SUSE-SU-2024:1610-1 -- SLES freerdp, libfreerdp2, winpr2-devel, libwinpr2ID: oval:org.secpod.oval:def:89051857 | Date: (C)2024-06-18 (M)2024-06-18 |
Class: PATCH | Family: unix |
This update for freerdp fixes the following issues: * CVE-2024-32039: Fixed an out-of-bounds write with variables of type uint32 * CVE-2024-32040: Fixed a integer underflow when using the "NSC" codec * CVE-2024-32041: Fixed an out-of-bounds read in Stream_GetRemainingLength * CVE-2024-32458: Fixed an out-of-bounds read on pSrcData[] * CVE-2024-32459: Fixed an out-of-bounds read in case SrcSize less than 4 * CVE-2024-32460: Fixed an out-of-bounds read when using "/bpp:32" legacy "GDI" drawing path
Platform: |
SUSE Linux Enterprise Desktop 15 SP4 |
Product: |
freerdp |
libfreerdp2 |
winpr2-devel |
libwinpr2 |