File _patchinfo of Package patchinfo.43418

<patchinfo incident="43418">
  <!--generated with prepare-update from request 404574-->
  <issue tracker="bnc" id="1258979">VUL-0: CVE-2026-26271: freerdp,freerdp2: Buffer Overread in FreeRDP Icon Processing</issue>
  <issue tracker="bnc" id="1258982">VUL-0: CVE-2026-26955: freerdp,freerdp2: Out-of-bounds Write in freerdp</issue>
  <issue tracker="bnc" id="1258985">VUL-0: CVE-2026-26965: freerdp,freerdp2: Out-of-bounds Write in freerdp</issue>
  <issue tracker="bnc" id="1259653">VUL-0: CVE-2026-31806: freerdp,freerdp2: improper validation of server messages can lead to a heap buffer overflow and arbitrary code execution</issue>
  <issue tracker="bnc" id="1259679">VUL-0: CVE-2026-31883: freerdp,freerdp2: freerdp: crafted RDPSND audio format and wave data can cause a heap buffer overflow write</issue>
  <issue tracker="bnc" id="1259686">VUL-0: CVE-2026-31885: freerdp,freerdp2: freerdp: unchecked predictor  can lead to an out-of-bounds read</issue>
  <issue tracker="cve" id="2026-26271"/>
  <issue tracker="cve" id="2026-26955"/>
  <issue tracker="cve" id="2026-26965"/>
  <issue tracker="cve" id="2026-31806"/>
  <issue tracker="cve" id="2026-31883"/>
  <issue tracker="cve" id="2026-31885"/>
  <category>security</category>
  <rating>important</rating>
  <packager>yfjiang</packager>
  <summary>Security update for freerdp</summary>
  <description>This update for freerdp fixes the following issues:

- CVE-2026-26271: Buffer Overread in FreeRDP Icon Processing (bsc#1258979).
- CVE-2026-26955: Out-of-bounds Write in freerdp (bsc#1258982).
- CVE-2026-26965: Out-of-bounds Write in freerdp (bsc#1258985).
- CVE-2026-31806: improper validation of server messages can lead to a heap buffer overflow and arbitrary code execution
  (bsc#1259653).
- CVE-2026-31883: crafted RDPSND audio format and wave data can cause a heap buffer overflow write (bsc#1259679).
- CVE-2026-31885: unchecked predictor can lead to an out-of-bounds read (bsc#1259686).
</description>
</patchinfo>