Vulnerability-Lookup

CVE-2024-32662 (GCVE-0-2024-32662)

Vulnerability from cvelistv5 – Published: 2024-04-23 20:17 – Updated: 2025-02-13 17:52

Title

FreeRDP rdp_redirection_read_base64_wchar out of bound read

Summary

FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients prior to version 3.5.1 are vulnerable to out-of-bounds read. This occurs when `WCHAR` string is read with twice the size it has and converted to `UTF-8`, `base64` decoded. The string is only used to compare against the redirection server certificate. Version 3.5.1 contains a patch for the issue. No known workarounds are available.

Severity ?

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

CWE

CWE-125 - Out-of-bounds Read

Assigner

GitHub_M

References

7 references

URL	Tags
https://github.com/FreeRDP/FreeRDP/security/advis…	x_refsource_CONFIRM
https://github.com/FreeRDP/FreeRDP/commit/626d10a…	x_refsource_MISC
https://oss-fuzz.com/testcase-detail/4985227207311360	x_refsource_MISC
https://lists.fedoraproject.org/archives/list/pac…
https://lists.fedoraproject.org/archives/list/pac…
https://lists.fedoraproject.org/archives/list/pac…
https://lists.fedoraproject.org/archives/list/pac…

Impacted products

1 product

Vendor	Product	Version
FreeRDP	FreeRDP	Affected: < 3.5.1

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "affected": [
          {
            "cpes": [
              "cpe:2.3:a:freerdp:freerdp:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "freerdp",
            "vendor": "freerdp",
            "versions": [
              {
                "lessThan": "3.5.1",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          }
        ],
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-32662",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "yes"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-05-09T18:28:25.815736Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-07-26T14:55:46.952Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T02:13:40.282Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vffh-j6hh-95f4",
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vffh-j6hh-95f4"
          },
          {
            "name": "https://github.com/FreeRDP/FreeRDP/commit/626d10a94a88565d957ddc30768ed08b320049a7",
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://github.com/FreeRDP/FreeRDP/commit/626d10a94a88565d957ddc30768ed08b320049a7"
          },
          {
            "name": "https://oss-fuzz.com/testcase-detail/4985227207311360",
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://oss-fuzz.com/testcase-detail/4985227207311360"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZKI4UISUXYNBPN4K6TIQKDRTIJ6CDCKJ/"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7SIS6NUNLUBOV4CPCSWKDE6T6C2W3WTR/"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PX3U6YPZQ7PEJBVKSBUOLWVH7DHROHY5/"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5JL476WVJSIE7SBUKVJRVA6A52V2HOLZ/"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "FreeRDP",
          "vendor": "FreeRDP",
          "versions": [
            {
              "status": "affected",
              "version": "\u003c 3.5.1"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients prior to version 3.5.1 are vulnerable to out-of-bounds read. This occurs when `WCHAR` string is read with twice the size it has and converted to `UTF-8`, `base64` decoded. The string is only used to compare against the redirection server certificate. Version 3.5.1 contains a patch for the issue. No known workarounds are available."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
            "version": "3.1"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-125",
              "description": "CWE-125: Out-of-bounds Read",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-06-10T16:09:55.904Z",
        "orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
        "shortName": "GitHub_M"
      },
      "references": [
        {
          "name": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vffh-j6hh-95f4",
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vffh-j6hh-95f4"
        },
        {
          "name": "https://github.com/FreeRDP/FreeRDP/commit/626d10a94a88565d957ddc30768ed08b320049a7",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/FreeRDP/FreeRDP/commit/626d10a94a88565d957ddc30768ed08b320049a7"
        },
        {
          "name": "https://oss-fuzz.com/testcase-detail/4985227207311360",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://oss-fuzz.com/testcase-detail/4985227207311360"
        },
        {
          "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZKI4UISUXYNBPN4K6TIQKDRTIJ6CDCKJ/"
        },
        {
          "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7SIS6NUNLUBOV4CPCSWKDE6T6C2W3WTR/"
        },
        {
          "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PX3U6YPZQ7PEJBVKSBUOLWVH7DHROHY5/"
        },
        {
          "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5JL476WVJSIE7SBUKVJRVA6A52V2HOLZ/"
        }
      ],
      "source": {
        "advisory": "GHSA-vffh-j6hh-95f4",
        "discovery": "UNKNOWN"
      },
      "title": "FreeRDP rdp_redirection_read_base64_wchar out of bound read"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
    "assignerShortName": "GitHub_M",
    "cveId": "CVE-2024-32662",
    "datePublished": "2024-04-23T20:17:30.949Z",
    "dateReserved": "2024-04-16T14:15:26.878Z",
    "dateUpdated": "2025-02-13T17:52:17.136Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "epss": {
      "cve": "CVE-2024-32662",
      "date": "2026-05-20",
      "epss": "0.00244",
      "percentile": "0.47699"
    },
    "fkie_nvd": {
      "descriptions": "[{\"lang\": \"en\", \"value\": \"FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients prior to version 3.5.1 are vulnerable to out-of-bounds read. This occurs when `WCHAR` string is read with twice the size it has and converted to `UTF-8`, `base64` decoded. The string is only used to compare against the redirection server certificate. Version 3.5.1 contains a patch for the issue. No known workarounds are available.\"}, {\"lang\": \"es\", \"value\": \"FreeRDP es una implementaci\\u00f3n gratuita del protocolo de escritorio remoto. Los clientes basados en FreeRDP anteriores a la versi\\u00f3n 3.5.1 son vulnerables a lecturas fuera de los l\\u00edmites. Esto ocurre cuando la cadena `WCHAR` se lee con el doble de tama\\u00f1o que tiene y se convierte a `UTF-8`, decodificada `base64`. La cadena solo se usa para comparar con el certificado del servidor de redirecci\\u00f3n. La versi\\u00f3n 3.5.1 contiene un parche para el problema. No hay workarounds disponibles.\"}]",
      "id": "CVE-2024-32662",
      "lastModified": "2024-11-21T09:15:25.340",
      "metrics": "{\"cvssMetricV31\": [{\"source\": \"security-advisories@github.com\", \"type\": \"Secondary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N\", \"baseScore\": 7.5, \"baseSeverity\": \"HIGH\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"NONE\"}, \"exploitabilityScore\": 3.9, \"impactScore\": 3.6}]}",
      "published": "2024-04-23T21:15:48.200",
      "references": "[{\"url\": \"https://github.com/FreeRDP/FreeRDP/commit/626d10a94a88565d957ddc30768ed08b320049a7\", \"source\": \"security-advisories@github.com\"}, {\"url\": \"https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vffh-j6hh-95f4\", \"source\": \"security-advisories@github.com\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5JL476WVJSIE7SBUKVJRVA6A52V2HOLZ/\", \"source\": \"security-advisories@github.com\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7SIS6NUNLUBOV4CPCSWKDE6T6C2W3WTR/\", \"source\": \"security-advisories@github.com\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PX3U6YPZQ7PEJBVKSBUOLWVH7DHROHY5/\", \"source\": \"security-advisories@github.com\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZKI4UISUXYNBPN4K6TIQKDRTIJ6CDCKJ/\", \"source\": \"security-advisories@github.com\"}, {\"url\": \"https://oss-fuzz.com/testcase-detail/4985227207311360\", \"source\": \"security-advisories@github.com\"}, {\"url\": \"https://github.com/FreeRDP/FreeRDP/commit/626d10a94a88565d957ddc30768ed08b320049a7\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vffh-j6hh-95f4\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5JL476WVJSIE7SBUKVJRVA6A52V2HOLZ/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7SIS6NUNLUBOV4CPCSWKDE6T6C2W3WTR/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PX3U6YPZQ7PEJBVKSBUOLWVH7DHROHY5/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZKI4UISUXYNBPN4K6TIQKDRTIJ6CDCKJ/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://oss-fuzz.com/testcase-detail/4985227207311360\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
      "sourceIdentifier": "security-advisories@github.com",
      "vulnStatus": "Awaiting Analysis",
      "weaknesses": "[{\"source\": \"security-advisories@github.com\", \"type\": \"Secondary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-125\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2024-32662\",\"sourceIdentifier\":\"security-advisories@github.com\",\"published\":\"2024-04-23T21:15:48.200\",\"lastModified\":\"2025-02-04T17:44:06.430\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients prior to version 3.5.1 are vulnerable to out-of-bounds read. This occurs when `WCHAR` string is read with twice the size it has and converted to `UTF-8`, `base64` decoded. The string is only used to compare against the redirection server certificate. Version 3.5.1 contains a patch for the issue. No known workarounds are available.\"},{\"lang\":\"es\",\"value\":\"FreeRDP es una implementaci\u00f3n gratuita del protocolo de escritorio remoto. Los clientes basados en FreeRDP anteriores a la versi\u00f3n 3.5.1 son vulnerables a lecturas fuera de los l\u00edmites. Esto ocurre cuando la cadena `WCHAR` se lee con el doble de tama\u00f1o que tiene y se convierte a `UTF-8`, decodificada `base64`. La cadena solo se usa para comparar con el certificado del servidor de redirecci\u00f3n. La versi\u00f3n 3.5.1 contiene un parche para el problema. No hay workarounds disponibles.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":9.8,\"baseSeverity\":\"CRITICAL\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":5.9}]},\"weaknesses\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-125\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-125\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:freerdp:freerdp:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"3.5.1\",\"matchCriteriaId\":\"5A546A34-55AE-4A2C-A46F-60F00824F852\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:38:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CC559B26-5DFC-4B7A-A27C-B77DE755DFF9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:39:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B8EDB836-4E6A-4B71-B9B2-AA3E03E0F646\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:40:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CA277A6C-83EC-4536-9125-97B84C4FAF59\"}]}]}],\"references\":[{\"url\":\"https://github.com/FreeRDP/FreeRDP/commit/626d10a94a88565d957ddc30768ed08b320049a7\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Patch\"]},{\"url\":\"https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vffh-j6hh-95f4\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5JL476WVJSIE7SBUKVJRVA6A52V2HOLZ/\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7SIS6NUNLUBOV4CPCSWKDE6T6C2W3WTR/\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PX3U6YPZQ7PEJBVKSBUOLWVH7DHROHY5/\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZKI4UISUXYNBPN4K6TIQKDRTIJ6CDCKJ/\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://oss-fuzz.com/testcase-detail/4985227207311360\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Permissions Required\"]},{\"url\":\"https://github.com/FreeRDP/FreeRDP/commit/626d10a94a88565d957ddc30768ed08b320049a7\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]},{\"url\":\"https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vffh-j6hh-95f4\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5JL476WVJSIE7SBUKVJRVA6A52V2HOLZ/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7SIS6NUNLUBOV4CPCSWKDE6T6C2W3WTR/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PX3U6YPZQ7PEJBVKSBUOLWVH7DHROHY5/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZKI4UISUXYNBPN4K6TIQKDRTIJ6CDCKJ/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://oss-fuzz.com/testcase-detail/4985227207311360\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Permissions Required\"]}]}}",
    "vulnrichment": {
      "containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vffh-j6hh-95f4\", \"name\": \"https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vffh-j6hh-95f4\", \"tags\": [\"x_refsource_CONFIRM\", \"x_transferred\"]}, {\"url\": \"https://github.com/FreeRDP/FreeRDP/commit/626d10a94a88565d957ddc30768ed08b320049a7\", \"name\": \"https://github.com/FreeRDP/FreeRDP/commit/626d10a94a88565d957ddc30768ed08b320049a7\", \"tags\": [\"x_refsource_MISC\", \"x_transferred\"]}, {\"url\": \"https://oss-fuzz.com/testcase-detail/4985227207311360\", \"name\": \"https://oss-fuzz.com/testcase-detail/4985227207311360\", \"tags\": [\"x_refsource_MISC\", \"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZKI4UISUXYNBPN4K6TIQKDRTIJ6CDCKJ/\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7SIS6NUNLUBOV4CPCSWKDE6T6C2W3WTR/\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PX3U6YPZQ7PEJBVKSBUOLWVH7DHROHY5/\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5JL476WVJSIE7SBUKVJRVA6A52V2HOLZ/\", \"tags\": [\"x_transferred\"]}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-02T02:13:40.282Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2024-32662\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"yes\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-05-09T18:28:25.815736Z\"}}}], \"affected\": [{\"cpes\": [\"cpe:2.3:a:freerdp:freerdp:*:*:*:*:*:*:*:*\"], \"vendor\": \"freerdp\", \"product\": \"freerdp\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"3.5.1\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-05-09T18:28:59.173Z\"}}], \"cna\": {\"title\": \"FreeRDP rdp_redirection_read_base64_wchar out of bound read\", \"source\": {\"advisory\": \"GHSA-vffh-j6hh-95f4\", \"discovery\": \"UNKNOWN\"}, \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 7.5, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N\", \"integrityImpact\": \"HIGH\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"NONE\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"NONE\"}}], \"affected\": [{\"vendor\": \"FreeRDP\", \"product\": \"FreeRDP\", \"versions\": [{\"status\": \"affected\", \"version\": \"\u003c 3.5.1\"}]}], \"references\": [{\"url\": \"https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vffh-j6hh-95f4\", \"name\": \"https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vffh-j6hh-95f4\", \"tags\": [\"x_refsource_CONFIRM\"]}, {\"url\": \"https://github.com/FreeRDP/FreeRDP/commit/626d10a94a88565d957ddc30768ed08b320049a7\", \"name\": \"https://github.com/FreeRDP/FreeRDP/commit/626d10a94a88565d957ddc30768ed08b320049a7\", \"tags\": [\"x_refsource_MISC\"]}, {\"url\": \"https://oss-fuzz.com/testcase-detail/4985227207311360\", \"name\": \"https://oss-fuzz.com/testcase-detail/4985227207311360\", \"tags\": [\"x_refsource_MISC\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZKI4UISUXYNBPN4K6TIQKDRTIJ6CDCKJ/\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7SIS6NUNLUBOV4CPCSWKDE6T6C2W3WTR/\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PX3U6YPZQ7PEJBVKSBUOLWVH7DHROHY5/\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5JL476WVJSIE7SBUKVJRVA6A52V2HOLZ/\"}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients prior to version 3.5.1 are vulnerable to out-of-bounds read. This occurs when `WCHAR` string is read with twice the size it has and converted to `UTF-8`, `base64` decoded. The string is only used to compare against the redirection server certificate. Version 3.5.1 contains a patch for the issue. No known workarounds are available.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-125\", \"description\": \"CWE-125: Out-of-bounds Read\"}]}], \"providerMetadata\": {\"orgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"shortName\": \"GitHub_M\", \"dateUpdated\": \"2024-06-10T16:09:55.904Z\"}}}",
      "cveMetadata": "{\"cveId\": \"CVE-2024-32662\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-02-13T17:52:17.136Z\", \"dateReserved\": \"2024-04-16T14:15:26.878Z\", \"assignerOrgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"datePublished\": \"2024-04-23T20:17:30.949Z\", \"assignerShortName\": \"GitHub_M\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }
  }
}

BDU:2024-03395

Vulnerability from fstec - Published: 23.04.2024

Title

Уязвимость RDP-клиента FreeRDP, связанная с чтением за границами памяти, позволяющая нарушителю оказать воздействие на целостность защищаемой информации

Description

Уязвимость RDP-клиента FreeRDP связана с чтением за границами памяти. Эксплуатация уязвимости может позволить нарушителю, действующему удаленно, оказать воздействие на целостность защищаемой информации

Severity ?


                    
                      AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Vendor

Red Hat Inc., Сообщество свободного программного обеспечения, ООО «Ред Софт», Canonical Ltd., Free Software Foundation, Inc., ООО «НЦПР»

Software Name

Red Hat Enterprise Linux, Debian GNU/Linux, РЕД ОС (запись в едином реестре российских программ №3751), Ubuntu, FreeRDP, МСВСфера

Software Version

8 (Red Hat Enterprise Linux), 10 (Debian GNU/Linux), 11 (Debian GNU/Linux), 12 (Debian GNU/Linux), 7.3 (РЕД ОС), 9 (Red Hat Enterprise Linux), 24.04 LTS (Ubuntu), от 3.0.0 до 3.5.1 (FreeRDP), 9.5 (МСВСфера)

Possible Mitigations

Установка обновлений из доверенных источников. В связи со сложившейся обстановкой и введенными санкциями против Российской Федерации рекомендуется устанавливать обновления программного обеспечения только после оценки всех сопутствующих рисков. Использование рекомендаций: Для FreeRDP: https://github.com/FreeRDP/FreeRDP/commit/626d10a94a88565d957ddc30768ed08b320049a7 https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vffh-j6hh-95f4 Для Debian GNU/Linux: https://security-tracker.debian.org/tracker/CVE-2024-32662 Для программных продуктов Red Hat Inc.: https://access.redhat.com/security/cve/cve-2024-32662 Для Ubuntu: https://ubuntu.com/security/notices/USN-6759-1 Для РедОС: http://repo.red-soft.ru/redos/7.3c/x86_64/updates/ Для МСВСфера: https://errata.msvsphere-os.ru/definition/9/INFCSA-2024:9092?lang=ru

Reference

https://github.com/FreeRDP/FreeRDP/commit/626d10a94a88565d957ddc30768ed08b320049a7 https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vffh-j6hh-95f4 https://oss-fuzz.com/testcase-detail/4985227207311360 https://vuldb.com/?id.261825 https://security-tracker.debian.org/tracker/CVE-2024-32662 https://access.redhat.com/security/cve/cve-2024-32662 https://ubuntu.com/security/notices/USN-6759-1 http://repo.red-soft.ru/redos/7.3c/x86_64/updates/ https://errata.msvsphere-os.ru/definition/9/INFCSA-2024:9092?lang=ru

