File _patchinfo of Package patchinfo.33722

<patchinfo incident="33722">
  <issue tracker="cve" id="2024-32460"/>
  <issue tracker="cve" id="2024-32040"/>
  <issue tracker="cve" id="2024-32459"/>
  <issue tracker="cve" id="2024-32039"/>
  <issue tracker="cve" id="2024-32041"/>
  <issue tracker="cve" id="2024-32458"/>
  <issue tracker="bnc" id="1223295">VUL-0: CVE-2024-32041: freerdp: out-of-bounds read in Stream_GetRemainingLength()</issue>
  <issue tracker="bnc" id="1223294">VUL-0: CVE-2024-32040: freerdp: integer underflow when using the `NSC` codec</issue>
  <issue tracker="bnc" id="1223296">VUL-0: CVE-2024-32458: freerdp: out-of-bounds read on pSrcData[]</issue>
  <issue tracker="bnc" id="1223298">VUL-0: CVE-2024-32460: freerdp: out-of-bounds read when using `/bpp:32` legacy `GDI` drawing path</issue>
  <issue tracker="bnc" id="1223297">VUL-0: CVE-2024-32459: freerdp: out-of-bounds read in case SrcSize less than 4</issue>
  <issue tracker="bnc" id="1223293">VUL-0: CVE-2024-32039: freerdp: out-of-bounds write with variables of type uint32</issue>
  <packager>yudaike</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for freerdp</summary>
  <description>This update for freerdp fixes the following issues:

- CVE-2024-32039: Fixed an out-of-bounds write with variables of type uint32 (bsc#1223293)
- CVE-2024-32040: Fixed a integer underflow when using the 'NSC' codec (bsc#1223294)
- CVE-2024-32041: Fixed an out-of-bounds read in Stream_GetRemainingLength() (bsc#1223295)
- CVE-2024-32458: Fixed an out-of-bounds read on pSrcData[] (bsc#1223296)
- CVE-2024-32459: Fixed an out-of-bounds read in case SrcSize less than 4 (bsc#1223297)
- CVE-2024-32460: Fixed an out-of-bounds read when using '/bpp:32' legacy 'GDI' drawing path (bsc#1223298)
</description>
</patchinfo>