Synopsis: Important: freerdp security update
Advisory ID: SLSA-2019:0697-1
Issue Date: 2019-04-02
CVE Numbers: CVE-2018-8786
CVE-2018-8787
CVE-2018-8788
—
Security Fix(es):
* freerdp: Integer truncation leading to heap-based buffer overflow in
update_read_bitmap_update() function (CVE-2018-8786)
* freerdp: Integer overflow leading to heap-based buffer overflow in
gdi_Bitmap_Decompress() function (CVE-2018-8787)
* freerdp: Out-of-bounds write in nsc_rle_decode() function
(CVE-2018-8788)
—
SL7
x86_64
freerdp-1.0.2-15.el7_6.1.x86_64.rpm
freerdp-debuginfo-1.0.2-15.el7_6.1.i686.rpm
freerdp-debuginfo-1.0.2-15.el7_6.1.x86_64.rpm
freerdp-libs-1.0.2-15.el7_6.1.i686.rpm
freerdp-libs-1.0.2-15.el7_6.1.x86_64.rpm
freerdp-plugins-1.0.2-15.el7_6.1.x86_64.rpm
freerdp-devel-1.0.2-15.el7_6.1.i686.rpm
freerdp-devel-1.0.2-15.el7_6.1.x86_64.rpm
– Scientific Linux Development Team
