Skip to content

cliprdr_read_format_list out of bound read

Low
bmiklautz published GHSA-2j4w-v45m-95hf May 29, 2020

Package

FreeRDP

Affected versions

< 2.1.0

Patched versions

2.1.0

Description

Impact

  • Clipboard format data read (by client or server) might read data out of bound
  • All clients and servers are affected
  • Impact low as a client will be disconnected, a server will disconnect the peer when returning from the function where the out of bound read is recognized.

Workarounds

Disable clipboard support for RDP sessions

References

Severity

Low

CVE ID

CVE-2020-11085

Weaknesses

No CWEs