Fedora Linux 8782 Published by

A remmina security update has been released for Fedora 35.



SECURITY: Fedora 35 Update: remmina-1.4.21-1.fc35


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2021-2c25f03d0b
2021-11-17 01:12:41.170099
--------------------------------------------------------------------------------

Name : remmina
Product : Fedora 35
Version : 1.4.21
Release : 1.fc35
URL :   http://remmina.org
Summary : Remote Desktop Client
Description :
Remmina is a remote desktop client written in GTK+, aiming to be useful for
system administrators and travelers, who need to work with lots of remote
computers in front of either large monitors or tiny net-books.

Remmina supports multiple network protocols in an integrated and consistent
user interface. Currently RDP, VNC, XDMCP and SSH are supported.

Please don't forget to install the plugins for the protocols you want to use.

--------------------------------------------------------------------------------
Update Information:

- Update to 2.4.1 containing security fixes for CVE-2021-41159 and
CVE-2021-41160. - Remmina 1.4.21 with bugfixes.
--------------------------------------------------------------------------------
ChangeLog:

* Wed Nov 10 2021 Simone Caronni - 1.4.21-1
- Update to 1.4.21.
* Tue Sep 14 2021 Sahana Prasad - 1.4.20-3
- Rebuilt with OpenSSL 3.0.0
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2016403 - CVE-2021-41159 freerdp: improper client input validation for gateway connections allows to overwrite memory
  https://bugzilla.redhat.com/show_bug.cgi?id=2016403
[ 2 ] Bug #2016412 - CVE-2021-41160 freerdp: improper region checks in all clients allow out of bound write to memory
  https://bugzilla.redhat.com/show_bug.cgi?id=2016412
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2021-2c25f03d0b' at the command
line. For more information, refer to the dnf documentation available at
  http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
  https://fedoraproject.org/keys