Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2026-31884 (GCVE-0-2026-31884)
Vulnerability from cvelistv5 – Published: 2026-03-13 17:36 – Updated: 2026-03-16 15:33
VLAI?
EPSS
Title
FreeRDP has a division-by-zero in ADPCM decoders when `nBlockAlign` is 0
Summary
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, division by zero in MS-ADPCM and IMA-ADPCM decoders when nBlockAlign is 0, leading to a crash. In libfreerdp/codec/dsp.c, both ADPCM decoders use size % block_size where block_size = context->common.format.nBlockAlign. The nBlockAlign value comes from the Server Audio Formats PDU on the RDPSND channel. The value 0 is not validated anywhere before reaching the decoder. When nBlockAlign = 0, the modulo operation causes a SIGFPE (floating point exception) crash. This vulnerability is fixed in 3.24.0.
Severity ?
6.5 (Medium)
CWE
- CWE-369 - Divide By Zero
Assigner
References
| URL | Tags | ||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2026-31884",
"options": [
{
"Exploitation": "poc"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-03-16T15:33:39.561333Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-03-16T15:33:42.352Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"references": [
{
"tags": [
"exploit"
],
"url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-jp7m-94ww-p56r"
}
],
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"product": "FreeRDP",
"vendor": "FreeRDP",
"versions": [
{
"status": "affected",
"version": "\u003c 3.24.0"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, division by zero in MS-ADPCM and IMA-ADPCM decoders when nBlockAlign is 0, leading to a crash. In libfreerdp/codec/dsp.c, both ADPCM decoders use size % block_size where block_size = context-\u003ecommon.format.nBlockAlign. The nBlockAlign value comes from the Server Audio Formats PDU on the RDPSND channel. The value 0 is not validated anywhere before reaching the decoder. When nBlockAlign = 0, the modulo operation causes a SIGFPE (floating point exception) crash. This vulnerability is fixed in 3.24.0."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-369",
"description": "CWE-369: Divide By Zero",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-03-13T17:36:57.722Z",
"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"shortName": "GitHub_M"
},
"references": [
{
"name": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-jp7m-94ww-p56r",
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-jp7m-94ww-p56r"
},
{
"name": "https://github.com/FreeRDP/FreeRDP/commit/03b48b3601d867afccac1cdc6081de7a275edce7",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/FreeRDP/FreeRDP/commit/03b48b3601d867afccac1cdc6081de7a275edce7"
},
{
"name": "https://github.com/FreeRDP/FreeRDP/commit/16df2300e1e3f5a51f68fb1626429e58b531b7c8",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/FreeRDP/FreeRDP/commit/16df2300e1e3f5a51f68fb1626429e58b531b7c8"
}
],
"source": {
"advisory": "GHSA-jp7m-94ww-p56r",
"discovery": "UNKNOWN"
},
"title": "FreeRDP has a division-by-zero in ADPCM decoders when `nBlockAlign` is 0"
}
},
"cveMetadata": {
"assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"assignerShortName": "GitHub_M",
"cveId": "CVE-2026-31884",
"datePublished": "2026-03-13T17:36:57.722Z",
"dateReserved": "2026-03-09T21:59:02.686Z",
"dateUpdated": "2026-03-16T15:33:42.352Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2026-31884",
"date": "2026-05-05",
"epss": "0.00046",
"percentile": "0.1389"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2026-31884\",\"sourceIdentifier\":\"security-advisories@github.com\",\"published\":\"2026-03-13T19:54:37.373\",\"lastModified\":\"2026-03-17T14:25:10.510\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, division by zero in MS-ADPCM and IMA-ADPCM decoders when nBlockAlign is 0, leading to a crash. In libfreerdp/codec/dsp.c, both ADPCM decoders use size % block_size where block_size = context-\u003ecommon.format.nBlockAlign. The nBlockAlign value comes from the Server Audio Formats PDU on the RDPSND channel. The value 0 is not validated anywhere before reaching the decoder. When nBlockAlign = 0, the modulo operation causes a SIGFPE (floating point exception) crash. This vulnerability is fixed in 3.24.0.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H\",\"baseScore\":6.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"REQUIRED\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":2.8,\"impactScore\":3.6},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6}]},\"weaknesses\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-369\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:freerdp:freerdp:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"3.24.0\",\"matchCriteriaId\":\"97FCA262-35C3-4B6B-A321-15CE780FCA20\"}]}]}],\"references\":[{\"url\":\"https://github.com/FreeRDP/FreeRDP/commit/03b48b3601d867afccac1cdc6081de7a275edce7\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Patch\"]},{\"url\":\"https://github.com/FreeRDP/FreeRDP/commit/16df2300e1e3f5a51f68fb1626429e58b531b7c8\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Patch\"]},{\"url\":\"https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-jp7m-94ww-p56r\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Exploit\",\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-jp7m-94ww-p56r\",\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"tags\":[\"Exploit\",\"Patch\",\"Vendor Advisory\"]}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2026-31884\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"poc\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2026-03-16T15:33:39.561333Z\"}}}], \"references\": [{\"url\": \"https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-jp7m-94ww-p56r\", \"tags\": [\"exploit\"]}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2026-03-16T15:33:33.590Z\"}}], \"cna\": {\"title\": \"FreeRDP has a division-by-zero in ADPCM decoders when `nBlockAlign` is 0\", \"source\": {\"advisory\": \"GHSA-jp7m-94ww-p56r\", \"discovery\": \"UNKNOWN\"}, \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 6.5, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"MEDIUM\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"REQUIRED\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"NONE\"}}], \"affected\": [{\"vendor\": \"FreeRDP\", \"product\": \"FreeRDP\", \"versions\": [{\"status\": \"affected\", \"version\": \"\u003c 3.24.0\"}]}], \"references\": [{\"url\": \"https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-jp7m-94ww-p56r\", \"name\": \"https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-jp7m-94ww-p56r\", \"tags\": [\"x_refsource_CONFIRM\"]}, {\"url\": \"https://github.com/FreeRDP/FreeRDP/commit/03b48b3601d867afccac1cdc6081de7a275edce7\", \"name\": \"https://github.com/FreeRDP/FreeRDP/commit/03b48b3601d867afccac1cdc6081de7a275edce7\", \"tags\": [\"x_refsource_MISC\"]}, {\"url\": \"https://github.com/FreeRDP/FreeRDP/commit/16df2300e1e3f5a51f68fb1626429e58b531b7c8\", \"name\": \"https://github.com/FreeRDP/FreeRDP/commit/16df2300e1e3f5a51f68fb1626429e58b531b7c8\", \"tags\": [\"x_refsource_MISC\"]}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, division by zero in MS-ADPCM and IMA-ADPCM decoders when nBlockAlign is 0, leading to a crash. In libfreerdp/codec/dsp.c, both ADPCM decoders use size % block_size where block_size = context-\u003ecommon.format.nBlockAlign. The nBlockAlign value comes from the Server Audio Formats PDU on the RDPSND channel. The value 0 is not validated anywhere before reaching the decoder. When nBlockAlign = 0, the modulo operation causes a SIGFPE (floating point exception) crash. This vulnerability is fixed in 3.24.0.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-369\", \"description\": \"CWE-369: Divide By Zero\"}]}], \"providerMetadata\": {\"orgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"shortName\": \"GitHub_M\", \"dateUpdated\": \"2026-03-13T17:36:57.722Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2026-31884\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2026-03-16T15:33:42.352Z\", \"dateReserved\": \"2026-03-09T21:59:02.686Z\", \"assignerOrgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"datePublished\": \"2026-03-13T17:36:57.722Z\", \"assignerShortName\": \"GitHub_M\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
}
}
FKIE_CVE-2026-31884
Vulnerability from fkie_nvd - Published: 2026-03-13 19:54 - Updated: 2026-03-17 14:25
Severity ?
6.5 (Medium) - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
7.5 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
7.5 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Summary
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, division by zero in MS-ADPCM and IMA-ADPCM decoders when nBlockAlign is 0, leading to a crash. In libfreerdp/codec/dsp.c, both ADPCM decoders use size % block_size where block_size = context->common.format.nBlockAlign. The nBlockAlign value comes from the Server Audio Formats PDU on the RDPSND channel. The value 0 is not validated anywhere before reaching the decoder. When nBlockAlign = 0, the modulo operation causes a SIGFPE (floating point exception) crash. This vulnerability is fixed in 3.24.0.
References
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:freerdp:freerdp:*:*:*:*:*:*:*:*",
"matchCriteriaId": "97FCA262-35C3-4B6B-A321-15CE780FCA20",
"versionEndExcluding": "3.24.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, division by zero in MS-ADPCM and IMA-ADPCM decoders when nBlockAlign is 0, leading to a crash. In libfreerdp/codec/dsp.c, both ADPCM decoders use size % block_size where block_size = context-\u003ecommon.format.nBlockAlign. The nBlockAlign value comes from the Server Audio Formats PDU on the RDPSND channel. The value 0 is not validated anywhere before reaching the decoder. When nBlockAlign = 0, the modulo operation causes a SIGFPE (floating point exception) crash. This vulnerability is fixed in 3.24.0."
},
{
"lang": "es",
"value": "FreeRDP es una implementaci\u00f3n gratuita del Protocolo de Escritorio Remoto. Antes de la versi\u00f3n 3.24.0, divisi\u00f3n por cero en los decodificadores MS-ADPCM e IMA-ADPCM cuando nBlockAlign es 0, lo que lleva a un fallo. En libfreerdp/codec/dsp.c, ambos decodificadores ADPCM usan size % block_size donde block_size = context-\u0026gt;common.format.nBlockAlign. El valor nBlockAlign proviene de la PDU de Formatos de Audio del Servidor en el canal RDPSND. El valor 0 no se valida en ning\u00fan lugar antes de llegar al decodificador. Cuando nBlockAlign = 0, la operaci\u00f3n de m\u00f3dulo causa un fallo SIGFPE (excepci\u00f3n de coma flotante). Esta vulnerabilidad se corrige en la versi\u00f3n 3.24.0."
}
],
"id": "CVE-2026-31884",
"lastModified": "2026-03-17T14:25:10.510",
"metrics": {
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"exploitabilityScore": 2.8,
"impactScore": 3.6,
"source": "security-advisories@github.com",
"type": "Secondary"
},
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2026-03-13T19:54:37.373",
"references": [
{
"source": "security-advisories@github.com",
"tags": [
"Patch"
],
"url": "https://github.com/FreeRDP/FreeRDP/commit/03b48b3601d867afccac1cdc6081de7a275edce7"
},
{
"source": "security-advisories@github.com",
"tags": [
"Patch"
],
"url": "https://github.com/FreeRDP/FreeRDP/commit/16df2300e1e3f5a51f68fb1626429e58b531b7c8"
},
{
"source": "security-advisories@github.com",
"tags": [
"Exploit",
"Patch",
"Vendor Advisory"
],
"url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-jp7m-94ww-p56r"
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"tags": [
"Exploit",
"Patch",
"Vendor Advisory"
],
"url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-jp7m-94ww-p56r"
}
],
"sourceIdentifier": "security-advisories@github.com",
"vulnStatus": "Analyzed",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-369"
}
],
"source": "security-advisories@github.com",
"type": "Secondary"
}
]
}
OPENSUSE-SU-2026:10408-1
Vulnerability from csaf_opensuse - Published: 2026-03-23 00:00 - Updated: 2026-03-23 00:00Summary
freerdp-3.24.1-1.1 on GA media
Severity
Moderate
Notes
Title of the patch: freerdp-3.24.1-1.1 on GA media
Description of the patch: These are all security issues fixed in the freerdp-3.24.1-1.1 package on the GA media of openSUSE Tumbleweed.
