openSUSE Build Service

Overview Details Repositories Revisions Requests Users Attributes Meta

Security update for freerdp

This update for freerdp fixes the following issues:

Security issues fixed:

- CVE-2018-0886: Fix a remote code execution vulnerability (CredSSP) (bsc#1085416, bsc#1087240, bsc#1104918)
- CVE-2018-8789: Fix several denial of service vulnerabilities in the in the NTLM Authentication module (bsc#1117965)
- CVE-2018-8785: Fix a potential remote code execution vulnerability in the zgfx_decompress function (bsc#1117967)
- CVE-2018-8786: Fix a potential remote code execution vulnerability in the update_read_bitmap_update function (bsc#1117966)
- CVE-2018-8787: Fix a potential remote code execution vulnerability in the gdi_Bitmap_Decompress function (bsc#1117964)
- CVE-2018-8788: Fix a potential remote code execution vulnerability in the nsc_rle_decode function (bsc#1117963)
- CVE-2018-8784: Fix a potential remote code execution vulnerability in the zgfx_decompress_segment function (bsc#1116708)
- CVE-2018-1000852: Fixed a remote memory access in the drdynvc_process_capability_request function (bsc#1120507)

This update was imported from the SUSE:SLE-12-SP2:Update update project.

Submitted by Felix Zhang (zhangxiaofei)

Fixed bugs

bnc#1117966

VUL-0: CVE-2018-8786: freerdp: Integer Truncation that leads to a Heap-Based Buffer Overflow in function update_read_bitmap_update() and results in a memory corruption and probably even a remot

bnc#1117967

VUL-0: CVE-2018-8785: freerdp: a Heap-Based Buffer Overflow in function zgfx_decompress() that results in a memory corruption and probably even a remote code execution.

bnc#1117964

VUL-0: CVE-2018-8787: freerdp: Integer Overflow that leads to a Heap-Based Buffer Overflow in function gdi_Bitmap_Decompress() and results in a memory corruption and probably even a remote code

bnc#1117965

VUL-0: CVE-2018-8789: freerdp: several Out-Of-Bounds Reads in the NTLM Authentication module that results in a Denial of Service (segfault).

bnc#1117963

VUL-0: CVE-2018-8788: freerdp: Out-Of-Bounds Write of up to 4 bytes in function nsc_rle_decode() that results in a memory corruption and possibly even a remote code execution.

bnc#1116708

VUL-0: CVE-2018-8784: freerdp: Heap-Based Buffer Overflow in function zgfx_decompress_segment() that results in a memory corruption and probably even a remote code execution.

bnc#1085416

FreeRDP/Remmina can not connect to Windows 7-10 with March 2018 updates

bnc#1120507

VUL-0: CVE-2018-1000852: freerdp: out of bounds read in drdynvc_process_capability_request

bnc#1087240

SLE FreeRDP broken following Windows updates.

bnc#1104918

clone bug: SLE12 SP3 PTF for SLE FreeRDP broken following Windows updates.