CWE

CWE-125

JSON

To clipboard

{
  "CVSS 2.0": "AV:N/AC:L/Au:N/C:N/I:C/A:N",
  "CVSS 3.0": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
  "CVSS 4.0": null,
  "remediation_\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": null,
  "remediation_\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435": null,
  "\u0412\u0435\u043d\u0434\u043e\u0440 \u041f\u041e": "Red Hat Inc., \u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f, \u041e\u041e\u041e \u00ab\u0420\u0435\u0434 \u0421\u043e\u0444\u0442\u00bb, Canonical Ltd., Free Software Foundation, Inc., \u041e\u041e\u041e \u00ab\u041d\u0426\u041f\u0420\u00bb",
  "\u0412\u0435\u0440\u0441\u0438\u044f \u041f\u041e": "8 (Red Hat Enterprise Linux), 10 (Debian GNU/Linux), 11 (Debian GNU/Linux), 12 (Debian GNU/Linux), 7.3 (\u0420\u0415\u0414 \u041e\u0421), 9 (Red Hat Enterprise Linux), 24.04 LTS (Ubuntu), \u043e\u0442 3.0.0 \u0434\u043e 3.5.1 (FreeRDP), 9.5 (\u041c\u0421\u0412\u0421\u0444\u0435\u0440\u0430)",
  "\u0412\u043e\u0437\u043c\u043e\u0436\u043d\u044b\u0435 \u043c\u0435\u0440\u044b \u043f\u043e \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044e": "\u0423\u0441\u0442\u0430\u043d\u043e\u0432\u043a\u0430 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0439 \u0438\u0437 \u0434\u043e\u0432\u0435\u0440\u0435\u043d\u043d\u044b\u0445 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u043e\u0432.\n\u0412 \u0441\u0432\u044f\u0437\u0438 \u0441\u043e \u0441\u043b\u043e\u0436\u0438\u0432\u0448\u0435\u0439\u0441\u044f \u043e\u0431\u0441\u0442\u0430\u043d\u043e\u0432\u043a\u043e\u0439 \u0438 \u0432\u0432\u0435\u0434\u0435\u043d\u043d\u044b\u043c\u0438 \u0441\u0430\u043d\u043a\u0446\u0438\u044f\u043c\u0438 \u043f\u0440\u043e\u0442\u0438\u0432 \u0420\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u043e\u0439 \u0424\u0435\u0434\u0435\u0440\u0430\u0446\u0438\u0438 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0443\u0435\u0442\u0441\u044f \u0443\u0441\u0442\u0430\u043d\u0430\u0432\u043b\u0438\u0432\u0430\u0442\u044c \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f \u0442\u043e\u043b\u044c\u043a\u043e \u043f\u043e\u0441\u043b\u0435 \u043e\u0446\u0435\u043d\u043a\u0438 \u0432\u0441\u0435\u0445 \u0441\u043e\u043f\u0443\u0442\u0441\u0442\u0432\u0443\u044e\u0449\u0438\u0445 \u0440\u0438\u0441\u043a\u043e\u0432.\n\n\u0418\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439:\n\u0414\u043b\u044f FreeRDP:\nhttps://github.com/FreeRDP/FreeRDP/commit/626d10a94a88565d957ddc30768ed08b320049a7\nhttps://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vffh-j6hh-95f4\n\n\u0414\u043b\u044f Debian GNU/Linux:\nhttps://security-tracker.debian.org/tracker/CVE-2024-32662\n\n\u0414\u043b\u044f \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u044b\u0445 \u043f\u0440\u043e\u0434\u0443\u043a\u0442\u043e\u0432 Red Hat Inc.:\nhttps://access.redhat.com/security/cve/cve-2024-32662\n\n\u0414\u043b\u044f Ubuntu:\nhttps://ubuntu.com/security/notices/USN-6759-1\n\n\u0414\u043b\u044f \u0420\u0435\u0434\u041e\u0421: http://repo.red-soft.ru/redos/7.3c/x86_64/updates/\n\n\u0414\u043b\u044f \u041c\u0421\u0412\u0421\u0444\u0435\u0440\u0430: https://errata.msvsphere-os.ru/definition/9/INFCSA-2024:9092?lang=ru",
  "\u0414\u0430\u0442\u0430 \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0438\u044f": "23.04.2024",
  "\u0414\u0430\u0442\u0430 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0435\u0433\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f": "19.11.2025",
  "\u0414\u0430\u0442\u0430 \u043f\u0443\u0431\u043b\u0438\u043a\u0430\u0446\u0438\u0438": "02.05.2024",
  "\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": "BDU:2024-03395",
  "\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440\u044b \u0434\u0440\u0443\u0433\u0438\u0445 \u0441\u0438\u0441\u0442\u0435\u043c \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "CVE-2024-32662",
  "\u0418\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f \u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0430",
  "\u041a\u043b\u0430\u0441\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u0434\u0430",
  "\u041d\u0430\u0437\u0432\u0430\u043d\u0438\u0435 \u041f\u041e": "Red Hat Enterprise Linux, Debian GNU/Linux, \u0420\u0415\u0414 \u041e\u0421 (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21163751), Ubuntu, FreeRDP, \u041c\u0421\u0412\u0421\u0444\u0435\u0440\u0430",
  "\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u041e\u0421 \u0438 \u0442\u0438\u043f \u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0439 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u044b": "Red Hat Inc. Red Hat Enterprise Linux 8 , \u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f Debian GNU/Linux 10 , \u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f Debian GNU/Linux 11 , \u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f Debian GNU/Linux 12 , \u041e\u041e\u041e \u00ab\u0420\u0435\u0434 \u0421\u043e\u0444\u0442\u00bb \u0420\u0415\u0414 \u041e\u0421 7.3  (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21163751), Red Hat Inc. Red Hat Enterprise Linux 9 , Canonical Ltd. Ubuntu 24.04 LTS , \u041e\u041e\u041e \u00ab\u041d\u0426\u041f\u0420\u00bb \u041c\u0421\u0412\u0421\u0444\u0435\u0440\u0430 9.5 ",
  "\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c RDP-\u043a\u043b\u0438\u0435\u043d\u0442\u0430 FreeRDP, \u0441\u0432\u044f\u0437\u0430\u043d\u043d\u0430\u044f \u0441 \u0447\u0442\u0435\u043d\u0438\u0435\u043c \u0437\u0430 \u0433\u0440\u0430\u043d\u0438\u0446\u0430\u043c\u0438 \u043f\u0430\u043c\u044f\u0442\u0438, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u043e\u043a\u0430\u0437\u0430\u0442\u044c \u0432\u043e\u0437\u0434\u0435\u0439\u0441\u0442\u0432\u0438\u0435 \u043d\u0430 \u0446\u0435\u043b\u043e\u0441\u0442\u043d\u043e\u0441\u0442\u044c \u0437\u0430\u0449\u0438\u0449\u0430\u0435\u043c\u043e\u0439 \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0438",
  "\u041d\u0430\u043b\u0438\u0447\u0438\u0435 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u0430": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
  "\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "\u0427\u0442\u0435\u043d\u0438\u0435 \u0437\u0430 \u0433\u0440\u0430\u043d\u0438\u0446\u0430\u043c\u0438 \u0431\u0443\u0444\u0435\u0440\u0430 (CWE-125)",
  "\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c RDP-\u043a\u043b\u0438\u0435\u043d\u0442\u0430 FreeRDP \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 \u0447\u0442\u0435\u043d\u0438\u0435\u043c \u0437\u0430 \u0433\u0440\u0430\u043d\u0438\u0446\u0430\u043c\u0438 \u043f\u0430\u043c\u044f\u0442\u0438. \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e, \u0434\u0435\u0439\u0441\u0442\u0432\u0443\u044e\u0449\u0435\u043c\u0443 \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e, \u043e\u043a\u0430\u0437\u0430\u0442\u044c \u0432\u043e\u0437\u0434\u0435\u0439\u0441\u0442\u0432\u0438\u0435 \u043d\u0430 \u0446\u0435\u043b\u043e\u0441\u0442\u043d\u043e\u0441\u0442\u044c \u0437\u0430\u0449\u0438\u0449\u0430\u0435\u043c\u043e\u0439 \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0438",
  "\u041f\u043e\u0441\u043b\u0435\u0434\u0441\u0442\u0432\u0438\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": null,
  "\u041f\u0440\u043e\u0447\u0430\u044f \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f": null,
  "\u0421\u0432\u044f\u0437\u044c \u0441 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u0430\u043c\u0438 \u0418\u0411": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
  "\u0421\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043d\u0430",
  "\u0421\u043f\u043e\u0441\u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f": "\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f",
  "\u0421\u043f\u043e\u0441\u043e\u0431 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438": "\u041c\u0430\u043d\u0438\u043f\u0443\u043b\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u0435 \u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u0430\u043c\u0438 \u0434\u0430\u043d\u043d\u044b\u0445",
  "\u0421\u0441\u044b\u043b\u043a\u0438 \u043d\u0430 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u0438": "https://github.com/FreeRDP/FreeRDP/commit/626d10a94a88565d957ddc30768ed08b320049a7\nhttps://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vffh-j6hh-95f4\nhttps://oss-fuzz.com/testcase-detail/4985227207311360\nhttps://vuldb.com/?id.261825\nhttps://security-tracker.debian.org/tracker/CVE-2024-32662\nhttps://access.redhat.com/security/cve/cve-2024-32662\nhttps://ubuntu.com/security/notices/USN-6759-1\nhttp://repo.red-soft.ru/redos/7.3c/x86_64/updates/\nhttps://errata.msvsphere-os.ru/definition/9/INFCSA-2024:9092?lang=ru",
  "\u0421\u0442\u0430\u0442\u0443\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041f\u043e\u0434\u0442\u0432\u0435\u0440\u0436\u0434\u0435\u043d\u0430 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u0435\u043c",
  "\u0422\u0438\u043f \u041f\u041e": "\u041e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u0430\u044f \u0441\u0438\u0441\u0442\u0435\u043c\u0430, \u041f\u0440\u0438\u043a\u043b\u0430\u0434\u043d\u043e\u0435 \u041f\u041e \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u043e\u043d\u043d\u044b\u0445 \u0441\u0438\u0441\u0442\u0435\u043c",
  "\u0422\u0438\u043f \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "CWE-125",
  "\u0423\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0412\u044b\u0441\u043e\u043a\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 2.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 7,8)\n\u0412\u044b\u0441\u043e\u043a\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 3.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 7,5)"
}

FKIE_CVE-2024-32662

Vulnerability from fkie_nvd - Published: 2024-04-23 21:15 - Updated: 2025-02-04 17:44

Severity ?

7.5 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
9.8 (Critical) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Summary

References

URL	Tags
security-advisories@github.com	https://github.com/FreeRDP/FreeRDP/commit/626d10a94a88565d957ddc30768ed08b320049a7	Patch
security-advisories@github.com	https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vffh-j6hh-95f4	Vendor Advisory
security-advisories@github.com	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5JL476WVJSIE7SBUKVJRVA6A52V2HOLZ/	Third Party Advisory
security-advisories@github.com	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7SIS6NUNLUBOV4CPCSWKDE6T6C2W3WTR/	Third Party Advisory
security-advisories@github.com	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PX3U6YPZQ7PEJBVKSBUOLWVH7DHROHY5/	Third Party Advisory
security-advisories@github.com	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZKI4UISUXYNBPN4K6TIQKDRTIJ6CDCKJ/	Third Party Advisory
security-advisories@github.com	https://oss-fuzz.com/testcase-detail/4985227207311360	Permissions Required
af854a3a-2127-422b-91ae-364da2661108	https://github.com/FreeRDP/FreeRDP/commit/626d10a94a88565d957ddc30768ed08b320049a7	Patch
af854a3a-2127-422b-91ae-364da2661108	https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vffh-j6hh-95f4	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5JL476WVJSIE7SBUKVJRVA6A52V2HOLZ/	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7SIS6NUNLUBOV4CPCSWKDE6T6C2W3WTR/	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PX3U6YPZQ7PEJBVKSBUOLWVH7DHROHY5/	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZKI4UISUXYNBPN4K6TIQKDRTIJ6CDCKJ/	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://oss-fuzz.com/testcase-detail/4985227207311360	Permissions Required

Impacted products

Vendor	Product	Version
freerdp	freerdp	*
fedoraproject	fedora	38
fedoraproject	fedora	39
fedoraproject	fedora	40

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:freerdp:freerdp:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "5A546A34-55AE-4A2C-A46F-60F00824F852",
              "versionEndExcluding": "3.5.1",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:fedoraproject:fedora:38:*:*:*:*:*:*:*",
              "matchCriteriaId": "CC559B26-5DFC-4B7A-A27C-B77DE755DFF9",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:fedoraproject:fedora:39:*:*:*:*:*:*:*",
              "matchCriteriaId": "B8EDB836-4E6A-4B71-B9B2-AA3E03E0F646",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:fedoraproject:fedora:40:*:*:*:*:*:*:*",
              "matchCriteriaId": "CA277A6C-83EC-4536-9125-97B84C4FAF59",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients prior to version 3.5.1 are vulnerable to out-of-bounds read. This occurs when `WCHAR` string is read with twice the size it has and converted to `UTF-8`, `base64` decoded. The string is only used to compare against the redirection server certificate. Version 3.5.1 contains a patch for the issue. No known workarounds are available."
    },
    {
      "lang": "es",
      "value": "FreeRDP es una implementaci\u00f3n gratuita del protocolo de escritorio remoto. Los clientes basados en FreeRDP anteriores a la versi\u00f3n 3.5.1 son vulnerables a lecturas fuera de los l\u00edmites. Esto ocurre cuando la cadena `WCHAR` se lee con el doble de tama\u00f1o que tiene y se convierte a `UTF-8`, decodificada `base64`. La cadena solo se usa para comparar con el certificado del servidor de redirecci\u00f3n. La versi\u00f3n 3.5.1 contiene un parche para el problema. No hay workarounds disponibles."
    }
  ],
  "id": "CVE-2024-32662",
  "lastModified": "2025-02-04T17:44:06.430",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "NONE",
          "baseScore": 7.5,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "NONE",
          "integrityImpact": "HIGH",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
          "version": "3.1"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 3.6,
        "source": "security-advisories@github.com",
        "type": "Secondary"
      },
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "HIGH",
          "baseScore": 9.8,
          "baseSeverity": "CRITICAL",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 5.9,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2024-04-23T21:15:48.200",
  "references": [
    {
      "source": "security-advisories@github.com",
      "tags": [
        "Patch"
      ],
      "url": "https://github.com/FreeRDP/FreeRDP/commit/626d10a94a88565d957ddc30768ed08b320049a7"
    },
    {
      "source": "security-advisories@github.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vffh-j6hh-95f4"
    },
    {
      "source": "security-advisories@github.com",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5JL476WVJSIE7SBUKVJRVA6A52V2HOLZ/"
    },
    {
      "source": "security-advisories@github.com",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7SIS6NUNLUBOV4CPCSWKDE6T6C2W3WTR/"
    },
    {
      "source": "security-advisories@github.com",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PX3U6YPZQ7PEJBVKSBUOLWVH7DHROHY5/"
    },
    {
      "source": "security-advisories@github.com",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZKI4UISUXYNBPN4K6TIQKDRTIJ6CDCKJ/"
    },
    {
      "source": "security-advisories@github.com",
      "tags": [
        "Permissions Required"
      ],
      "url": "https://oss-fuzz.com/testcase-detail/4985227207311360"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch"
      ],
      "url": "https://github.com/FreeRDP/FreeRDP/commit/626d10a94a88565d957ddc30768ed08b320049a7"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vffh-j6hh-95f4"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5JL476WVJSIE7SBUKVJRVA6A52V2HOLZ/"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7SIS6NUNLUBOV4CPCSWKDE6T6C2W3WTR/"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PX3U6YPZQ7PEJBVKSBUOLWVH7DHROHY5/"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZKI4UISUXYNBPN4K6TIQKDRTIJ6CDCKJ/"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Permissions Required"
      ],
      "url": "https://oss-fuzz.com/testcase-detail/4985227207311360"
    }
  ],
  "sourceIdentifier": "security-advisories@github.com",
  "vulnStatus": "Analyzed",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-125"
        }
      ],
      "source": "security-advisories@github.com",
      "type": "Secondary"
    },
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-125"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

GSD-2024-32662

Vulnerability from gsd - Updated: 2024-04-17 05:01

Details

Aliases

CVE-2024-32662

JSON

To clipboard

{
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2024-32662"
      ],
      "details": "FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients prior to version 3.5.1 are vulnerable to out-of-bounds read. This occurs when `WCHAR` string is read with twice the size it has and converted to `UTF-8`, `base64` decoded. The string is only used to compare against the redirection server certificate. Version 3.5.1 contains a patch for the issue. No known workarounds are available.",
      "id": "GSD-2024-32662",
      "modified": "2024-04-17T05:01:56.767730Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "security-advisories@github.com",
        "ID": "CVE-2024-32662",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "FreeRDP",
                    "version": {
                      "version_data": [
                        {
                          "version_affected": "=",
                          "version_value": "\u003c 3.5.1"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "FreeRDP"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients prior to version 3.5.1 are vulnerable to out-of-bounds read. This occurs when `WCHAR` string is read with twice the size it has and converted to `UTF-8`, `base64` decoded. The string is only used to compare against the redirection server certificate. Version 3.5.1 contains a patch for the issue. No known workarounds are available."
          }
        ]
      },
      "impact": {
        "cvss": [
          {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
            "version": "3.1"
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "cweId": "CWE-125",
                "lang": "eng",
                "value": "CWE-125: Out-of-bounds Read"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vffh-j6hh-95f4",
            "refsource": "MISC",
            "url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vffh-j6hh-95f4"
          },
          {
            "name": "https://github.com/FreeRDP/FreeRDP/commit/626d10a94a88565d957ddc30768ed08b320049a7",
            "refsource": "MISC",
            "url": "https://github.com/FreeRDP/FreeRDP/commit/626d10a94a88565d957ddc30768ed08b320049a7"
          },
          {
            "name": "https://oss-fuzz.com/testcase-detail/4985227207311360",
            "refsource": "MISC",
            "url": "https://oss-fuzz.com/testcase-detail/4985227207311360"
          }
        ]
      },
      "source": {
        "advisory": "GHSA-vffh-j6hh-95f4",
        "discovery": "UNKNOWN"
      }
    },
    "nvd.nist.gov": {
      "cve": {
        "descriptions": [
          {
            "lang": "en",
            "value": "FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients prior to version 3.5.1 are vulnerable to out-of-bounds read. This occurs when `WCHAR` string is read with twice the size it has and converted to `UTF-8`, `base64` decoded. The string is only used to compare against the redirection server certificate. Version 3.5.1 contains a patch for the issue. No known workarounds are available."
          },
          {
            "lang": "es",
            "value": "FreeRDP es una implementaci\u00f3n gratuita del protocolo de escritorio remoto. Los clientes basados en FreeRDP anteriores a la versi\u00f3n 3.5.1 son vulnerables a lecturas fuera de los l\u00edmites. Esto ocurre cuando la cadena `WCHAR` se lee con el doble de tama\u00f1o que tiene y se convierte a `UTF-8`, decodificada `base64`. La cadena solo se usa para comparar con el certificado del servidor de redirecci\u00f3n. La versi\u00f3n 3.5.1 contiene un parche para el problema. No hay workarounds disponibles."
          }
        ],
        "id": "CVE-2024-32662",
        "lastModified": "2024-04-24T13:39:42.883",
        "metrics": {
          "cvssMetricV31": [
            {
              "cvssData": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 7.5,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "NONE",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
                "version": "3.1"
              },
              "exploitabilityScore": 3.9,
              "impactScore": 3.6,
              "source": "security-advisories@github.com",
              "type": "Secondary"
            }
          ]
        },
        "published": "2024-04-23T21:15:48.200",
        "references": [
          {
            "source": "security-advisories@github.com",
            "url": "https://github.com/FreeRDP/FreeRDP/commit/626d10a94a88565d957ddc30768ed08b320049a7"
          },
          {
            "source": "security-advisories@github.com",
            "url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vffh-j6hh-95f4"
          },
          {
            "source": "security-advisories@github.com",
            "url": "https://oss-fuzz.com/testcase-detail/4985227207311360"
          }
        ],
        "sourceIdentifier": "security-advisories@github.com",
        "vulnStatus": "Awaiting Analysis",
        "weaknesses": [
          {
            "description": [
              {
                "lang": "en",
                "value": "CWE-125"
              }
            ],
            "source": "security-advisories@github.com",
            "type": "Secondary"
          }
        ]
      }
    }
  }
}