Patchnames: openSUSE-Tumbleweed-2026-10408
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
4.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
8.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
8.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
8.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.3 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.1 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
References
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "freerdp-3.24.1-1.1 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the freerdp-3.24.1-1.1 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2026-10408",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2026_10408-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-25941 page",
"url": "https://www.suse.com/security/cve/CVE-2026-25941/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-25942 page",
"url": "https://www.suse.com/security/cve/CVE-2026-25942/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-25952 page",
"url": "https://www.suse.com/security/cve/CVE-2026-25952/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-25953 page",
"url": "https://www.suse.com/security/cve/CVE-2026-25953/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-25954 page",
"url": "https://www.suse.com/security/cve/CVE-2026-25954/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-25955 page",
"url": "https://www.suse.com/security/cve/CVE-2026-25955/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-25959 page",
"url": "https://www.suse.com/security/cve/CVE-2026-25959/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-25997 page",
"url": "https://www.suse.com/security/cve/CVE-2026-25997/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-26271 page",
"url": "https://www.suse.com/security/cve/CVE-2026-26271/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-26955 page",
"url": "https://www.suse.com/security/cve/CVE-2026-26955/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-26965 page",
"url": "https://www.suse.com/security/cve/CVE-2026-26965/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-29774 page",
"url": "https://www.suse.com/security/cve/CVE-2026-29774/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-29775 page",
"url": "https://www.suse.com/security/cve/CVE-2026-29775/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-29776 page",
"url": "https://www.suse.com/security/cve/CVE-2026-29776/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-31806 page",
"url": "https://www.suse.com/security/cve/CVE-2026-31806/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-31883 page",
"url": "https://www.suse.com/security/cve/CVE-2026-31883/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-31884 page",
"url": "https://www.suse.com/security/cve/CVE-2026-31884/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-31885 page",
"url": "https://www.suse.com/security/cve/CVE-2026-31885/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-31897 page",
"url": "https://www.suse.com/security/cve/CVE-2026-31897/"
}
],
"title": "freerdp-3.24.1-1.1 on GA media",
"tracking": {
"current_release_date": "2026-03-23T00:00:00Z",
"generator": {
"date": "2026-03-23T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2026:10408-1",
"initial_release_date": "2026-03-23T00:00:00Z",
"revision_history": [
{
"date": "2026-03-23T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "freerdp-3.24.1-1.1.aarch64",
"product": {
"name": "freerdp-3.24.1-1.1.aarch64",
"product_id": "freerdp-3.24.1-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "freerdp-devel-3.24.1-1.1.aarch64",
"product": {
"name": "freerdp-devel-3.24.1-1.1.aarch64",
"product_id": "freerdp-devel-3.24.1-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-3.24.1-1.1.aarch64",
"product": {
"name": "freerdp-proxy-3.24.1-1.1.aarch64",
"product_id": "freerdp-proxy-3.24.1-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-plugins-3.24.1-1.1.aarch64",
"product": {
"name": "freerdp-proxy-plugins-3.24.1-1.1.aarch64",
"product_id": "freerdp-proxy-plugins-3.24.1-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "freerdp-sdl-3.24.1-1.1.aarch64",
"product": {
"name": "freerdp-sdl-3.24.1-1.1.aarch64",
"product_id": "freerdp-sdl-3.24.1-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "freerdp-server-3.24.1-1.1.aarch64",
"product": {
"name": "freerdp-server-3.24.1-1.1.aarch64",
"product_id": "freerdp-server-3.24.1-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "freerdp-wayland-3.24.1-1.1.aarch64",
"product": {
"name": "freerdp-wayland-3.24.1-1.1.aarch64",
"product_id": "freerdp-wayland-3.24.1-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "libfreerdp-server-proxy3-3-3.24.1-1.1.aarch64",
"product": {
"name": "libfreerdp-server-proxy3-3-3.24.1-1.1.aarch64",
"product_id": "libfreerdp-server-proxy3-3-3.24.1-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "libfreerdp3-3-3.24.1-1.1.aarch64",
"product": {
"name": "libfreerdp3-3-3.24.1-1.1.aarch64",
"product_id": "libfreerdp3-3-3.24.1-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "librdtk0-0-3.24.1-1.1.aarch64",
"product": {
"name": "librdtk0-0-3.24.1-1.1.aarch64",
"product_id": "librdtk0-0-3.24.1-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "libuwac0-0-3.24.1-1.1.aarch64",
"product": {
"name": "libuwac0-0-3.24.1-1.1.aarch64",
"product_id": "libuwac0-0-3.24.1-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "libwinpr3-3-3.24.1-1.1.aarch64",
"product": {
"name": "libwinpr3-3-3.24.1-1.1.aarch64",
"product_id": "libwinpr3-3-3.24.1-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "rdtk0-devel-3.24.1-1.1.aarch64",
"product": {
"name": "rdtk0-devel-3.24.1-1.1.aarch64",
"product_id": "rdtk0-devel-3.24.1-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "uwac0-devel-3.24.1-1.1.aarch64",
"product": {
"name": "uwac0-devel-3.24.1-1.1.aarch64",
"product_id": "uwac0-devel-3.24.1-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "winpr-devel-3.24.1-1.1.aarch64",
"product": {
"name": "winpr-devel-3.24.1-1.1.aarch64",
"product_id": "winpr-devel-3.24.1-1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "freerdp-3.24.1-1.1.ppc64le",
"product": {
"name": "freerdp-3.24.1-1.1.ppc64le",
"product_id": "freerdp-3.24.1-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "freerdp-devel-3.24.1-1.1.ppc64le",
"product": {
"name": "freerdp-devel-3.24.1-1.1.ppc64le",
"product_id": "freerdp-devel-3.24.1-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-3.24.1-1.1.ppc64le",
"product": {
"name": "freerdp-proxy-3.24.1-1.1.ppc64le",
"product_id": "freerdp-proxy-3.24.1-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-plugins-3.24.1-1.1.ppc64le",
"product": {
"name": "freerdp-proxy-plugins-3.24.1-1.1.ppc64le",
"product_id": "freerdp-proxy-plugins-3.24.1-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "freerdp-sdl-3.24.1-1.1.ppc64le",
"product": {
"name": "freerdp-sdl-3.24.1-1.1.ppc64le",
"product_id": "freerdp-sdl-3.24.1-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "freerdp-server-3.24.1-1.1.ppc64le",
"product": {
"name": "freerdp-server-3.24.1-1.1.ppc64le",
"product_id": "freerdp-server-3.24.1-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "freerdp-wayland-3.24.1-1.1.ppc64le",
"product": {
"name": "freerdp-wayland-3.24.1-1.1.ppc64le",
"product_id": "freerdp-wayland-3.24.1-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libfreerdp-server-proxy3-3-3.24.1-1.1.ppc64le",
"product": {
"name": "libfreerdp-server-proxy3-3-3.24.1-1.1.ppc64le",
"product_id": "libfreerdp-server-proxy3-3-3.24.1-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libfreerdp3-3-3.24.1-1.1.ppc64le",
"product": {
"name": "libfreerdp3-3-3.24.1-1.1.ppc64le",
"product_id": "libfreerdp3-3-3.24.1-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "librdtk0-0-3.24.1-1.1.ppc64le",
"product": {
"name": "librdtk0-0-3.24.1-1.1.ppc64le",
"product_id": "librdtk0-0-3.24.1-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libuwac0-0-3.24.1-1.1.ppc64le",
"product": {
"name": "libuwac0-0-3.24.1-1.1.ppc64le",
"product_id": "libuwac0-0-3.24.1-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libwinpr3-3-3.24.1-1.1.ppc64le",
"product": {
"name": "libwinpr3-3-3.24.1-1.1.ppc64le",
"product_id": "libwinpr3-3-3.24.1-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "rdtk0-devel-3.24.1-1.1.ppc64le",
"product": {
"name": "rdtk0-devel-3.24.1-1.1.ppc64le",
"product_id": "rdtk0-devel-3.24.1-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "uwac0-devel-3.24.1-1.1.ppc64le",
"product": {
"name": "uwac0-devel-3.24.1-1.1.ppc64le",
"product_id": "uwac0-devel-3.24.1-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "winpr-devel-3.24.1-1.1.ppc64le",
"product": {
"name": "winpr-devel-3.24.1-1.1.ppc64le",
"product_id": "winpr-devel-3.24.1-1.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "freerdp-3.24.1-1.1.s390x",
"product": {
"name": "freerdp-3.24.1-1.1.s390x",
"product_id": "freerdp-3.24.1-1.1.s390x"
}
},
{
"category": "product_version",
"name": "freerdp-devel-3.24.1-1.1.s390x",
"product": {
"name": "freerdp-devel-3.24.1-1.1.s390x",
"product_id": "freerdp-devel-3.24.1-1.1.s390x"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-3.24.1-1.1.s390x",
"product": {
"name": "freerdp-proxy-3.24.1-1.1.s390x",
"product_id": "freerdp-proxy-3.24.1-1.1.s390x"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-plugins-3.24.1-1.1.s390x",
"product": {
"name": "freerdp-proxy-plugins-3.24.1-1.1.s390x",
"product_id": "freerdp-proxy-plugins-3.24.1-1.1.s390x"
}
},
{
"category": "product_version",
"name": "freerdp-sdl-3.24.1-1.1.s390x",
"product": {
"name": "freerdp-sdl-3.24.1-1.1.s390x",
"product_id": "freerdp-sdl-3.24.1-1.1.s390x"
}
},
{
"category": "product_version",
"name": "freerdp-server-3.24.1-1.1.s390x",
"product": {
"name": "freerdp-server-3.24.1-1.1.s390x",
"product_id": "freerdp-server-3.24.1-1.1.s390x"
}
},
{
"category": "product_version",
"name": "freerdp-wayland-3.24.1-1.1.s390x",
"product": {
"name": "freerdp-wayland-3.24.1-1.1.s390x",
"product_id": "freerdp-wayland-3.24.1-1.1.s390x"
}
},
{
"category": "product_version",
"name": "libfreerdp-server-proxy3-3-3.24.1-1.1.s390x",
"product": {
"name": "libfreerdp-server-proxy3-3-3.24.1-1.1.s390x",
"product_id": "libfreerdp-server-proxy3-3-3.24.1-1.1.s390x"
}
},
{
"category": "product_version",
"name": "libfreerdp3-3-3.24.1-1.1.s390x",
"product": {
"name": "libfreerdp3-3-3.24.1-1.1.s390x",
"product_id": "libfreerdp3-3-3.24.1-1.1.s390x"
}
},
{
"category": "product_version",
"name": "librdtk0-0-3.24.1-1.1.s390x",
"product": {
"name": "librdtk0-0-3.24.1-1.1.s390x",
"product_id": "librdtk0-0-3.24.1-1.1.s390x"
}
},
{
"category": "product_version",
"name": "libuwac0-0-3.24.1-1.1.s390x",
"product": {
"name": "libuwac0-0-3.24.1-1.1.s390x",
"product_id": "libuwac0-0-3.24.1-1.1.s390x"
}
},
{
"category": "product_version",
"name": "libwinpr3-3-3.24.1-1.1.s390x",
"product": {
"name": "libwinpr3-3-3.24.1-1.1.s390x",
"product_id": "libwinpr3-3-3.24.1-1.1.s390x"
}
},
{
"category": "product_version",
"name": "rdtk0-devel-3.24.1-1.1.s390x",
"product": {
"name": "rdtk0-devel-3.24.1-1.1.s390x",
"product_id": "rdtk0-devel-3.24.1-1.1.s390x"
}
},
{
"category": "product_version",
"name": "uwac0-devel-3.24.1-1.1.s390x",
"product": {
"name": "uwac0-devel-3.24.1-1.1.s390x",
"product_id": "uwac0-devel-3.24.1-1.1.s390x"
}
},
{
"category": "product_version",
"name": "winpr-devel-3.24.1-1.1.s390x",
"product": {
"name": "winpr-devel-3.24.1-1.1.s390x",
"product_id": "winpr-devel-3.24.1-1.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "freerdp-3.24.1-1.1.x86_64",
"product": {
"name": "freerdp-3.24.1-1.1.x86_64",
"product_id": "freerdp-3.24.1-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "freerdp-devel-3.24.1-1.1.x86_64",
"product": {
"name": "freerdp-devel-3.24.1-1.1.x86_64",
"product_id": "freerdp-devel-3.24.1-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-3.24.1-1.1.x86_64",
"product": {
"name": "freerdp-proxy-3.24.1-1.1.x86_64",
"product_id": "freerdp-proxy-3.24.1-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-plugins-3.24.1-1.1.x86_64",
"product": {
"name": "freerdp-proxy-plugins-3.24.1-1.1.x86_64",
"product_id": "freerdp-proxy-plugins-3.24.1-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "freerdp-sdl-3.24.1-1.1.x86_64",
"product": {
"name": "freerdp-sdl-3.24.1-1.1.x86_64",
"product_id": "freerdp-sdl-3.24.1-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "freerdp-server-3.24.1-1.1.x86_64",
"product": {
"name": "freerdp-server-3.24.1-1.1.x86_64",
"product_id": "freerdp-server-3.24.1-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "freerdp-wayland-3.24.1-1.1.x86_64",
"product": {
"name": "freerdp-wayland-3.24.1-1.1.x86_64",
"product_id": "freerdp-wayland-3.24.1-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "libfreerdp-server-proxy3-3-3.24.1-1.1.x86_64",
"product": {
"name": "libfreerdp-server-proxy3-3-3.24.1-1.1.x86_64",
"product_id": "libfreerdp-server-proxy3-3-3.24.1-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "libfreerdp3-3-3.24.1-1.1.x86_64",
"product": {
"name": "libfreerdp3-3-3.24.1-1.1.x86_64",
"product_id": "libfreerdp3-3-3.24.1-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "librdtk0-0-3.24.1-1.1.x86_64",
"product": {
"name": "librdtk0-0-3.24.1-1.1.x86_64",
"product_id": "librdtk0-0-3.24.1-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "libuwac0-0-3.24.1-1.1.x86_64",
"product": {
"name": "libuwac0-0-3.24.1-1.1.x86_64",
"product_id": "libuwac0-0-3.24.1-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "libwinpr3-3-3.24.1-1.1.x86_64",
"product": {
"name": "libwinpr3-3-3.24.1-1.1.x86_64",
"product_id": "libwinpr3-3-3.24.1-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "rdtk0-devel-3.24.1-1.1.x86_64",
"product": {
"name": "rdtk0-devel-3.24.1-1.1.x86_64",
"product_id": "rdtk0-devel-3.24.1-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "uwac0-devel-3.24.1-1.1.x86_64",
"product": {
"name": "uwac0-devel-3.24.1-1.1.x86_64",
"product_id": "uwac0-devel-3.24.1-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "winpr-devel-3.24.1-1.1.x86_64",
"product": {
"name": "winpr-devel-3.24.1-1.1.x86_64",
"product_id": "winpr-devel-3.24.1-1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-3.24.1-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-3.24.1-1.1.aarch64"
},
"product_reference": "freerdp-3.24.1-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-3.24.1-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-3.24.1-1.1.ppc64le"
},
"product_reference": "freerdp-3.24.1-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-3.24.1-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-3.24.1-1.1.s390x"
},
"product_reference": "freerdp-3.24.1-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-3.24.1-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-3.24.1-1.1.x86_64"
},
"product_reference": "freerdp-3.24.1-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-devel-3.24.1-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.aarch64"
},
"product_reference": "freerdp-devel-3.24.1-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-devel-3.24.1-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.ppc64le"
},
"product_reference": "freerdp-devel-3.24.1-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-devel-3.24.1-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.s390x"
},
"product_reference": "freerdp-devel-3.24.1-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-devel-3.24.1-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.x86_64"
},
"product_reference": "freerdp-devel-3.24.1-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-proxy-3.24.1-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.aarch64"
},
"product_reference": "freerdp-proxy-3.24.1-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-proxy-3.24.1-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.ppc64le"
},
"product_reference": "freerdp-proxy-3.24.1-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-proxy-3.24.1-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.s390x"
},
"product_reference": "freerdp-proxy-3.24.1-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-proxy-3.24.1-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.x86_64"
},
"product_reference": "freerdp-proxy-3.24.1-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-proxy-plugins-3.24.1-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.aarch64"
},
"product_reference": "freerdp-proxy-plugins-3.24.1-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-proxy-plugins-3.24.1-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.ppc64le"
},
"product_reference": "freerdp-proxy-plugins-3.24.1-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-proxy-plugins-3.24.1-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.s390x"
},
"product_reference": "freerdp-proxy-plugins-3.24.1-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-proxy-plugins-3.24.1-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.x86_64"
},
"product_reference": "freerdp-proxy-plugins-3.24.1-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-sdl-3.24.1-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.aarch64"
},
"product_reference": "freerdp-sdl-3.24.1-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-sdl-3.24.1-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.ppc64le"
},
"product_reference": "freerdp-sdl-3.24.1-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-sdl-3.24.1-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.s390x"
},
"product_reference": "freerdp-sdl-3.24.1-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-sdl-3.24.1-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.x86_64"
},
"product_reference": "freerdp-sdl-3.24.1-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-server-3.24.1-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.aarch64"
},
"product_reference": "freerdp-server-3.24.1-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-server-3.24.1-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.ppc64le"
},
"product_reference": "freerdp-server-3.24.1-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-server-3.24.1-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.s390x"
},
"product_reference": "freerdp-server-3.24.1-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-server-3.24.1-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.x86_64"
},
"product_reference": "freerdp-server-3.24.1-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-wayland-3.24.1-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.aarch64"
},
"product_reference": "freerdp-wayland-3.24.1-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-wayland-3.24.1-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.ppc64le"
},
"product_reference": "freerdp-wayland-3.24.1-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-wayland-3.24.1-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.s390x"
},
"product_reference": "freerdp-wayland-3.24.1-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-wayland-3.24.1-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.x86_64"
},
"product_reference": "freerdp-wayland-3.24.1-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp-server-proxy3-3-3.24.1-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.aarch64"
},
"product_reference": "libfreerdp-server-proxy3-3-3.24.1-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp-server-proxy3-3-3.24.1-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.ppc64le"
},
"product_reference": "libfreerdp-server-proxy3-3-3.24.1-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp-server-proxy3-3-3.24.1-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.s390x"
},
"product_reference": "libfreerdp-server-proxy3-3-3.24.1-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp-server-proxy3-3-3.24.1-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.x86_64"
},
"product_reference": "libfreerdp-server-proxy3-3-3.24.1-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp3-3-3.24.1-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.aarch64"
},
"product_reference": "libfreerdp3-3-3.24.1-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp3-3-3.24.1-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.ppc64le"
},
"product_reference": "libfreerdp3-3-3.24.1-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp3-3-3.24.1-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.s390x"
},
"product_reference": "libfreerdp3-3-3.24.1-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp3-3-3.24.1-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.x86_64"
},
"product_reference": "libfreerdp3-3-3.24.1-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "librdtk0-0-3.24.1-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.aarch64"
},
"product_reference": "librdtk0-0-3.24.1-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "librdtk0-0-3.24.1-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.ppc64le"
},
"product_reference": "librdtk0-0-3.24.1-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "librdtk0-0-3.24.1-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.s390x"
},
"product_reference": "librdtk0-0-3.24.1-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "librdtk0-0-3.24.1-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.x86_64"
},
"product_reference": "librdtk0-0-3.24.1-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libuwac0-0-3.24.1-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.aarch64"
},
"product_reference": "libuwac0-0-3.24.1-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libuwac0-0-3.24.1-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.ppc64le"
},
"product_reference": "libuwac0-0-3.24.1-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libuwac0-0-3.24.1-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.s390x"
},
"product_reference": "libuwac0-0-3.24.1-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libuwac0-0-3.24.1-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.x86_64"
},
"product_reference": "libuwac0-0-3.24.1-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr3-3-3.24.1-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.aarch64"
},
"product_reference": "libwinpr3-3-3.24.1-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr3-3-3.24.1-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.ppc64le"
},
"product_reference": "libwinpr3-3-3.24.1-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr3-3-3.24.1-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.s390x"
},
"product_reference": "libwinpr3-3-3.24.1-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr3-3-3.24.1-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.x86_64"
},
"product_reference": "libwinpr3-3-3.24.1-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rdtk0-devel-3.24.1-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.aarch64"
},
"product_reference": "rdtk0-devel-3.24.1-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rdtk0-devel-3.24.1-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.ppc64le"
},
"product_reference": "rdtk0-devel-3.24.1-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rdtk0-devel-3.24.1-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.s390x"
},
"product_reference": "rdtk0-devel-3.24.1-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rdtk0-devel-3.24.1-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.x86_64"
},
"product_reference": "rdtk0-devel-3.24.1-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "uwac0-devel-3.24.1-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.aarch64"
},
"product_reference": "uwac0-devel-3.24.1-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "uwac0-devel-3.24.1-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.ppc64le"
},
"product_reference": "uwac0-devel-3.24.1-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "uwac0-devel-3.24.1-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.s390x"
},
"product_reference": "uwac0-devel-3.24.1-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "uwac0-devel-3.24.1-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.x86_64"
},
"product_reference": "uwac0-devel-3.24.1-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "winpr-devel-3.24.1-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.aarch64"
},
"product_reference": "winpr-devel-3.24.1-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "winpr-devel-3.24.1-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.ppc64le"
},
"product_reference": "winpr-devel-3.24.1-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "winpr-devel-3.24.1-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.s390x"
},
"product_reference": "winpr-devel-3.24.1-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "winpr-devel-3.24.1-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.x86_64"
},
"product_reference": "winpr-devel-3.24.1-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-25941",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-25941"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Versions on the 2.x branch prior to to 2.11.8 and on the 3.x branch prior to 3.23.0 have an out-of-bounds read vulnerability in the FreeRDP client\u0027s RDPGFX channel that allows a malicious RDP server to read uninitialized heap memory by sending a crafted WIRE_TO_SURFACE_2 PDU with a `bitmapDataLength` value larger than the actual data in the packet. This can lead to information disclosure or client crashes when a user connects to a malicious server. Versions 2.11.8 and 3.23.0 fix the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-25941",
"url": "https://www.suse.com/security/cve/CVE-2026-25941"
},
{
"category": "external",
"summary": "SUSE Bug 1258919 for CVE-2026-25941",
"url": "https://bugzilla.suse.com/1258919"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-23T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2026-25941"
},
{
"cve": "CVE-2026-25942",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-25942"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `xf_rail_server_execute_result` indexes the global `error_code_names[]` array (7 elements, indices 0-6) with an unchecked `execResult-\u003eexecResult` value received from the server, allowing an out-of-bounds read when the server sends an `execResult` value of 7 or greater. Version 3.23.0 fixes the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-25942",
"url": "https://www.suse.com/security/cve/CVE-2026-25942"
},
{
"category": "external",
"summary": "SUSE Bug 1258920 for CVE-2026-25942",
"url": "https://bugzilla.suse.com/1258920"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-23T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2026-25942"
},
{
"cve": "CVE-2026-25952",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-25952"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `xf_SetWindowMinMaxInfo` dereferences a freed `xfAppWindow` pointer because `xf_rail_get_window` in `xf_rail_server_min_max_info` returns an unprotected pointer from the `railWindows` hash table, and the main thread can concurrently delete the window (via a window delete order) while the RAIL channel thread is still using the pointer. Version 3.23.0 fixes the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-25952",
"url": "https://www.suse.com/security/cve/CVE-2026-25952"
},
{
"category": "external",
"summary": "SUSE Bug 1258921 for CVE-2026-25952",
"url": "https://bugzilla.suse.com/1258921"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-23T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2026-25952"
},
{
"cve": "CVE-2026-25953",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-25953"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `xf_AppUpdateWindowFromSurface` reads from a freed `xfAppWindow` because the RDPGFX DVC thread obtains a bare pointer via `xf_rail_get_window` without any lifetime protection, while the main thread can concurrently delete the window through a fastpath window-delete order. Version 3.23.0 fixes the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-25953",
"url": "https://www.suse.com/security/cve/CVE-2026-25953"
},
{
"category": "external",
"summary": "SUSE Bug 1258923 for CVE-2026-25953",
"url": "https://bugzilla.suse.com/1258923"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-23T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2026-25953"
},
{
"cve": "CVE-2026-25954",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-25954"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `xf_rail_server_local_move_size` dereferences a freed `xfAppWindow` pointer because `xf_rail_get_window` returns an unprotected pointer from the `railWindows` hash table, and the main thread can concurrently delete the window (via a window delete order) while the RAIL channel thread is still using the pointer. Version 3.23.0 fixes the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-25954",
"url": "https://www.suse.com/security/cve/CVE-2026-25954"
},
{
"category": "external",
"summary": "SUSE Bug 1258924 for CVE-2026-25954",
"url": "https://bugzilla.suse.com/1258924"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-23T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2026-25954"
},
{
"cve": "CVE-2026-25955",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-25955"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `xf_AppUpdateWindowFromSurface` reuses a cached `XImage` whose `data` pointer references a freed RDPGFX surface buffer, because `gdi_DeleteSurface` frees `surface-\u003edata` without invalidating the `appWindow-\u003eimage` that aliases it. Version 3.23.0 fixes the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-25955",
"url": "https://www.suse.com/security/cve/CVE-2026-25955"
},
{
"category": "external",
"summary": "SUSE Bug 1258973 for CVE-2026-25955",
"url": "https://bugzilla.suse.com/1258973"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-23T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2026-25955"
},
{
"cve": "CVE-2026-25959",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-25959"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `xf_cliprdr_provide_data_` passes freed `pDstData` to `XChangeProperty` because the cliprdr channel thread calls `xf_cliprdr_server_format_data_response` which converts and uses the clipboard data without holding any lock, while the X11 event thread concurrently calls `xf_cliprdr_clear_cached_data` -\u003e `HashTable_Clear` which frees the same data via `xf_cached_data_free`, triggering a heap use after free. Version 3.23.0 fixes the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-25959",
"url": "https://www.suse.com/security/cve/CVE-2026-25959"
},
{
"category": "external",
"summary": "SUSE Bug 1258976 for CVE-2026-25959",
"url": "https://bugzilla.suse.com/1258976"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-23T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2026-25959"
},
{
"cve": "CVE-2026-25997",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-25997"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `xf_clipboard_format_equal` reads freed `lastSentFormats` memory because `xf_clipboard_formats_free` (called from the cliprdr channel thread during auto-reconnect) frees the array while the X11 event thread concurrently iterates it in `xf_clipboard_changed`, triggering a heap use after free. Version 3.23.0 fixes the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-25997",
"url": "https://www.suse.com/security/cve/CVE-2026-25997"
},
{
"category": "external",
"summary": "SUSE Bug 1258977 for CVE-2026-25997",
"url": "https://bugzilla.suse.com/1258977"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-23T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2026-25997"
},
{
"cve": "CVE-2026-26271",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-26271"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, a buffer overread in `freerdp_image_copy_from_icon_data()` (libfreerdp/codec/color.c) can be triggered by crafted RDP Window Icon (TS_ICON_INFO) data. The bug is reachable over the network when a client processes icon data from an RDP server (or from a man-in-the-middle). Version 3.23.0 fixes the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-26271",
"url": "https://www.suse.com/security/cve/CVE-2026-26271"
},
{
"category": "external",
"summary": "SUSE Bug 1258979 for CVE-2026-26271",
"url": "https://bugzilla.suse.com/1258979"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-23T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2026-26271"
},
{
"cve": "CVE-2026-26955",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-26955"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, a malicious RDP server can trigger a heap buffer overflow in FreeRDP clients using the GDI surface pipeline (e.g., `xfreerdp`) by sending an RDPGFX ClearCodec surface command with an out-of-bounds destination rectangle. The `gdi_SurfaceCommand_ClearCodec()` handler does not call `is_within_surface()` to validate the command rectangle against the destination surface dimensions, allowing attacker-controlled `cmd-\u003eleft`/`cmd-\u003etop` (and subcodec rectangle offsets) to reach image copy routines that write into `surface-\u003edata` without bounds enforcement. The OOB write corrupts an adjacent `gdiGfxSurface` struct\u0027s `codecs*` pointer with attacker-controlled pixel data, and corruption of `codecs*` is sufficient to reach an indirect function pointer call (`NSC_CONTEXT.decode` at `nsc.c:500`) on a subsequent codec command - full instruction pointer (RIP) control demonstrated in exploitability harness. Users should upgrade to version 3.23.0 to receive a patch.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-26955",
"url": "https://www.suse.com/security/cve/CVE-2026-26955"
},
{
"category": "external",
"summary": "SUSE Bug 1258982 for CVE-2026-26955",
"url": "https://bugzilla.suse.com/1258982"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-23T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2026-26955"
},
{
"cve": "CVE-2026-26965",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-26965"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, in the RLE planar decode path, `planar_decompress_plane_rle()` writes into `pDstData` at `((nYDst+y) * nDstStep) + (4*nXDst) + nChannel` without verifying that `(nYDst+nSrcHeight)` fits in the destination height or that `(nXDst+nSrcWidth)` fits in the destination stride. When `TempFormat != DstFormat`, `pDstData` becomes `planar-\u003epTempData` (sized for the desktop), while `nYDst` is only validated against the **surface** by `is_within_surface()`. A malicious RDP server can exploit this to perform a heap out-of-bounds write with attacker-controlled offset and pixel data on any connecting FreeRDP client. The OOB write reaches up to 132,096 bytes past the temp buffer end, and on the brk heap (desktop \u2264 128x128), an adjacent `NSC_CONTEXT` struct\u0027s `decode` function pointer is overwritten with attacker-controlled pixel data - control-flow-relevant corruption (function pointer overwritten) demonstrated under deterministic heap layout (`nsc-\u003edecode = 0xFF414141FF414141`). Version 3.23.0 fixes the vulnerability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-26965",
"url": "https://www.suse.com/security/cve/CVE-2026-26965"
},
{
"category": "external",
"summary": "SUSE Bug 1258985 for CVE-2026-26965",
"url": "https://bugzilla.suse.com/1258985"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-23T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2026-26965"
},
{
"cve": "CVE-2026-29774",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-29774"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, a client-side heap buffer overflow occurs in the FreeRDP client\u0027s AVC420/AVC444 YUV-to-RGB conversion path due to missing horizontal bounds validation of H.264 metablock regionRects coordinates. In yuv.c, the clamp() function (line 347) only validates top/bottom against the surface/YUV height, but never checks left/right against the surface width. When avc420_yuv_to_rgb (line 67) computes destination and source pointers using rect-\u003eleft, it performs unchecked pointer arithmetic that can reach far beyond the allocated surface buffer. A malicious server sends a WIRE_TO_SURFACE_PDU_1 with AVC420 codec containing a regionRects entry where left greatly exceeds the surface width (e.g., left=60000 on a 128px surface). The H.264 bitstream decodes successfully, then yuv420_process_work_callback calls avc420_yuv_to_rgb which computes pDstPoint = pDstData + rect-\u003etop * nDstStep + rect-\u003eleft * 4, writing 16-byte SSE vectors 1888+ bytes past the allocated heap region. This vulnerability is fixed in 3.24.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-29774",
"url": "https://www.suse.com/security/cve/CVE-2026-29774"
},
{
"category": "external",
"summary": "SUSE Bug 1259689 for CVE-2026-29774",
"url": "https://bugzilla.suse.com/1259689"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-23T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2026-29774"
},
{
"cve": "CVE-2026-29775",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-29775"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, a client-side heap out-of-bounds read/write occurs in FreeRDP\u0027s bitmap cache subsystem due to an off-by-one boundary check in bitmap_cache_put. A malicious server can send a CACHE_BITMAP_ORDER (Rev1) with cacheId equal to maxCells, bypassing the guard and accessing cells[] one element past the allocated array. This vulnerability is fixed in 3.24.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-29775",
"url": "https://www.suse.com/security/cve/CVE-2026-29775"
},
{
"category": "external",
"summary": "SUSE Bug 1259684 for CVE-2026-29775",
"url": "https://bugzilla.suse.com/1259684"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.7,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-23T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2026-29775"
},
{
"cve": "CVE-2026-29776",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-29776"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, Integer Underflow in update_read_cache_bitmap_order Function of FreeRDP\u0027s Core Library This vulnerability is fixed in 3.24.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-29776",
"url": "https://www.suse.com/security/cve/CVE-2026-29776"
},
{
"category": "external",
"summary": "SUSE Bug 1259692 for CVE-2026-29776",
"url": "https://bugzilla.suse.com/1259692"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.1,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-23T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2026-29776"
},
{
"cve": "CVE-2026-31806",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-31806"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, the gdi_surface_bits() function processes SURFACE_BITS_COMMAND messages sent by the RDP server. When the command is handled using NSCodec, the bmp.width and bmp.height values provided by the server are not properly validated against the actual desktop dimensions. A malicious RDP server can supply crafted bmp.width and bmp.height values that exceed the expected surface size. Because these values are used during bitmap decoding and memory operations without proper bounds checking, this can lead to a heap buffer overflow. Since the attacker can also control the associated pixel data transmitted by the server, the overflow may be exploitable to overwrite adjacent heap memory. This vulnerability is fixed in 3.24.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-31806",
"url": "https://www.suse.com/security/cve/CVE-2026-31806"
},
{
"category": "external",
"summary": "SUSE Bug 1259653 for CVE-2026-31806",
"url": "https://bugzilla.suse.com/1259653"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-23T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2026-31806"
},
{
"cve": "CVE-2026-31883",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-31883"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, a size_t underflow in the IMA-ADPCM and MS-ADPCM audio decoders leads to heap-buffer-overflow write via the RDPSND audio channel. In libfreerdp/codec/dsp.c, the IMA-ADPCM and MS-ADPCM decoders subtract block header sizes from a size_t variable without checking for underflow. When nBlockAlign (received from the server) is set such that size % block_size == 0 triggers the header parsing at a point where size is smaller than the header (4 or 8 bytes), the subtraction wraps size to ~SIZE_MAX. The while (size \u003e 0) loop then continues for an astronomical number of iterations. This vulnerability is fixed in 3.24.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-31883",
"url": "https://www.suse.com/security/cve/CVE-2026-31883"
},
{
"category": "external",
"summary": "SUSE Bug 1259679 for CVE-2026-31883",
"url": "https://bugzilla.suse.com/1259679"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-23T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2026-31883"
},
{
"cve": "CVE-2026-31884",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-31884"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, division by zero in MS-ADPCM and IMA-ADPCM decoders when nBlockAlign is 0, leading to a crash. In libfreerdp/codec/dsp.c, both ADPCM decoders use size % block_size where block_size = context-\u003ecommon.format.nBlockAlign. The nBlockAlign value comes from the Server Audio Formats PDU on the RDPSND channel. The value 0 is not validated anywhere before reaching the decoder. When nBlockAlign = 0, the modulo operation causes a SIGFPE (floating point exception) crash. This vulnerability is fixed in 3.24.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-31884",
"url": "https://www.suse.com/security/cve/CVE-2026-31884"
},
{
"category": "external",
"summary": "SUSE Bug 1259680 for CVE-2026-31884",
"url": "https://bugzilla.suse.com/1259680"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-23T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2026-31884"
},
{
"cve": "CVE-2026-31885",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-31885"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, there is an out-of-bounds read in MS-ADPCM and IMA-ADPCM decoders due to unchecked predictor and step_index values from input data. This vulnerability is fixed in 3.24.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-31885",
"url": "https://www.suse.com/security/cve/CVE-2026-31885"
},
{
"category": "external",
"summary": "SUSE Bug 1259686 for CVE-2026-31885",
"url": "https://bugzilla.suse.com/1259686"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-23T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2026-31885"
},
{
"cve": "CVE-2026-31897",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-31897"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, there is an out-of-bounds read in freerdp_bitmap_decompress_planar when SrcSize is 0. The function dereferences *srcp (which points to pSrcData) without first verifying that SrcSize \u003e= 1. When SrcSize is 0 and pSrcData is non-NULL, this reads one byte past the end of the source buffer. This vulnerability is fixed in 3.24.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-31897",
"url": "https://www.suse.com/security/cve/CVE-2026-31897"
},
{
"category": "external",
"summary": "SUSE Bug 1259693 for CVE-2026-31897",
"url": "https://bugzilla.suse.com/1259693"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.1,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-proxy-plugins-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-sdl-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-server-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:freerdp-wayland-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp-server-proxy3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libfreerdp3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:librdtk0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libuwac0-0-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:libwinpr3-3-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:rdtk0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:uwac0-devel-3.24.1-1.1.x86_64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.aarch64",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.ppc64le",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.s390x",
"openSUSE Tumbleweed:winpr-devel-3.24.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-23T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2026-31897"
}
]
}
SUSE-SU-2026:21436-1
Vulnerability from csaf_suse - Published: 2026-04-30 16:54 - Updated: 2026-04-30 16:54Summary
Security update for freerdp
Severity
Important
Notes
Title of the patch: Security update for freerdp
Description of the patch: This update for freerdp fixes the following issues:
Update to version 3.24.2.
Security issues fixed:
- CVE-2026-25941: out-of-bounds read in the FreeRDP client RDPGFX channel (bsc#1258919).
- CVE-2026-25942: buffer overflow of global array in `xf_rail_server_execute_result` (bsc#1258920).
- CVE-2026-25952: heap use-after-free in `xf_SetWindowMinMaxInfo` (bsc#1258921).
