FEDORA-2019-e3b2885a25

security update in Fedora 29 for freerdp, gnome-boxes, & 2 more

Status: stable 4 months ago

FreeRDP fix for CVE-2018-1000852, Remmina bugfix update and rebuilds for updated FreeRDP.

How to install

sudo dnf upgrade --advisory=FEDORA-2019-e3b2885a25

Comments 13

This update has been submitted for testing by slaanesh.

slaanesh edited this update.

New build(s):

  • pidgin-sipe-1.24.0-3.fc29

Karma has been reset.

This update has been pushed to testing.

works for me

karma: +1

This update has been submitted for batched by bodhi.

This update has been submitted for stable by bodhi.

This update has been pushed to stable.

I tried to find this information from the changes, but couldn't: why were the clients of freerdp rebuilt, e.g. SIPE? Was there are breaking API change in freerdp?

@stefanb yes, unfortunately FreeRDP does this constantly. No relases (or very few) and a constant changing master branch.

@stefanb yes, unfortunately FreeRDP does this constantly. No relases (or very few) and a constant changing master branch.

No regressions noticed. Also this bug appears to be fixed by the freerdp-libs update to 2.0.0-48.20190228gitce386c8.fc29: https://github.com/FreeRDP/FreeRDP/issues/5185 Thank you.

karma: +1 #1667632: +1
Content Type
RPM
Status
stable
Test Gating
Submitted by
Update Type
security
Update Severity
low
Karma
+4
stable threshold: 3
unstable threshold: -3
Autopush
Enabled
Dates
submitted 5 months ago
in testing 4 months ago
in stable 4 months ago
modified 5 months ago

Related Bugs 8

00 #1635839 [abrt] vinagre: init_freerdp(): vinagre killed by SIGSEGV
00 #1655205 [abrt] vinagre: init_freerdp(): vinagre killed by SIGSEGV
00 #1660515 Remmina NX plugin no longer works
00 #1661642 CVE-2018-1000852 freerdp: out of bounds read in drdynvc_process_capability_request [fedora-28]
00 #1665682 [abrt] remmina: poll_for_event(): remmina killed by SIGABRT
0+1 #1667632 remmina-1.3.3 is available
00 #1677320 Cannot connect to xrdp server
00 #1684154 CVE-2018-8786 freerdp: Integer truncation leading to heap-based buffer overflow in update_read_bitmap_update() function [fedora-all]

Automated Test Results