Freerdp

Freerdp

103 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.5

CVE-2020-11097

  • EPSS 0.19%
  • Published 22.06.2020 22:15:12
  • Last modified 21.11.2024 04:56:46

In FreeRDP before version 2.1.2, an out of bounds read occurs resulting in accessing a memory location that is outside of the boundaries of the static array PRIMARY_DRAWING_ORDER_FIELD_BYTES. This is fixed in version 2.1.2.

6.5

CVE-2020-11098

  • EPSS 0.17%
  • Published 22.06.2020 22:15:12
  • Last modified 21.11.2024 04:56:46

In FreeRDP before version 2.1.2, there is an out-of-bound read in glyph_cache_put. This affects all FreeRDP clients with `+glyph-cache` option enabled This is fixed in version 2.1.2.

6.5

CVE-2020-11099

  • EPSS 0.18%
  • Published 22.06.2020 22:15:12
  • Last modified 21.11.2024 04:56:47

In FreeRDP before version 2.1.2, there is an out of bounds read in license_read_new_or_upgrade_license_packet. A manipulated license packet can lead to out of bound reads to an internal buffer. This is fixed in version 2.1.2.

5.5

CVE-2020-11095

  • EPSS 0.24%
  • Published 22.06.2020 22:15:11
  • Last modified 21.11.2024 04:56:46

In FreeRDP before version 2.1.2, an out of bound reads occurs resulting in accessing a memory location that is outside of the boundaries of the static array PRIMARY_DRAWING_ORDER_FIELD_BYTES. This is fixed in version 2.1.2.

6

CVE-2020-11089

  • EPSS 0.23%
  • Published 29.05.2020 20:15:11
  • Last modified 21.11.2024 04:56:45

In FreeRDP before 2.1.0, there is an out-of-bound read in irp functions (parallel_process_irp_create, serial_process_irp_create, drive_process_irp_write, printer_process_irp_write, rdpei_recv_pdu, serial_process_irp_write). This has been fixed in 2.1...

4

CVE-2020-11040

  • EPSS 0.12%
  • Published 29.05.2020 20:15:10
  • Last modified 21.11.2024 04:56:39

In FreeRDP less than or equal to 2.0.0, there is an out-of-bound data read from memory in clear_decompress_subcode_rlex, visualized on screen as color. This has been patched in 2.1.0.

5

CVE-2020-11043

  • EPSS 0.13%
  • Published 29.05.2020 20:15:10
  • Last modified 21.11.2024 04:56:40

In FreeRDP less than or equal to 2.0.0, there is an out-of-bounds read in rfx_process_message_tileset. Invalid data fed to RFX decoder results in garbage on screen (as colors). This has been patched in 2.1.0.

5

CVE-2020-11085

  • EPSS 0.12%
  • Published 29.05.2020 20:15:10
  • Last modified 21.11.2024 04:56:45

In FreeRDP before 2.1.0, there is an out-of-bounds read in cliprdr_read_format_list. Clipboard format data read (by client or server) might read data out-of-bounds. This has been fixed in 2.1.0.

5.5

CVE-2020-11086

  • EPSS 0.19%
  • Published 29.05.2020 20:15:10
  • Last modified 21.11.2024 04:56:45

In FreeRDP less than or equal to 2.0.0, there is an out-of-bound read in ntlm_read_ntlm_v2_client_challenge that reads up to 28 bytes out-of-bound to an internal structure. This has been fixed in 2.1.0.

5.5

CVE-2020-11087

  • EPSS 0.19%
  • Published 29.05.2020 20:15:10
  • Last modified 21.11.2024 04:56:45

In FreeRDP less than or equal to 2.0.0, there is an out-of-bound read in ntlm_read_AuthenticateMessage. This has been fixed in 2.1.0.