- CVE-2026-25953: heap use-after-free in `xf_AppUpdateWindowFromSurface` (bsc#1258923).
- CVE-2026-25954: heap use-after-free in `xf_rail_server_local_move_size` (bsc#1258924).
- CVE-2026-25955: heap use-after-free in `xf_AppUpdateWindowFromSurface` (bsc#1258973).
- CVE-2026-25959: heap use-after-free in `xf_cliprdr_provide_data_` (bsc#1258976).
- CVE-2026-25997: heap use-after-free in `xf_clipboard_format_equal` (bsc#1258977).
- CVE-2026-26271: buffer overread in FreeRDP icon processing (bsc#1258979).
- CVE-2026-26955: out-of-bounds write in FreeRDP clients using the GDI surface pipeline (bsc#1258982).
- CVE-2026-26965: out-of-bounds write in FreeRDP client RLE planar decode path (bsc#1258985).
- CVE-2026-29774: heap buffer overflow in the FreeRDP client's AVC420/AVC444 YUV-to-RGB conversion path (bsc#1259689).
- CVE-2026-29775: out-of-bounds access in the FreeRDP client bitmap cache subsystem (bsc#1259684).
- CVE-2026-29776: integer underflow in `update_read_cache_bitmap_order` (bsc#1259692).
- CVE-2026-31806: heap buffer overflow in `nsc_process_message` (bsc#1259653).
- CVE-2026-31883: heap buffer overwrite due to a `size_t` underflow in the IMA-ADPCM and MS-ADPCM audio decoders
(bsc#1259679).
- CVE-2026-31884: division by zero in MS-ADPCM and IMA-ADPCM decoders (bsc#1259680).
- CVE-2026-31885: out-of-bounds read in MS-ADPCM and IMA-ADPCM decoders (bsc#1259686).
- CVE-2026-31897: out-of-bounds read in `freerdp_bitmap_decompress_planar` (bsc#1259693).
- CVE-2026-33952: client-side crash due to `WINPR_ASSERT()` failure in `rts_read_auth_verifier_no_checks()`
(bsc#1261196).
- CVE-2026-33977: client-side crash due to `WINPR_ASSERT()` failure in IMA ADPCM audio decoder (bsc#1261198).
- CVE-2026-33982: heap buffer overread in in `winpr_aligned_offset_recalloc` (bsc#1261222).
- CVE-2026-33983: undefined behavior and resource exhaustion via 80 billion iteration loop in
`progressive_decompress_tile_upgrade` (bsc#1261200).
- CVE-2026-33984: heap buffer overflow in ClearCodec `resize_vbar_entry` (bsc#1261211).
- CVE-2026-33985: heap out-of-bounds read in `clear_decompress_glyph_data` (bsc#1261217).
- CVE-2026-33986: heap out-of-bounds write due to H.264 YUV buffer dimension desync (bsc#1261223).
- CVE-2026-33987: heap out-of-bounds write due to persistent cache bmpSize desync (bsc#1261226).
- CVE-2026-33995: double-free vulnerability in `kerberos_AcceptSecurityContext` and
`kerberos_InitializeSecurityContextA` (bsc#1261227).
Other updates and bugfixes:
- Version 3.24.2:
* [channels,video] fix wrong cast (#12511)
* [codec,openh264] reject encoder ABI mismatch on runtime-loaded library (#12510)
* [client,sdl] create a copy of rdpPointer (#12512)
* [codec,video] properly pass intermediate format (#12518)
* [utils, signal] lazily initialize Windows CRITICAL_SECTION to match POSIX static mutex behavior (#12520) winpr:
improve libunwind backtraces (#12530)
* [server,shadow] remember selected caps (#12528)
* Zero credential data before free in NLA and NTLM context (#12532)
* [server,proxy] ignore missing client in input channel (#12536)
* [server,proxy] ignore rdpdr messages (#12537)
* [winpr,sspi] improve kerberos logging (#12538)
* Codec fixes (#12542)
- Version 3.24.1:
* [warnings] fix various sign and cast warnings (#12480)
* [client,x11] start with xfc->remote_app = TRUE; (#12491)
* Sam file read regression fix (#12484)
* [ncrypt,smartcardlogon] support ECC keys in PKCS#11 smartcard enumeration (#12490)
* Fix: memory leak in rdp_client_establish_keys() (#12494)
* Fix memory leak in freerdp_settings_int_buffer_copy() on error paths (libfreerdp/core/settings.c) (#12486)
* Code Cleanups (#12493)
* Fix: memory leak in PCSC_SCardListReadersW() (#12495)
* [channels,telemetry] use dynamic logging (#12496)
* [channel,gfx] use generic plugin log (@12498, #12499)
* [channels,audin] set error when audio_format_read fails (#12500)
* [channels,video] unify error handling (#12502)
* Fastpath fine grained lock (#12503)
* [core,update] make the PlaySound callback non-mandatory (#12504)
* Refinements: RPM build updates, FIPS improvements (#12506)
- Version 3.24.0:
* Completed the [[nodiscard]] marking of the API to warn about problematic
* unchecked use of functions
* Added full C23 support (default stays at C11) to allow new compilers
* to do stricter checking
* Improved X11 and SDL3 clients
* Improved smartcard support
* proxy now supports RFX graphics mode
* Attribute nodiscard related chanes (#12325, #12360, #12395, #12406, #12421, #12426, #12177, #12403, #12405, #12407,
#12409, #12408, #12412, #12413)
* c23 related improvements (#12368, #12371, #12379, #12381, #12383, #12385, #12386, #12387, #12384)
* Generic code cleanups (#12382, #12439, #12455, #12462, #12399, #12473) [core,utils] ignore NULL values in
remove_rdpdr_type (#12372)
* [codec,fdk] revert use of WinPR types (#12373)
* [core,gateway] ignore incomplete rpc header (#12375, #12376)
* [warnings] make function declaration names consistent (#12377)
* [libfreerdp] Add new define for logon error info (#12380)
* [client,x11] improve rails window locking (#12392)
* Reload fix missing null checks (#12396)
* Bounds checks (#12400)
* [server,proxy] check for nullptr before using scard_call_context (#12404)
* [uwac] fix rectangular glitch around surface damage regions (#12410)
* Address various error handling inconsistencies (#12411)
* [core,server] Improve WTS API locking (#12414)
* Address some GCC compile issues (#12415, #12420)
* Winpr atexit (#12416)
* [winpr,smartcard] fix function pointer casts (#12422)
* Xf timer fix (#12423)
* [client,sdl] workaround for wlroots compositors (#12425)
* [client,sdl] fix SdlWindow::query (#12378)
* [winpr,smartcard] fix PCSC_ReleaseCardContext (#12427)
* [client,x11] eliminate obsolete compile flags (#12428)
* [client,common] skip sending input events when not connected (#12429)
* Input connected checks (#12430)
* Floatbar and display channel improvements (#12431)
* [winpr,platform] fix WINPR_ATTR_NODISCARD definition (#12432)
* [client] Fix writing of gatewayusagemethod to .rdp files (#12433)
* Nodiscard finetune (#12435)
* [core] fix missing gateway credential sync (#12436)
* [client,sdl3] limit FREERDP_WLROOTS_HACK (#12441)
* [core,settings] Allow FreeRDP_instance in setter (#12442)
* [codec,h264] make log message trace (#12444)
* X11 rails improve (#12440)
* [codec,nsc] limit copy area in nsc_process_message (#12448)
* Proxy support RFX and NSC settings (#12449)
* [client,common] display a shortened help on parsing issues (#12450)
* [winpr,smartcard] refine locking for pcsc layer (#12451)
* [codec,swscale] allow runtime loading of swscale (#12452)
* Swscale fallback (#12454)
* Sdl multi scaling support (#12456)
* [packaging,flatpak] update runtime and dependencies (#12457)
* [codec,video] add doxygen version details (#12458)
* [github,templates] update templates (#12460)
* [client,sdl] allow FREERDP_WLROOTS_HACK for all sessions (#12461)
* [warnings,nodiscard] add log messages for failures (#12463)
* [gdi,gdi] ignore empty rectangles (#12467)
* Smartcard fix smartcard-login, pass rdpContext for abort (#12466)
* [winpr,smartcard] fix compiler warnings (#12469)
* [winpr,timezone] fix search for transition dates (#12468)
* [client,common] improve /p help (#12471)
* Scard logging refactored (#12472)
* [emu,scard] fix smartcard emulation (#12475)
* Sdl null cursor (#12474)
- Version 3.23.0:
* Sdl cleanup (#12202)
* [client,sdl] do not apply window offset (#12205)
* [client,sdl] add SDL_Error to exceptions (#12214)
* Rdp monitor log (#12215)
* [winpr,smartcard] implement some attributes (#12213)
* [client,windows] Fix return value checks for mouse event functions (#12279)
* [channels,rdpecam] fix sws context checks (#12272)
* [client,windows] Enhance error handling and context validation (#12264)
* [client,windows] Add window handle validation in RDP_EVENT_TYPE_WINDOW_NEW (#12261)
* [client,sdl] fix multimon/fullscreen on wayland (#12248)
* Vendor by app (#12207)
* [core,gateway] relax TSG parsing (#12283)
* [winpr,smartcard] simplify PCSC_ReadDeviceSystemName (#12273)
* [client,windows] Implement complete keyboard indicator synchronization (#12268)
* Fixes more more more (#12286)
* Use application details for names (#12285)
* warning cleanups (#12289)
* Warning cleanup (#12291)
* [client,windows] Enhance memory safety with NULL checks and resource protection (#12271)
* [client,x11] apply /size:xx% only once (#12293)
* Freerdp config test (#12295)
* [winpr,smartcard] fix returned attribute length (#12296)
* [client,SDL3] Fix properly handle smart-sizing with fullscreen (#12298)
* [core,test] fix use after free (#12299)
* Sign warnings (#12300)
* [cmake,compiler] disable -Wjump-misses-init (#12301)
* [codec,color] fix input length checks (#12302)
* [client,sdl] improve cursor updates, fix surface sizes (#12303)
* Sdl fullscreen (#12217)
* [client,sdl] fix move constructor of SdlWindow (#12305)
* [utils,smartcard] check stream length on padding (#12306)
* [android] Fix invert scrolling default value mismatch (#12309)
* Clear fix bounds checks (#12310)
* Winpr attr nodiscard fkt ptr (#12311)
* [codec,planar] fix missing destination bounds checks (#12312)
* [codec,clear] fix destination checks (#12315)
* NSC Codec fixes (#12317)
* Freerdp api nodiscard (#12313)
* [allocations] fix growth of preallocated buffers (#12319)
* Rdpdr simplify (#12320)
* Resource fix (#12323)
* [winpr,utils] ensure message queue capacity (#12322)
* [server,shadow] fix return and parameter checks (#12330)
* Shadow fixes (#12331)
* [rdtk,nodiscard] mark rdtk API nodiscard (#12329)
* [client,x11] fix XGetWindowProperty return handling (#12334)
* Win32 signal (#12335)
* [channel,usb] fix message parsing and creation (#12336)
* [cmake] Define WINPR_DEFINE_ATTR_NODISCARD (#12338)
* Proxy config fix (#12345)
* [codec,progressive] refine progressive decoding (#12347)
* [client,sdl] fix sdl_Pointer_New (#12350)
* [core,gateway] parse [MS-TSGU] 2.2.10.5 HTTP_CHANNEL_RESPONSE_OPTIONAL (#12353)
* X11 kbd sym (#12354)
* Windows compile warning fixes (#12357,#12358,#12359)
Patchnames: SUSE-SLES-16.0-663
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
4.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
8.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
8.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
8.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.3 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.1 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.5 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.9 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.5 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
References
| URL | Category | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for freerdp",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for freerdp fixes the following issues:\n\nUpdate to version 3.24.2.\n\nSecurity issues fixed:\n\n- CVE-2026-25941: out-of-bounds read in the FreeRDP client RDPGFX channel (bsc#1258919).\n- CVE-2026-25942: buffer overflow of global array in `xf_rail_server_execute_result` (bsc#1258920).\n- CVE-2026-25952: heap use-after-free in `xf_SetWindowMinMaxInfo` (bsc#1258921).\n- CVE-2026-25953: heap use-after-free in `xf_AppUpdateWindowFromSurface` (bsc#1258923).\n- CVE-2026-25954: heap use-after-free in `xf_rail_server_local_move_size` (bsc#1258924).\n- CVE-2026-25955: heap use-after-free in `xf_AppUpdateWindowFromSurface` (bsc#1258973).\n- CVE-2026-25959: heap use-after-free in `xf_cliprdr_provide_data_` (bsc#1258976).\n- CVE-2026-25997: heap use-after-free in `xf_clipboard_format_equal` (bsc#1258977).\n- CVE-2026-26271: buffer overread in FreeRDP icon processing (bsc#1258979).\n- CVE-2026-26955: out-of-bounds write in FreeRDP clients using the GDI surface pipeline (bsc#1258982).\n- CVE-2026-26965: out-of-bounds write in FreeRDP client RLE planar decode path (bsc#1258985).\n- CVE-2026-29774: heap buffer overflow in the FreeRDP client\u0027s AVC420/AVC444 YUV-to-RGB conversion path (bsc#1259689).\n- CVE-2026-29775: out-of-bounds access in the FreeRDP client bitmap cache subsystem (bsc#1259684).\n- CVE-2026-29776: integer underflow in `update_read_cache_bitmap_order` (bsc#1259692).\n- CVE-2026-31806: heap buffer overflow in `nsc_process_message` (bsc#1259653).\n- CVE-2026-31883: heap buffer overwrite due to a `size_t` underflow in the IMA-ADPCM and MS-ADPCM audio decoders\n (bsc#1259679).\n- CVE-2026-31884: division by zero in MS-ADPCM and IMA-ADPCM decoders (bsc#1259680).\n- CVE-2026-31885: out-of-bounds read in MS-ADPCM and IMA-ADPCM decoders (bsc#1259686).\n- CVE-2026-31897: out-of-bounds read in `freerdp_bitmap_decompress_planar` (bsc#1259693).\n- CVE-2026-33952: client-side crash due to `WINPR_ASSERT()` failure in `rts_read_auth_verifier_no_checks()`\n (bsc#1261196).\n- CVE-2026-33977: client-side crash due to `WINPR_ASSERT()` failure in IMA ADPCM audio decoder (bsc#1261198).\n- CVE-2026-33982: heap buffer overread in in `winpr_aligned_offset_recalloc` (bsc#1261222).\n- CVE-2026-33983: undefined behavior and resource exhaustion via 80 billion iteration loop in\n `progressive_decompress_tile_upgrade` (bsc#1261200).\n- CVE-2026-33984: heap buffer overflow in ClearCodec `resize_vbar_entry` (bsc#1261211).\n- CVE-2026-33985: heap out-of-bounds read in `clear_decompress_glyph_data` (bsc#1261217).\n- CVE-2026-33986: heap out-of-bounds write due to H.264 YUV buffer dimension desync (bsc#1261223).\n- CVE-2026-33987: heap out-of-bounds write due to persistent cache bmpSize desync (bsc#1261226).\n- CVE-2026-33995: double-free vulnerability in `kerberos_AcceptSecurityContext` and\n `kerberos_InitializeSecurityContextA` (bsc#1261227).\n\nOther updates and bugfixes:\n\n- Version 3.24.2:\n * [channels,video] fix wrong cast (#12511)\n * [codec,openh264] reject encoder ABI mismatch on runtime-loaded library (#12510)\n * [client,sdl] create a copy of rdpPointer (#12512)\n * [codec,video] properly pass intermediate format (#12518)\n * [utils, signal] lazily initialize Windows CRITICAL_SECTION to match POSIX static mutex behavior (#12520) winpr:\n improve libunwind backtraces (#12530)\n * [server,shadow] remember selected caps (#12528)\n * Zero credential data before free in NLA and NTLM context (#12532)\n * [server,proxy] ignore missing client in input channel (#12536)\n * [server,proxy] ignore rdpdr messages (#12537)\n * [winpr,sspi] improve kerberos logging (#12538)\n * Codec fixes (#12542)\n\n- Version 3.24.1:\n * [warnings] fix various sign and cast warnings (#12480)\n * [client,x11] start with xfc-\u003eremote_app = TRUE; (#12491)\n * Sam file read regression fix (#12484)\n * [ncrypt,smartcardlogon] support ECC keys in PKCS#11 smartcard enumeration (#12490)\n * Fix: memory leak in rdp_client_establish_keys() (#12494)\n * Fix memory leak in freerdp_settings_int_buffer_copy() on error paths (libfreerdp/core/settings.c) (#12486)\n * Code Cleanups (#12493)\n * Fix: memory leak in PCSC_SCardListReadersW() (#12495)\n * [channels,telemetry] use dynamic logging (#12496)\n * [channel,gfx] use generic plugin log (@12498, #12499)\n * [channels,audin] set error when audio_format_read fails (#12500)\n * [channels,video] unify error handling (#12502)\n * Fastpath fine grained lock (#12503)\n * [core,update] make the PlaySound callback non-mandatory (#12504)\n * Refinements: RPM build updates, FIPS improvements (#12506)\n\n- Version 3.24.0:\n * Completed the [[nodiscard]] marking of the API to warn about problematic\n * unchecked use of functions\n * Added full C23 support (default stays at C11) to allow new compilers\n * to do stricter checking\n * Improved X11 and SDL3 clients\n * Improved smartcard support\n * proxy now supports RFX graphics mode\n * Attribute nodiscard related chanes (#12325, #12360, #12395, #12406, #12421, #12426, #12177, #12403, #12405, #12407,\n #12409, #12408, #12412, #12413)\n * c23 related improvements (#12368, #12371, #12379, #12381, #12383, #12385, #12386, #12387, #12384)\n * Generic code cleanups (#12382, #12439, #12455, #12462, #12399, #12473) [core,utils] ignore NULL values in\n remove_rdpdr_type (#12372)\n * [codec,fdk] revert use of WinPR types (#12373)\n * [core,gateway] ignore incomplete rpc header (#12375, #12376)\n * [warnings] make function declaration names consistent (#12377)\n * [libfreerdp] Add new define for logon error info (#12380)\n * [client,x11] improve rails window locking (#12392)\n * Reload fix missing null checks (#12396)\n * Bounds checks (#12400)\n * [server,proxy] check for nullptr before using scard_call_context (#12404)\n * [uwac] fix rectangular glitch around surface damage regions (#12410)\n * Address various error handling inconsistencies (#12411)\n * [core,server] Improve WTS API locking (#12414)\n * Address some GCC compile issues (#12415, #12420)\n * Winpr atexit (#12416)\n * [winpr,smartcard] fix function pointer casts (#12422)\n * Xf timer fix (#12423)\n * [client,sdl] workaround for wlroots compositors (#12425)\n * [client,sdl] fix SdlWindow::query (#12378)\n * [winpr,smartcard] fix PCSC_ReleaseCardContext (#12427)\n * [client,x11] eliminate obsolete compile flags (#12428)\n * [client,common] skip sending input events when not connected (#12429)\n * Input connected checks (#12430)\n * Floatbar and display channel improvements (#12431)\n * [winpr,platform] fix WINPR_ATTR_NODISCARD definition (#12432)\n * [client] Fix writing of gatewayusagemethod to .rdp files (#12433)\n * Nodiscard finetune (#12435)\n * [core] fix missing gateway credential sync (#12436)\n * [client,sdl3] limit FREERDP_WLROOTS_HACK (#12441)\n * [core,settings] Allow FreeRDP_instance in setter (#12442)\n * [codec,h264] make log message trace (#12444)\n * X11 rails improve (#12440)\n * [codec,nsc] limit copy area in nsc_process_message (#12448)\n * Proxy support RFX and NSC settings (#12449)\n * [client,common] display a shortened help on parsing issues (#12450)\n * [winpr,smartcard] refine locking for pcsc layer (#12451)\n * [codec,swscale] allow runtime loading of swscale (#12452)\n * Swscale fallback (#12454)\n * Sdl multi scaling support (#12456)\n * [packaging,flatpak] update runtime and dependencies (#12457)\n * [codec,video] add doxygen version details (#12458)\n * [github,templates] update templates (#12460)\n * [client,sdl] allow FREERDP_WLROOTS_HACK for all sessions (#12461)\n * [warnings,nodiscard] add log messages for failures (#12463)\n * [gdi,gdi] ignore empty rectangles (#12467)\n * Smartcard fix smartcard-login, pass rdpContext for abort (#12466)\n * [winpr,smartcard] fix compiler warnings (#12469)\n * [winpr,timezone] fix search for transition dates (#12468)\n * [client,common] improve /p help (#12471)\n * Scard logging refactored (#12472)\n * [emu,scard] fix smartcard emulation (#12475)\n * Sdl null cursor (#12474)\n\n- Version 3.23.0:\n * Sdl cleanup (#12202)\n * [client,sdl] do not apply window offset (#12205)\n * [client,sdl] add SDL_Error to exceptions (#12214)\n * Rdp monitor log (#12215)\n * [winpr,smartcard] implement some attributes (#12213)\n * [client,windows] Fix return value checks for mouse event functions (#12279)\n * [channels,rdpecam] fix sws context checks (#12272)\n * [client,windows] Enhance error handling and context validation (#12264)\n * [client,windows] Add window handle validation in RDP_EVENT_TYPE_WINDOW_NEW (#12261)\n * [client,sdl] fix multimon/fullscreen on wayland (#12248)\n * Vendor by app (#12207)\n * [core,gateway] relax TSG parsing (#12283)\n * [winpr,smartcard] simplify PCSC_ReadDeviceSystemName (#12273)\n * [client,windows] Implement complete keyboard indicator synchronization (#12268)\n * Fixes more more more (#12286)\n * Use application details for names (#12285)\n * warning cleanups (#12289)\n * Warning cleanup (#12291)\n * [client,windows] Enhance memory safety with NULL checks and resource protection (#12271)\n * [client,x11] apply /size:xx% only once (#12293)\n * Freerdp config test (#12295)\n * [winpr,smartcard] fix returned attribute length (#12296)\n * [client,SDL3] Fix properly handle smart-sizing with fullscreen (#12298)\n * [core,test] fix use after free (#12299)\n * Sign warnings (#12300)\n * [cmake,compiler] disable -Wjump-misses-init (#12301)\n * [codec,color] fix input length checks (#12302)\n * [client,sdl] improve cursor updates, fix surface sizes (#12303)\n * Sdl fullscreen (#12217)\n * [client,sdl] fix move constructor of SdlWindow (#12305)\n * [utils,smartcard] check stream length on padding (#12306)\n * [android] Fix invert scrolling default value mismatch (#12309)\n * Clear fix bounds checks (#12310)\n * Winpr attr nodiscard fkt ptr (#12311)\n * [codec,planar] fix missing destination bounds checks (#12312)\n * [codec,clear] fix destination checks (#12315)\n * NSC Codec fixes (#12317)\n * Freerdp api nodiscard (#12313)\n * [allocations] fix growth of preallocated buffers (#12319)\n * Rdpdr simplify (#12320)\n * Resource fix (#12323)\n * [winpr,utils] ensure message queue capacity (#12322)\n * [server,shadow] fix return and parameter checks (#12330)\n * Shadow fixes (#12331)\n * [rdtk,nodiscard] mark rdtk API nodiscard (#12329)\n * [client,x11] fix XGetWindowProperty return handling (#12334)\n * Win32 signal (#12335)\n * [channel,usb] fix message parsing and creation (#12336)\n * [cmake] Define WINPR_DEFINE_ATTR_NODISCARD (#12338)\n * Proxy config fix (#12345)\n * [codec,progressive] refine progressive decoding (#12347)\n * [client,sdl] fix sdl_Pointer_New (#12350)\n * [core,gateway] parse [MS-TSGU] 2.2.10.5 HTTP_CHANNEL_RESPONSE_OPTIONAL (#12353)\n * X11 kbd sym (#12354)\n * Windows compile warning fixes (#12357,#12358,#12359)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-SLES-16.0-663",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_21436-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:21436-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202621436-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:21436-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-May/025817.html"
},
{
"category": "self",
"summary": "SUSE Bug 1258919",
"url": "https://bugzilla.suse.com/1258919"
},
{
"category": "self",
"summary": "SUSE Bug 1258920",
"url": "https://bugzilla.suse.com/1258920"
},
{
"category": "self",
"summary": "SUSE Bug 1258921",
"url": "https://bugzilla.suse.com/1258921"
},
{
"category": "self",
"summary": "SUSE Bug 1258923",
"url": "https://bugzilla.suse.com/1258923"
},
{
"category": "self",
"summary": "SUSE Bug 1258924",
"url": "https://bugzilla.suse.com/1258924"
},
{
"category": "self",
"summary": "SUSE Bug 1258973",
"url": "https://bugzilla.suse.com/1258973"
},
{
"category": "self",
"summary": "SUSE Bug 1258976",
"url": "https://bugzilla.suse.com/1258976"
},
{
"category": "self",
"summary": "SUSE Bug 1258977",
"url": "https://bugzilla.suse.com/1258977"
},
{
"category": "self",
"summary": "SUSE Bug 1258979",
"url": "https://bugzilla.suse.com/1258979"
},
{
"category": "self",
"summary": "SUSE Bug 1258982",
"url": "https://bugzilla.suse.com/1258982"
},
{
"category": "self",
"summary": "SUSE Bug 1258985",
"url": "https://bugzilla.suse.com/1258985"
},
{
"category": "self",
"summary": "SUSE Bug 1259653",
"url": "https://bugzilla.suse.com/1259653"
},
{
"category": "self",
"summary": "SUSE Bug 1259679",
"url": "https://bugzilla.suse.com/1259679"
},
{
"category": "self",
"summary": "SUSE Bug 1259680",
"url": "https://bugzilla.suse.com/1259680"
},
{
"category": "self",
"summary": "SUSE Bug 1259684",
"url": "https://bugzilla.suse.com/1259684"
},
{
"category": "self",
"summary": "SUSE Bug 1259686",
"url": "https://bugzilla.suse.com/1259686"
},
{
"category": "self",
"summary": "SUSE Bug 1259689",
"url": "https://bugzilla.suse.com/1259689"
},
{
"category": "self",
"summary": "SUSE Bug 1259692",
"url": "https://bugzilla.suse.com/1259692"
},
{
"category": "self",
"summary": "SUSE Bug 1259693",
"url": "https://bugzilla.suse.com/1259693"
},
{
"category": "self",
"summary": "SUSE Bug 1261196",
"url": "https://bugzilla.suse.com/1261196"
},
{
"category": "self",
"summary": "SUSE Bug 1261198",
"url": "https://bugzilla.suse.com/1261198"
},
{
"category": "self",
"summary": "SUSE Bug 1261200",
"url": "https://bugzilla.suse.com/1261200"
},
{
"category": "self",
"summary": "SUSE Bug 1261211",
"url": "https://bugzilla.suse.com/1261211"
},
{
"category": "self",
"summary": "SUSE Bug 1261217",
"url": "https://bugzilla.suse.com/1261217"
},
{
"category": "self",
"summary": "SUSE Bug 1261222",
"url": "https://bugzilla.suse.com/1261222"
},
{
"category": "self",
"summary": "SUSE Bug 1261223",
"url": "https://bugzilla.suse.com/1261223"
},
{
"category": "self",
"summary": "SUSE Bug 1261226",
"url": "https://bugzilla.suse.com/1261226"
},
{
"category": "self",
"summary": "SUSE Bug 1261227",
"url": "https://bugzilla.suse.com/1261227"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-25941 page",
"url": "https://www.suse.com/security/cve/CVE-2026-25941/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-25942 page",
"url": "https://www.suse.com/security/cve/CVE-2026-25942/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-25952 page",
"url": "https://www.suse.com/security/cve/CVE-2026-25952/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-25953 page",
"url": "https://www.suse.com/security/cve/CVE-2026-25953/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-25954 page",
"url": "https://www.suse.com/security/cve/CVE-2026-25954/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-25955 page",
"url": "https://www.suse.com/security/cve/CVE-2026-25955/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-25959 page",
"url": "https://www.suse.com/security/cve/CVE-2026-25959/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-25997 page",
"url": "https://www.suse.com/security/cve/CVE-2026-25997/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-26271 page",
"url": "https://www.suse.com/security/cve/CVE-2026-26271/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-26955 page",
"url": "https://www.suse.com/security/cve/CVE-2026-26955/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-26965 page",
"url": "https://www.suse.com/security/cve/CVE-2026-26965/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-29774 page",
"url": "https://www.suse.com/security/cve/CVE-2026-29774/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-29775 page",
"url": "https://www.suse.com/security/cve/CVE-2026-29775/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-29776 page",
"url": "https://www.suse.com/security/cve/CVE-2026-29776/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-31806 page",
"url": "https://www.suse.com/security/cve/CVE-2026-31806/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-31883 page",
"url": "https://www.suse.com/security/cve/CVE-2026-31883/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-31884 page",
"url": "https://www.suse.com/security/cve/CVE-2026-31884/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-31885 page",
"url": "https://www.suse.com/security/cve/CVE-2026-31885/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-31897 page",
"url": "https://www.suse.com/security/cve/CVE-2026-31897/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-33952 page",
"url": "https://www.suse.com/security/cve/CVE-2026-33952/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-33977 page",
"url": "https://www.suse.com/security/cve/CVE-2026-33977/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-33982 page",
"url": "https://www.suse.com/security/cve/CVE-2026-33982/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-33983 page",
"url": "https://www.suse.com/security/cve/CVE-2026-33983/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-33984 page",
"url": "https://www.suse.com/security/cve/CVE-2026-33984/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-33985 page",
"url": "https://www.suse.com/security/cve/CVE-2026-33985/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-33986 page",
"url": "https://www.suse.com/security/cve/CVE-2026-33986/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-33987 page",
"url": "https://www.suse.com/security/cve/CVE-2026-33987/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-33995 page",
"url": "https://www.suse.com/security/cve/CVE-2026-33995/"
}
],
"title": "Security update for freerdp",
"tracking": {
"current_release_date": "2026-04-30T16:54:05Z",
"generator": {
"date": "2026-04-30T16:54:05Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:21436-1",
"initial_release_date": "2026-04-30T16:54:05Z",
"revision_history": [
{
"date": "2026-04-30T16:54:05Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "freerdp-3.24.2-160000.1.1.aarch64",
"product": {
"name": "freerdp-3.24.2-160000.1.1.aarch64",
"product_id": "freerdp-3.24.2-160000.1.1.aarch64"
}
},
{
"category": "product_version",
"name": "freerdp-devel-3.24.2-160000.1.1.aarch64",
"product": {
"name": "freerdp-devel-3.24.2-160000.1.1.aarch64",
"product_id": "freerdp-devel-3.24.2-160000.1.1.aarch64"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-3.24.2-160000.1.1.aarch64",
"product": {
"name": "freerdp-proxy-3.24.2-160000.1.1.aarch64",
"product_id": "freerdp-proxy-3.24.2-160000.1.1.aarch64"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"product": {
"name": "freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"product_id": "freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64"
}
},
{
"category": "product_version",
"name": "freerdp-sdl-3.24.2-160000.1.1.aarch64",
"product": {
"name": "freerdp-sdl-3.24.2-160000.1.1.aarch64",
"product_id": "freerdp-sdl-3.24.2-160000.1.1.aarch64"
}
},
{
"category": "product_version",
"name": "freerdp-server-3.24.2-160000.1.1.aarch64",
"product": {
"name": "freerdp-server-3.24.2-160000.1.1.aarch64",
"product_id": "freerdp-server-3.24.2-160000.1.1.aarch64"
}
},
{
"category": "product_version",
"name": "freerdp-wayland-3.24.2-160000.1.1.aarch64",
"product": {
"name": "freerdp-wayland-3.24.2-160000.1.1.aarch64",
"product_id": "freerdp-wayland-3.24.2-160000.1.1.aarch64"
}
},
{
"category": "product_version",
"name": "libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"product": {
"name": "libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"product_id": "libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64"
}
},
{
"category": "product_version",
"name": "libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"product": {
"name": "libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"product_id": "libfreerdp3-3-3.24.2-160000.1.1.aarch64"
}
},
{
"category": "product_version",
"name": "librdtk0-0-3.24.2-160000.1.1.aarch64",
"product": {
"name": "librdtk0-0-3.24.2-160000.1.1.aarch64",
"product_id": "librdtk0-0-3.24.2-160000.1.1.aarch64"
}
},
{
"category": "product_version",
"name": "libuwac0-0-3.24.2-160000.1.1.aarch64",
"product": {
"name": "libuwac0-0-3.24.2-160000.1.1.aarch64",
"product_id": "libuwac0-0-3.24.2-160000.1.1.aarch64"
}
},
{
"category": "product_version",
"name": "libwinpr3-3-3.24.2-160000.1.1.aarch64",
"product": {
"name": "libwinpr3-3-3.24.2-160000.1.1.aarch64",
"product_id": "libwinpr3-3-3.24.2-160000.1.1.aarch64"
}
},
{
"category": "product_version",
"name": "winpr-devel-3.24.2-160000.1.1.aarch64",
"product": {
"name": "winpr-devel-3.24.2-160000.1.1.aarch64",
"product_id": "winpr-devel-3.24.2-160000.1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "freerdp-3.24.2-160000.1.1.ppc64le",
"product": {
"name": "freerdp-3.24.2-160000.1.1.ppc64le",
"product_id": "freerdp-3.24.2-160000.1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "freerdp-devel-3.24.2-160000.1.1.ppc64le",
"product": {
"name": "freerdp-devel-3.24.2-160000.1.1.ppc64le",
"product_id": "freerdp-devel-3.24.2-160000.1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"product": {
"name": "freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"product_id": "freerdp-proxy-3.24.2-160000.1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"product": {
"name": "freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"product_id": "freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"product": {
"name": "freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"product_id": "freerdp-sdl-3.24.2-160000.1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "freerdp-server-3.24.2-160000.1.1.ppc64le",
"product": {
"name": "freerdp-server-3.24.2-160000.1.1.ppc64le",
"product_id": "freerdp-server-3.24.2-160000.1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"product": {
"name": "freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"product_id": "freerdp-wayland-3.24.2-160000.1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"product": {
"name": "libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"product_id": "libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"product": {
"name": "libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"product_id": "libfreerdp3-3-3.24.2-160000.1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "librdtk0-0-3.24.2-160000.1.1.ppc64le",
"product": {
"name": "librdtk0-0-3.24.2-160000.1.1.ppc64le",
"product_id": "librdtk0-0-3.24.2-160000.1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libuwac0-0-3.24.2-160000.1.1.ppc64le",
"product": {
"name": "libuwac0-0-3.24.2-160000.1.1.ppc64le",
"product_id": "libuwac0-0-3.24.2-160000.1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"product": {
"name": "libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"product_id": "libwinpr3-3-3.24.2-160000.1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "winpr-devel-3.24.2-160000.1.1.ppc64le",
"product": {
"name": "winpr-devel-3.24.2-160000.1.1.ppc64le",
"product_id": "winpr-devel-3.24.2-160000.1.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "freerdp-3.24.2-160000.1.1.s390x",
"product": {
"name": "freerdp-3.24.2-160000.1.1.s390x",
"product_id": "freerdp-3.24.2-160000.1.1.s390x"
}
},
{
"category": "product_version",
"name": "freerdp-devel-3.24.2-160000.1.1.s390x",
"product": {
"name": "freerdp-devel-3.24.2-160000.1.1.s390x",
"product_id": "freerdp-devel-3.24.2-160000.1.1.s390x"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-3.24.2-160000.1.1.s390x",
"product": {
"name": "freerdp-proxy-3.24.2-160000.1.1.s390x",
"product_id": "freerdp-proxy-3.24.2-160000.1.1.s390x"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"product": {
"name": "freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"product_id": "freerdp-proxy-plugins-3.24.2-160000.1.1.s390x"
}
},
{
"category": "product_version",
"name": "freerdp-sdl-3.24.2-160000.1.1.s390x",
"product": {
"name": "freerdp-sdl-3.24.2-160000.1.1.s390x",
"product_id": "freerdp-sdl-3.24.2-160000.1.1.s390x"
}
},
{
"category": "product_version",
"name": "freerdp-server-3.24.2-160000.1.1.s390x",
"product": {
"name": "freerdp-server-3.24.2-160000.1.1.s390x",
"product_id": "freerdp-server-3.24.2-160000.1.1.s390x"
}
},
{
"category": "product_version",
"name": "freerdp-wayland-3.24.2-160000.1.1.s390x",
"product": {
"name": "freerdp-wayland-3.24.2-160000.1.1.s390x",
"product_id": "freerdp-wayland-3.24.2-160000.1.1.s390x"
}
},
{
"category": "product_version",
"name": "libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"product": {
"name": "libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"product_id": "libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x"
}
},
{
"category": "product_version",
"name": "libfreerdp3-3-3.24.2-160000.1.1.s390x",
"product": {
"name": "libfreerdp3-3-3.24.2-160000.1.1.s390x",
"product_id": "libfreerdp3-3-3.24.2-160000.1.1.s390x"
}
},
{
"category": "product_version",
"name": "librdtk0-0-3.24.2-160000.1.1.s390x",
"product": {
"name": "librdtk0-0-3.24.2-160000.1.1.s390x",
"product_id": "librdtk0-0-3.24.2-160000.1.1.s390x"
}
},
{
"category": "product_version",
"name": "libuwac0-0-3.24.2-160000.1.1.s390x",
"product": {
"name": "libuwac0-0-3.24.2-160000.1.1.s390x",
"product_id": "libuwac0-0-3.24.2-160000.1.1.s390x"
}
},
{
"category": "product_version",
"name": "libwinpr3-3-3.24.2-160000.1.1.s390x",
"product": {
"name": "libwinpr3-3-3.24.2-160000.1.1.s390x",
"product_id": "libwinpr3-3-3.24.2-160000.1.1.s390x"
}
},
{
"category": "product_version",
"name": "winpr-devel-3.24.2-160000.1.1.s390x",
"product": {
"name": "winpr-devel-3.24.2-160000.1.1.s390x",
"product_id": "winpr-devel-3.24.2-160000.1.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "freerdp-3.24.2-160000.1.1.x86_64",
"product": {
"name": "freerdp-3.24.2-160000.1.1.x86_64",
"product_id": "freerdp-3.24.2-160000.1.1.x86_64"
}
},
{
"category": "product_version",
"name": "freerdp-devel-3.24.2-160000.1.1.x86_64",
"product": {
"name": "freerdp-devel-3.24.2-160000.1.1.x86_64",
"product_id": "freerdp-devel-3.24.2-160000.1.1.x86_64"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-3.24.2-160000.1.1.x86_64",
"product": {
"name": "freerdp-proxy-3.24.2-160000.1.1.x86_64",
"product_id": "freerdp-proxy-3.24.2-160000.1.1.x86_64"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"product": {
"name": "freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"product_id": "freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64"
}
},
{
"category": "product_version",
"name": "freerdp-sdl-3.24.2-160000.1.1.x86_64",
"product": {
"name": "freerdp-sdl-3.24.2-160000.1.1.x86_64",
"product_id": "freerdp-sdl-3.24.2-160000.1.1.x86_64"
}
},
{
"category": "product_version",
"name": "freerdp-server-3.24.2-160000.1.1.x86_64",
"product": {
"name": "freerdp-server-3.24.2-160000.1.1.x86_64",
"product_id": "freerdp-server-3.24.2-160000.1.1.x86_64"
}
},
{
"category": "product_version",
"name": "freerdp-wayland-3.24.2-160000.1.1.x86_64",
"product": {
"name": "freerdp-wayland-3.24.2-160000.1.1.x86_64",
"product_id": "freerdp-wayland-3.24.2-160000.1.1.x86_64"
}
},
{
"category": "product_version",
"name": "libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"product": {
"name": "libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"product_id": "libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64"
}
},
{
"category": "product_version",
"name": "libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"product": {
"name": "libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"product_id": "libfreerdp3-3-3.24.2-160000.1.1.x86_64"
}
},
{
"category": "product_version",
"name": "librdtk0-0-3.24.2-160000.1.1.x86_64",
"product": {
"name": "librdtk0-0-3.24.2-160000.1.1.x86_64",
"product_id": "librdtk0-0-3.24.2-160000.1.1.x86_64"
}
},
{
"category": "product_version",
"name": "libuwac0-0-3.24.2-160000.1.1.x86_64",
"product": {
"name": "libuwac0-0-3.24.2-160000.1.1.x86_64",
"product_id": "libuwac0-0-3.24.2-160000.1.1.x86_64"
}
},
{
"category": "product_version",
"name": "libwinpr3-3-3.24.2-160000.1.1.x86_64",
"product": {
"name": "libwinpr3-3-3.24.2-160000.1.1.x86_64",
"product_id": "libwinpr3-3-3.24.2-160000.1.1.x86_64"
}
},
{
"category": "product_version",
"name": "winpr-devel-3.24.2-160000.1.1.x86_64",
"product": {
"name": "winpr-devel-3.24.2-160000.1.1.x86_64",
"product_id": "winpr-devel-3.24.2-160000.1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 16.0",
"product": {
"name": "SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:16:16.0:server"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP applications 16.0",
"product": {
"name": "SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:16:16.0:server-sap"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-3.24.2-160000.1.1.aarch64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64"
},
"product_reference": "freerdp-3.24.2-160000.1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-3.24.2-160000.1.1.ppc64le as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le"
},
"product_reference": "freerdp-3.24.2-160000.1.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-3.24.2-160000.1.1.s390x as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x"
},
"product_reference": "freerdp-3.24.2-160000.1.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-3.24.2-160000.1.1.x86_64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64"
},
"product_reference": "freerdp-3.24.2-160000.1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-devel-3.24.2-160000.1.1.aarch64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64"
},
"product_reference": "freerdp-devel-3.24.2-160000.1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-devel-3.24.2-160000.1.1.ppc64le as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le"
},
"product_reference": "freerdp-devel-3.24.2-160000.1.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-devel-3.24.2-160000.1.1.s390x as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x"
},
"product_reference": "freerdp-devel-3.24.2-160000.1.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-devel-3.24.2-160000.1.1.x86_64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64"
},
"product_reference": "freerdp-devel-3.24.2-160000.1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-proxy-3.24.2-160000.1.1.aarch64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64"
},
"product_reference": "freerdp-proxy-3.24.2-160000.1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-proxy-3.24.2-160000.1.1.ppc64le as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le"
},
"product_reference": "freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-proxy-3.24.2-160000.1.1.s390x as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x"
},
"product_reference": "freerdp-proxy-3.24.2-160000.1.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-proxy-3.24.2-160000.1.1.x86_64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64"
},
"product_reference": "freerdp-proxy-3.24.2-160000.1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64"
},
"product_reference": "freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le"
},
"product_reference": "freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-proxy-plugins-3.24.2-160000.1.1.s390x as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x"
},
"product_reference": "freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64"
},
"product_reference": "freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-sdl-3.24.2-160000.1.1.aarch64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64"
},
"product_reference": "freerdp-sdl-3.24.2-160000.1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-sdl-3.24.2-160000.1.1.ppc64le as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le"
},
"product_reference": "freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-sdl-3.24.2-160000.1.1.s390x as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x"
},
"product_reference": "freerdp-sdl-3.24.2-160000.1.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-sdl-3.24.2-160000.1.1.x86_64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64"
},
"product_reference": "freerdp-sdl-3.24.2-160000.1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-server-3.24.2-160000.1.1.aarch64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64"
},
"product_reference": "freerdp-server-3.24.2-160000.1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-server-3.24.2-160000.1.1.ppc64le as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le"
},
"product_reference": "freerdp-server-3.24.2-160000.1.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-server-3.24.2-160000.1.1.s390x as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x"
},
"product_reference": "freerdp-server-3.24.2-160000.1.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-server-3.24.2-160000.1.1.x86_64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64"
},
"product_reference": "freerdp-server-3.24.2-160000.1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-wayland-3.24.2-160000.1.1.aarch64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64"
},
"product_reference": "freerdp-wayland-3.24.2-160000.1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-wayland-3.24.2-160000.1.1.ppc64le as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le"
},
"product_reference": "freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-wayland-3.24.2-160000.1.1.s390x as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x"
},
"product_reference": "freerdp-wayland-3.24.2-160000.1.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-wayland-3.24.2-160000.1.1.x86_64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64"
},
"product_reference": "freerdp-wayland-3.24.2-160000.1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64"
},
"product_reference": "libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le"
},
"product_reference": "libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x"
},
"product_reference": "libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64"
},
"product_reference": "libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp3-3-3.24.2-160000.1.1.aarch64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64"
},
"product_reference": "libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp3-3-3.24.2-160000.1.1.ppc64le as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le"
},
"product_reference": "libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp3-3-3.24.2-160000.1.1.s390x as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x"
},
"product_reference": "libfreerdp3-3-3.24.2-160000.1.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp3-3-3.24.2-160000.1.1.x86_64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64"
},
"product_reference": "libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "librdtk0-0-3.24.2-160000.1.1.aarch64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64"
},
"product_reference": "librdtk0-0-3.24.2-160000.1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "librdtk0-0-3.24.2-160000.1.1.ppc64le as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le"
},
"product_reference": "librdtk0-0-3.24.2-160000.1.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "librdtk0-0-3.24.2-160000.1.1.s390x as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x"
},
"product_reference": "librdtk0-0-3.24.2-160000.1.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "librdtk0-0-3.24.2-160000.1.1.x86_64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64"
},
"product_reference": "librdtk0-0-3.24.2-160000.1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libuwac0-0-3.24.2-160000.1.1.aarch64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64"
},
"product_reference": "libuwac0-0-3.24.2-160000.1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libuwac0-0-3.24.2-160000.1.1.ppc64le as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le"
},
"product_reference": "libuwac0-0-3.24.2-160000.1.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libuwac0-0-3.24.2-160000.1.1.s390x as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x"
},
"product_reference": "libuwac0-0-3.24.2-160000.1.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libuwac0-0-3.24.2-160000.1.1.x86_64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64"
},
"product_reference": "libuwac0-0-3.24.2-160000.1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr3-3-3.24.2-160000.1.1.aarch64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64"
},
"product_reference": "libwinpr3-3-3.24.2-160000.1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr3-3-3.24.2-160000.1.1.ppc64le as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le"
},
"product_reference": "libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr3-3-3.24.2-160000.1.1.s390x as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x"
},
"product_reference": "libwinpr3-3-3.24.2-160000.1.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr3-3-3.24.2-160000.1.1.x86_64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64"
},
"product_reference": "libwinpr3-3-3.24.2-160000.1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "winpr-devel-3.24.2-160000.1.1.aarch64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64"
},
"product_reference": "winpr-devel-3.24.2-160000.1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "winpr-devel-3.24.2-160000.1.1.ppc64le as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le"
},
"product_reference": "winpr-devel-3.24.2-160000.1.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "winpr-devel-3.24.2-160000.1.1.s390x as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x"
},
"product_reference": "winpr-devel-3.24.2-160000.1.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "winpr-devel-3.24.2-160000.1.1.x86_64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
},
"product_reference": "winpr-devel-3.24.2-160000.1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-3.24.2-160000.1.1.aarch64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64"
},
"product_reference": "freerdp-3.24.2-160000.1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-3.24.2-160000.1.1.ppc64le as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le"
},
"product_reference": "freerdp-3.24.2-160000.1.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-3.24.2-160000.1.1.s390x as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x"
},
"product_reference": "freerdp-3.24.2-160000.1.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-3.24.2-160000.1.1.x86_64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64"
},
"product_reference": "freerdp-3.24.2-160000.1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-devel-3.24.2-160000.1.1.aarch64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64"
},
"product_reference": "freerdp-devel-3.24.2-160000.1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-devel-3.24.2-160000.1.1.ppc64le as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le"
},
"product_reference": "freerdp-devel-3.24.2-160000.1.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-devel-3.24.2-160000.1.1.s390x as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x"
},
"product_reference": "freerdp-devel-3.24.2-160000.1.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-devel-3.24.2-160000.1.1.x86_64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64"
},
"product_reference": "freerdp-devel-3.24.2-160000.1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-proxy-3.24.2-160000.1.1.aarch64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64"
},
"product_reference": "freerdp-proxy-3.24.2-160000.1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-proxy-3.24.2-160000.1.1.ppc64le as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le"
},
"product_reference": "freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-proxy-3.24.2-160000.1.1.s390x as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x"
},
"product_reference": "freerdp-proxy-3.24.2-160000.1.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-proxy-3.24.2-160000.1.1.x86_64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64"
},
"product_reference": "freerdp-proxy-3.24.2-160000.1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64"
},
"product_reference": "freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le"
},
"product_reference": "freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-proxy-plugins-3.24.2-160000.1.1.s390x as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x"
},
"product_reference": "freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64"
},
"product_reference": "freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-sdl-3.24.2-160000.1.1.aarch64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64"
},
"product_reference": "freerdp-sdl-3.24.2-160000.1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-sdl-3.24.2-160000.1.1.ppc64le as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le"
},
"product_reference": "freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-sdl-3.24.2-160000.1.1.s390x as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x"
},
"product_reference": "freerdp-sdl-3.24.2-160000.1.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-sdl-3.24.2-160000.1.1.x86_64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64"
},
"product_reference": "freerdp-sdl-3.24.2-160000.1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-server-3.24.2-160000.1.1.aarch64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64"
},
"product_reference": "freerdp-server-3.24.2-160000.1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-server-3.24.2-160000.1.1.ppc64le as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le"
},
"product_reference": "freerdp-server-3.24.2-160000.1.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-server-3.24.2-160000.1.1.s390x as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x"
},
"product_reference": "freerdp-server-3.24.2-160000.1.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-server-3.24.2-160000.1.1.x86_64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64"
},
"product_reference": "freerdp-server-3.24.2-160000.1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-wayland-3.24.2-160000.1.1.aarch64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64"
},
"product_reference": "freerdp-wayland-3.24.2-160000.1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-wayland-3.24.2-160000.1.1.ppc64le as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le"
},
"product_reference": "freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-wayland-3.24.2-160000.1.1.s390x as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x"
},
"product_reference": "freerdp-wayland-3.24.2-160000.1.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-wayland-3.24.2-160000.1.1.x86_64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64"
},
"product_reference": "freerdp-wayland-3.24.2-160000.1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64"
},
"product_reference": "libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le"
},
"product_reference": "libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x"
},
"product_reference": "libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64"
},
"product_reference": "libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp3-3-3.24.2-160000.1.1.aarch64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64"
},
"product_reference": "libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp3-3-3.24.2-160000.1.1.ppc64le as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le"
},
"product_reference": "libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp3-3-3.24.2-160000.1.1.s390x as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x"
},
"product_reference": "libfreerdp3-3-3.24.2-160000.1.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp3-3-3.24.2-160000.1.1.x86_64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64"
},
"product_reference": "libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "librdtk0-0-3.24.2-160000.1.1.aarch64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64"
},
"product_reference": "librdtk0-0-3.24.2-160000.1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "librdtk0-0-3.24.2-160000.1.1.ppc64le as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le"
},
"product_reference": "librdtk0-0-3.24.2-160000.1.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "librdtk0-0-3.24.2-160000.1.1.s390x as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x"
},
"product_reference": "librdtk0-0-3.24.2-160000.1.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "librdtk0-0-3.24.2-160000.1.1.x86_64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64"
},
"product_reference": "librdtk0-0-3.24.2-160000.1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libuwac0-0-3.24.2-160000.1.1.aarch64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64"
},
"product_reference": "libuwac0-0-3.24.2-160000.1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libuwac0-0-3.24.2-160000.1.1.ppc64le as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le"
},
"product_reference": "libuwac0-0-3.24.2-160000.1.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libuwac0-0-3.24.2-160000.1.1.s390x as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x"
},
"product_reference": "libuwac0-0-3.24.2-160000.1.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libuwac0-0-3.24.2-160000.1.1.x86_64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64"
},
"product_reference": "libuwac0-0-3.24.2-160000.1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr3-3-3.24.2-160000.1.1.aarch64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64"
},
"product_reference": "libwinpr3-3-3.24.2-160000.1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr3-3-3.24.2-160000.1.1.ppc64le as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le"
},
"product_reference": "libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr3-3-3.24.2-160000.1.1.s390x as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x"
},
"product_reference": "libwinpr3-3-3.24.2-160000.1.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr3-3-3.24.2-160000.1.1.x86_64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64"
},
"product_reference": "libwinpr3-3-3.24.2-160000.1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "winpr-devel-3.24.2-160000.1.1.aarch64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64"
},
"product_reference": "winpr-devel-3.24.2-160000.1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "winpr-devel-3.24.2-160000.1.1.ppc64le as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le"
},
"product_reference": "winpr-devel-3.24.2-160000.1.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "winpr-devel-3.24.2-160000.1.1.s390x as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x"
},
"product_reference": "winpr-devel-3.24.2-160000.1.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "winpr-devel-3.24.2-160000.1.1.x86_64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
},
"product_reference": "winpr-devel-3.24.2-160000.1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-25941",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-25941"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Versions on the 2.x branch prior to to 2.11.8 and on the 3.x branch prior to 3.23.0 have an out-of-bounds read vulnerability in the FreeRDP client\u0027s RDPGFX channel that allows a malicious RDP server to read uninitialized heap memory by sending a crafted WIRE_TO_SURFACE_2 PDU with a `bitmapDataLength` value larger than the actual data in the packet. This can lead to information disclosure or client crashes when a user connects to a malicious server. Versions 2.11.8 and 3.23.0 fix the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-25941",
"url": "https://www.suse.com/security/cve/CVE-2026-25941"
},
{
"category": "external",
"summary": "SUSE Bug 1258919 for CVE-2026-25941",
"url": "https://bugzilla.suse.com/1258919"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-30T16:54:05Z",
"details": "moderate"
}
],
"title": "CVE-2026-25941"
},
{
"cve": "CVE-2026-25942",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-25942"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `xf_rail_server_execute_result` indexes the global `error_code_names[]` array (7 elements, indices 0-6) with an unchecked `execResult-\u003eexecResult` value received from the server, allowing an out-of-bounds read when the server sends an `execResult` value of 7 or greater. Version 3.23.0 fixes the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-25942",
"url": "https://www.suse.com/security/cve/CVE-2026-25942"
},
{
"category": "external",
"summary": "SUSE Bug 1258920 for CVE-2026-25942",
"url": "https://bugzilla.suse.com/1258920"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-30T16:54:05Z",
"details": "moderate"
}
],
"title": "CVE-2026-25942"
},
{
"cve": "CVE-2026-25952",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-25952"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `xf_SetWindowMinMaxInfo` dereferences a freed `xfAppWindow` pointer because `xf_rail_get_window` in `xf_rail_server_min_max_info` returns an unprotected pointer from the `railWindows` hash table, and the main thread can concurrently delete the window (via a window delete order) while the RAIL channel thread is still using the pointer. Version 3.23.0 fixes the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-25952",
"url": "https://www.suse.com/security/cve/CVE-2026-25952"
},
{
"category": "external",
"summary": "SUSE Bug 1258921 for CVE-2026-25952",
"url": "https://bugzilla.suse.com/1258921"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-30T16:54:05Z",
"details": "moderate"
}
],
"title": "CVE-2026-25952"
},
{
"cve": "CVE-2026-25953",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-25953"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `xf_AppUpdateWindowFromSurface` reads from a freed `xfAppWindow` because the RDPGFX DVC thread obtains a bare pointer via `xf_rail_get_window` without any lifetime protection, while the main thread can concurrently delete the window through a fastpath window-delete order. Version 3.23.0 fixes the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-25953",
"url": "https://www.suse.com/security/cve/CVE-2026-25953"
},
{
"category": "external",
"summary": "SUSE Bug 1258923 for CVE-2026-25953",
"url": "https://bugzilla.suse.com/1258923"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-30T16:54:05Z",
"details": "moderate"
}
],
"title": "CVE-2026-25953"
},
{
"cve": "CVE-2026-25954",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-25954"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `xf_rail_server_local_move_size` dereferences a freed `xfAppWindow` pointer because `xf_rail_get_window` returns an unprotected pointer from the `railWindows` hash table, and the main thread can concurrently delete the window (via a window delete order) while the RAIL channel thread is still using the pointer. Version 3.23.0 fixes the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-25954",
"url": "https://www.suse.com/security/cve/CVE-2026-25954"
},
{
"category": "external",
"summary": "SUSE Bug 1258924 for CVE-2026-25954",
"url": "https://bugzilla.suse.com/1258924"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-30T16:54:05Z",
"details": "moderate"
}
],
"title": "CVE-2026-25954"
},
{
"cve": "CVE-2026-25955",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-25955"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `xf_AppUpdateWindowFromSurface` reuses a cached `XImage` whose `data` pointer references a freed RDPGFX surface buffer, because `gdi_DeleteSurface` frees `surface-\u003edata` without invalidating the `appWindow-\u003eimage` that aliases it. Version 3.23.0 fixes the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-25955",
"url": "https://www.suse.com/security/cve/CVE-2026-25955"
},
{
"category": "external",
"summary": "SUSE Bug 1258973 for CVE-2026-25955",
"url": "https://bugzilla.suse.com/1258973"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-30T16:54:05Z",
"details": "moderate"
}
],
"title": "CVE-2026-25955"
},
{
"cve": "CVE-2026-25959",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-25959"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `xf_cliprdr_provide_data_` passes freed `pDstData` to `XChangeProperty` because the cliprdr channel thread calls `xf_cliprdr_server_format_data_response` which converts and uses the clipboard data without holding any lock, while the X11 event thread concurrently calls `xf_cliprdr_clear_cached_data` -\u003e `HashTable_Clear` which frees the same data via `xf_cached_data_free`, triggering a heap use after free. Version 3.23.0 fixes the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-25959",
"url": "https://www.suse.com/security/cve/CVE-2026-25959"
},
{
"category": "external",
"summary": "SUSE Bug 1258976 for CVE-2026-25959",
"url": "https://bugzilla.suse.com/1258976"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-30T16:54:05Z",
"details": "moderate"
}
],
"title": "CVE-2026-25959"
},
{
"cve": "CVE-2026-25997",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-25997"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `xf_clipboard_format_equal` reads freed `lastSentFormats` memory because `xf_clipboard_formats_free` (called from the cliprdr channel thread during auto-reconnect) frees the array while the X11 event thread concurrently iterates it in `xf_clipboard_changed`, triggering a heap use after free. Version 3.23.0 fixes the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-25997",
"url": "https://www.suse.com/security/cve/CVE-2026-25997"
},
{
"category": "external",
"summary": "SUSE Bug 1258977 for CVE-2026-25997",
"url": "https://bugzilla.suse.com/1258977"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-30T16:54:05Z",
"details": "moderate"
}
],
"title": "CVE-2026-25997"
},
{
"cve": "CVE-2026-26271",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-26271"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, a buffer overread in `freerdp_image_copy_from_icon_data()` (libfreerdp/codec/color.c) can be triggered by crafted RDP Window Icon (TS_ICON_INFO) data. The bug is reachable over the network when a client processes icon data from an RDP server (or from a man-in-the-middle). Version 3.23.0 fixes the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-26271",
"url": "https://www.suse.com/security/cve/CVE-2026-26271"
},
{
"category": "external",
"summary": "SUSE Bug 1258979 for CVE-2026-26271",
"url": "https://bugzilla.suse.com/1258979"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-30T16:54:05Z",
"details": "moderate"
}
],
"title": "CVE-2026-26271"
},
{
"cve": "CVE-2026-26955",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-26955"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, a malicious RDP server can trigger a heap buffer overflow in FreeRDP clients using the GDI surface pipeline (e.g., `xfreerdp`) by sending an RDPGFX ClearCodec surface command with an out-of-bounds destination rectangle. The `gdi_SurfaceCommand_ClearCodec()` handler does not call `is_within_surface()` to validate the command rectangle against the destination surface dimensions, allowing attacker-controlled `cmd-\u003eleft`/`cmd-\u003etop` (and subcodec rectangle offsets) to reach image copy routines that write into `surface-\u003edata` without bounds enforcement. The OOB write corrupts an adjacent `gdiGfxSurface` struct\u0027s `codecs*` pointer with attacker-controlled pixel data, and corruption of `codecs*` is sufficient to reach an indirect function pointer call (`NSC_CONTEXT.decode` at `nsc.c:500`) on a subsequent codec command - full instruction pointer (RIP) control demonstrated in exploitability harness. Users should upgrade to version 3.23.0 to receive a patch.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-26955",
"url": "https://www.suse.com/security/cve/CVE-2026-26955"
},
{
"category": "external",
"summary": "SUSE Bug 1258982 for CVE-2026-26955",
"url": "https://bugzilla.suse.com/1258982"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-30T16:54:05Z",
"details": "important"
}
],
"title": "CVE-2026-26955"
},
{
"cve": "CVE-2026-26965",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-26965"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, in the RLE planar decode path, `planar_decompress_plane_rle()` writes into `pDstData` at `((nYDst+y) * nDstStep) + (4*nXDst) + nChannel` without verifying that `(nYDst+nSrcHeight)` fits in the destination height or that `(nXDst+nSrcWidth)` fits in the destination stride. When `TempFormat != DstFormat`, `pDstData` becomes `planar-\u003epTempData` (sized for the desktop), while `nYDst` is only validated against the **surface** by `is_within_surface()`. A malicious RDP server can exploit this to perform a heap out-of-bounds write with attacker-controlled offset and pixel data on any connecting FreeRDP client. The OOB write reaches up to 132,096 bytes past the temp buffer end, and on the brk heap (desktop \u2264 128x128), an adjacent `NSC_CONTEXT` struct\u0027s `decode` function pointer is overwritten with attacker-controlled pixel data - control-flow-relevant corruption (function pointer overwritten) demonstrated under deterministic heap layout (`nsc-\u003edecode = 0xFF414141FF414141`). Version 3.23.0 fixes the vulnerability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-26965",
"url": "https://www.suse.com/security/cve/CVE-2026-26965"
},
{
"category": "external",
"summary": "SUSE Bug 1258985 for CVE-2026-26965",
"url": "https://bugzilla.suse.com/1258985"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-30T16:54:05Z",
"details": "important"
}
],
"title": "CVE-2026-26965"
},
{
"cve": "CVE-2026-29774",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-29774"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, a client-side heap buffer overflow occurs in the FreeRDP client\u0027s AVC420/AVC444 YUV-to-RGB conversion path due to missing horizontal bounds validation of H.264 metablock regionRects coordinates. In yuv.c, the clamp() function (line 347) only validates top/bottom against the surface/YUV height, but never checks left/right against the surface width. When avc420_yuv_to_rgb (line 67) computes destination and source pointers using rect-\u003eleft, it performs unchecked pointer arithmetic that can reach far beyond the allocated surface buffer. A malicious server sends a WIRE_TO_SURFACE_PDU_1 with AVC420 codec containing a regionRects entry where left greatly exceeds the surface width (e.g., left=60000 on a 128px surface). The H.264 bitstream decodes successfully, then yuv420_process_work_callback calls avc420_yuv_to_rgb which computes pDstPoint = pDstData + rect-\u003etop * nDstStep + rect-\u003eleft * 4, writing 16-byte SSE vectors 1888+ bytes past the allocated heap region. This vulnerability is fixed in 3.24.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-29774",
"url": "https://www.suse.com/security/cve/CVE-2026-29774"
},
{
"category": "external",
"summary": "SUSE Bug 1259689 for CVE-2026-29774",
"url": "https://bugzilla.suse.com/1259689"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-30T16:54:05Z",
"details": "moderate"
}
],
"title": "CVE-2026-29774"
},
{
"cve": "CVE-2026-29775",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-29775"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, a client-side heap out-of-bounds read/write occurs in FreeRDP\u0027s bitmap cache subsystem due to an off-by-one boundary check in bitmap_cache_put. A malicious server can send a CACHE_BITMAP_ORDER (Rev1) with cacheId equal to maxCells, bypassing the guard and accessing cells[] one element past the allocated array. This vulnerability is fixed in 3.24.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-29775",
"url": "https://www.suse.com/security/cve/CVE-2026-29775"
},
{
"category": "external",
"summary": "SUSE Bug 1259684 for CVE-2026-29775",
"url": "https://bugzilla.suse.com/1259684"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.7,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-30T16:54:05Z",
"details": "low"
}
],
"title": "CVE-2026-29775"
},
{
"cve": "CVE-2026-29776",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-29776"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, Integer Underflow in update_read_cache_bitmap_order Function of FreeRDP\u0027s Core Library This vulnerability is fixed in 3.24.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-29776",
"url": "https://www.suse.com/security/cve/CVE-2026-29776"
},
{
"category": "external",
"summary": "SUSE Bug 1259692 for CVE-2026-29776",
"url": "https://bugzilla.suse.com/1259692"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.1,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-30T16:54:05Z",
"details": "low"
}
],
"title": "CVE-2026-29776"
},
{
"cve": "CVE-2026-31806",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-31806"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, the gdi_surface_bits() function processes SURFACE_BITS_COMMAND messages sent by the RDP server. When the command is handled using NSCodec, the bmp.width and bmp.height values provided by the server are not properly validated against the actual desktop dimensions. A malicious RDP server can supply crafted bmp.width and bmp.height values that exceed the expected surface size. Because these values are used during bitmap decoding and memory operations without proper bounds checking, this can lead to a heap buffer overflow. Since the attacker can also control the associated pixel data transmitted by the server, the overflow may be exploitable to overwrite adjacent heap memory. This vulnerability is fixed in 3.24.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-31806",