RHSA-2024:9092

Vulnerability from csaf_redhat - Published: 2024-11-12 09:36 - Updated: 2026-04-22 18:31

Summary

Red Hat Security Advisory: freerdp security update

Severity

Moderate

Notes

Topic: An update for freerdp is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Details: FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. The xfreerdp client can connect to RDP servers such as Microsoft Windows machines, xrdp, and VirtualBox. Security Fix(es): * freerdp: Integer Overflow leading to Heap Overflow in freerdp_bitmap_planar_context_reset (CVE-2024-22211) * freerdp: out-of-bounds read in ncrush_decompress (CVE-2024-32459) * freerdp: OutOfBound Read in interleaved_decompress (CVE-2024-32460) * freerdp: Integer overflow & OutOfBound Write in clear_decompress_residual_data (CVE-2024-32039) * freerdp: integer underflow in nsc_rle_decode (CVE-2024-32040) * freerdp: OutOfBound Read in zgfx_decompress_segment (CVE-2024-32041) * freerdp: OutOfBound Read in planar_skip_plane_rle (CVE-2024-32458) * freerdp: out-of-bounds read (CVE-2024-32662) * FreeRDP: ExtractRunLengthRegular* out of bound read (CVE-2024-32658) * freerdp: zgfx_decompress out of memory (CVE-2024-32660) * freerdp: freerdp_image_copy out of bound read (CVE-2024-32659) * freerdp: rdp_write_logon_info_v1 NULL access (CVE-2024-32661) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Red Hat Enterprise Linux 9.5 Release Notes linked from the References section.

Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.

CVE-2024-22211

FreeRDP is a collection of remote desktop protocol library and client software that is both free and open source. An integer overflow within freerdp_bitmap_planar_context_reset results in a heap-buffer overflow. This impacts clients built on FreeRDP. However, server implementations and proxies based on FreeRDP are unaffected. A malevolent server could create a RDPGFX_RESET_GRAPHICS_PDU to allocate buffers that are too small, potentially causing subsequent out-of-bounds reads/writes. It's important to note that data extraction over the network is not feasible; these buffers are utilized solely for displaying images.

3.7 (Low)


                        
                          CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:N/I:L/A:L

CWE-190 - Integer Overflow or Wraparound

Affected products

Fixed 90 products

Product	Version	Remediation
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Low

CVE-2024-32039

A flaw was found in FreeRDP-based clients. Affected versions of FreeRDP are vulnerable to an integer overflow and out-of-bounds write. This issue occurs when the sum of the `runLengthFactor` and `pixelIndex` values become large enough to overflow the uint32 type and bypass an error check when clearing residual data.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-787 - Out-of-bounds Write

Affected products

Fixed 90 products

Product	Version	Remediation
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2024-32040

FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients that use a version of FreeRDP prior to 3.5.0 or 2.11.6 and have connections to servers using the `NSC` codec are vulnerable to integer underflow. Versions 3.5.0 and 2.11.6 patch the issue. As a workaround, do not use the NSC codec (e.g. use `-nsc`).

CWE-191 - Integer Underflow (Wrap or Wraparound)

Affected products

Fixed 90 products

Product	Version	Remediation
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix

Threats

Impact Low

CVE-2024-32041

FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients that use a version of FreeRDP prior to 3.5.0 or 2.11.6 are vulnerable to out-of-bounds read. Versions 3.5.0 and 2.11.6 patch the issue. As a workaround, deactivate `/gfx` (on by default, set `/bpp` or `/rfx` options instead.

CWE-125 - Out-of-bounds Read

Affected products

Fixed 90 products

Product	Version	Remediation
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix

Threats

Impact Low

CVE-2024-32458

FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients that use a version of FreeRDP prior to 3.5.0 or 2.11.6 are vulnerable to out-of-bounds read. Versions 3.5.0 and 2.11.6 patch the issue. As a workaround, use `/gfx` or `/rfx` modes (on by default, require server side support).

CWE-125 - Out-of-bounds Read

Affected products

Fixed 90 products

Product	Version	Remediation
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix

Threats

Impact Low

CVE-2024-32459

FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients and servers that use a version of FreeRDP prior to 3.5.0 or 2.11.6 are vulnerable to out-of-bounds read. Versions 3.5.0 and 2.11.6 patch the issue. No known workarounds are available.

CWE-125 - Out-of-bounds Read

Affected products

Fixed 90 products

Product	Version	Remediation
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix

Threats

Impact Low

CVE-2024-32460

FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based based clients using `/bpp:32` legacy `GDI` drawing path with a version of FreeRDP prior to 3.5.0 or 2.11.6 are vulnerable to out-of-bounds read. Versions 3.5.0 and 2.11.6 patch the issue. As a workaround, use modern drawing paths (e.g. `/rfx` or `/gfx` options). The workaround requires server side support.

CWE-125 - Out-of-bounds Read

Affected products

Fixed 90 products

Product	Version	Remediation
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix

Threats

Impact Low

CVE-2024-32658

FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients prior to version 3.5.1 are vulnerable to out-of-bounds read. Version 3.5.1 contains a patch for the issue. No known workarounds are available.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-125 - Out-of-bounds Read

Affected products

Fixed 90 products

Product	Version	Remediation
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix

Threats

Impact Low

CVE-2024-32659

FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients prior to version 3.5.1 are vulnerable to out-of-bounds read if `((nWidth == 0) and (nHeight == 0))`. Version 3.5.1 contains a patch for the issue. No known workarounds are available.

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

CWE-125 - Out-of-bounds Read

Affected products

Fixed 90 products

Product	Version	Remediation
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix

Threats

Impact Low

CVE-2024-32660

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.5.1, a malicious server can crash the FreeRDP client by sending invalid huge allocation size. Version 3.5.1 contains a patch for the issue. No known workarounds are available.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-770 - Allocation of Resources Without Limits or Throttling

Affected products

Fixed 90 products

Product	Version	Remediation
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix

Threats

Impact Low

CVE-2024-32661

FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients prior to version 3.5.1 are vulnerable to a possible `NULL` access and crash. Version 3.5.1 contains a patch for the issue. No known workarounds are available.

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

CWE-476 - NULL Pointer Dereference

Affected products

Fixed 90 products

Product	Version	Remediation
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix

Threats

Impact Low

CVE-2024-32662

A flaw was found in FreeRDP-based clients. Affected versions of FreeRDP are vulnerable to an out-of-bounds read. This issue occurs when the `WCHAR` string is read with twice the size it has and converted to `UTF-8`, `base64` decoded. The string is only used to compare against the redirection server certificate.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

CWE-125 - Out-of-bounds Read

Affected products

Fixed 90 products

Product	Version	Remediation
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix

