Sign Up
Log In
Log In
or
Sign Up
Places
All Projects
Status Monitor
Collapse sidebar
openSUSE:Maintenance:9501
patchinfo
_patchinfo
Overview
Details
Repositories
Revisions
Requests
Users
Attributes
Meta
File _patchinfo of Package patchinfo
<patchinfo incident="9501"> <issue tracker="bnc" id="1117966">VUL-0: CVE-2018-8786: freerdp: Integer Truncation that leads to a Heap-Based Buffer Overflow in function update_read_bitmap_update() and results in a memory corruption and probably even a remot</issue> <issue tracker="bnc" id="1117967">VUL-0: CVE-2018-8785: freerdp: a Heap-Based Buffer Overflow in function zgfx_decompress() that results in a memory corruption and probably even a remote code execution.</issue> <issue tracker="bnc" id="1117964">VUL-0: CVE-2018-8787: freerdp: Integer Overflow that leads to a Heap-Based Buffer Overflow in function gdi_Bitmap_Decompress() and results in a memory corruption and probably even a remote code</issue> <issue tracker="bnc" id="1117965">VUL-0: CVE-2018-8789: freerdp: several Out-Of-Bounds Reads in the NTLM Authentication module that results in a Denial of Service (segfault).</issue> <issue tracker="bnc" id="1117963">VUL-0: CVE-2018-8788: freerdp: Out-Of-Bounds Write of up to 4 bytes in function nsc_rle_decode() that results in a memory corruption and possibly even a remote code execution.</issue> <issue tracker="bnc" id="1116708">VUL-0: CVE-2018-8784: freerdp: Heap-Based Buffer Overflow in function zgfx_decompress_segment() that results in a memory corruption and probably even a remote code execution.</issue> <issue tracker="bnc" id="1085416">FreeRDP/Remmina can not connect to Windows 7-10 with March 2018 updates</issue> <issue tracker="bnc" id="1120507">VUL-0: CVE-2018-1000852: freerdp: out of bounds read in drdynvc_process_capability_request</issue> <issue tracker="bnc" id="1087240">SLE FreeRDP broken following Windows updates.</issue> <issue tracker="bnc" id="1104918">clone bug: SLE12 SP3 PTF for SLE FreeRDP broken following Windows updates.</issue> <issue tracker="cve" id="2018-0886"/> <issue tracker="cve" id="2018-8788"/> <issue tracker="cve" id="2018-8789"/> <issue tracker="cve" id="2018-1000852"/> <issue tracker="cve" id="2018-8784"/> <issue tracker="cve" id="2018-8785"/> <issue tracker="cve" id="2018-8786"/> <issue tracker="cve" id="2018-8787"/> <category>security</category> <rating>important</rating> <packager>zhangxiaofei</packager> <description>This update for freerdp fixes the following issues: Security issues fixed: - CVE-2018-0886: Fix a remote code execution vulnerability (CredSSP) (bsc#1085416, bsc#1087240, bsc#1104918) - CVE-2018-8789: Fix several denial of service vulnerabilities in the in the NTLM Authentication module (bsc#1117965) - CVE-2018-8785: Fix a potential remote code execution vulnerability in the zgfx_decompress function (bsc#1117967) - CVE-2018-8786: Fix a potential remote code execution vulnerability in the update_read_bitmap_update function (bsc#1117966) - CVE-2018-8787: Fix a potential remote code execution vulnerability in the gdi_Bitmap_Decompress function (bsc#1117964) - CVE-2018-8788: Fix a potential remote code execution vulnerability in the nsc_rle_decode function (bsc#1117963) - CVE-2018-8784: Fix a potential remote code execution vulnerability in the zgfx_decompress_segment function (bsc#1116708) - CVE-2018-1000852: Fixed a remote memory access in the drdynvc_process_capability_request function (bsc#1120507) This update was imported from the SUSE:SLE-12-SP2:Update update project.</description> <summary>Security update for freerdp</summary> </patchinfo>
Locations
Projects
Search
Status Monitor
Help
OpenBuildService.org
Documentation
API Documentation
Code of Conduct
Contact
Support
@OBShq
Terms
openSUSE Build Service is sponsored by
The Open Build Service is an
openSUSE project
.
Sign Up
Log In
Places
Places
All Projects
Status Monitor