Skip to content

OOB Read in license_read_new_or_upgrade_license_packet

Low
akallabeth published GHSA-977w-866x-4v5h Jun 22, 2020

Package

FreeRDP

Affected versions

<= 2.1.1

Patched versions

2.1.2

Description

Impact

  • All FreeRDP clients
  • A manipulated license packet can lead to out of bound reads to an internal buffer

Patches

Workarounds

None

References

GHSL-2020-103

Severity

Low

CVE ID

CVE-2020-11099

Weaknesses

No CWEs