SUSE-SU-2024:1610-1 -- SLES freerdp, libfreerdp2, winpr2-devel, libwinpr2| ID: oval:org.secpod.oval:def:89051857 | Date: (C)2024-06-18 (M)2024-06-18 |
| Class: PATCH | Family: unix |
This update for freerdp fixes the following issues: * CVE-2024-32039: Fixed an out-of-bounds write with variables of type uint32 * CVE-2024-32040: Fixed a integer underflow when using the "NSC" codec * CVE-2024-32041: Fixed an out-of-bounds read in Stream_GetRemainingLength * CVE-2024-32458: Fixed an out-of-bounds read on pSrcData[] * CVE-2024-32459: Fixed an out-of-bounds read in case SrcSize less than 4 * CVE-2024-32460: Fixed an out-of-bounds read when using "/bpp:32" legacy "GDI" drawing path
| Platform: |
| SUSE Linux Enterprise Desktop 15 SP4 |
| Product: |
| freerdp |
| libfreerdp2 |
| winpr2-devel |
| libwinpr2 |
