Lucene search

K

Veracode Vulnerability DatabaseVERACODE:38237

HistoryNov 24, 2022 - 10:40 a.m.

Denial Of Service (DoS)

2022-11-2410:40:53

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

22

freerdp vulnerability out of bound read crash

EPSS

0.001

Percentile

50.4%

freerdp is vulnerable vulnerable to denial of service. The vulnerability exists due to an out of bound read in ZGFX decoder component of FreeRDP which allows an attacker to read out of bound data and try to decode it likely resulting in a crash.

References

github.com/FreeRDP/FreeRDP/commit/e865c24efc40ebc52e75979c94cdd4ee2c1495b0

github.com/FreeRDP/FreeRDP/security/advisories/GHSA-5w4j-mrrh-jjrm

lists.debian.org/debian-lts-announce/2023/11/msg00010.html

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UDOTAOJBCZKREZJPT6VZ25GESI5T6RBG/

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YGQN3OWQNHSMWKOF4D35PF5ASKNLC74B/

lists.fedoraproject.org/archives/list/[email protected]/message/UDOTAOJBCZKREZJPT6VZ25GESI5T6RBG/

lists.fedoraproject.org/archives/list/[email protected]/message/YGQN3OWQNHSMWKOF4D35PF5ASKNLC74B/

secdb.alpinelinux.org/edge/community.yaml

secdb.alpinelinux.org/v3.17/community.yaml

EPSS

0.001

Percentile

50.4%

Related for VERACODE:38237

nvd1 redhatcve1 cve1 ubuntucve2 cvelist1 prion1 alpinelinux1 cnvd1 debiancve1 osv6 openvas10 nessus20 mageia1 altlinux1 freebsd1 fedora2 redos1 slackware1 ubuntu1 redhat2 amazon1 oraclelinux2 almalinux2 debian1 gentoo1