stable

freerdp-2.9.0-1.fc36

FEDORA-2022-fd6e43dec8 created by oholy 2 years ago for Fedora 36

Update to 2.9.0 (CVE-2022-39316, CVE-2022-39317, CVE-2022-39318, CVE-2022-39319, CVE-2022-39320, CVE-2022-41877 and CVE-2022-39347).

Update to 2.8.1 (CVE-2022-39282, CVE-2022-39283).

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2022-fd6e43dec8

This update has been submitted for testing by oholy.

2 years ago

This update's test gating status has been changed to 'waiting'.

2 years ago

This update has obsoleted freerdp-2.8.1-1.fc36, and has inherited its bugs and notes.

2 years ago

This update's test gating status has been changed to 'failed'.

2 years ago

This update's test gating status has been changed to 'passed'.

2 years ago

This update has been pushed to testing.

2 years ago
User Icon geraldosimiao provided feedback 2 years ago
karma

This update has been submitted for stable by bodhi.

2 years ago

This update has been pushed to stable.

2 years ago

Please log in to add feedback.

Metadata
Type
security
Severity
medium
Karma
1
Signed
Content Type
RPM
Test Gating
Autopush Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
14 days
Dates
submitted
2 years ago
in testing
2 years ago
in stable
2 years ago
Builds
1
freerdp-2.9.0-1.fc36
BZ#2134713 CVE-2022-39282 freerdp: clients using `/parallel` command line switch might read uninitialized data
0
0
BZ#2134714 CVE-2022-39282 freerdp: uninitialized reads may lead to compromised confidentiality [fedora-all]
0
0
BZ#2134717 CVE-2022-39283 freerdp: clients using the `/video` command line switch might read uninitialized data
0
0
BZ#2134718 CVE-2022-39283 freerdp: uninitialized reads may lead to compromised confidentiality [fedora-all]
0
0
BZ#2143642 CVE-2022-39316 freerdp: out of bounds read in zgfx decoder
0
0
BZ#2143643 CVE-2022-39317 freerdp: undefined behaviour in zgfx decoder
0
0
BZ#2143644 CVE-2022-39318 freerdp: division by zero in urbdrc channel
0
0
BZ#2143645 CVE-2022-39319 freerdp: missing length validation in urbdrc channel
0
0
BZ#2143646 CVE-2022-39320 freerdp: heap buffer overflow in urbdrc channel
0
0
BZ#2143647 CVE-2022-39347 freerdp: missing path sanitation with `drive` channel
0
0
BZ#2143648 CVE-2022-41877 freerdp: missing input length validation in `drive` channel
0
0
BZ#2143652 CVE-2022-39316 freerdp: out of bounds read in zgfx decoder [fedora-36]
0
0
BZ#2143656 CVE-2022-39317 freerdp: undefined behaviour in zgfx decoder [fedora-36]
0
0
BZ#2143660 CVE-2022-39320 freerdp: heap buffer overflow in urbdrc channel [fedora-36]
0
0
BZ#2143669 CVE-2022-39318 freerdp: division by zero in urbdrc channel [fedora-36]
0
0
BZ#2143670 CVE-2022-39347 freerdp: missing path sanitation with `drive` channel [fedora-36]
0
0
BZ#2143671 CVE-2022-41877 freerdp: missing input length validation in `drive` channel [fedora-36]
0
0
BZ#2143676 CVE-2022-39319 freerdp: missing length validation in urbdrc channel [fedora-36]
0
0
freerdp-2.9.0-1.fc36

Automated Test Results

Copyright © 2007-2025 Red Hat, Inc. and others.

Running bodhi-server 25.5.0 on bodhi-web-180-7cbpd.

bodhi is Free Software. Please file issues if you have any problems. Read the documentation.

Composes Legal Privacy policy