ID de Prueba:	1.3.6.1.4.1.25623.1.0.856336
Categoría:	openSUSE Local Security Checks
Título:	openSUSE Security Advisory (SUSE-SU-2024:2631-1)
Resumen:	The remote host is missing an update for the 'freerdp' package(s) announced via the SUSE-SU-2024:2631-1 advisory.
Descripción:	Summary: The remote host is missing an update for the 'freerdp' package(s) announced via the SUSE-SU-2024:2631-1 advisory. Vulnerability Insight: This update for freerdp fixes the following issues: - CVE-2024-22211: Fixed integer overflow in `freerdp_bitmap_planar_context_reset` that could lead to heap-buffer overflow (bsc#1219049) - CVE-2024-32658: Fixed out-of-bounds read in Interleaved RLE Bitmap Codec in FreeRDP based clients (bsc#1223353) - CVE-2024-32659: Fixed out-of-bounds read if `((nWidth == 0) and (nHeight == 0))` (bsc#1223346) - CVE-2024-32660: Fixed client crash via invalid huge allocation size (bsc#1223347) - CVE-2024-32661: Fixed client NULL pointer dereference (bsc#1223348) Affected Software/OS: 'freerdp' package(s) on openSUSE Leap 15.6. Solution: Please install the updated package(s). CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2024-22211 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PIQE3YSPOJPAUS7DPWIBTR5IQSQX35VM/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/44VOA5KQQT7KQPW7CLST4Y4SQTKK3IOU/ https://github.com/FreeRDP/FreeRDP/commit/939e922936e9c3ae8fc204968645e5e7563a2fff https://github.com/FreeRDP/FreeRDP/commit/aeac3040cc99eeaff1e1171a822114c857b9dca9 https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-rjhp-44rv-7v59 Common Vulnerability Exposure (CVE) ID: CVE-2024-32658 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7SIS6NUNLUBOV4CPCSWKDE6T6C2W3WTR/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZKI4UISUXYNBPN4K6TIQKDRTIJ6CDCKJ/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5JL476WVJSIE7SBUKVJRVA6A52V2HOLZ/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PX3U6YPZQ7PEJBVKSBUOLWVH7DHROHY5/ https://github.com/FreeRDP/FreeRDP/commit/1a755d898ddc028cc818d0dd9d49d5acff4c44bf https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vpv3-m3m9-4c2v https://oss-fuzz.com/testcase-detail/4852534033317888 https://oss-fuzz.com/testcase-detail/6196819496337408 Common Vulnerability Exposure (CVE) ID: CVE-2024-32659 https://github.com/FreeRDP/FreeRDP/commit/6430945ce003a5e24d454d8566f54aae1b6b617b https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-8jgr-7r33-x87w https://oss-fuzz.com/testcase-detail/6156779722440704 Common Vulnerability Exposure (CVE) ID: CVE-2024-32660 https://github.com/FreeRDP/FreeRDP/commit/5e5d27cf310e4c10b854be7667bfb7a5d774eb47 https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-mxv6-2cw6-m3mx https://oss-fuzz.com/testcase-detail/5559242514825216 Common Vulnerability Exposure (CVE) ID: CVE-2024-32661 https://github.com/FreeRDP/FreeRDP/commit/71e463e31b4d69f4022d36bfc814592f56600793 https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-p5m5-342g-pv9m
Copyright	Copyright (C) 2024 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.