Threats

Impact Moderate

References

79 references

URL	Category
https://access.redhat.com/errata/RHSA-2024:9092	self
https://docs.redhat.com/en/documentation/red_hat_…	external
https://access.redhat.com/security/updates/classi…	external
https://bugzilla.redhat.com/show_bug.cgi?id=2259483	external
https://bugzilla.redhat.com/show_bug.cgi?id=2276721	external
https://bugzilla.redhat.com/show_bug.cgi?id=2276722	external
https://bugzilla.redhat.com/show_bug.cgi?id=2276723	external
https://bugzilla.redhat.com/show_bug.cgi?id=2276724	external
https://bugzilla.redhat.com/show_bug.cgi?id=2276725	external
https://bugzilla.redhat.com/show_bug.cgi?id=2276726	external
https://bugzilla.redhat.com/show_bug.cgi?id=2276804	external
https://bugzilla.redhat.com/show_bug.cgi?id=2276961	external
https://bugzilla.redhat.com/show_bug.cgi?id=2276968	external
https://bugzilla.redhat.com/show_bug.cgi?id=2276970	external
https://bugzilla.redhat.com/show_bug.cgi?id=2276971	external
https://issues.redhat.com/browse/RHEL-33988	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2024-22211	self
https://bugzilla.redhat.com/show_bug.cgi?id=2259483	external
https://www.cve.org/CVERecord?id=CVE-2024-22211	external
https://nvd.nist.gov/vuln/detail/CVE-2024-22211	external
https://github.com/FreeRDP/FreeRDP/commit/939e922…	external
https://github.com/FreeRDP/FreeRDP/commit/aeac304…	external
https://github.com/FreeRDP/FreeRDP/security/advis…	external
https://access.redhat.com/security/cve/CVE-2024-32039	self
https://bugzilla.redhat.com/show_bug.cgi?id=2276723	external
https://www.cve.org/CVERecord?id=CVE-2024-32039	external
https://nvd.nist.gov/vuln/detail/CVE-2024-32039	external
https://github.com/FreeRDP/FreeRDP/security/advis…	external
https://access.redhat.com/security/cve/CVE-2024-32040	self
https://bugzilla.redhat.com/show_bug.cgi?id=2276724	external
https://www.cve.org/CVERecord?id=CVE-2024-32040	external
https://nvd.nist.gov/vuln/detail/CVE-2024-32040	external
https://github.com/FreeRDP/FreeRDP/security/advis…	external
https://access.redhat.com/security/cve/CVE-2024-32041	self
https://bugzilla.redhat.com/show_bug.cgi?id=2276725	external
https://www.cve.org/CVERecord?id=CVE-2024-32041	external
https://nvd.nist.gov/vuln/detail/CVE-2024-32041	external
https://github.com/FreeRDP/FreeRDP/security/advis…	external
https://access.redhat.com/security/cve/CVE-2024-32458	self
https://bugzilla.redhat.com/show_bug.cgi?id=2276726	external
https://www.cve.org/CVERecord?id=CVE-2024-32458	external
https://nvd.nist.gov/vuln/detail/CVE-2024-32458	external
https://github.com/FreeRDP/FreeRDP/security/advis…	external
https://access.redhat.com/security/cve/CVE-2024-32459	self
https://bugzilla.redhat.com/show_bug.cgi?id=2276721	external
https://www.cve.org/CVERecord?id=CVE-2024-32459	external
https://nvd.nist.gov/vuln/detail/CVE-2024-32459	external
https://github.com/FreeRDP/FreeRDP/security/advis…	external
https://access.redhat.com/security/cve/CVE-2024-32460	self
https://bugzilla.redhat.com/show_bug.cgi?id=2276722	external
https://www.cve.org/CVERecord?id=CVE-2024-32460	external
https://nvd.nist.gov/vuln/detail/CVE-2024-32460	external
https://github.com/FreeRDP/FreeRDP/security/advis…	external
https://access.redhat.com/security/cve/CVE-2024-32658	self
https://bugzilla.redhat.com/show_bug.cgi?id=2276961	external
https://www.cve.org/CVERecord?id=CVE-2024-32658	external
https://nvd.nist.gov/vuln/detail/CVE-2024-32658	external
https://github.com/FreeRDP/FreeRDP/security/advis…	external
https://access.redhat.com/security/cve/CVE-2024-32659	self
https://bugzilla.redhat.com/show_bug.cgi?id=2276970	external
https://www.cve.org/CVERecord?id=CVE-2024-32659	external
https://nvd.nist.gov/vuln/detail/CVE-2024-32659	external
https://github.com/FreeRDP/FreeRDP/security/advis…	external
https://access.redhat.com/security/cve/CVE-2024-32660	self
https://bugzilla.redhat.com/show_bug.cgi?id=2276968	external
https://www.cve.org/CVERecord?id=CVE-2024-32660	external
https://nvd.nist.gov/vuln/detail/CVE-2024-32660	external
https://github.com/FreeRDP/FreeRDP/security/advis…	external
https://access.redhat.com/security/cve/CVE-2024-32661	self
https://bugzilla.redhat.com/show_bug.cgi?id=2276971	external
https://www.cve.org/CVERecord?id=CVE-2024-32661	external
https://nvd.nist.gov/vuln/detail/CVE-2024-32661	external
https://github.com/FreeRDP/FreeRDP/security/advis…	external
https://access.redhat.com/security/cve/CVE-2024-32662	self
https://bugzilla.redhat.com/show_bug.cgi?id=2276804	external
https://www.cve.org/CVERecord?id=CVE-2024-32662	external
https://nvd.nist.gov/vuln/detail/CVE-2024-32662	external
https://github.com/FreeRDP/FreeRDP/security/advis…	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An update for freerdp is now available for Red Hat Enterprise Linux 9.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. The xfreerdp client can connect to RDP servers such as Microsoft Windows machines, xrdp, and VirtualBox.\n\nSecurity Fix(es):\n\n* freerdp: Integer Overflow leading to Heap Overflow in freerdp_bitmap_planar_context_reset (CVE-2024-22211)\n\n* freerdp: out-of-bounds read in ncrush_decompress (CVE-2024-32459)\n\n* freerdp: OutOfBound Read in interleaved_decompress (CVE-2024-32460)\n\n* freerdp: Integer overflow \u0026 OutOfBound Write in clear_decompress_residual_data (CVE-2024-32039)\n\n* freerdp: integer underflow in nsc_rle_decode (CVE-2024-32040)\n\n* freerdp: OutOfBound Read in zgfx_decompress_segment (CVE-2024-32041)\n\n* freerdp: OutOfBound Read in planar_skip_plane_rle (CVE-2024-32458)\n\n* freerdp: out-of-bounds read (CVE-2024-32662)\n\n* FreeRDP: ExtractRunLengthRegular* out of bound read (CVE-2024-32658)\n\n* freerdp: zgfx_decompress out of memory (CVE-2024-32660)\n\n* freerdp: freerdp_image_copy out of bound read (CVE-2024-32659)\n\n* freerdp: rdp_write_logon_info_v1 NULL access (CVE-2024-32661)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAdditional Changes:\n\nFor detailed information on changes in this release, see the Red Hat Enterprise Linux 9.5 Release Notes linked from the References section.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2024:9092",
        "url": "https://access.redhat.com/errata/RHSA-2024:9092"
      },
      {
        "category": "external",
        "summary": "https://docs.redhat.com/en/documentation/red_hat_enterprise_linux/9/html/9.5_release_notes/index",
        "url": "https://docs.redhat.com/en/documentation/red_hat_enterprise_linux/9/html/9.5_release_notes/index"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#moderate",
        "url": "https://access.redhat.com/security/updates/classification/#moderate"
      },
      {
        "category": "external",
        "summary": "2259483",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2259483"
      },
      {
        "category": "external",
        "summary": "2276721",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276721"
      },
      {
        "category": "external",
        "summary": "2276722",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276722"
      },
      {
        "category": "external",
        "summary": "2276723",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276723"
      },
      {
        "category": "external",
        "summary": "2276724",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276724"
      },
      {
        "category": "external",
        "summary": "2276725",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276725"
      },
      {
        "category": "external",
        "summary": "2276726",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276726"
      },
      {
        "category": "external",
        "summary": "2276804",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276804"
      },
      {
        "category": "external",
        "summary": "2276961",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276961"
      },
      {
        "category": "external",
        "summary": "2276968",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276968"
      },
      {
        "category": "external",
        "summary": "2276970",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276970"
      },
      {
        "category": "external",
        "summary": "2276971",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276971"
      },
      {
        "category": "external",
        "summary": "RHEL-33988",
        "url": "https://issues.redhat.com/browse/RHEL-33988"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_9092.json"
      }
    ],
    "title": "Red Hat Security Advisory: freerdp security update",
    "tracking": {
      "current_release_date": "2026-04-22T18:31:10+00:00",
      "generator": {
        "date": "2026-04-22T18:31:10+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.7.5"
        }
      },
      "id": "RHSA-2024:9092",
      "initial_release_date": "2024-11-12T09:36:13+00:00",
      "revision_history": [
        {
          "date": "2024-11-12T09:36:13+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2024-11-12T09:36:13+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2026-04-22T18:31:10+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux AppStream (v. 9)",
                "product": {
                  "name": "Red Hat Enterprise Linux AppStream (v. 9)",
                  "product_id": "AppStream-9.5.0.GA",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:enterprise_linux:9::appstream"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat CodeReady Linux Builder (v. 9)",
                "product": {
                  "name": "Red Hat CodeReady Linux Builder (v. 9)",
                  "product_id": "CRB-9.5.0.GA",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:enterprise_linux:9::crb"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "freerdp-devel-2:2.11.7-1.el9.aarch64",
                "product": {
                  "name": "freerdp-devel-2:2.11.7-1.el9.aarch64",
                  "product_id": "freerdp-devel-2:2.11.7-1.el9.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/freerdp-devel@2.11.7-1.el9?arch=aarch64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "libwinpr-devel-2:2.11.7-1.el9.aarch64",
                "product": {
                  "name": "libwinpr-devel-2:2.11.7-1.el9.aarch64",
                  "product_id": "libwinpr-devel-2:2.11.7-1.el9.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/libwinpr-devel@2.11.7-1.el9?arch=aarch64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "freerdp-debugsource-2:2.11.7-1.el9.aarch64",
                "product": {
                  "name": "freerdp-debugsource-2:2.11.7-1.el9.aarch64",
                  "product_id": "freerdp-debugsource-2:2.11.7-1.el9.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/freerdp-debugsource@2.11.7-1.el9?arch=aarch64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
                "product": {
                  "name": "freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
                  "product_id": "freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/freerdp-debuginfo@2.11.7-1.el9?arch=aarch64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
                "product": {
                  "name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
                  "product_id": "freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/freerdp-libs-debuginfo@2.11.7-1.el9?arch=aarch64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
                "product": {
                  "name": "libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
                  "product_id": "libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/libwinpr-debuginfo@2.11.7-1.el9?arch=aarch64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "freerdp-2:2.11.7-1.el9.aarch64",
                "product": {
                  "name": "freerdp-2:2.11.7-1.el9.aarch64",
                  "product_id": "freerdp-2:2.11.7-1.el9.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/freerdp@2.11.7-1.el9?arch=aarch64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "freerdp-libs-2:2.11.7-1.el9.aarch64",
                "product": {
                  "name": "freerdp-libs-2:2.11.7-1.el9.aarch64",
                  "product_id": "freerdp-libs-2:2.11.7-1.el9.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/freerdp-libs@2.11.7-1.el9?arch=aarch64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "libwinpr-2:2.11.7-1.el9.aarch64",
                "product": {
                  "name": "libwinpr-2:2.11.7-1.el9.aarch64",
                  "product_id": "libwinpr-2:2.11.7-1.el9.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/libwinpr@2.11.7-1.el9?arch=aarch64\u0026epoch=2"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "freerdp-devel-2:2.11.7-1.el9.ppc64le",
                "product": {
                  "name": "freerdp-devel-2:2.11.7-1.el9.ppc64le",
                  "product_id": "freerdp-devel-2:2.11.7-1.el9.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/freerdp-devel@2.11.7-1.el9?arch=ppc64le\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "libwinpr-devel-2:2.11.7-1.el9.ppc64le",
                "product": {
                  "name": "libwinpr-devel-2:2.11.7-1.el9.ppc64le",
                  "product_id": "libwinpr-devel-2:2.11.7-1.el9.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/libwinpr-devel@2.11.7-1.el9?arch=ppc64le\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
                "product": {
                  "name": "freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
                  "product_id": "freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/freerdp-debugsource@2.11.7-1.el9?arch=ppc64le\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
                "product": {
                  "name": "freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
                  "product_id": "freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/freerdp-debuginfo@2.11.7-1.el9?arch=ppc64le\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
                "product": {
                  "name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
                  "product_id": "freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/freerdp-libs-debuginfo@2.11.7-1.el9?arch=ppc64le\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
                "product": {
                  "name": "libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
                  "product_id": "libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/libwinpr-debuginfo@2.11.7-1.el9?arch=ppc64le\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "freerdp-2:2.11.7-1.el9.ppc64le",
                "product": {
                  "name": "freerdp-2:2.11.7-1.el9.ppc64le",
                  "product_id": "freerdp-2:2.11.7-1.el9.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/freerdp@2.11.7-1.el9?arch=ppc64le\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "freerdp-libs-2:2.11.7-1.el9.ppc64le",
                "product": {
                  "name": "freerdp-libs-2:2.11.7-1.el9.ppc64le",
                  "product_id": "freerdp-libs-2:2.11.7-1.el9.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/freerdp-libs@2.11.7-1.el9?arch=ppc64le\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "libwinpr-2:2.11.7-1.el9.ppc64le",
                "product": {
                  "name": "libwinpr-2:2.11.7-1.el9.ppc64le",
                  "product_id": "libwinpr-2:2.11.7-1.el9.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/libwinpr@2.11.7-1.el9?arch=ppc64le\u0026epoch=2"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "freerdp-devel-2:2.11.7-1.el9.i686",
                "product": {
                  "name": "freerdp-devel-2:2.11.7-1.el9.i686",
                  "product_id": "freerdp-devel-2:2.11.7-1.el9.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/freerdp-devel@2.11.7-1.el9?arch=i686\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "libwinpr-devel-2:2.11.7-1.el9.i686",
                "product": {
                  "name": "libwinpr-devel-2:2.11.7-1.el9.i686",
                  "product_id": "libwinpr-devel-2:2.11.7-1.el9.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/libwinpr-devel@2.11.7-1.el9?arch=i686\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "freerdp-debugsource-2:2.11.7-1.el9.i686",
                "product": {
                  "name": "freerdp-debugsource-2:2.11.7-1.el9.i686",
                  "product_id": "freerdp-debugsource-2:2.11.7-1.el9.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/freerdp-debugsource@2.11.7-1.el9?arch=i686\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "freerdp-debuginfo-2:2.11.7-1.el9.i686",
                "product": {
                  "name": "freerdp-debuginfo-2:2.11.7-1.el9.i686",
                  "product_id": "freerdp-debuginfo-2:2.11.7-1.el9.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/freerdp-debuginfo@2.11.7-1.el9?arch=i686\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
                "product": {
                  "name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
                  "product_id": "freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/freerdp-libs-debuginfo@2.11.7-1.el9?arch=i686\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "libwinpr-debuginfo-2:2.11.7-1.el9.i686",
                "product": {
                  "name": "libwinpr-debuginfo-2:2.11.7-1.el9.i686",
                  "product_id": "libwinpr-debuginfo-2:2.11.7-1.el9.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/libwinpr-debuginfo@2.11.7-1.el9?arch=i686\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "freerdp-libs-2:2.11.7-1.el9.i686",
                "product": {
                  "name": "freerdp-libs-2:2.11.7-1.el9.i686",
                  "product_id": "freerdp-libs-2:2.11.7-1.el9.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/freerdp-libs@2.11.7-1.el9?arch=i686\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "libwinpr-2:2.11.7-1.el9.i686",
                "product": {
                  "name": "libwinpr-2:2.11.7-1.el9.i686",
                  "product_id": "libwinpr-2:2.11.7-1.el9.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/libwinpr@2.11.7-1.el9?arch=i686\u0026epoch=2"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "i686"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "freerdp-devel-2:2.11.7-1.el9.x86_64",
                "product": {
                  "name": "freerdp-devel-2:2.11.7-1.el9.x86_64",
                  "product_id": "freerdp-devel-2:2.11.7-1.el9.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/freerdp-devel@2.11.7-1.el9?arch=x86_64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "libwinpr-devel-2:2.11.7-1.el9.x86_64",
                "product": {
                  "name": "libwinpr-devel-2:2.11.7-1.el9.x86_64",
                  "product_id": "libwinpr-devel-2:2.11.7-1.el9.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/libwinpr-devel@2.11.7-1.el9?arch=x86_64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "freerdp-debugsource-2:2.11.7-1.el9.x86_64",
                "product": {
                  "name": "freerdp-debugsource-2:2.11.7-1.el9.x86_64",
                  "product_id": "freerdp-debugsource-2:2.11.7-1.el9.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/freerdp-debugsource@2.11.7-1.el9?arch=x86_64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
                "product": {
                  "name": "freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
                  "product_id": "freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/freerdp-debuginfo@2.11.7-1.el9?arch=x86_64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
                "product": {
                  "name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
                  "product_id": "freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/freerdp-libs-debuginfo@2.11.7-1.el9?arch=x86_64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
                "product": {
                  "name": "libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
                  "product_id": "libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/libwinpr-debuginfo@2.11.7-1.el9?arch=x86_64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "freerdp-2:2.11.7-1.el9.x86_64",
                "product": {
                  "name": "freerdp-2:2.11.7-1.el9.x86_64",
                  "product_id": "freerdp-2:2.11.7-1.el9.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/freerdp@2.11.7-1.el9?arch=x86_64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "freerdp-libs-2:2.11.7-1.el9.x86_64",
                "product": {
                  "name": "freerdp-libs-2:2.11.7-1.el9.x86_64",
                  "product_id": "freerdp-libs-2:2.11.7-1.el9.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/freerdp-libs@2.11.7-1.el9?arch=x86_64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "libwinpr-2:2.11.7-1.el9.x86_64",
                "product": {
                  "name": "libwinpr-2:2.11.7-1.el9.x86_64",
                  "product_id": "libwinpr-2:2.11.7-1.el9.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/libwinpr@2.11.7-1.el9?arch=x86_64\u0026epoch=2"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "freerdp-devel-2:2.11.7-1.el9.s390x",
                "product": {
                  "name": "freerdp-devel-2:2.11.7-1.el9.s390x",
                  "product_id": "freerdp-devel-2:2.11.7-1.el9.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/freerdp-devel@2.11.7-1.el9?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "libwinpr-devel-2:2.11.7-1.el9.s390x",
                "product": {
                  "name": "libwinpr-devel-2:2.11.7-1.el9.s390x",
                  "product_id": "libwinpr-devel-2:2.11.7-1.el9.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/libwinpr-devel@2.11.7-1.el9?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "freerdp-debugsource-2:2.11.7-1.el9.s390x",
                "product": {
                  "name": "freerdp-debugsource-2:2.11.7-1.el9.s390x",
                  "product_id": "freerdp-debugsource-2:2.11.7-1.el9.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/freerdp-debugsource@2.11.7-1.el9?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "freerdp-debuginfo-2:2.11.7-1.el9.s390x",
                "product": {
                  "name": "freerdp-debuginfo-2:2.11.7-1.el9.s390x",
                  "product_id": "freerdp-debuginfo-2:2.11.7-1.el9.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/freerdp-debuginfo@2.11.7-1.el9?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
                "product": {
                  "name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
                  "product_id": "freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/freerdp-libs-debuginfo@2.11.7-1.el9?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
                "product": {
                  "name": "libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
                  "product_id": "libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/libwinpr-debuginfo@2.11.7-1.el9?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "freerdp-2:2.11.7-1.el9.s390x",
                "product": {
                  "name": "freerdp-2:2.11.7-1.el9.s390x",
                  "product_id": "freerdp-2:2.11.7-1.el9.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/freerdp@2.11.7-1.el9?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "freerdp-libs-2:2.11.7-1.el9.s390x",
                "product": {
                  "name": "freerdp-libs-2:2.11.7-1.el9.s390x",
                  "product_id": "freerdp-libs-2:2.11.7-1.el9.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/freerdp-libs@2.11.7-1.el9?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "libwinpr-2:2.11.7-1.el9.s390x",
                "product": {
                  "name": "libwinpr-2:2.11.7-1.el9.s390x",
                  "product_id": "libwinpr-2:2.11.7-1.el9.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/libwinpr@2.11.7-1.el9?arch=s390x\u0026epoch=2"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "freerdp-2:2.11.7-1.el9.src",
                "product": {
                  "name": "freerdp-2:2.11.7-1.el9.src",
                  "product_id": "freerdp-2:2.11.7-1.el9.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/freerdp@2.11.7-1.el9?arch=src\u0026epoch=2"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-2:2.11.7-1.el9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64"
        },
        "product_reference": "freerdp-2:2.11.7-1.el9.aarch64",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-2:2.11.7-1.el9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le"
        },
        "product_reference": "freerdp-2:2.11.7-1.el9.ppc64le",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-2:2.11.7-1.el9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x"
        },
        "product_reference": "freerdp-2:2.11.7-1.el9.s390x",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-2:2.11.7-1.el9.src as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src"
        },
        "product_reference": "freerdp-2:2.11.7-1.el9.src",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-2:2.11.7-1.el9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64"
        },
        "product_reference": "freerdp-2:2.11.7-1.el9.x86_64",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-debuginfo-2:2.11.7-1.el9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64"
        },
        "product_reference": "freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-debuginfo-2:2.11.7-1.el9.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686"
        },
        "product_reference": "freerdp-debuginfo-2:2.11.7-1.el9.i686",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-debuginfo-2:2.11.7-1.el9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le"
        },
        "product_reference": "freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-debuginfo-2:2.11.7-1.el9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x"
        },
        "product_reference": "freerdp-debuginfo-2:2.11.7-1.el9.s390x",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-debuginfo-2:2.11.7-1.el9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64"
        },
        "product_reference": "freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-debugsource-2:2.11.7-1.el9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64"
        },
        "product_reference": "freerdp-debugsource-2:2.11.7-1.el9.aarch64",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-debugsource-2:2.11.7-1.el9.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686"
        },
        "product_reference": "freerdp-debugsource-2:2.11.7-1.el9.i686",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-debugsource-2:2.11.7-1.el9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le"
        },
        "product_reference": "freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-debugsource-2:2.11.7-1.el9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x"
        },
        "product_reference": "freerdp-debugsource-2:2.11.7-1.el9.s390x",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-debugsource-2:2.11.7-1.el9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64"
        },
        "product_reference": "freerdp-debugsource-2:2.11.7-1.el9.x86_64",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-devel-2:2.11.7-1.el9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64"
        },
        "product_reference": "freerdp-devel-2:2.11.7-1.el9.aarch64",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-devel-2:2.11.7-1.el9.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686"
        },
        "product_reference": "freerdp-devel-2:2.11.7-1.el9.i686",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-devel-2:2.11.7-1.el9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le"
        },
        "product_reference": "freerdp-devel-2:2.11.7-1.el9.ppc64le",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-devel-2:2.11.7-1.el9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x"
        },
        "product_reference": "freerdp-devel-2:2.11.7-1.el9.s390x",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-devel-2:2.11.7-1.el9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64"
        },
        "product_reference": "freerdp-devel-2:2.11.7-1.el9.x86_64",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-libs-2:2.11.7-1.el9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64"
        },
        "product_reference": "freerdp-libs-2:2.11.7-1.el9.aarch64",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-libs-2:2.11.7-1.el9.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686"
        },
        "product_reference": "freerdp-libs-2:2.11.7-1.el9.i686",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-libs-2:2.11.7-1.el9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le"
        },
        "product_reference": "freerdp-libs-2:2.11.7-1.el9.ppc64le",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-libs-2:2.11.7-1.el9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x"
        },
        "product_reference": "freerdp-libs-2:2.11.7-1.el9.s390x",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-libs-2:2.11.7-1.el9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64"
        },
        "product_reference": "freerdp-libs-2:2.11.7-1.el9.x86_64",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64"
        },
        "product_reference": "freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686"
        },
        "product_reference": "freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le"
        },
        "product_reference": "freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x"
        },
        "product_reference": "freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64"
        },
        "product_reference": "freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwinpr-2:2.11.7-1.el9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64"
        },
        "product_reference": "libwinpr-2:2.11.7-1.el9.aarch64",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwinpr-2:2.11.7-1.el9.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686"
        },
        "product_reference": "libwinpr-2:2.11.7-1.el9.i686",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwinpr-2:2.11.7-1.el9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le"
        },
        "product_reference": "libwinpr-2:2.11.7-1.el9.ppc64le",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwinpr-2:2.11.7-1.el9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x"
        },
        "product_reference": "libwinpr-2:2.11.7-1.el9.s390x",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwinpr-2:2.11.7-1.el9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64"
        },
        "product_reference": "libwinpr-2:2.11.7-1.el9.x86_64",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwinpr-debuginfo-2:2.11.7-1.el9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64"
        },
        "product_reference": "libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwinpr-debuginfo-2:2.11.7-1.el9.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686"
        },
        "product_reference": "libwinpr-debuginfo-2:2.11.7-1.el9.i686",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le"
        },
        "product_reference": "libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwinpr-debuginfo-2:2.11.7-1.el9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x"
        },
        "product_reference": "libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwinpr-debuginfo-2:2.11.7-1.el9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64"
        },
        "product_reference": "libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwinpr-devel-2:2.11.7-1.el9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64"
        },
        "product_reference": "libwinpr-devel-2:2.11.7-1.el9.aarch64",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwinpr-devel-2:2.11.7-1.el9.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686"
        },
        "product_reference": "libwinpr-devel-2:2.11.7-1.el9.i686",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwinpr-devel-2:2.11.7-1.el9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le"
        },
        "product_reference": "libwinpr-devel-2:2.11.7-1.el9.ppc64le",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwinpr-devel-2:2.11.7-1.el9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x"
        },
        "product_reference": "libwinpr-devel-2:2.11.7-1.el9.s390x",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwinpr-devel-2:2.11.7-1.el9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
        },
        "product_reference": "libwinpr-devel-2:2.11.7-1.el9.x86_64",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-2:2.11.7-1.el9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64"
        },
        "product_reference": "freerdp-2:2.11.7-1.el9.aarch64",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-2:2.11.7-1.el9.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le"
        },
        "product_reference": "freerdp-2:2.11.7-1.el9.ppc64le",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-2:2.11.7-1.el9.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x"
        },
        "product_reference": "freerdp-2:2.11.7-1.el9.s390x",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-2:2.11.7-1.el9.src as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src"
        },
        "product_reference": "freerdp-2:2.11.7-1.el9.src",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-2:2.11.7-1.el9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64"
        },
        "product_reference": "freerdp-2:2.11.7-1.el9.x86_64",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-debuginfo-2:2.11.7-1.el9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64"
        },
        "product_reference": "freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-debuginfo-2:2.11.7-1.el9.i686 as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686"
        },
        "product_reference": "freerdp-debuginfo-2:2.11.7-1.el9.i686",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-debuginfo-2:2.11.7-1.el9.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le"
        },
        "product_reference": "freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-debuginfo-2:2.11.7-1.el9.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x"
        },
        "product_reference": "freerdp-debuginfo-2:2.11.7-1.el9.s390x",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-debuginfo-2:2.11.7-1.el9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64"
        },
        "product_reference": "freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-debugsource-2:2.11.7-1.el9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64"
        },
        "product_reference": "freerdp-debugsource-2:2.11.7-1.el9.aarch64",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-debugsource-2:2.11.7-1.el9.i686 as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686"
        },
        "product_reference": "freerdp-debugsource-2:2.11.7-1.el9.i686",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-debugsource-2:2.11.7-1.el9.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le"
        },
        "product_reference": "freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-debugsource-2:2.11.7-1.el9.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x"
        },
        "product_reference": "freerdp-debugsource-2:2.11.7-1.el9.s390x",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-debugsource-2:2.11.7-1.el9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64"
        },
        "product_reference": "freerdp-debugsource-2:2.11.7-1.el9.x86_64",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-devel-2:2.11.7-1.el9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64"
        },
        "product_reference": "freerdp-devel-2:2.11.7-1.el9.aarch64",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-devel-2:2.11.7-1.el9.i686 as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686"
        },
        "product_reference": "freerdp-devel-2:2.11.7-1.el9.i686",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-devel-2:2.11.7-1.el9.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le"
        },
        "product_reference": "freerdp-devel-2:2.11.7-1.el9.ppc64le",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-devel-2:2.11.7-1.el9.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x"
        },
        "product_reference": "freerdp-devel-2:2.11.7-1.el9.s390x",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-devel-2:2.11.7-1.el9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64"
        },
        "product_reference": "freerdp-devel-2:2.11.7-1.el9.x86_64",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-libs-2:2.11.7-1.el9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64"
        },
        "product_reference": "freerdp-libs-2:2.11.7-1.el9.aarch64",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-libs-2:2.11.7-1.el9.i686 as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686"
        },
        "product_reference": "freerdp-libs-2:2.11.7-1.el9.i686",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-libs-2:2.11.7-1.el9.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le"
        },
        "product_reference": "freerdp-libs-2:2.11.7-1.el9.ppc64le",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-libs-2:2.11.7-1.el9.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x"
        },
        "product_reference": "freerdp-libs-2:2.11.7-1.el9.s390x",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-libs-2:2.11.7-1.el9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64"
        },
        "product_reference": "freerdp-libs-2:2.11.7-1.el9.x86_64",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64"
        },
        "product_reference": "freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.i686 as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686"
        },
        "product_reference": "freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le"
        },
        "product_reference": "freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x"
        },
        "product_reference": "freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64"
        },
        "product_reference": "freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwinpr-2:2.11.7-1.el9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64"
        },
        "product_reference": "libwinpr-2:2.11.7-1.el9.aarch64",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwinpr-2:2.11.7-1.el9.i686 as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686"
        },
        "product_reference": "libwinpr-2:2.11.7-1.el9.i686",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwinpr-2:2.11.7-1.el9.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le"
        },
        "product_reference": "libwinpr-2:2.11.7-1.el9.ppc64le",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwinpr-2:2.11.7-1.el9.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x"
        },
        "product_reference": "libwinpr-2:2.11.7-1.el9.s390x",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwinpr-2:2.11.7-1.el9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64"
        },
        "product_reference": "libwinpr-2:2.11.7-1.el9.x86_64",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwinpr-debuginfo-2:2.11.7-1.el9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64"
        },
        "product_reference": "libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwinpr-debuginfo-2:2.11.7-1.el9.i686 as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686"
        },
        "product_reference": "libwinpr-debuginfo-2:2.11.7-1.el9.i686",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le"
        },
        "product_reference": "libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwinpr-debuginfo-2:2.11.7-1.el9.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x"
        },
        "product_reference": "libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwinpr-debuginfo-2:2.11.7-1.el9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64"
        },
        "product_reference": "libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwinpr-devel-2:2.11.7-1.el9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64"
        },
        "product_reference": "libwinpr-devel-2:2.11.7-1.el9.aarch64",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwinpr-devel-2:2.11.7-1.el9.i686 as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686"
        },
        "product_reference": "libwinpr-devel-2:2.11.7-1.el9.i686",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwinpr-devel-2:2.11.7-1.el9.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le"
        },
        "product_reference": "libwinpr-devel-2:2.11.7-1.el9.ppc64le",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwinpr-devel-2:2.11.7-1.el9.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x"
        },
        "product_reference": "libwinpr-devel-2:2.11.7-1.el9.s390x",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwinpr-devel-2:2.11.7-1.el9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
        },
        "product_reference": "libwinpr-devel-2:2.11.7-1.el9.x86_64",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2024-22211",
      "cwe": {
        "id": "CWE-190",
        "name": "Integer Overflow or Wraparound"
      },
      "discovery_date": "2024-01-22T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2259483"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "FreeRDP is a collection of remote desktop protocol library and client software that is both free and open source. An integer overflow within freerdp_bitmap_planar_context_reset results in a heap-buffer overflow. This impacts clients built on FreeRDP. However, server implementations and proxies based on FreeRDP are unaffected. A malevolent server could create a RDPGFX_RESET_GRAPHICS_PDU to allocate buffers that are too small, potentially causing subsequent out-of-bounds reads/writes. It\u0027s important to note that data extraction over the network is not feasible; these buffers are utilized solely for displaying images.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "freerdp: Integer Overflow leading to Heap Overflow in freerdp_bitmap_planar_context_reset",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This vulnerability in FreeRDP, resulting from an integer overflow in certain versions, poses a low severity risk due to several mitigating factors. Firstly, it primarily affects FreeRDP-based clients, while server implementations and proxies remain unaffected. Additionally, the potential for exploitation is limited as it requires interaction with a malicious server, and data extraction over the network is not feasible; the vulnerability pertains solely to image display buffers.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-22211"
        },
        {
          "category": "external",
          "summary": "RHBZ#2259483",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2259483"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-22211",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-22211"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-22211",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-22211"
        },
        {
          "category": "external",
          "summary": "https://github.com/FreeRDP/FreeRDP/commit/939e922936e9c3ae8fc204968645e5e7563a2fff",
          "url": "https://github.com/FreeRDP/FreeRDP/commit/939e922936e9c3ae8fc204968645e5e7563a2fff"
        },
        {
          "category": "external",
          "summary": "https://github.com/FreeRDP/FreeRDP/commit/aeac3040cc99eeaff1e1171a822114c857b9dca9",
          "url": "https://github.com/FreeRDP/FreeRDP/commit/aeac3040cc99eeaff1e1171a822114c857b9dca9"
        },
        {
          "category": "external",
          "summary": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-rjhp-44rv-7v59",
          "url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-rjhp-44rv-7v59"
        }
      ],
      "release_date": "2024-01-19T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-12T09:36:13+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9092"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 3.7,
            "baseSeverity": "LOW",
            "confidentialityImpact": "NONE",
            "integrityImpact": "LOW",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:N/I:L/A:L",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "freerdp: Integer Overflow leading to Heap Overflow in freerdp_bitmap_planar_context_reset"
    },
    {
      "cve": "CVE-2024-32039",
      "cwe": {
        "id": "CWE-787",
        "name": "Out-of-bounds Write"
      },
      "discovery_date": "2024-04-23T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2276723"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in FreeRDP-based clients. Affected versions of FreeRDP are vulnerable to an integer overflow and out-of-bounds write. This issue occurs when the sum of the `runLengthFactor`  and `pixelIndex` values become large enough to overflow the uint32 type and bypass an error check when clearing residual data.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "freerdp: Integer overflow \u0026 OutOfBound Write in clear_decompress_residual_data",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-32039"
        },
        {
          "category": "external",
          "summary": "RHBZ#2276723",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276723"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-32039",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-32039"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32039",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32039"
        },
        {
          "category": "external",
          "summary": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-q5h8-7j42-j4r9",
          "url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-q5h8-7j42-j4r9"
        }
      ],
      "release_date": "2024-04-22T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-12T09:36:13+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9092"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "freerdp: Integer overflow \u0026 OutOfBound Write in clear_decompress_residual_data"
    },
    {
      "cve": "CVE-2024-32040",
      "cwe": {
        "id": "CWE-191",
        "name": "Integer Underflow (Wrap or Wraparound)"
      },
      "discovery_date": "2024-04-23T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2276724"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients that use a version of FreeRDP prior to 3.5.0 or 2.11.6 and have connections to servers using the `NSC` codec are vulnerable to integer underflow. Versions 3.5.0 and 2.11.6 patch the issue. As a workaround, do not use the NSC codec (e.g. use `-nsc`).",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "freerdp: integer underflow in nsc_rle_decode",
          "title": "Vulnerability summary"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-32040"
        },
        {
          "category": "external",
          "summary": "RHBZ#2276724",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276724"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-32040",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-32040"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32040",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32040"
        },
        {
          "category": "external",
          "summary": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-23c5-cp23-h2h5",
          "url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-23c5-cp23-h2h5"
        }
      ],
      "release_date": "2024-04-22T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-12T09:36:13+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9092"
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "freerdp: integer underflow in nsc_rle_decode"
    },
    {
      "cve": "CVE-2024-32041",
      "cwe": {
        "id": "CWE-125",
        "name": "Out-of-bounds Read"
      },
      "discovery_date": "2024-04-23T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2276725"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients that use a version of FreeRDP prior to 3.5.0 or 2.11.6 are vulnerable to out-of-bounds read. Versions 3.5.0 and 2.11.6 patch the issue. As a workaround, deactivate `/gfx` (on by default, set `/bpp` or `/rfx` options instead.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "freerdp: OutOfBound Read in zgfx_decompress_segment",
          "title": "Vulnerability summary"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-32041"
        },
        {
          "category": "external",
          "summary": "RHBZ#2276725",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276725"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-32041",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-32041"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32041",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32041"
        },
        {
          "category": "external",
          "summary": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-5r4p-mfx2-m44r",
          "url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-5r4p-mfx2-m44r"
        }
      ],
      "release_date": "2024-04-22T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-12T09:36:13+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9092"
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "freerdp: OutOfBound Read in zgfx_decompress_segment"
    },
    {
      "cve": "CVE-2024-32458",
      "cwe": {
        "id": "CWE-125",
        "name": "Out-of-bounds Read"
      },
      "discovery_date": "2024-04-23T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2276726"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients that use a version of FreeRDP prior to 3.5.0 or 2.11.6 are vulnerable to out-of-bounds read. Versions 3.5.0 and 2.11.6 patch the issue. As a workaround, use `/gfx` or `/rfx` modes (on by default, require server side support).",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "freerdp: OutOfBound Read in planar_skip_plane_rle",
          "title": "Vulnerability summary"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-32458"
        },
        {
          "category": "external",
          "summary": "RHBZ#2276726",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276726"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-32458",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-32458"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32458",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32458"
        },
        {
          "category": "external",
          "summary": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vvr6-h646-mp4p",
          "url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vvr6-h646-mp4p"
        }
      ],
      "release_date": "2024-04-22T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-12T09:36:13+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9092"
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "freerdp: OutOfBound Read in planar_skip_plane_rle"
    },
    {
      "cve": "CVE-2024-32459",
      "cwe": {
        "id": "CWE-125",
        "name": "Out-of-bounds Read"
      },
      "discovery_date": "2024-04-23T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2276721"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients and servers that use a version of FreeRDP prior to 3.5.0 or 2.11.6 are vulnerable to out-of-bounds read. Versions 3.5.0 and 2.11.6 patch the issue. No known workarounds are available.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "freerdp: out-of-bounds read in ncrush_decompress",
          "title": "Vulnerability summary"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-32459"
        },
        {
          "category": "external",
          "summary": "RHBZ#2276721",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276721"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-32459",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-32459"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32459",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32459"
        },
        {
          "category": "external",
          "summary": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-cp4q-p737-rmw9",
          "url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-cp4q-p737-rmw9"
        }
      ],
      "release_date": "2024-04-22T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-12T09:36:13+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9092"
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "freerdp: out-of-bounds read in ncrush_decompress"
    },
    {
      "cve": "CVE-2024-32460",
      "cwe": {
        "id": "CWE-125",
        "name": "Out-of-bounds Read"
      },
      "discovery_date": "2024-04-23T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2276722"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based based clients using `/bpp:32` legacy `GDI` drawing path with a version of FreeRDP prior to 3.5.0 or 2.11.6 are vulnerable to out-of-bounds read. Versions 3.5.0 and 2.11.6 patch the issue. As a workaround, use modern drawing paths (e.g. `/rfx` or `/gfx` options). The workaround requires server side support.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "freerdp: OutOfBound Read in interleaved_decompress",
          "title": "Vulnerability summary"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-32460"
        },
        {
          "category": "external",
          "summary": "RHBZ#2276722",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276722"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-32460",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-32460"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32460",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32460"
        },
        {
          "category": "external",
          "summary": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-4rr8-gr65-vqrr",
          "url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-4rr8-gr65-vqrr"
        }
      ],
      "release_date": "2024-04-22T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-12T09:36:13+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9092"
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "freerdp: OutOfBound Read in interleaved_decompress"
    },
    {
      "cve": "CVE-2024-32658",
      "cwe": {
        "id": "CWE-125",
        "name": "Out-of-bounds Read"
      },
      "discovery_date": "2024-04-24T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2276961"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients prior to version 3.5.1 are vulnerable to out-of-bounds read. Version 3.5.1 contains a patch for the issue. No known workarounds are available.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "FreeRDP: ExtractRunLengthRegular* out of bound read",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-32658"
        },
        {
          "category": "external",
          "summary": "RHBZ#2276961",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276961"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-32658",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-32658"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32658",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32658"
        },
        {
          "category": "external",
          "summary": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vpv3-m3m9-4c2v",
          "url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vpv3-m3m9-4c2v"
        }
      ],
      "release_date": "2024-04-23T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-12T09:36:13+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9092"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "FreeRDP: ExtractRunLengthRegular* out of bound read"
    },
    {
      "cve": "CVE-2024-32659",
      "cwe": {
        "id": "CWE-125",
        "name": "Out-of-bounds Read"
      },
      "discovery_date": "2024-04-24T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2276970"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients prior to version 3.5.1 are vulnerable to out-of-bounds read if `((nWidth == 0) and (nHeight == 0))`. Version 3.5.1 contains a patch for the issue. No known workarounds are available.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "freerdp: freerdp_image_copy out of bound read",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-32659"
        },
        {
          "category": "external",
          "summary": "RHBZ#2276970",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276970"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-32659",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-32659"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32659",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32659"
        },
        {
          "category": "external",
          "summary": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-8jgr-7r33-x87w",
          "url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-8jgr-7r33-x87w"
        }
      ],
      "release_date": "2024-04-23T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-12T09:36:13+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9092"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "freerdp: freerdp_image_copy out of bound read"
    },
    {
      "cve": "CVE-2024-32660",
      "cwe": {
        "id": "CWE-770",
        "name": "Allocation of Resources Without Limits or Throttling"
      },
      "discovery_date": "2024-04-24T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2276968"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.5.1, a malicious server can crash the FreeRDP client by sending invalid huge allocation size. Version 3.5.1 contains a patch for the issue. No known workarounds are available.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "freerdp: zgfx_decompress out of memory",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-32660"
        },
        {
          "category": "external",
          "summary": "RHBZ#2276968",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276968"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-32660",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-32660"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32660",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32660"
        },
        {
          "category": "external",
          "summary": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-mxv6-2cw6-m3mx",
          "url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-mxv6-2cw6-m3mx"
        }
      ],
      "release_date": "2024-04-23T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-12T09:36:13+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9092"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "freerdp: zgfx_decompress out of memory"
    },
    {
      "cve": "CVE-2024-32661",
      "cwe": {
        "id": "CWE-476",
        "name": "NULL Pointer Dereference"
      },
      "discovery_date": "2024-04-24T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2276971"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients prior to version 3.5.1 are vulnerable to a possible `NULL` access and crash. Version 3.5.1 contains a patch for the issue. No known workarounds are available.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "freerdp: rdp_write_logon_info_v1 NULL access",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-32661"
        },
        {
          "category": "external",
          "summary": "RHBZ#2276971",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276971"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-32661",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-32661"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32661",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32661"
        },
        {
          "category": "external",
          "summary": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-p5m5-342g-pv9m",
          "url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-p5m5-342g-pv9m"
        }
      ],
      "release_date": "2024-04-23T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-12T09:36:13+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9092"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "freerdp: rdp_write_logon_info_v1 NULL access"
    },
    {
      "cve": "CVE-2024-32662",
      "cwe": {
        "id": "CWE-125",
        "name": "Out-of-bounds Read"
      },
      "discovery_date": "2024-04-24T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2276804"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in FreeRDP-based clients. Affected versions of FreeRDP are vulnerable to an out-of-bounds read. This issue occurs when the `WCHAR` string is read with twice the size it has and converted to `UTF-8`, `base64` decoded. The string is only used to compare against the redirection server certificate.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "freerdp: out-of-bounds read",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-32662"
        },
        {
          "category": "external",
          "summary": "RHBZ#2276804",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276804"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-32662",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-32662"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32662",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32662"
        },
        {
          "category": "external",
          "summary": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vffh-j6hh-95f4",
          "url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vffh-j6hh-95f4"
        }
      ],
      "release_date": "2024-04-23T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-12T09:36:13+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9092"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "freerdp: out-of-bounds read"
    }
  ]
}

RHSA-2024_9092

Vulnerability from csaf_redhat - Published: 2024-11-12 09:36 - Updated: 2024-11-24 14:15

Summary

Red Hat Security Advisory: freerdp security update

Severity

Moderate

Notes

CVE-2024-22211

3.7 (Low)


                        
                          CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:N/I:L/A:L

CWE-190 - Integer Overflow or Wraparound

Affected products

Fixed 90 products

Product	Version	Remediation
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Low

CVE-2024-32039

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-787 - Out-of-bounds Write

Affected products

Fixed 90 products

Product	Version	Remediation
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2024-32040

CWE-191 - Integer Underflow (Wrap or Wraparound)

Affected products

Fixed 90 products

Product	Version	Remediation
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix

Threats

Impact Low

CVE-2024-32041

CWE-125 - Out-of-bounds Read

Affected products

Fixed 90 products

Product	Version	Remediation
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix

Threats

Impact Low

CVE-2024-32458

FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients that use a version of FreeRDP prior to 3.5.0 or 2.11.6 are vulnerable to out-of-bounds read. Versions 3.5.0 and 2.11.6 patch the issue. As a workaround, use `/gfx` or `/rfx` modes (on by default, require server side support).

CWE-125 - Out-of-bounds Read

Affected products

Fixed 90 products

Product	Version	Remediation
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix

Threats

Impact Low

CVE-2024-32459

CWE-125 - Out-of-bounds Read

Affected products

Fixed 90 products

Product	Version	Remediation
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix

Threats

Impact Low

CVE-2024-32460

CWE-125 - Out-of-bounds Read

Affected products

Fixed 90 products

Product	Version	Remediation
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix

Threats

Impact Low

CVE-2024-32658

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-125 - Out-of-bounds Read

Affected products

Fixed 90 products

Product	Version	Remediation
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix

Threats

Impact Low

CVE-2024-32659

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

CWE-125 - Out-of-bounds Read

Affected products

Fixed 90 products

Product	Version	Remediation
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix

Threats

Impact Low

CVE-2024-32660

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-770 - Allocation of Resources Without Limits or Throttling

Affected products

Fixed 90 products

Product	Version	Remediation
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix

Threats

Impact Low

CVE-2024-32661

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

CWE-476 - NULL Pointer Dereference

Affected products

Fixed 90 products

Product	Version	Remediation
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix

Threats

Impact Low

CVE-2024-32662

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

CWE-125 - Out-of-bounds Read

Affected products

Fixed 90 products

Product	Version	Remediation
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x	—	Vendor Fix fix
Unresolved product id: CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64	—	Vendor Fix fix

Threats

Impact Moderate

References

79 references

URL	Category
https://access.redhat.com/errata/RHSA-2024:9092	self
https://docs.redhat.com/en/documentation/red_hat_…	external
https://access.redhat.com/security/updates/classi…	external
https://bugzilla.redhat.com/show_bug.cgi?id=2259483	external
https://bugzilla.redhat.com/show_bug.cgi?id=2276721	external
https://bugzilla.redhat.com/show_bug.cgi?id=2276722	external
https://bugzilla.redhat.com/show_bug.cgi?id=2276723	external
https://bugzilla.redhat.com/show_bug.cgi?id=2276724	external
https://bugzilla.redhat.com/show_bug.cgi?id=2276725	external
https://bugzilla.redhat.com/show_bug.cgi?id=2276726	external
https://bugzilla.redhat.com/show_bug.cgi?id=2276804	external
https://bugzilla.redhat.com/show_bug.cgi?id=2276961	external
https://bugzilla.redhat.com/show_bug.cgi?id=2276968	external
https://bugzilla.redhat.com/show_bug.cgi?id=2276970	external
https://bugzilla.redhat.com/show_bug.cgi?id=2276971	external
https://issues.redhat.com/browse/RHEL-33988	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2024-22211	self
https://bugzilla.redhat.com/show_bug.cgi?id=2259483	external
https://www.cve.org/CVERecord?id=CVE-2024-22211	external
https://nvd.nist.gov/vuln/detail/CVE-2024-22211	external
https://github.com/FreeRDP/FreeRDP/commit/939e922…	external
https://github.com/FreeRDP/FreeRDP/commit/aeac304…	external
https://github.com/FreeRDP/FreeRDP/security/advis…	external
https://access.redhat.com/security/cve/CVE-2024-32039	self
https://bugzilla.redhat.com/show_bug.cgi?id=2276723	external
https://www.cve.org/CVERecord?id=CVE-2024-32039	external
https://nvd.nist.gov/vuln/detail/CVE-2024-32039	external
https://github.com/FreeRDP/FreeRDP/security/advis…	external
https://access.redhat.com/security/cve/CVE-2024-32040	self
https://bugzilla.redhat.com/show_bug.cgi?id=2276724	external
https://www.cve.org/CVERecord?id=CVE-2024-32040	external
https://nvd.nist.gov/vuln/detail/CVE-2024-32040	external
https://github.com/FreeRDP/FreeRDP/security/advis…	external
https://access.redhat.com/security/cve/CVE-2024-32041	self
https://bugzilla.redhat.com/show_bug.cgi?id=2276725	external
https://www.cve.org/CVERecord?id=CVE-2024-32041	external
https://nvd.nist.gov/vuln/detail/CVE-2024-32041	external
https://github.com/FreeRDP/FreeRDP/security/advis…	external
https://access.redhat.com/security/cve/CVE-2024-32458	self
https://bugzilla.redhat.com/show_bug.cgi?id=2276726	external
https://www.cve.org/CVERecord?id=CVE-2024-32458	external
https://nvd.nist.gov/vuln/detail/CVE-2024-32458	external
https://github.com/FreeRDP/FreeRDP/security/advis…	external
https://access.redhat.com/security/cve/CVE-2024-32459	self
https://bugzilla.redhat.com/show_bug.cgi?id=2276721	external
https://www.cve.org/CVERecord?id=CVE-2024-32459	external
https://nvd.nist.gov/vuln/detail/CVE-2024-32459	external
https://github.com/FreeRDP/FreeRDP/security/advis…	external
https://access.redhat.com/security/cve/CVE-2024-32460	self
https://bugzilla.redhat.com/show_bug.cgi?id=2276722	external
https://www.cve.org/CVERecord?id=CVE-2024-32460	external
https://nvd.nist.gov/vuln/detail/CVE-2024-32460	external
https://github.com/FreeRDP/FreeRDP/security/advis…	external
https://access.redhat.com/security/cve/CVE-2024-32658	self
https://bugzilla.redhat.com/show_bug.cgi?id=2276961	external
https://www.cve.org/CVERecord?id=CVE-2024-32658	external
https://nvd.nist.gov/vuln/detail/CVE-2024-32658	external
https://github.com/FreeRDP/FreeRDP/security/advis…	external
https://access.redhat.com/security/cve/CVE-2024-32659	self
https://bugzilla.redhat.com/show_bug.cgi?id=2276970	external
https://www.cve.org/CVERecord?id=CVE-2024-32659	external
https://nvd.nist.gov/vuln/detail/CVE-2024-32659	external
https://github.com/FreeRDP/FreeRDP/security/advis…	external
https://access.redhat.com/security/cve/CVE-2024-32660	self
https://bugzilla.redhat.com/show_bug.cgi?id=2276968	external
https://www.cve.org/CVERecord?id=CVE-2024-32660	external
https://nvd.nist.gov/vuln/detail/CVE-2024-32660	external
https://github.com/FreeRDP/FreeRDP/security/advis…	external
https://access.redhat.com/security/cve/CVE-2024-32661	self
https://bugzilla.redhat.com/show_bug.cgi?id=2276971	external
https://www.cve.org/CVERecord?id=CVE-2024-32661	external
https://nvd.nist.gov/vuln/detail/CVE-2024-32661	external
https://github.com/FreeRDP/FreeRDP/security/advis…	external
https://access.redhat.com/security/cve/CVE-2024-32662	self
https://bugzilla.redhat.com/show_bug.cgi?id=2276804	external
https://www.cve.org/CVERecord?id=CVE-2024-32662	external
https://nvd.nist.gov/vuln/detail/CVE-2024-32662	external
https://github.com/FreeRDP/FreeRDP/security/advis…	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An update for freerdp is now available for Red Hat Enterprise Linux 9.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. The xfreerdp client can connect to RDP servers such as Microsoft Windows machines, xrdp, and VirtualBox.\n\nSecurity Fix(es):\n\n* freerdp: Integer Overflow leading to Heap Overflow in freerdp_bitmap_planar_context_reset (CVE-2024-22211)\n\n* freerdp: out-of-bounds read in ncrush_decompress (CVE-2024-32459)\n\n* freerdp: OutOfBound Read in interleaved_decompress (CVE-2024-32460)\n\n* freerdp: Integer overflow \u0026 OutOfBound Write in clear_decompress_residual_data (CVE-2024-32039)\n\n* freerdp: integer underflow in nsc_rle_decode (CVE-2024-32040)\n\n* freerdp: OutOfBound Read in zgfx_decompress_segment (CVE-2024-32041)\n\n* freerdp: OutOfBound Read in planar_skip_plane_rle (CVE-2024-32458)\n\n* freerdp: out-of-bounds read (CVE-2024-32662)\n\n* FreeRDP: ExtractRunLengthRegular* out of bound read (CVE-2024-32658)\n\n* freerdp: zgfx_decompress out of memory (CVE-2024-32660)\n\n* freerdp: freerdp_image_copy out of bound read (CVE-2024-32659)\n\n* freerdp: rdp_write_logon_info_v1 NULL access (CVE-2024-32661)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAdditional Changes:\n\nFor detailed information on changes in this release, see the Red Hat Enterprise Linux 9.5 Release Notes linked from the References section.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2024:9092",
        "url": "https://access.redhat.com/errata/RHSA-2024:9092"
      },
      {
        "category": "external",
        "summary": "https://docs.redhat.com/en/documentation/red_hat_enterprise_linux/9/html/9.5_release_notes/index",
        "url": "https://docs.redhat.com/en/documentation/red_hat_enterprise_linux/9/html/9.5_release_notes/index"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#moderate",
        "url": "https://access.redhat.com/security/updates/classification/#moderate"
      },
      {
        "category": "external",
        "summary": "2259483",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2259483"
      },
      {
        "category": "external",
        "summary": "2276721",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276721"
      },
      {
        "category": "external",
        "summary": "2276722",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276722"
      },
      {
        "category": "external",
        "summary": "2276723",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276723"
      },
      {
        "category": "external",
        "summary": "2276724",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276724"
      },
      {
        "category": "external",
        "summary": "2276725",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276725"
      },
      {
        "category": "external",
        "summary": "2276726",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276726"
      },
      {
        "category": "external",
        "summary": "2276804",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276804"
      },
      {
        "category": "external",
        "summary": "2276961",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276961"
      },
      {
        "category": "external",
        "summary": "2276968",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276968"
      },
      {
        "category": "external",
        "summary": "2276970",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276970"
      },
      {
        "category": "external",
        "summary": "2276971",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276971"
      },
      {
        "category": "external",
        "summary": "RHEL-33988",
        "url": "https://issues.redhat.com/browse/RHEL-33988"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_9092.json"
      }
    ],
    "title": "Red Hat Security Advisory: freerdp security update",
    "tracking": {
      "current_release_date": "2024-11-24T14:15:37+00:00",
      "generator": {
        "date": "2024-11-24T14:15:37+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.2.1"
        }
      },
      "id": "RHSA-2024:9092",
      "initial_release_date": "2024-11-12T09:36:13+00:00",
      "revision_history": [
        {
          "date": "2024-11-12T09:36:13+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2024-11-12T09:36:13+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2024-11-24T14:15:37+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux AppStream (v. 9)",
                "product": {
                  "name": "Red Hat Enterprise Linux AppStream (v. 9)",
                  "product_id": "AppStream-9.5.0.GA",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:enterprise_linux:9::appstream"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat CodeReady Linux Builder (v. 9)",
                "product": {
                  "name": "Red Hat CodeReady Linux Builder (v. 9)",
                  "product_id": "CRB-9.5.0.GA",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:enterprise_linux:9::crb"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "freerdp-devel-2:2.11.7-1.el9.aarch64",
                "product": {
                  "name": "freerdp-devel-2:2.11.7-1.el9.aarch64",
                  "product_id": "freerdp-devel-2:2.11.7-1.el9.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/freerdp-devel@2.11.7-1.el9?arch=aarch64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "libwinpr-devel-2:2.11.7-1.el9.aarch64",
                "product": {
                  "name": "libwinpr-devel-2:2.11.7-1.el9.aarch64",
                  "product_id": "libwinpr-devel-2:2.11.7-1.el9.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/libwinpr-devel@2.11.7-1.el9?arch=aarch64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "freerdp-debugsource-2:2.11.7-1.el9.aarch64",
                "product": {
                  "name": "freerdp-debugsource-2:2.11.7-1.el9.aarch64",
                  "product_id": "freerdp-debugsource-2:2.11.7-1.el9.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/freerdp-debugsource@2.11.7-1.el9?arch=aarch64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
                "product": {
                  "name": "freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
                  "product_id": "freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/freerdp-debuginfo@2.11.7-1.el9?arch=aarch64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
                "product": {
                  "name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
                  "product_id": "freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/freerdp-libs-debuginfo@2.11.7-1.el9?arch=aarch64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
                "product": {
                  "name": "libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
                  "product_id": "libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/libwinpr-debuginfo@2.11.7-1.el9?arch=aarch64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "freerdp-2:2.11.7-1.el9.aarch64",
                "product": {
                  "name": "freerdp-2:2.11.7-1.el9.aarch64",
                  "product_id": "freerdp-2:2.11.7-1.el9.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/freerdp@2.11.7-1.el9?arch=aarch64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "freerdp-libs-2:2.11.7-1.el9.aarch64",
                "product": {
                  "name": "freerdp-libs-2:2.11.7-1.el9.aarch64",
                  "product_id": "freerdp-libs-2:2.11.7-1.el9.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/freerdp-libs@2.11.7-1.el9?arch=aarch64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "libwinpr-2:2.11.7-1.el9.aarch64",
                "product": {
                  "name": "libwinpr-2:2.11.7-1.el9.aarch64",
                  "product_id": "libwinpr-2:2.11.7-1.el9.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/libwinpr@2.11.7-1.el9?arch=aarch64\u0026epoch=2"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "freerdp-devel-2:2.11.7-1.el9.ppc64le",
                "product": {
                  "name": "freerdp-devel-2:2.11.7-1.el9.ppc64le",
                  "product_id": "freerdp-devel-2:2.11.7-1.el9.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/freerdp-devel@2.11.7-1.el9?arch=ppc64le\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "libwinpr-devel-2:2.11.7-1.el9.ppc64le",
                "product": {
                  "name": "libwinpr-devel-2:2.11.7-1.el9.ppc64le",
                  "product_id": "libwinpr-devel-2:2.11.7-1.el9.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/libwinpr-devel@2.11.7-1.el9?arch=ppc64le\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
                "product": {
                  "name": "freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
                  "product_id": "freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/freerdp-debugsource@2.11.7-1.el9?arch=ppc64le\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
                "product": {
                  "name": "freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
                  "product_id": "freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/freerdp-debuginfo@2.11.7-1.el9?arch=ppc64le\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
                "product": {
                  "name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
                  "product_id": "freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/freerdp-libs-debuginfo@2.11.7-1.el9?arch=ppc64le\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
                "product": {
                  "name": "libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
                  "product_id": "libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/libwinpr-debuginfo@2.11.7-1.el9?arch=ppc64le\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "freerdp-2:2.11.7-1.el9.ppc64le",
                "product": {
                  "name": "freerdp-2:2.11.7-1.el9.ppc64le",
                  "product_id": "freerdp-2:2.11.7-1.el9.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/freerdp@2.11.7-1.el9?arch=ppc64le\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "freerdp-libs-2:2.11.7-1.el9.ppc64le",
                "product": {
                  "name": "freerdp-libs-2:2.11.7-1.el9.ppc64le",
                  "product_id": "freerdp-libs-2:2.11.7-1.el9.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/freerdp-libs@2.11.7-1.el9?arch=ppc64le\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "libwinpr-2:2.11.7-1.el9.ppc64le",
                "product": {
                  "name": "libwinpr-2:2.11.7-1.el9.ppc64le",
                  "product_id": "libwinpr-2:2.11.7-1.el9.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/libwinpr@2.11.7-1.el9?arch=ppc64le\u0026epoch=2"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "freerdp-devel-2:2.11.7-1.el9.i686",
                "product": {
                  "name": "freerdp-devel-2:2.11.7-1.el9.i686",
                  "product_id": "freerdp-devel-2:2.11.7-1.el9.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/freerdp-devel@2.11.7-1.el9?arch=i686\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "libwinpr-devel-2:2.11.7-1.el9.i686",
                "product": {
                  "name": "libwinpr-devel-2:2.11.7-1.el9.i686",
                  "product_id": "libwinpr-devel-2:2.11.7-1.el9.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/libwinpr-devel@2.11.7-1.el9?arch=i686\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "freerdp-debugsource-2:2.11.7-1.el9.i686",
                "product": {
                  "name": "freerdp-debugsource-2:2.11.7-1.el9.i686",
                  "product_id": "freerdp-debugsource-2:2.11.7-1.el9.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/freerdp-debugsource@2.11.7-1.el9?arch=i686\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "freerdp-debuginfo-2:2.11.7-1.el9.i686",
                "product": {
                  "name": "freerdp-debuginfo-2:2.11.7-1.el9.i686",
                  "product_id": "freerdp-debuginfo-2:2.11.7-1.el9.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/freerdp-debuginfo@2.11.7-1.el9?arch=i686\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
                "product": {
                  "name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
                  "product_id": "freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/freerdp-libs-debuginfo@2.11.7-1.el9?arch=i686\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "libwinpr-debuginfo-2:2.11.7-1.el9.i686",
                "product": {
                  "name": "libwinpr-debuginfo-2:2.11.7-1.el9.i686",
                  "product_id": "libwinpr-debuginfo-2:2.11.7-1.el9.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/libwinpr-debuginfo@2.11.7-1.el9?arch=i686\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "freerdp-libs-2:2.11.7-1.el9.i686",
                "product": {
                  "name": "freerdp-libs-2:2.11.7-1.el9.i686",
                  "product_id": "freerdp-libs-2:2.11.7-1.el9.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/freerdp-libs@2.11.7-1.el9?arch=i686\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "libwinpr-2:2.11.7-1.el9.i686",
                "product": {
                  "name": "libwinpr-2:2.11.7-1.el9.i686",
                  "product_id": "libwinpr-2:2.11.7-1.el9.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/libwinpr@2.11.7-1.el9?arch=i686\u0026epoch=2"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "i686"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "freerdp-devel-2:2.11.7-1.el9.x86_64",
                "product": {
                  "name": "freerdp-devel-2:2.11.7-1.el9.x86_64",
                  "product_id": "freerdp-devel-2:2.11.7-1.el9.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/freerdp-devel@2.11.7-1.el9?arch=x86_64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "libwinpr-devel-2:2.11.7-1.el9.x86_64",
                "product": {
                  "name": "libwinpr-devel-2:2.11.7-1.el9.x86_64",
                  "product_id": "libwinpr-devel-2:2.11.7-1.el9.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/libwinpr-devel@2.11.7-1.el9?arch=x86_64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "freerdp-debugsource-2:2.11.7-1.el9.x86_64",
                "product": {
                  "name": "freerdp-debugsource-2:2.11.7-1.el9.x86_64",
                  "product_id": "freerdp-debugsource-2:2.11.7-1.el9.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/freerdp-debugsource@2.11.7-1.el9?arch=x86_64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
                "product": {
                  "name": "freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
                  "product_id": "freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/freerdp-debuginfo@2.11.7-1.el9?arch=x86_64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
                "product": {
                  "name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
                  "product_id": "freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/freerdp-libs-debuginfo@2.11.7-1.el9?arch=x86_64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
                "product": {
                  "name": "libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
                  "product_id": "libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/libwinpr-debuginfo@2.11.7-1.el9?arch=x86_64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "freerdp-2:2.11.7-1.el9.x86_64",
                "product": {
                  "name": "freerdp-2:2.11.7-1.el9.x86_64",
                  "product_id": "freerdp-2:2.11.7-1.el9.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/freerdp@2.11.7-1.el9?arch=x86_64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "freerdp-libs-2:2.11.7-1.el9.x86_64",
                "product": {
                  "name": "freerdp-libs-2:2.11.7-1.el9.x86_64",
                  "product_id": "freerdp-libs-2:2.11.7-1.el9.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/freerdp-libs@2.11.7-1.el9?arch=x86_64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "libwinpr-2:2.11.7-1.el9.x86_64",
                "product": {
                  "name": "libwinpr-2:2.11.7-1.el9.x86_64",
                  "product_id": "libwinpr-2:2.11.7-1.el9.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/libwinpr@2.11.7-1.el9?arch=x86_64\u0026epoch=2"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "freerdp-devel-2:2.11.7-1.el9.s390x",
                "product": {
                  "name": "freerdp-devel-2:2.11.7-1.el9.s390x",
                  "product_id": "freerdp-devel-2:2.11.7-1.el9.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/freerdp-devel@2.11.7-1.el9?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "libwinpr-devel-2:2.11.7-1.el9.s390x",
                "product": {
                  "name": "libwinpr-devel-2:2.11.7-1.el9.s390x",
                  "product_id": "libwinpr-devel-2:2.11.7-1.el9.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/libwinpr-devel@2.11.7-1.el9?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "freerdp-debugsource-2:2.11.7-1.el9.s390x",
                "product": {
                  "name": "freerdp-debugsource-2:2.11.7-1.el9.s390x",
                  "product_id": "freerdp-debugsource-2:2.11.7-1.el9.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/freerdp-debugsource@2.11.7-1.el9?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "freerdp-debuginfo-2:2.11.7-1.el9.s390x",
                "product": {
                  "name": "freerdp-debuginfo-2:2.11.7-1.el9.s390x",
                  "product_id": "freerdp-debuginfo-2:2.11.7-1.el9.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/freerdp-debuginfo@2.11.7-1.el9?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
                "product": {
                  "name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
                  "product_id": "freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/freerdp-libs-debuginfo@2.11.7-1.el9?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
                "product": {
                  "name": "libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
                  "product_id": "libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/libwinpr-debuginfo@2.11.7-1.el9?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "freerdp-2:2.11.7-1.el9.s390x",
                "product": {
                  "name": "freerdp-2:2.11.7-1.el9.s390x",
                  "product_id": "freerdp-2:2.11.7-1.el9.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/freerdp@2.11.7-1.el9?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "freerdp-libs-2:2.11.7-1.el9.s390x",
                "product": {
                  "name": "freerdp-libs-2:2.11.7-1.el9.s390x",
                  "product_id": "freerdp-libs-2:2.11.7-1.el9.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/freerdp-libs@2.11.7-1.el9?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "libwinpr-2:2.11.7-1.el9.s390x",
                "product": {
                  "name": "libwinpr-2:2.11.7-1.el9.s390x",
                  "product_id": "libwinpr-2:2.11.7-1.el9.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/libwinpr@2.11.7-1.el9?arch=s390x\u0026epoch=2"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "freerdp-2:2.11.7-1.el9.src",
                "product": {
                  "name": "freerdp-2:2.11.7-1.el9.src",
                  "product_id": "freerdp-2:2.11.7-1.el9.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/freerdp@2.11.7-1.el9?arch=src\u0026epoch=2"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-2:2.11.7-1.el9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64"
        },
        "product_reference": "freerdp-2:2.11.7-1.el9.aarch64",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-2:2.11.7-1.el9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le"
        },
        "product_reference": "freerdp-2:2.11.7-1.el9.ppc64le",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-2:2.11.7-1.el9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x"
        },
        "product_reference": "freerdp-2:2.11.7-1.el9.s390x",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-2:2.11.7-1.el9.src as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src"
        },
        "product_reference": "freerdp-2:2.11.7-1.el9.src",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-2:2.11.7-1.el9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64"
        },
        "product_reference": "freerdp-2:2.11.7-1.el9.x86_64",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-debuginfo-2:2.11.7-1.el9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64"
        },
        "product_reference": "freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-debuginfo-2:2.11.7-1.el9.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686"
        },
        "product_reference": "freerdp-debuginfo-2:2.11.7-1.el9.i686",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-debuginfo-2:2.11.7-1.el9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le"
        },
        "product_reference": "freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-debuginfo-2:2.11.7-1.el9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x"
        },
        "product_reference": "freerdp-debuginfo-2:2.11.7-1.el9.s390x",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-debuginfo-2:2.11.7-1.el9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64"
        },
        "product_reference": "freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-debugsource-2:2.11.7-1.el9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64"
        },
        "product_reference": "freerdp-debugsource-2:2.11.7-1.el9.aarch64",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-debugsource-2:2.11.7-1.el9.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686"
        },
        "product_reference": "freerdp-debugsource-2:2.11.7-1.el9.i686",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-debugsource-2:2.11.7-1.el9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le"
        },
        "product_reference": "freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-debugsource-2:2.11.7-1.el9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x"
        },
        "product_reference": "freerdp-debugsource-2:2.11.7-1.el9.s390x",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-debugsource-2:2.11.7-1.el9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64"
        },
        "product_reference": "freerdp-debugsource-2:2.11.7-1.el9.x86_64",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-devel-2:2.11.7-1.el9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64"
        },
        "product_reference": "freerdp-devel-2:2.11.7-1.el9.aarch64",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-devel-2:2.11.7-1.el9.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686"
        },
        "product_reference": "freerdp-devel-2:2.11.7-1.el9.i686",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-devel-2:2.11.7-1.el9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le"
        },
        "product_reference": "freerdp-devel-2:2.11.7-1.el9.ppc64le",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-devel-2:2.11.7-1.el9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x"
        },
        "product_reference": "freerdp-devel-2:2.11.7-1.el9.s390x",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-devel-2:2.11.7-1.el9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64"
        },
        "product_reference": "freerdp-devel-2:2.11.7-1.el9.x86_64",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-libs-2:2.11.7-1.el9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64"
        },
        "product_reference": "freerdp-libs-2:2.11.7-1.el9.aarch64",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-libs-2:2.11.7-1.el9.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686"
        },
        "product_reference": "freerdp-libs-2:2.11.7-1.el9.i686",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-libs-2:2.11.7-1.el9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le"
        },
        "product_reference": "freerdp-libs-2:2.11.7-1.el9.ppc64le",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-libs-2:2.11.7-1.el9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x"
        },
        "product_reference": "freerdp-libs-2:2.11.7-1.el9.s390x",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-libs-2:2.11.7-1.el9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64"
        },
        "product_reference": "freerdp-libs-2:2.11.7-1.el9.x86_64",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64"
        },
        "product_reference": "freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686"
        },
        "product_reference": "freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le"
        },
        "product_reference": "freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x"
        },
        "product_reference": "freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64"
        },
        "product_reference": "freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwinpr-2:2.11.7-1.el9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64"
        },
        "product_reference": "libwinpr-2:2.11.7-1.el9.aarch64",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwinpr-2:2.11.7-1.el9.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686"
        },
        "product_reference": "libwinpr-2:2.11.7-1.el9.i686",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwinpr-2:2.11.7-1.el9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le"
        },
        "product_reference": "libwinpr-2:2.11.7-1.el9.ppc64le",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwinpr-2:2.11.7-1.el9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x"
        },
        "product_reference": "libwinpr-2:2.11.7-1.el9.s390x",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwinpr-2:2.11.7-1.el9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64"
        },
        "product_reference": "libwinpr-2:2.11.7-1.el9.x86_64",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwinpr-debuginfo-2:2.11.7-1.el9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64"
        },
        "product_reference": "libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwinpr-debuginfo-2:2.11.7-1.el9.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686"
        },
        "product_reference": "libwinpr-debuginfo-2:2.11.7-1.el9.i686",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le"
        },
        "product_reference": "libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwinpr-debuginfo-2:2.11.7-1.el9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x"
        },
        "product_reference": "libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwinpr-debuginfo-2:2.11.7-1.el9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64"
        },
