USN-4379-1: FreeRDP vulnerabilities

  • Thread starter Ubuntu security notices
  • Start date
U

Ubuntu security notices

Guest
freerdp2 vulnerabilities


A security issue affects these releases of Ubuntu and its derivatives:

  • Ubuntu 20.04 LTS
  • Ubuntu 19.10
  • Ubuntu 18.04 LTS
Summary


Several security issues were fixed in FreeRDP.

Software Description

  • freerdp2 - RDP client for Windows Terminal Services
Details


It was discovered that FreeRDP incorrectly handled certain memory operations. A remote attacker could use this issue to cause FreeRDP to crash, resulting in a denial of service, or possibly exeucte arbitrary code.

Update instructions


The problem can be corrected by updating your system to the following package versions:

Ubuntu 20.04 LTS
libfreerdp-client2-2 - 2.1.1+dfsg1-0ubuntu0.20.04.1
libfreerdp-server2-2 - 2.1.1+dfsg1-0ubuntu0.20.04.1
libfreerdp2-2 - 2.1.1+dfsg1-0ubuntu0.20.04.1
Ubuntu 19.10
libfreerdp-client2-2 - 2.1.1+dfsg1-0ubuntu0.19.10.1
libfreerdp-server2-2 - 2.1.1+dfsg1-0ubuntu0.19.10.1
libfreerdp2-2 - 2.1.1+dfsg1-0ubuntu0.19.10.1
Ubuntu 18.04 LTS
libfreerdp-client2-2 - 2.1.1+dfsg1-0ubuntu0.18.04.1
libfreerdp-server2-2 - 2.1.1+dfsg1-0ubuntu0.18.04.1
libfreerdp2-2 - 2.1.1+dfsg1-0ubuntu0.18.04.1

To update your system, please follow these instructions: https://wiki.ubuntu.com/Security/Upgrades.

This update uses a new upstream release, which includes additional bug fixes. In general, a standard system update will make all the necessary changes.

References


Continue reading...
 
Top