USN-4382-2: FreeRDP vulnerabilities

26 November 2020

Several security issues were fixed in FreeRDP.

Releases

Packages

  • freerdp - RDP client for Windows Terminal Services

Details

It was discovered that FreeRDP incorrectly handled certain memory
operations. A remote attacker could use this issue to cause FreeRDP to
crash, resulting in a denial of service, or possibly execute arbitrary
code.

Update instructions

The problem can be corrected by updating your system to the following package versions:

Ubuntu 18.04

In general, a standard system update will make all the necessary changes.

Related notices

  • USN-4379-1: libfreerdp2-2, freerdp2, libfreerdp-client2-2, libfreerdp-server2-2
  • USN-4382-1: libfreerdp-common1.1.0, libfreerdp-client1.1, freerdp, libfreerdp-core1.1