You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
bmiklautz
published
GHSA-qfq2-82qr-7f4jNov 16, 2022
Package
FreeRDP
(C)
Affected versions
<= 2.8.1
Patched versions
2.9.0
Description
Impact
Integer addition on too narrow types leads to allocation of a buffer too small holding the data written.
A malicious server can trick a FreeRDP based client to read out of bound data and send it back to the server
Patches
2.9.0
Workarounds
Do not use the /usb redirection switch
Issue Reporter
Reported by 'Team BT5 (BoB 11th)'
For more information
If you have any questions or comments about this advisory:
Team-BT5 Analyst
Impact
Integer addition on too narrow types leads to allocation of a buffer too small holding the data written.
A malicious server can trick a FreeRDP based client to read out of bound data and send it back to the server
Patches
2.9.0
Workarounds
Do not use the
/usbredirection switchIssue Reporter
Reported by 'Team BT5 (BoB 11th)'
For more information
If you have any questions or comments about this advisory: