Debian 10264 Published by

A freerdp security update has been released for Debian GNU/Linux 9 Extended LTS to address several memory access vulnerabilities.



ELA-717-1 freerdp security update

Package freerdp
Version 1.1.0~git20140921.1.440916e+dfsg1-13+deb9u5 (stretch)
Related CVEs CVE-2020-4030 CVE-2020-4033 CVE-2020-11086 CVE-2020-11088 CVE-2020-11089 CVE-2020-11095 CVE-2020-11096 CVE-2020-11098 CVE-2021-41160

Several memory access vulnerabilities have been discovered in FreeRDP, a free implementation of Microsoft’s Remote Desktop Protocol. These vulnerabilities could lead to both Denial of Service and access to privileged memory, like password hashes.

For Debian 9 stretch, these problems have been fixed in version 1.1.0~git20140921.1.440916e+dfsg1-13+deb9u5.

We recommend that you upgrade your freerdp packages.

Further information about Extended LTS security advisories can be found at: debian Extended Long term support

  ELA-717-1 freerdp security update