out of bound access in clear_decompress_subcode_rlex

Low

bmiklautz published GHSA-x4wq-m7c9-rjgr

May 29, 2020

Package

freerdp

Affected versions

<= 2.0.0

Patched versions

2.1.0

Description

Impact

All FreeRDP clients all platforms
Out of bound data read from memory is visualized on screen as color

Patches

2.1.0

Workarounds

Do not use /gfx connection modes, e.g. no arguments /gfx or /network:auto

References

https://pub.freerdp.com/cve/CVE-2020-11040/