish keyboards https://bugzilla.redhat.com/show_bug.cgi?id=2322105 [ 4 ] Bug #2323097 - Requesting clarification on the License of xrdp rpm. https://bugzilla.redhat.com/show_bug.cgi?id=2323097 [ 5 ] Bug #2433438 - CVE-2025-68670 xorgxrdp: xrdp: Remote code execution via unauthenticated stack-based buffer overflow [epel-8] https://bugzilla.redhat.com/show_bug.cgi?id=2433438 [ 6 ] Bug #2433439 - CVE-2025-68670 xrdp: xrdp: Remote code execution via unauthenticated stack-based buffer overflow [epel-8] https://bugzilla.redhat.com/show_bug.cgi?id=2433439 [ 7 ] Bug #2433440 - CVE-2025-68670 xorgxrdp: xrdp: Remote code execution via unauthenticated stack-based buffer overflow [epel-9] https://bugzilla.redhat.com/show_bug.cgi?id=2433440 [ 8 ] Bug #2433441 - CVE-2025-68670 xrdp: xrdp: Remote code execution via unauthenticated stack-based buffer overflow [epel-9] https://bugzilla.redhat.com/show_bug.cgi?id=2433441 [ 9 ] Bug #2433442 - CVE-2025-68670 xorgxrdp: xrdp: Remote code execution via unauthenticated stack-based buffer overflow [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2433442 [ 10 ] Bug #2433840 - xorgxrdp-0.10.5 is available https://bugzilla.redhat.com/show_bug.cgi?id=2433840 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-b409dad73e' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Feb 08, 2026
•Critical
Fedora
89
security advisoryFedoraremote accessFedora 25: xorgxrdp Moderate Security Update with RemoteFX Improvements
New upstream version of xorgxrdp and xrdp: New features in xrdp: - RemoteFX codec support is now enabled by default. - Bitmap updates support is now enabled by default. - TLS ciphers suites and version is now logged. - Connected computer name is now logged. - Switched to Xorg (xorgxrdp) as the default backend now. - Miscellaneous RemoteFX codec mode improvements. - Socket directory is. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2017-7bd002b77c 2017-04-16 14:37:31.637852 --------------------------------------------------------------------------------Name : xorgxrdp Product : Fedora 25 Version : 0.2.1 Release : 1.fc25 URL : https://github.com/neutrinolabs/xorgxrdp Summary : Implementation of xrdp backend as Xorg modules Description : xorgxrdp is a set of X11 modules that make Xorg act as a backend for xrdp. Xorg with xorgxrdp is the most advanced xrdp backend with support for screen resizing and multiple monitors. --------------------------------------------------------------------------------Update Information: New upstream version of xorgxrdp and xrdp: New features in xrdp: - RemoteFX codec support is now enabled by default. - Bitmap updates support is now enabled by default. - TLS ciphers suites and version is now logged. - Connected computer name is now logged. - Switched to Xorg (xorgxrdp) as the default backend now. -Miscellaneous RemoteFX codec mode improvements. - Socket directory is configurable at the compile time. Bugfixes in xrdp: - Parallels client for MacOS / iOS can now connect (audio redirection must be disabled on client or xrdp server though). - MS RDP client for iOS can now connect using TLS security layer. - MS RDP client for Android can now connect to xrdp. - Large resolutions (4K) can be used with RemoteFX graphics. - Multiple RemoteApps can be opened throguh NeutrinoRDP proxy. - tls_ciphers in xrdp.ini is not limited to 63 chars anymore, it'svariable-length. - Fixed an issue where tls_ciphers were ignored and rdp security layer could be used instead. - Kill disconnected sessions feature is working with Xorg (xorgxrdp) backend. - Miscellaneous code cleanup and memory issues fixes. Rebuild of xrdp requiring both xorgxrdp and tigervnc-minimal. VNC is still the default. --------------------------------------------------------------------------------References: [ 1 ] Bug #1433959 - CVE-2017-6967 xrdp: Incorrect placement of auth_start_session() [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1433959 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade xorgxrdp' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list --
Apr 16, 2017
•Important
Fedora
89
security advisorysecurity updateFedoraFedora 24 Update: xorgxrdp Security Improvements and RemoteFX Fixes
