USN-6752-1: FreeRDP vulnerabilities
25 April 2024
Several security issues were fixed in FreeRDP.
Releases
Packages
- freerdp2 - RDP client for Windows Terminal Services
Details
It was discovered that FreeRDP incorrectly handled certain memory
operations. If a user were tricked into connecting to a malicious server, a
remote attacker could possibly use this issue to cause FreeRDP to crash,
resulting in a denial of service.
Update instructions
The problem can be corrected by updating your system to the following package versions:
Ubuntu 23.10
Ubuntu 22.04
Ubuntu 20.04
After a standard system update you need to restart your session to make all
the necessary changes.
References
Related notices
- USN-6759-1: libwinpr3-3, libfreerdp3-3, libfreerdp-client3-3, libwinpr-tools3-3, freerdp3-dev, freerdp3-shadow-x11, freerdp3, libfreerdp-shadow-subsystem3-3, libfreerdp-shadow3-3, libfreerdp-server3-3, freerdp3-x11, libwinpr3-dev, winpr3-utils, freerdp3-wayland