[SECURITY] [DLA 1203-1] xrdp security update

2017-12-1113:10:44

lists.debian.org

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

CVSS3

8.4

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

8.3

Confidence

High

EPSS

0.001

Percentile

35.2%

JSON

Package : xrdp
Version : 0.5.0-2+deb7u2
CVE ID : CVE-2017-16927

The scp_v0s_accept function in sesman/libscp/libscp_v0.c in the session manager
in xrdp uses an untrusted integer as a write length, which allows local users
to cause a denial of service (buffer overflow and application crash) or
possibly have unspecified other impact via a crafted input stream.

For Debian 7 "Wheezy", these problems have been fixed in version
0.5.0-2+deb7u2.

We recommend that you upgrade your xrdp packages.

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS

OSVersionArchitecturePackageVersionFilename
Debian9s390xxorgxrdp-dbgsym< 0.9.1-9+deb9u2xorgxrdp-dbgsym_0.9.1-9+deb9u2_s390x.deb
Debian9i386xrdp-dbgsym< 0.9.1-9+deb9u2xrdp-dbgsym_0.9.1-9+deb9u2_i386.deb
Debian9s390xxrdp< 0.9.1-9+deb9u2xrdp_0.9.1-9+deb9u2_s390x.deb
Debian9mipselxrdp-dbgsym< 0.9.1-9+deb9u2xrdp-dbgsym_0.9.1-9+deb9u2_mipsel.deb
Debian9armelxorgxrdp-dbgsym< 0.9.1-9+deb9u2xorgxrdp-dbgsym_0.9.1-9+deb9u2_armel.deb
Debian9arm64xrdp-dbgsym< 0.9.1-9+deb9u2xrdp-dbgsym_0.9.1-9+deb9u2_arm64.deb
Debian7armelxrdp< 0.5.0-2+deb7u2xrdp_0.5.0-2+deb7u2_armel.deb
Debian9armelxrdp-dbgsym< 0.9.1-9+deb9u2xrdp-dbgsym_0.9.1-9+deb9u2_armel.deb
Debian9armelxrdp< 0.9.1-9+deb9u2xrdp_0.9.1-9+deb9u2_armel.deb
Debian9ppc64elxorgxrdp-dbgsym< 0.9.1-9+deb9u2xorgxrdp-dbgsym_0.9.1-9+deb9u2_ppc64el.deb

OS	Version	Architecture	Package	Version	Filename
Debian	9	s390x	xorgxrdp-dbgsym	< 0.9.1-9+deb9u2	xorgxrdp-dbgsym_0.9.1-9+deb9u2_s390x.deb
Debian	9	i386	xrdp-dbgsym	< 0.9.1-9+deb9u2	xrdp-dbgsym_0.9.1-9+deb9u2_i386.deb
Debian	9	s390x	xrdp	< 0.9.1-9+deb9u2	xrdp_0.9.1-9+deb9u2_s390x.deb
Debian	9	mipsel	xrdp-dbgsym	< 0.9.1-9+deb9u2	xrdp-dbgsym_0.9.1-9+deb9u2_mipsel.deb
Debian	9	armel	xorgxrdp-dbgsym	< 0.9.1-9+deb9u2	xorgxrdp-dbgsym_0.9.1-9+deb9u2_armel.deb
Debian	9	arm64	xrdp-dbgsym	< 0.9.1-9+deb9u2	xrdp-dbgsym_0.9.1-9+deb9u2_arm64.deb
Debian	7	armel	xrdp	< 0.5.0-2+deb7u2	xrdp_0.5.0-2+deb7u2_armel.deb
Debian	9	armel	xrdp-dbgsym	< 0.9.1-9+deb9u2	xrdp-dbgsym_0.9.1-9+deb9u2_armel.deb
Debian	9	armel	xrdp	< 0.9.1-9+deb9u2	xrdp_0.9.1-9+deb9u2_armel.deb
Debian	9	ppc64el	xorgxrdp-dbgsym	< 0.9.1-9+deb9u2	xorgxrdp-dbgsym_0.9.1-9+deb9u2_ppc64el.deb