New upstream version of xorgxrdp and xrdp: New features in xrdp: - RemoteFX codec support is now enabled by default. - Bitmap updates support is now enabled by default. - TLS ciphers suites and version is now logged. - Connected computer name is now logged. - Switched to Xorg (xorgxrdp) as the default backend now. - Miscellaneous RemoteFX codec mode improvements. - Socket directory is. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2017-8eac23007d 2017-04-16 14:37:13.342377 --------------------------------------------------------------------------------Name : xorgxrdp Product : Fedora 24 Version : 0.2.1 Release : 1.fc24 URL : https://github.com/neutrinolabs/xorgxrdp Summary : Implementation of xrdp backend as Xorg modules Description : xorgxrdp is a set of X11 modules that make Xorg act as a backend for xrdp. Xorg with xorgxrdp is the most advanced xrdp backend with support for screen resizing and multiple monitors. --------------------------------------------------------------------------------Update Information: New upstream version of xorgxrdp and xrdp: New features in xrdp: - RemoteFX codec support is now enabled by default. - Bitmap updates support is now enabled by default. - TLS ciphers suites and version is now logged. - Connected computer name is now logged. - Switched to Xorg (xorgxrdp) as the default backend now. -Miscellaneous RemoteFX codec mode improvements. - Socket directory is configurable at the compile time. Bugfixes in xrdp: - Parallels client for MacOS / iOS can now connect (audio redirection must be disabled on client or xrdp server though). - MS RDP client for iOS can now connect using TLS security layer. - MS RDP client for Android can now connect to xrdp. - Large resolutions (4K) can be used with RemoteFX graphics. - Multiple RemoteApps can be opened throguh NeutrinoRDP proxy. - tls_ciphers in xrdp.ini is not limited to 63 chars anymore, it'svariable-length. - Fixed an issue where tls_ciphers were ignored and rdp security layer could be used instead. - Kill disconnected sessions feature is working with Xorg (xorgxrdp) backend. - Miscellaneous code cleanup and memory issues fixes. Rebuild of xrdp requiring both xorgxrdp and tigervnc-minimal. VNC is still the default. --------------------------------------------------------------------------------References: [ 1 ] Bug #1433959 - CVE-2017-6967 xrdp: Incorrect placement of auth_start_session() [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1433959 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade xorgxrdp' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list --
Apr 16, 2017
•Important
Fedora
89
security advisoryFedorabugfixesFedora 26 xorgxrdp Security Update: Enhancements and Bug Fixes
New upstream version of xorgxrdp and xrdp: New features in xrdp: - RemoteFX codec support is now enabled by default. - Bitmap updates support is now enabled by default. - TLS ciphers suites and version is now logged. - Connected computer name is now logged. - Switched to Xorg (xorgxrdp) as the default backend now. - Miscellaneous RemoteFX codec mode improvements. - Socket directory is. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2017-fc634e7ee7 2017-04-13 14:07:06.378011 --------------------------------------------------------------------------------Name : xorgxrdp Product : Fedora 26 Version : 0.2.1 Release : 1.fc26 URL : https://github.com/neutrinolabs/xorgxrdp Summary : Implementation of xrdp backend as Xorg modules Description : xorgxrdp is a set of X11 modules that make Xorg act as a backend for xrdp. Xorg with xorgxrdp is the most advanced xrdp backend with support for screen resizing and multiple monitors. --------------------------------------------------------------------------------Update Information: New upstream version of xorgxrdp and xrdp: New features in xrdp: - RemoteFX codec support is now enabled by default. - Bitmap updates support is now enabled by default. - TLS ciphers suites and version is now logged. - Connected computer name is now logged. - Switched to Xorg (xorgxrdp) as the default backend now. -Miscellaneous RemoteFX codec mode improvements. - Socket directory is configurable at the compile time. Bugfixes in xrdp: - Parallels client for MacOS / iOS can now connect (audio redirection must be disabled on client or xrdp server though). - MS RDP client for iOS can now connect using TLS security layer. - MS RDP client for Android can now connect to xrdp. - Large resolutions (4K) can be used with RemoteFX graphics. - Multiple RemoteApps can be opened throguh NeutrinoRDP proxy. - tls_ciphers in xrdp.ini is not limited to 63 chars anymore, it'svariable-length. - Fixed an issue where tls_ciphers were ignored and rdp security layer could be used instead. - Kill disconnected sessions feature is working with Xorg (xorgxrdp) backend. - Miscellaneous code cleanup and memory issues fixes. Rebuild of xrdp requiring both xorgxrdp and tigervnc-minimal. VNC is still the default. --------------------------------------------------------------------------------References: [ 1 ] Bug #1433959 - CVE-2017-6967 xrdp: Incorrect placement of auth_start_session() [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1433959 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade xorgxrdp' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list --
Apr 13, 2017
•Important
Fedora
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!