xrdp is vulnerable to Out of Bound Reads. The vulnerability exists due to the out of bound read in the xrdp_caps_process_confirm_active()
function of the library, allowing an attacker to cause an application crash or access sensitive information.
github.com/neutrinolabs/xrdp/commit/c77e974080da8267d902f99ca5ab7d22ea02d98c
github.com/neutrinolabs/xrdp/security/advisories/GHSA-hm75-9jcg-p7hq
github.com/neutrinolabs/xrdp/security/advisories/GHSA-hm75-9jcg-p7hq
secdb.alpinelinux.org/edge/community.yaml
secdb.alpinelinux.org/v3.17/community.yaml
www.debian.org/security/2023/dsa-5502