Skip to content
Permalink
Browse files
Merge document vulnerabilities fixed in 1.2.0.
  • Loading branch information
necouchman committed Jul 2, 2020
2 parents 149e3bb + fe01175 commit 6c01bbcfbad5801e8a002332a72a8a8d7fdab847
Showing 2 changed files with 29 additions and 0 deletions.
@@ -0,0 +1,14 @@
---
title: Improper input validation of RDP static virtual channels
cve: CVE-2020-9497
fixed: 1.2.0
---

Apache Guacamole 1.1.0 and older do not properly validate data received from
RDP servers via static virtual channels. If a user connects to a malicious or
compromised RDP server, specially-crafted PDUs could result in disclosure of
information within the memory of the guacd process handling the connection.

Acknowledgements: We would like to thank the GitHub Security Lab and Eyal Itkin
(Check Point Research) for reporting this issue.

@@ -0,0 +1,15 @@
---
title: Dangling pointer in RDP static virtual channel handling
cve: CVE-2020-9498
fixed: 1.2.0
---

Apache Guacamole 1.1.0 and older may mishandle pointers involved in processing
data received via RDP static virtual channels. If a user connects to a
malicious or compromised RDP server, a series of specially-crafted PDUs could
result in memory corruption, possibly allowing arbitrary code to be executed
with the privileges of the running guacd process.

Acknowledgements: We would like to thank Eyal Itkin (Check Point Research) for
reporting this issue.

0 comments on commit 6c01bbc

Please sign in to comment.