Security Advisories · FreeRDP/FreeRDP · GitHub

Security Advisories

View known security vulnerabilities and report new vulnerabilities privately to maintainers.

Report a vulnerability

Missing input length validation in `drive` channel
GHSA-pmv3-wpw4-pw5h published Nov 16, 2022 by bmiklautz

Low
Heap buffer overflow in urbdrc channel
GHSA-qfq2-82qr-7f4j published Nov 16, 2022 by bmiklautz

Moderate
Missing length validation in urbdrc channel
GHSA-mvxm-wfj2-5fvh published Nov 16, 2022 by bmiklautz

Moderate
Division by zero in urbdrc channel
GHSA-387j-8j96-7q35 published Nov 16, 2022 by bmiklautz

Low
Undefined behaviour in zgfx decoder
GHSA-99cm-4gw7-c8jh published Nov 16, 2022 by bmiklautz

Low
Out of bound read in zgfx decoder
GHSA-5w4j-mrrh-jjrm published Nov 16, 2022 by bmiklautz

Low
RDP client might read out of bounds data and display it
GHSA-6cf9-3328-qrvh published Oct 12, 2022 by akallabeth

Low
RDP client: Read of uninitialized memory with parallel port redirection
GHSA-c45q-wcpg-mxjq published Oct 12, 2022 by akallabeth

Low
Server side NTLM does not properly check parameters
GHSA-6x5p-gp49-3jhh published Apr 26, 2022 by akallabeth

Critical
FreeRDP Server authentication might allow invalid credentials to pass
GHSA-qxm3-v2r6-vmwf published Apr 26, 2022 by akallabeth

Moderate