Security update for freerdp SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2024:1609-1 Final 1 1 2024-05-10T16:36:06Z current 2024-05-10T16:36:06Z 2024-05-10T16:36:06Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for freerdp This update for freerdp fixes the following issues: - CVE-2024-32039: Fixed an out-of-bounds write with variables of type uint32 (bsc#1223293) - CVE-2024-32040: Fixed a integer underflow when using the 'NSC' codec (bsc#1223294) - CVE-2024-32041: Fixed an out-of-bounds read in Stream_GetRemainingLength() (bsc#1223295) - CVE-2024-32458: Fixed an out-of-bounds read on pSrcData[] (bsc#1223296) - CVE-2024-32459: Fixed an out-of-bounds read in case SrcSize less than 4 (bsc#1223297) - CVE-2024-32460: Fixed an out-of-bounds read when using '/bpp:32' legacy 'GDI' drawing path (bsc#1223298) The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). SUSE-2024-1609,SUSE-SLE-SDK-12-SP5-2024-1609,SUSE-SLE-WE-12-SP5-2024-1609 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2024/suse-su-20241609-1/ Link for SUSE-SU-2024:1609-1 https://lists.suse.com/pipermail/sle-updates/2024-May/035235.html E-Mail link for SUSE-SU-2024:1609-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1223293 SUSE Bug 1223293 https://bugzilla.suse.com/1223294 SUSE Bug 1223294 https://bugzilla.suse.com/1223295 SUSE Bug 1223295 https://bugzilla.suse.com/1223296 SUSE Bug 1223296 https://bugzilla.suse.com/1223297 SUSE Bug 1223297 https://bugzilla.suse.com/1223298 SUSE Bug 1223298 https://www.suse.com/security/cve/CVE-2024-32039/ SUSE CVE CVE-2024-32039 page https://www.suse.com/security/cve/CVE-2024-32040/ SUSE CVE CVE-2024-32040 page https://www.suse.com/security/cve/CVE-2024-32041/ SUSE CVE CVE-2024-32041 page https://www.suse.com/security/cve/CVE-2024-32458/ SUSE CVE CVE-2024-32458 page https://www.suse.com/security/cve/CVE-2024-32459/ SUSE CVE CVE-2024-32459 page https://www.suse.com/security/cve/CVE-2024-32460/ SUSE CVE CVE-2024-32460 page SUSE Linux Enterprise Software Development Kit 12 SP5 SUSE Linux Enterprise Workstation Extension 12 SP5 freerdp-2.1.2-12.44.1 freerdp-devel-2.1.2-12.44.1 freerdp-proxy-2.1.2-12.44.1 freerdp-server-2.1.2-12.44.1 freerdp-wayland-2.1.2-12.44.1 libfreerdp2-2.1.2-12.44.1 libuwac0-0-2.1.2-12.44.1 libwinpr2-2.1.2-12.44.1 uwac0-0-devel-2.1.2-12.44.1 winpr2-devel-2.1.2-12.44.1 freerdp-devel-2.1.2-12.44.1 as a component of SUSE Linux Enterprise Software Development Kit 12 SP5 libfreerdp2-2.1.2-12.44.1 as a component of SUSE Linux Enterprise Software Development Kit 12 SP5 libwinpr2-2.1.2-12.44.1 as a component of SUSE Linux Enterprise Software Development Kit 12 SP5 winpr2-devel-2.1.2-12.44.1 as a component of SUSE Linux Enterprise Software Development Kit 12 SP5 freerdp-2.1.2-12.44.1 as a component of SUSE Linux Enterprise Workstation Extension 12 SP5 freerdp-proxy-2.1.2-12.44.1 as a component of SUSE Linux Enterprise Workstation Extension 12 SP5 freerdp-server-2.1.2-12.44.1 as a component of SUSE Linux Enterprise Workstation Extension 12 SP5 libfreerdp2-2.1.2-12.44.1 as a component of SUSE Linux Enterprise Workstation Extension 12 SP5 libwinpr2-2.1.2-12.44.1 as a component of SUSE Linux Enterprise Workstation Extension 12 SP5 FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients using a version of FreeRDP prior to 3.5.0 or 2.11.6 are vulnerable to integer overflow and out-of-bounds write. Versions 3.5.0 and 2.11.6 patch the issue. As a workaround, do not use `/gfx` options (e.g. deactivate with `/bpp:32` or `/rfx` as it is on by default). CVE-2024-32039 SUSE Linux Enterprise Software Development Kit 12 SP5:freerdp-devel-2.1.2-12.44.1 SUSE Linux Enterprise Software Development Kit 12 SP5:libfreerdp2-2.1.2-12.44.1 SUSE Linux Enterprise Software Development Kit 12 SP5:libwinpr2-2.1.2-12.44.1 SUSE Linux Enterprise Software Development Kit 12 SP5:winpr2-devel-2.1.2-12.44.1 SUSE Linux Enterprise Workstation Extension 12 SP5:freerdp-2.1.2-12.44.1 SUSE Linux Enterprise Workstation Extension 12 SP5:freerdp-proxy-2.1.2-12.44.1 SUSE Linux Enterprise Workstation Extension 12 SP5:freerdp-server-2.1.2-12.44.1 SUSE Linux Enterprise Workstation Extension 12 SP5:libfreerdp2-2.1.2-12.44.1 SUSE Linux Enterprise Workstation Extension 12 SP5:libwinpr2-2.1.2-12.44.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2024/suse-su-20241609-1/ https://www.suse.com/security/cve/CVE-2024-32039.html CVE-2024-32039 https://bugzilla.suse.com/1223293 SUSE Bug 1223293 FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients that use a version of FreeRDP prior to 3.5.0 or 2.11.6 and have connections to servers using the `NSC` codec are vulnerable to integer underflow. Versions 3.5.0 and 2.11.6 patch the issue. As a workaround, do not use the NSC codec (e.g. use `-nsc`). CVE-2024-32040 SUSE Linux Enterprise Software Development Kit 12 SP5:freerdp-devel-2.1.2-12.44.1 SUSE Linux Enterprise Software Development Kit 12 SP5:libfreerdp2-2.1.2-12.44.1 SUSE Linux Enterprise Software Development Kit 12 SP5:libwinpr2-2.1.2-12.44.1 SUSE Linux Enterprise Software Development Kit 12 SP5:winpr2-devel-2.1.2-12.44.1 SUSE Linux Enterprise Workstation Extension 12 SP5:freerdp-2.1.2-12.44.1 SUSE Linux Enterprise Workstation Extension 12 SP5:freerdp-proxy-2.1.2-12.44.1 SUSE Linux Enterprise Workstation Extension 12 SP5:freerdp-server-2.1.2-12.44.1 SUSE Linux Enterprise Workstation Extension 12 SP5:libfreerdp2-2.1.2-12.44.1 SUSE Linux Enterprise Workstation Extension 12 SP5:libwinpr2-2.1.2-12.44.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2024/suse-su-20241609-1/ https://www.suse.com/security/cve/CVE-2024-32040.html CVE-2024-32040 https://bugzilla.suse.com/1223294 SUSE Bug 1223294 FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients that use a version of FreeRDP prior to 3.5.0 or 2.11.6 are vulnerable to out-of-bounds read. Versions 3.5.0 and 2.11.6 patch the issue. As a workaround, deactivate `/gfx` (on by default, set `/bpp` or `/rfx` options instead. CVE-2024-32041 SUSE Linux Enterprise Software Development Kit 12 SP5:freerdp-devel-2.1.2-12.44.1 SUSE Linux Enterprise Software Development Kit 12 SP5:libfreerdp2-2.1.2-12.44.1 SUSE Linux Enterprise Software Development Kit 12 SP5:libwinpr2-2.1.2-12.44.1 SUSE Linux Enterprise Software Development Kit 12 SP5:winpr2-devel-2.1.2-12.44.1 SUSE Linux Enterprise Workstation Extension 12 SP5:freerdp-2.1.2-12.44.1 SUSE Linux Enterprise Workstation Extension 12 SP5:freerdp-proxy-2.1.2-12.44.1 SUSE Linux Enterprise Workstation Extension 12 SP5:freerdp-server-2.1.2-12.44.1 SUSE Linux Enterprise Workstation Extension 12 SP5:libfreerdp2-2.1.2-12.44.1 SUSE Linux Enterprise Workstation Extension 12 SP5:libwinpr2-2.1.2-12.44.