        "product_reference": "libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwinpr-devel-2:2.11.7-1.el9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64"
        },
        "product_reference": "libwinpr-devel-2:2.11.7-1.el9.aarch64",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwinpr-devel-2:2.11.7-1.el9.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686"
        },
        "product_reference": "libwinpr-devel-2:2.11.7-1.el9.i686",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwinpr-devel-2:2.11.7-1.el9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le"
        },
        "product_reference": "libwinpr-devel-2:2.11.7-1.el9.ppc64le",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwinpr-devel-2:2.11.7-1.el9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x"
        },
        "product_reference": "libwinpr-devel-2:2.11.7-1.el9.s390x",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwinpr-devel-2:2.11.7-1.el9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
        },
        "product_reference": "libwinpr-devel-2:2.11.7-1.el9.x86_64",
        "relates_to_product_reference": "AppStream-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-2:2.11.7-1.el9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64"
        },
        "product_reference": "freerdp-2:2.11.7-1.el9.aarch64",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-2:2.11.7-1.el9.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le"
        },
        "product_reference": "freerdp-2:2.11.7-1.el9.ppc64le",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-2:2.11.7-1.el9.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x"
        },
        "product_reference": "freerdp-2:2.11.7-1.el9.s390x",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-2:2.11.7-1.el9.src as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src"
        },
        "product_reference": "freerdp-2:2.11.7-1.el9.src",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-2:2.11.7-1.el9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64"
        },
        "product_reference": "freerdp-2:2.11.7-1.el9.x86_64",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-debuginfo-2:2.11.7-1.el9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64"
        },
        "product_reference": "freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-debuginfo-2:2.11.7-1.el9.i686 as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686"
        },
        "product_reference": "freerdp-debuginfo-2:2.11.7-1.el9.i686",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-debuginfo-2:2.11.7-1.el9.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le"
        },
        "product_reference": "freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-debuginfo-2:2.11.7-1.el9.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x"
        },
        "product_reference": "freerdp-debuginfo-2:2.11.7-1.el9.s390x",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-debuginfo-2:2.11.7-1.el9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64"
        },
        "product_reference": "freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-debugsource-2:2.11.7-1.el9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64"
        },
        "product_reference": "freerdp-debugsource-2:2.11.7-1.el9.aarch64",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-debugsource-2:2.11.7-1.el9.i686 as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686"
        },
        "product_reference": "freerdp-debugsource-2:2.11.7-1.el9.i686",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-debugsource-2:2.11.7-1.el9.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le"
        },
        "product_reference": "freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-debugsource-2:2.11.7-1.el9.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x"
        },
        "product_reference": "freerdp-debugsource-2:2.11.7-1.el9.s390x",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-debugsource-2:2.11.7-1.el9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64"
        },
        "product_reference": "freerdp-debugsource-2:2.11.7-1.el9.x86_64",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-devel-2:2.11.7-1.el9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64"
        },
        "product_reference": "freerdp-devel-2:2.11.7-1.el9.aarch64",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-devel-2:2.11.7-1.el9.i686 as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686"
        },
        "product_reference": "freerdp-devel-2:2.11.7-1.el9.i686",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-devel-2:2.11.7-1.el9.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le"
        },
        "product_reference": "freerdp-devel-2:2.11.7-1.el9.ppc64le",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-devel-2:2.11.7-1.el9.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x"
        },
        "product_reference": "freerdp-devel-2:2.11.7-1.el9.s390x",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-devel-2:2.11.7-1.el9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64"
        },
        "product_reference": "freerdp-devel-2:2.11.7-1.el9.x86_64",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-libs-2:2.11.7-1.el9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64"
        },
        "product_reference": "freerdp-libs-2:2.11.7-1.el9.aarch64",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-libs-2:2.11.7-1.el9.i686 as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686"
        },
        "product_reference": "freerdp-libs-2:2.11.7-1.el9.i686",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-libs-2:2.11.7-1.el9.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le"
        },
        "product_reference": "freerdp-libs-2:2.11.7-1.el9.ppc64le",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-libs-2:2.11.7-1.el9.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x"
        },
        "product_reference": "freerdp-libs-2:2.11.7-1.el9.s390x",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-libs-2:2.11.7-1.el9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64"
        },
        "product_reference": "freerdp-libs-2:2.11.7-1.el9.x86_64",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64"
        },
        "product_reference": "freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.i686 as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686"
        },
        "product_reference": "freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le"
        },
        "product_reference": "freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x"
        },
        "product_reference": "freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64"
        },
        "product_reference": "freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwinpr-2:2.11.7-1.el9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64"
        },
        "product_reference": "libwinpr-2:2.11.7-1.el9.aarch64",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwinpr-2:2.11.7-1.el9.i686 as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686"
        },
        "product_reference": "libwinpr-2:2.11.7-1.el9.i686",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwinpr-2:2.11.7-1.el9.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le"
        },
        "product_reference": "libwinpr-2:2.11.7-1.el9.ppc64le",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwinpr-2:2.11.7-1.el9.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x"
        },
        "product_reference": "libwinpr-2:2.11.7-1.el9.s390x",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwinpr-2:2.11.7-1.el9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64"
        },
        "product_reference": "libwinpr-2:2.11.7-1.el9.x86_64",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwinpr-debuginfo-2:2.11.7-1.el9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64"
        },
        "product_reference": "libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwinpr-debuginfo-2:2.11.7-1.el9.i686 as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686"
        },
        "product_reference": "libwinpr-debuginfo-2:2.11.7-1.el9.i686",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le"
        },
        "product_reference": "libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwinpr-debuginfo-2:2.11.7-1.el9.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x"
        },
        "product_reference": "libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwinpr-debuginfo-2:2.11.7-1.el9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64"
        },
        "product_reference": "libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwinpr-devel-2:2.11.7-1.el9.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64"
        },
        "product_reference": "libwinpr-devel-2:2.11.7-1.el9.aarch64",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwinpr-devel-2:2.11.7-1.el9.i686 as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686"
        },
        "product_reference": "libwinpr-devel-2:2.11.7-1.el9.i686",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwinpr-devel-2:2.11.7-1.el9.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le"
        },
        "product_reference": "libwinpr-devel-2:2.11.7-1.el9.ppc64le",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwinpr-devel-2:2.11.7-1.el9.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x"
        },
        "product_reference": "libwinpr-devel-2:2.11.7-1.el9.s390x",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwinpr-devel-2:2.11.7-1.el9.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
        },
        "product_reference": "libwinpr-devel-2:2.11.7-1.el9.x86_64",
        "relates_to_product_reference": "CRB-9.5.0.GA"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2024-22211",
      "cwe": {
        "id": "CWE-190",
        "name": "Integer Overflow or Wraparound"
      },
      "discovery_date": "2024-01-22T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2259483"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "FreeRDP is a collection of remote desktop protocol library and client software that is both free and open source. An integer overflow within freerdp_bitmap_planar_context_reset results in a heap-buffer overflow. This impacts clients built on FreeRDP. However, server implementations and proxies based on FreeRDP are unaffected. A malevolent server could create a RDPGFX_RESET_GRAPHICS_PDU to allocate buffers that are too small, potentially causing subsequent out-of-bounds reads/writes. It\u0027s important to note that data extraction over the network is not feasible; these buffers are utilized solely for displaying images.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "freerdp: Integer Overflow leading to Heap Overflow in freerdp_bitmap_planar_context_reset",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This vulnerability in FreeRDP, resulting from an integer overflow in certain versions, poses a low severity risk due to several mitigating factors. Firstly, it primarily affects FreeRDP-based clients, while server implementations and proxies remain unaffected. Additionally, the potential for exploitation is limited as it requires interaction with a malicious server, and data extraction over the network is not feasible; the vulnerability pertains solely to image display buffers.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-22211"
        },
        {
          "category": "external",
          "summary": "RHBZ#2259483",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2259483"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-22211",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-22211"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-22211",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-22211"
        },
        {
          "category": "external",
          "summary": "https://github.com/FreeRDP/FreeRDP/commit/939e922936e9c3ae8fc204968645e5e7563a2fff",
          "url": "https://github.com/FreeRDP/FreeRDP/commit/939e922936e9c3ae8fc204968645e5e7563a2fff"
        },
        {
          "category": "external",
          "summary": "https://github.com/FreeRDP/FreeRDP/commit/aeac3040cc99eeaff1e1171a822114c857b9dca9",
          "url": "https://github.com/FreeRDP/FreeRDP/commit/aeac3040cc99eeaff1e1171a822114c857b9dca9"
        },
        {
          "category": "external",
          "summary": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-rjhp-44rv-7v59",
          "url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-rjhp-44rv-7v59"
        }
      ],
      "release_date": "2024-01-19T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-12T09:36:13+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9092"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 3.7,
            "baseSeverity": "LOW",
            "confidentialityImpact": "NONE",
            "integrityImpact": "LOW",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:N/I:L/A:L",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "freerdp: Integer Overflow leading to Heap Overflow in freerdp_bitmap_planar_context_reset"
    },
    {
      "cve": "CVE-2024-32039",
      "cwe": {
        "id": "CWE-787",
        "name": "Out-of-bounds Write"
      },
      "discovery_date": "2024-04-23T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2276723"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in FreeRDP-based clients. Affected versions of FreeRDP are vulnerable to an integer overflow and out-of-bounds write. This issue occurs when the sum of the `runLengthFactor`  and `pixelIndex` values become large enough to overflow the uint32 type and bypass an error check when clearing residual data.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "freerdp: Integer overflow \u0026 OutOfBound Write in clear_decompress_residual_data",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-32039"
        },
        {
          "category": "external",
          "summary": "RHBZ#2276723",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276723"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-32039",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-32039"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32039",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32039"
        },
        {
          "category": "external",
          "summary": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-q5h8-7j42-j4r9",
          "url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-q5h8-7j42-j4r9"
        }
      ],
      "release_date": "2024-04-22T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-12T09:36:13+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9092"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "freerdp: Integer overflow \u0026 OutOfBound Write in clear_decompress_residual_data"
    },
    {
      "cve": "CVE-2024-32040",
      "cwe": {
        "id": "CWE-191",
        "name": "Integer Underflow (Wrap or Wraparound)"
      },
      "discovery_date": "2024-04-23T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2276724"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients that use a version of FreeRDP prior to 3.5.0 or 2.11.6 and have connections to servers using the `NSC` codec are vulnerable to integer underflow. Versions 3.5.0 and 2.11.6 patch the issue. As a workaround, do not use the NSC codec (e.g. use `-nsc`).",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "freerdp: integer underflow in nsc_rle_decode",
          "title": "Vulnerability summary"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-32040"
        },
        {
          "category": "external",
          "summary": "RHBZ#2276724",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276724"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-32040",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-32040"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32040",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32040"
        },
        {
          "category": "external",
          "summary": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-23c5-cp23-h2h5",
          "url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-23c5-cp23-h2h5"
        }
      ],
      "release_date": "2024-04-22T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-12T09:36:13+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9092"
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "freerdp: integer underflow in nsc_rle_decode"
    },
    {
      "cve": "CVE-2024-32041",
      "cwe": {
        "id": "CWE-125",
        "name": "Out-of-bounds Read"
      },
      "discovery_date": "2024-04-23T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2276725"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients that use a version of FreeRDP prior to 3.5.0 or 2.11.6 are vulnerable to out-of-bounds read. Versions 3.5.0 and 2.11.6 patch the issue. As a workaround, deactivate `/gfx` (on by default, set `/bpp` or `/rfx` options instead.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "freerdp: OutOfBound Read in zgfx_decompress_segment",
          "title": "Vulnerability summary"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-32041"
        },
        {
          "category": "external",
          "summary": "RHBZ#2276725",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276725"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-32041",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-32041"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32041",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32041"
        },
        {
          "category": "external",
          "summary": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-5r4p-mfx2-m44r",
          "url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-5r4p-mfx2-m44r"
        }
      ],
      "release_date": "2024-04-22T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-12T09:36:13+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9092"
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "freerdp: OutOfBound Read in zgfx_decompress_segment"
    },
    {
      "cve": "CVE-2024-32458",
      "cwe": {
        "id": "CWE-125",
        "name": "Out-of-bounds Read"
      },
      "discovery_date": "2024-04-23T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2276726"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients that use a version of FreeRDP prior to 3.5.0 or 2.11.6 are vulnerable to out-of-bounds read. Versions 3.5.0 and 2.11.6 patch the issue. As a workaround, use `/gfx` or `/rfx` modes (on by default, require server side support).",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "freerdp: OutOfBound Read in planar_skip_plane_rle",
          "title": "Vulnerability summary"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-32458"
        },
        {
          "category": "external",
          "summary": "RHBZ#2276726",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276726"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-32458",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-32458"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32458",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32458"
        },
        {
          "category": "external",
          "summary": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vvr6-h646-mp4p",
          "url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vvr6-h646-mp4p"
        }
      ],
      "release_date": "2024-04-22T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-12T09:36:13+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9092"
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "freerdp: OutOfBound Read in planar_skip_plane_rle"
    },
    {
      "cve": "CVE-2024-32459",
      "cwe": {
        "id": "CWE-125",
        "name": "Out-of-bounds Read"
      },
      "discovery_date": "2024-04-23T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2276721"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients and servers that use a version of FreeRDP prior to 3.5.0 or 2.11.6 are vulnerable to out-of-bounds read. Versions 3.5.0 and 2.11.6 patch the issue. No known workarounds are available.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "freerdp: out-of-bounds read in ncrush_decompress",
          "title": "Vulnerability summary"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-32459"
        },
        {
          "category": "external",
          "summary": "RHBZ#2276721",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276721"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-32459",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-32459"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32459",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32459"
        },
        {
          "category": "external",
          "summary": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-cp4q-p737-rmw9",
          "url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-cp4q-p737-rmw9"
        }
      ],
      "release_date": "2024-04-22T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-12T09:36:13+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9092"
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "freerdp: out-of-bounds read in ncrush_decompress"
    },
    {
      "cve": "CVE-2024-32460",
      "cwe": {
        "id": "CWE-125",
        "name": "Out-of-bounds Read"
      },
      "discovery_date": "2024-04-23T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2276722"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based based clients using `/bpp:32` legacy `GDI` drawing path with a version of FreeRDP prior to 3.5.0 or 2.11.6 are vulnerable to out-of-bounds read. Versions 3.5.0 and 2.11.6 patch the issue. As a workaround, use modern drawing paths (e.g. `/rfx` or `/gfx` options). The workaround requires server side support.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "freerdp: OutOfBound Read in interleaved_decompress",
          "title": "Vulnerability summary"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-32460"
        },
        {
          "category": "external",
          "summary": "RHBZ#2276722",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276722"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-32460",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-32460"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32460",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32460"
        },
        {
          "category": "external",
          "summary": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-4rr8-gr65-vqrr",
          "url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-4rr8-gr65-vqrr"
        }
      ],
      "release_date": "2024-04-22T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-12T09:36:13+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9092"
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "freerdp: OutOfBound Read in interleaved_decompress"
    },
    {
      "cve": "CVE-2024-32658",
      "cwe": {
        "id": "CWE-125",
        "name": "Out-of-bounds Read"
      },
      "discovery_date": "2024-04-24T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2276961"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients prior to version 3.5.1 are vulnerable to out-of-bounds read. Version 3.5.1 contains a patch for the issue. No known workarounds are available.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "FreeRDP: ExtractRunLengthRegular* out of bound read",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-32658"
        },
        {
          "category": "external",
          "summary": "RHBZ#2276961",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276961"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-32658",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-32658"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32658",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32658"
        },
        {
          "category": "external",
          "summary": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vpv3-m3m9-4c2v",
          "url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vpv3-m3m9-4c2v"
        }
      ],
      "release_date": "2024-04-23T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-12T09:36:13+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9092"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "FreeRDP: ExtractRunLengthRegular* out of bound read"
    },
    {
      "cve": "CVE-2024-32659",
      "cwe": {
        "id": "CWE-125",
        "name": "Out-of-bounds Read"
      },
      "discovery_date": "2024-04-24T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2276970"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients prior to version 3.5.1 are vulnerable to out-of-bounds read if `((nWidth == 0) and (nHeight == 0))`. Version 3.5.1 contains a patch for the issue. No known workarounds are available.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "freerdp: freerdp_image_copy out of bound read",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-32659"
        },
        {
          "category": "external",
          "summary": "RHBZ#2276970",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276970"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-32659",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-32659"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32659",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32659"
        },
        {
          "category": "external",
          "summary": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-8jgr-7r33-x87w",
          "url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-8jgr-7r33-x87w"
        }
      ],
      "release_date": "2024-04-23T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-12T09:36:13+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9092"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "freerdp: freerdp_image_copy out of bound read"
    },
    {
      "cve": "CVE-2024-32660",
      "cwe": {
        "id": "CWE-770",
        "name": "Allocation of Resources Without Limits or Throttling"
      },
      "discovery_date": "2024-04-24T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2276968"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.5.1, a malicious server can crash the FreeRDP client by sending invalid huge allocation size. Version 3.5.1 contains a patch for the issue. No known workarounds are available.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "freerdp: zgfx_decompress out of memory",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-32660"
        },
        {
          "category": "external",
          "summary": "RHBZ#2276968",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276968"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-32660",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-32660"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32660",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32660"
        },
        {
          "category": "external",
          "summary": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-mxv6-2cw6-m3mx",
          "url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-mxv6-2cw6-m3mx"
        }
      ],
      "release_date": "2024-04-23T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-12T09:36:13+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9092"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "freerdp: zgfx_decompress out of memory"
    },
    {
      "cve": "CVE-2024-32661",
      "cwe": {
        "id": "CWE-476",
        "name": "NULL Pointer Dereference"
      },
      "discovery_date": "2024-04-24T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2276971"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients prior to version 3.5.1 are vulnerable to a possible `NULL` access and crash. Version 3.5.1 contains a patch for the issue. No known workarounds are available.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "freerdp: rdp_write_logon_info_v1 NULL access",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-32661"
        },
        {
          "category": "external",
          "summary": "RHBZ#2276971",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276971"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-32661",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-32661"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32661",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32661"
        },
        {
          "category": "external",
          "summary": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-p5m5-342g-pv9m",
          "url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-p5m5-342g-pv9m"
        }
      ],
      "release_date": "2024-04-23T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-12T09:36:13+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9092"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "freerdp: rdp_write_logon_info_v1 NULL access"
    },
    {
      "cve": "CVE-2024-32662",
      "cwe": {
        "id": "CWE-125",
        "name": "Out-of-bounds Read"
      },
      "discovery_date": "2024-04-24T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2276804"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in FreeRDP-based clients. Affected versions of FreeRDP are vulnerable to an out-of-bounds read. This issue occurs when the `WCHAR` string is read with twice the size it has and converted to `UTF-8`, `base64` decoded. The string is only used to compare against the redirection server certificate.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "freerdp: out-of-bounds read",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
          "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
          "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
          "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
          "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-32662"
        },
        {
          "category": "external",
          "summary": "RHBZ#2276804",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276804"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-32662",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-32662"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32662",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32662"
        },
        {
          "category": "external",
          "summary": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vffh-j6hh-95f4",
          "url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vffh-j6hh-95f4"
        }
      ],
      "release_date": "2024-04-23T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-11-12T09:36:13+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:9092"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "AppStream-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "AppStream-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.src",
            "CRB-9.5.0.GA:freerdp-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-debugsource-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-devel-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:freerdp-libs-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-debuginfo-2:2.11.7-1.el9.x86_64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.aarch64",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.i686",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.ppc64le",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.s390x",
            "CRB-9.5.0.GA:libwinpr-devel-2:2.11.7-1.el9.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "freerdp: out-of-bounds read"
    }
  ]
}

