File _patchinfo of Package patchinfo.42840
<patchinfo incident="42840"> <!--generated with prepare-update from request 401875--> <issue tracker="bnc" id="1257981">VUL-0: CVE-2026-24491: freerdp,freerdp2: Heap-use-after-free in video_timer</issue> <issue tracker="bnc" id="1257982">VUL-0: CVE-2026-24675: freerdp,freerdp2: Heap-use-after-free in urb_select_interface</issue> <issue tracker="bnc" id="1257983">VUL-0: CVE-2026-24676: freerdp,freerdp2: Heap-use-after-free in audio_format_compatible</issue> <issue tracker="bnc" id="1257986">VUL-0: CVE-2026-24679: freerdp,freerdp2: Heap-buffer-overflow in urb_select_interface</issue> <issue tracker="bnc" id="1257988">VUL-0: CVE-2026-24681: freerdp,freerdp2: Heap-use-after-free in urb_bulk_transfer_cb</issue> <issue tracker="bnc" id="1257989">VUL-0: CVE-2026-24682: freerdp,freerdp2: Heap-buffer-overflow in audio_formats_free</issue> <issue tracker="bnc" id="1257991">VUL-0: CVE-2026-24684: freerdp,freerdp2: Heap-use-after-free in play_thread</issue> <issue tracker="cve" id="2026-24491"/> <issue tracker="cve" id="2026-24675"/> <issue tracker="cve" id="2026-24676"/> <issue tracker="cve" id="2026-24679"/> <issue tracker="cve" id="2026-24681"/> <issue tracker="cve" id="2026-24682"/> <issue tracker="cve" id="2026-24684"/> <category>security</category> <rating>important</rating> <packager>mgorse</packager> <summary>Security update for freerdp</summary> <description>This update for freerdp fixes the following issues: - CVE-2026-24491: heap-use-after-free in video_timer (bsc#1257981). - CVE-2026-24675: heap-use-after-free in urb_select_interface (bsc#1257982). - CVE-2026-24676: heap-use-after-free in audio_format_compatible (bsc#1257983). - CVE-2026-24679: heap-buffer-overflow in urb_select_interface (bsc#1257986). - CVE-2026-24681: heap-use-after-free in urb_bulk_transfer_cb (bsc#1257988). - CVE-2026-24682: heap-buffer-overflow in audio_formats_free (bsc#1257989). - CVE-2026-24684: heap-use-after-free in play_thread (bsc#1257991). </description> </patchinfo>