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2024/suse-su-20241609-1/ https://www.suse.com/security/cve/CVE-2024-32041.html CVE-2024-32041 https://bugzilla.suse.com/1223295 SUSE Bug 1223295 FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients that use a version of FreeRDP prior to 3.5.0 or 2.11.6 are vulnerable to out-of-bounds read. Versions 3.5.0 and 2.11.6 patch the issue. As a workaround, use `/gfx` or `/rfx` modes (on by default, require server side support). CVE-2024-32458 SUSE Linux Enterprise Software Development Kit 12 SP5:freerdp-devel-2.1.2-12.44.1 SUSE Linux Enterprise Software Development Kit 12 SP5:libfreerdp2-2.1.2-12.44.1 SUSE Linux Enterprise Software Development Kit 12 SP5:libwinpr2-2.1.2-12.44.1 SUSE Linux Enterprise Software Development Kit 12 SP5:winpr2-devel-2.1.2-12.44.1 SUSE Linux Enterprise Workstation Extension 12 SP5:freerdp-2.1.2-12.44.1 SUSE Linux Enterprise Workstation Extension 12 SP5:freerdp-proxy-2.1.2-12.44.1 SUSE Linux Enterprise Workstation Extension 12 SP5:freerdp-server-2.1.2-12.44.1 SUSE Linux Enterprise Workstation Extension 12 SP5:libfreerdp2-2.1.2-12.44.1 SUSE Linux Enterprise Workstation Extension 12 SP5:libwinpr2-2.1.2-12.44.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2024/suse-su-20241609-1/ https://www.suse.com/security/cve/CVE-2024-32458.html CVE-2024-32458 https://bugzilla.suse.com/1223296 SUSE Bug 1223296 FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients and servers that use a version of FreeRDP prior to 3.5.0 or 2.11.6 are vulnerable to out-of-bounds read. Versions 3.5.0 and 2.11.6 patch the issue. No known workarounds are available. CVE-2024-32459 SUSE Linux Enterprise Software Development Kit 12 SP5:freerdp-devel-2.1.2-12.44.1 SUSE Linux Enterprise Software Development Kit 12 SP5:libfreerdp2-2.1.2-12.44.1 SUSE Linux Enterprise Software Development Kit 12 SP5:libwinpr2-2.1.2-12.44.1 SUSE Linux Enterprise Software Development Kit 12 SP5:winpr2-devel-2.1.2-12.44.1 SUSE Linux Enterprise Workstation Extension 12 SP5:freerdp-2.1.2-12.44.1 SUSE Linux Enterprise Workstation Extension 12 SP5:freerdp-proxy-2.1.2-12.44.1 SUSE Linux Enterprise Workstation Extension 12 SP5:freerdp-server-2.1.2-12.44.1 SUSE Linux Enterprise Workstation Extension 12 SP5:libfreerdp2-2.1.2-12.44.1 SUSE Linux Enterprise Workstation Extension 12 SP5:libwinpr2-2.1.2-12.44.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2024/suse-su-20241609-1/ https://www.suse.com/security/cve/CVE-2024-32459.html CVE-2024-32459 https://bugzilla.suse.com/1223297 SUSE Bug 1223297 FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based based clients using `/bpp:32` legacy `GDI` drawing path with a version of FreeRDP prior to 3.5.0 or 2.11.6 are vulnerable to out-of-bounds read. Versions 3.5.0 and 2.11.6 patch the issue. As a workaround, use modern drawing paths (e.g. `/rfx` or `/gfx` options). The workaround requires server side support. CVE-2024-32460 SUSE Linux Enterprise Software Development Kit 12 SP5:freerdp-devel-2.1.2-12.44.1 SUSE Linux Enterprise Software Development Kit 12 SP5:libfreerdp2-2.1.2-12.44.1 SUSE Linux Enterprise Software Development Kit 12 SP5:libwinpr2-2.1.2-12.44.1 SUSE Linux Enterprise Software Development Kit 12 SP5:winpr2-devel-2.1.2-12.44.1 SUSE Linux Enterprise Workstation Extension 12 SP5:freerdp-2.1.2-12.44.1 SUSE Linux Enterprise Workstation Extension 12 SP5:freerdp-proxy-2.1.2-12.44.1 SUSE Linux Enterprise Workstation Extension 12 SP5:freerdp-server-2.1.2-12.44.1 SUSE Linux Enterprise Workstation Extension 12 SP5:libfreerdp2-2.1.2-12.44.1 SUSE Linux Enterprise Workstation Extension 12 SP5:libwinpr2-2.1.2-12.44.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2024/suse-su-20241609-1/ https://www.suse.com/security/cve/CVE-2024-32460.html CVE-2024-32460 https://bugzilla.suse.com/1223298 SUSE Bug 1223298