WID-SEC-W-2024-0954

Vulnerability from csaf_certbund - Published: 2024-04-23 22:00 - Updated: 2025-03-25 23:00

Summary

FreeRDP: Mehrere Schwachstellen

Severity

Hoch

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung: FreeRDP ist eine freie Implementierung des Remote Desktop Protocol (RDP).

Angriff: Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in FreeRDP ausnutzen, um Sicherheitsvorkehrungen zu umgehen oder einen Denial-of-Service-Zustand zu verursachen.

Betroffene Betriebssysteme: - Sonstiges - UNIX - Windows

CVE-2024-32658

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Open Source FreeRDP <3.5.1 Open Source / FreeRDP		<3.5.1

CVE-2024-32659

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Open Source FreeRDP <3.5.1 Open Source / FreeRDP		<3.5.1

CVE-2024-32660

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Open Source FreeRDP <3.5.1 Open Source / FreeRDP		<3.5.1

CVE-2024-32661

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Open Source FreeRDP <3.5.1 Open Source / FreeRDP		<3.5.1

CVE-2024-32662

Affected products

Known affected 6 products

Product	Identifier	Version
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Open Source FreeRDP <3.5.1 Open Source / FreeRDP		<3.5.1

References

22 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://github.com/FreeRDP/FreeRDP/security/advis…	external
https://github.com/FreeRDP/FreeRDP/security/advis…	external
https://github.com/FreeRDP/FreeRDP/security/advis…	external
https://github.com/FreeRDP/FreeRDP/security/advis…	external
https://github.com/FreeRDP/FreeRDP/security/advis…	external
https://nvd.nist.gov/vuln/detail/CVE-2024-32658	external
https://nvd.nist.gov/vuln/detail/CVE-2024-32659	external
https://nvd.nist.gov/vuln/detail/CVE-2024-32660	external
https://nvd.nist.gov/vuln/detail/CVE-2024-32661	external
https://nvd.nist.gov/vuln/detail/CVE-2024-32662	external
https://ubuntu.com/security/notices/USN-6752-1	external
https://ubuntu.com/security/notices/USN-6759-1	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.opensuse.org/archives/list/security…	external
https://lists.opensuse.org/archives/list/security…	external
https://access.redhat.com/errata/RHSA-2024:9092	external
https://linux.oracle.com/errata/ELSA-2024-9092.html	external
https://lists.debian.org/debian-lts-announce/2025…	external
https://ubuntu.com/security/notices/USN-7341-1	external
https://ubuntu.com/security/notices/USN-7371-1	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "FreeRDP ist eine freie Implementierung des Remote Desktop Protocol (RDP).",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in FreeRDP ausnutzen, um Sicherheitsvorkehrungen zu umgehen oder einen Denial-of-Service-Zustand zu verursachen.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Sonstiges\n- UNIX\n- Windows",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2024-0954 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-0954.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2024-0954 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-0954"
      },
      {
        "category": "external",
        "summary": "FreeRDP GitHub vom 2024-04-23",
        "url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-8jgr-7r33-x87w"
      },
      {
        "category": "external",
        "summary": "FreeRDP GitHub vom 2024-04-23",
        "url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-mxv6-2cw6-m3mx"
      },
      {
        "category": "external",
        "summary": "FreeRDP GitHub vom 2024-04-23",
        "url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-p5m5-342g-pv9m"
      },
      {
        "category": "external",
        "summary": "FreeRDP GitHub vom 2024-04-23",
        "url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vffh-j6hh-95f4"
      },
      {
        "category": "external",
        "summary": "FreeRDP GitHub vom 2024-04-23",
        "url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vpv3-m3m9-4c2v"
      },
      {
        "category": "external",
        "summary": "NIST Vulnerability Database vom 2024-04-23",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32658"
      },
      {
        "category": "external",
        "summary": "NIST Vulnerability Database vom 2024-04-23",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32659"
      },
      {
        "category": "external",
        "summary": "NIST Vulnerability Database vom 2024-04-23",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32660"
      },
      {
        "category": "external",
        "summary": "NIST Vulnerability Database vom 2024-04-23",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32661"
      },
      {
        "category": "external",
        "summary": "NIST Vulnerability Database vom 2024-04-23",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32662"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-6752-1 vom 2024-04-25",
        "url": "https://ubuntu.com/security/notices/USN-6752-1"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-6759-1 vom 2024-04-29",
        "url": "https://ubuntu.com/security/notices/USN-6759-1"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:1835-1 vom 2024-05-29",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-May/018621.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:2631-1 vom 2024-07-30",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/HBK55IKTQA23VGL5RAMGC7VKBKONGQPJ/"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:1856-1 vom 2024-08-19",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/FXJ7VXU3WD5NGIV3CLIQE4WRKC3O6ZJP/"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:9092 vom 2024-11-12",
        "url": "https://access.redhat.com/errata/RHSA-2024:9092"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2024-9092 vom 2024-11-19",
        "url": "https://linux.oracle.com/errata/ELSA-2024-9092.html"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory DLA-4053 vom 2025-02-15",
        "url": "https://lists.debian.org/debian-lts-announce/2025/02/msg00016.html"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7341-1 vom 2025-03-11",
        "url": "https://ubuntu.com/security/notices/USN-7341-1"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7371-1 vom 2025-03-25",
        "url": "https://ubuntu.com/security/notices/USN-7371-1"
      }
    ],
    "source_lang": "en-US",
    "title": "FreeRDP: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2025-03-25T23:00:00.000+00:00",
      "generator": {
        "date": "2025-03-26T09:10:40.292+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.12"
        }
      },
      "id": "WID-SEC-W-2024-0954",
      "initial_release_date": "2024-04-23T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2024-04-23T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2024-04-25T22:00:00.000+00:00",
          "number": "2",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2024-04-29T22:00:00.000+00:00",
          "number": "3",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2024-05-30T22:00:00.000+00:00",
          "number": "4",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-07-29T22:00:00.000+00:00",
          "number": "5",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-08-19T22:00:00.000+00:00",
          "number": "6",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-11-11T23:00:00.000+00:00",
          "number": "7",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2024-11-18T23:00:00.000+00:00",
          "number": "8",
          "summary": "Neue Updates von Oracle Linux aufgenommen"
        },
        {
          "date": "2025-02-16T23:00:00.000+00:00",
          "number": "9",
          "summary": "Neue Updates von Debian aufgenommen"
        },
        {
          "date": "2025-03-11T23:00:00.000+00:00",
          "number": "10",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2025-03-25T23:00:00.000+00:00",
          "number": "11",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        }
      ],
      "status": "final",
      "version": "11"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Debian Linux",
            "product": {
              "name": "Debian Linux",
              "product_id": "2951",
              "product_identification_helper": {
                "cpe": "cpe:/o:debian:debian_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Debian"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c3.5.1",
                "product": {
                  "name": "Open Source FreeRDP \u003c3.5.1",
                  "product_id": "T034365"
                }
              },
              {
                "category": "product_version",
                "name": "3.5.1",
                "product": {
                  "name": "Open Source FreeRDP 3.5.1",
                  "product_id": "T034365-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:freerdp:freerdp:3.5.1"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "FreeRDP"
          }
        ],
        "category": "vendor",
        "name": "Open Source"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Oracle Linux",
            "product": {
              "name": "Oracle Linux",
              "product_id": "T039238",
              "product_identification_helper": {
                "cpe": "cpe:/o:oracle:linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Oracle"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Red Hat Enterprise Linux",
            "product": {
              "name": "Red Hat Enterprise Linux",
              "product_id": "67646",
              "product_identification_helper": {
                "cpe": "cpe:/o:redhat:enterprise_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "SUSE Linux",
            "product": {
              "name": "SUSE Linux",
              "product_id": "T002207",
              "product_identification_helper": {
                "cpe": "cpe:/o:suse:suse_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Ubuntu Linux",
            "product": {
              "name": "Ubuntu Linux",
              "product_id": "T000126",
              "product_identification_helper": {
                "cpe": "cpe:/o:canonical:ubuntu_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Ubuntu"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2024-32658",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T039238",
          "T034365"
        ]
      },
      "release_date": "2024-04-23T22:00:00.000+00:00",
      "title": "CVE-2024-32658"
    },
    {
      "cve": "CVE-2024-32659",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T039238",
          "T034365"
        ]
      },
      "release_date": "2024-04-23T22:00:00.000+00:00",
      "title": "CVE-2024-32659"
    },
    {
      "cve": "CVE-2024-32660",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T039238",
          "T034365"
        ]
      },
      "release_date": "2024-04-23T22:00:00.000+00:00",
      "title": "CVE-2024-32660"
    },
    {
      "cve": "CVE-2024-32661",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T039238",
          "T034365"
        ]
      },
      "release_date": "2024-04-23T22:00:00.000+00:00",
      "title": "CVE-2024-32661"
    },
    {
      "cve": "CVE-2024-32662",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T039238",
          "T034365"
        ]
      },
      "release_date": "2024-04-23T22:00:00.000+00:00",
      "title": "CVE-2024-32662"
    }
  ]
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2024-32662 (GCVE-0-2024-32662)

BDU:2024-03395

FKIE_CVE-2024-32662

GSD-2024-32662

RHSA-2024:9092

RHSA-2024_9092

WID-SEC-W-2024-0954

Tags

Sightings

Nomenclature