"url": "https://www.suse.com/security/cve/CVE-2026-31806"
},
{
"category": "external",
"summary": "SUSE Bug 1259653 for CVE-2026-31806",
"url": "https://bugzilla.suse.com/1259653"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-30T16:54:05Z",
"details": "important"
}
],
"title": "CVE-2026-31806"
},
{
"cve": "CVE-2026-31883",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-31883"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, a size_t underflow in the IMA-ADPCM and MS-ADPCM audio decoders leads to heap-buffer-overflow write via the RDPSND audio channel. In libfreerdp/codec/dsp.c, the IMA-ADPCM and MS-ADPCM decoders subtract block header sizes from a size_t variable without checking for underflow. When nBlockAlign (received from the server) is set such that size % block_size == 0 triggers the header parsing at a point where size is smaller than the header (4 or 8 bytes), the subtraction wraps size to ~SIZE_MAX. The while (size \u003e 0) loop then continues for an astronomical number of iterations. This vulnerability is fixed in 3.24.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-31883",
"url": "https://www.suse.com/security/cve/CVE-2026-31883"
},
{
"category": "external",
"summary": "SUSE Bug 1259679 for CVE-2026-31883",
"url": "https://bugzilla.suse.com/1259679"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-30T16:54:05Z",
"details": "important"
}
],
"title": "CVE-2026-31883"
},
{
"cve": "CVE-2026-31884",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-31884"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, division by zero in MS-ADPCM and IMA-ADPCM decoders when nBlockAlign is 0, leading to a crash. In libfreerdp/codec/dsp.c, both ADPCM decoders use size % block_size where block_size = context-\u003ecommon.format.nBlockAlign. The nBlockAlign value comes from the Server Audio Formats PDU on the RDPSND channel. The value 0 is not validated anywhere before reaching the decoder. When nBlockAlign = 0, the modulo operation causes a SIGFPE (floating point exception) crash. This vulnerability is fixed in 3.24.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-31884",
"url": "https://www.suse.com/security/cve/CVE-2026-31884"
},
{
"category": "external",
"summary": "SUSE Bug 1259680 for CVE-2026-31884",
"url": "https://bugzilla.suse.com/1259680"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-30T16:54:05Z",
"details": "moderate"
}
],
"title": "CVE-2026-31884"
},
{
"cve": "CVE-2026-31885",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-31885"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, there is an out-of-bounds read in MS-ADPCM and IMA-ADPCM decoders due to unchecked predictor and step_index values from input data. This vulnerability is fixed in 3.24.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-31885",
"url": "https://www.suse.com/security/cve/CVE-2026-31885"
},
{
"category": "external",
"summary": "SUSE Bug 1259686 for CVE-2026-31885",
"url": "https://bugzilla.suse.com/1259686"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-30T16:54:05Z",
"details": "important"
}
],
"title": "CVE-2026-31885"
},
{
"cve": "CVE-2026-31897",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-31897"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, there is an out-of-bounds read in freerdp_bitmap_decompress_planar when SrcSize is 0. The function dereferences *srcp (which points to pSrcData) without first verifying that SrcSize \u003e= 1. When SrcSize is 0 and pSrcData is non-NULL, this reads one byte past the end of the source buffer. This vulnerability is fixed in 3.24.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-31897",
"url": "https://www.suse.com/security/cve/CVE-2026-31897"
},
{
"category": "external",
"summary": "SUSE Bug 1259693 for CVE-2026-31897",
"url": "https://bugzilla.suse.com/1259693"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.1,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-30T16:54:05Z",
"details": "low"
}
],
"title": "CVE-2026-31897"
},
{
"cve": "CVE-2026-33952",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-33952"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, an unvalidated auth_length field read from the network triggers a WINPR_ASSERT() failure in rts_read_auth_verifier_no_checks(), causing any FreeRDP client connecting through a malicious RDP Gateway to crash with SIGABRT. This is a pre-authentication denial of service affecting all FreeRDP clients using RPC-over-HTTP gateway transport. The assertion is active in default release builds (WITH_VERBOSE_WINPR_ASSERT=ON). This issue has been patched in version 3.24.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-33952",
"url": "https://www.suse.com/security/cve/CVE-2026-33952"
},
{
"category": "external",
"summary": "SUSE Bug 1261196 for CVE-2026-33952",
"url": "https://bugzilla.suse.com/1261196"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-30T16:54:05Z",
"details": "moderate"
}
],
"title": "CVE-2026-33952"
},
{
"cve": "CVE-2026-33977",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-33977"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, a malicious RDP server can crash the FreeRDP client by sending audio data in IMA ADPCM format with an invalid initial step index value (\u003e= 89). The unvalidated step index is read directly from the network and used to index into a 89-entry lookup table, triggering a WINPR_ASSERT() failure and process abort via SIGABRT. This affects any FreeRDP client that has audio redirection (RDPSND) enabled, which is the default configuration. This issue has been patched in version 3.24.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-33977",
"url": "https://www.suse.com/security/cve/CVE-2026-33977"
},
{
"category": "external",
"summary": "SUSE Bug 1261198 for CVE-2026-33977",
"url": "https://bugzilla.suse.com/1261198"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-30T16:54:05Z",
"details": "moderate"
}
],
"title": "CVE-2026-33977"
},
{
"cve": "CVE-2026-33982",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-33982"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, there is a heap-buffer-overflow READ vulnerability at 24 bytes before the allocation, in winpr_aligned_offset_recalloc(). This issue has been patched in version 3.24.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-33982",
"url": "https://www.suse.com/security/cve/CVE-2026-33982"
},
{
"category": "external",
"summary": "SUSE Bug 1261222 for CVE-2026-33982",
"url": "https://bugzilla.suse.com/1261222"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-30T16:54:05Z",
"details": "moderate"
}
],
"title": "CVE-2026-33982"
},
{
"cve": "CVE-2026-33983",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-33983"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, progressive_decompress_tile_upgrade() detects a mismatch via progressive_rfx_quant_cmp_equal() but only emits WLog_WARN, execution continues. The wrapped value (247) is used as a shift exponent, causing undefined behavior and an approximately 80 billion iteration loop (CPU DoS). This issue has been patched in version 3.24.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-33983",
"url": "https://www.suse.com/security/cve/CVE-2026-33983"
},
{
"category": "external",
"summary": "SUSE Bug 1261200 for CVE-2026-33983",
"url": "https://bugzilla.suse.com/1261200"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-30T16:54:05Z",
"details": "moderate"
}
],
"title": "CVE-2026-33983"
},
{
"cve": "CVE-2026-33984",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-33984"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, in resize_vbar_entry() in libfreerdp/codec/clear.c, vBarEntry-\u003esize is updated to vBarEntry-\u003ecount before the winpr_aligned_recalloc() call. If realloc fails, size is inflated while pixels still points to the old, smaller buffer. On a subsequent call where count \u003c= size (the inflated value), realloc is skipped. The caller then writes count * bpp bytes of attacker-controlled pixel data into the undersized buffer, causing a heap buffer overflow. This issue has been patched in version 3.24.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-33984",
"url": "https://www.suse.com/security/cve/CVE-2026-33984"
},
{
"category": "external",
"summary": "SUSE Bug 1261211 for CVE-2026-33984",
"url": "https://bugzilla.suse.com/1261211"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-30T16:54:05Z",
"details": "important"
}
],
"title": "CVE-2026-33984"
},
{
"cve": "CVE-2026-33985",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-33985"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, pixel data from adjacent heap memory is rendered to screen, potentially leaking sensitive data to the attacker. This issue has been patched in version 3.24.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-33985",
"url": "https://www.suse.com/security/cve/CVE-2026-33985"
},
{
"category": "external",
"summary": "SUSE Bug 1261217 for CVE-2026-33985",
"url": "https://bugzilla.suse.com/1261217"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-30T16:54:05Z",
"details": "moderate"
}
],
"title": "CVE-2026-33985"
},
{
"cve": "CVE-2026-33986",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-33986"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, in yuv_ensure_buffer() in libfreerdp/codec/h264.c, h264-\u003ewidth and h264-\u003eheight are updated before the reallocation loop. If any winpr_aligned_recalloc() call fails, the function returns FALSE but width/height are already inflated. This issue has been patched in version 3.24.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-33986",
"url": "https://www.suse.com/security/cve/CVE-2026-33986"
},
{
"category": "external",
"summary": "SUSE Bug 1261223 for CVE-2026-33986",
"url": "https://bugzilla.suse.com/1261223"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-30T16:54:05Z",
"details": "important"
}
],
"title": "CVE-2026-33986"
},
{
"cve": "CVE-2026-33987",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-33987"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, in persistent_cache_read_entry_v3() in libfreerdp/cache/persistent.c, persistent-\u003ebmpSize is updated before winpr_aligned_recalloc(). If realloc fails, bmpSize is inflated while bmpData points to the old buffer. This issue has been patched in version 3.24.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-33987",
"url": "https://www.suse.com/security/cve/CVE-2026-33987"
},
{
"category": "external",
"summary": "SUSE Bug 1261226 for CVE-2026-33987",
"url": "https://bugzilla.suse.com/1261226"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-30T16:54:05Z",
"details": "moderate"
}
],
"title": "CVE-2026-33987"
},
{
"cve": "CVE-2026-33995",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-33995"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, a double-free vulnerability in kerberos_AcceptSecurityContext() and kerberos_InitializeSecurityContextA() (WinPR, winpr/libwinpr/sspi/Kerberos/kerberos.c) can cause a crash in any FreeRDP clients on systems where Kerberos and/or Kerberos U2U is configured (Samba AD member, or krb5 for NFS). The crash is triggered during NLA connection teardown and requires a failed authentication attempt. This issue has been patched in version 3.24.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-33995",
"url": "https://www.suse.com/security/cve/CVE-2026-33995"
},
{
"category": "external",
"summary": "SUSE Bug 1261227 for CVE-2026-33995",
"url": "https://bugzilla.suse.com/1261227"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:winpr-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-devel-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-proxy-plugins-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-sdl-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-server-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:freerdp-wayland-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp-server-proxy3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libfreerdp3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:librdtk0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libuwac0-0-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:libwinpr3-3-3.24.2-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:winpr-devel-3.24.2-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-30T16:54:05Z",
"details": "moderate"
}
],
"title": "CVE-2026-33995"
}
]
}
SUSE-SU-2026:1632-1
Vulnerability from csaf_suse - Published: 2026-04-27 12:04 - Updated: 2026-04-27 12:04Summary
Security update for freerdp
Severity
Important
Notes
Title of the patch: Security update for freerdp
Description of the patch: This update for freerdp fixes the following issues:
- CVE-2026-25941: Out-of-Bounds Read in client RDPGFX channel via crafted `WIRE_TO_SURFACE_2` PDU (bsc#1258919).
- CVE-2026-25942: Global-buffer-overflow in `xf_rail_server_execute_result` (bsc#1258920).
- CVE-2026-25952: Heap-use-after-free in `xf_SetWindowMinMaxInfo` (bsc#1258921).
- CVE-2026-25953: Heap-use-after-free in `xf_AppUpdateWindowFromSurface` (bsc#1258923).
- CVE-2026-25954: Heap-use-after-free in `xf_rail_server_local_move_size` (bsc#1258924).
- CVE-2026-25997: Heap-use-after-free in `xf_clipboard_format_equal` (bsc#1258977).
- CVE-2026-26986: Heap-use-after-free in `rail_window_free` (bsc#1258967).
- CVE-2026-27015: Smartcard NDR alignment padding triggers reachable `WINPR_ASSERT` abort (bsc#1258987).
- CVE-2026-27951: Denial of service via endless blocking loop in `Stream_EnsureCapacity` (bsc#1258939).
- CVE-2026-29774: Missing bounds validation can cause a client-side heap buffer overflow (bsc#1259689).
- CVE-2026-29775: Malicious server can trigger a client-side heap out-of-bounds access (bsc#1259684).
- CVE-2026-29776: Missing length check can lead to an integer underflow (bsc#1259692).
- CVE-2026-31897: Missing length check can cause an out-of-bounds read (bsc#1259693).
Patchnames: SUSE-2026-1632,SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2026-1632
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
4.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.9 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
References
| URL | Category | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for freerdp",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for freerdp fixes the following issues:\n\n- CVE-2026-25941: Out-of-Bounds Read in client RDPGFX channel via crafted `WIRE_TO_SURFACE_2` PDU (bsc#1258919).\n- CVE-2026-25942: Global-buffer-overflow in `xf_rail_server_execute_result` (bsc#1258920).\n- CVE-2026-25952: Heap-use-after-free in `xf_SetWindowMinMaxInfo` (bsc#1258921).\n- CVE-2026-25953: Heap-use-after-free in `xf_AppUpdateWindowFromSurface` (bsc#1258923).\n- CVE-2026-25954: Heap-use-after-free in `xf_rail_server_local_move_size` (bsc#1258924).\n- CVE-2026-25997: Heap-use-after-free in `xf_clipboard_format_equal` (bsc#1258977).\n- CVE-2026-26986: Heap-use-after-free in `rail_window_free` (bsc#1258967).\n- CVE-2026-27015: Smartcard NDR alignment padding triggers reachable `WINPR_ASSERT` abort (bsc#1258987).\n- CVE-2026-27951: Denial of service via endless blocking loop in `Stream_EnsureCapacity` (bsc#1258939).\n- CVE-2026-29774: Missing bounds validation can cause a client-side heap buffer overflow (bsc#1259689).\n- CVE-2026-29775: Malicious server can trigger a client-side heap out-of-bounds access (bsc#1259684).\n- CVE-2026-29776: Missing length check can lead to an integer underflow (bsc#1259692).\n- CVE-2026-31897: Missing length check can cause an out-of-bounds read (bsc#1259693).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2026-1632,SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2026-1632",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_1632-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:1632-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20261632-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:1632-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2026-April/046048.html"
},
{
"category": "self",
"summary": "SUSE Bug 1258919",
"url": "https://bugzilla.suse.com/1258919"
},
{
"category": "self",
"summary": "SUSE Bug 1258920",
"url": "https://bugzilla.suse.com/1258920"
},
{
"category": "self",
"summary": "SUSE Bug 1258921",
"url": "https://bugzilla.suse.com/1258921"
},
{
"category": "self",
"summary": "SUSE Bug 1258923",
"url": "https://bugzilla.suse.com/1258923"
},
{
"category": "self",
"summary": "SUSE Bug 1258924",
"url": "https://bugzilla.suse.com/1258924"
},
{
"category": "self",
"summary": "SUSE Bug 1258939",
"url": "https://bugzilla.suse.com/1258939"
},
{
"category": "self",
"summary": "SUSE Bug 1258967",
"url": "https://bugzilla.suse.com/1258967"
},
{
"category": "self",
"summary": "SUSE Bug 1258977",
"url": "https://bugzilla.suse.com/1258977"
},
{
"category": "self",
"summary": "SUSE Bug 1258987",
"url": "https://bugzilla.suse.com/1258987"
},
{
"category": "self",
"summary": "SUSE Bug 1259680",
"url": "https://bugzilla.suse.com/1259680"
},
{
"category": "self",
"summary": "SUSE Bug 1259684",
"url": "https://bugzilla.suse.com/1259684"
},
{
"category": "self",
"summary": "SUSE Bug 1259689",
"url": "https://bugzilla.suse.com/1259689"
},
{
"category": "self",
"summary": "SUSE Bug 1259692",
"url": "https://bugzilla.suse.com/1259692"
},
{
"category": "self",
"summary": "SUSE Bug 1259693",
"url": "https://bugzilla.suse.com/1259693"
},
{
"category": "self",
"summary": "SUSE Bug 1261848",
"url": "https://bugzilla.suse.com/1261848"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-25941 page",
"url": "https://www.suse.com/security/cve/CVE-2026-25941/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-25942 page",
"url": "https://www.suse.com/security/cve/CVE-2026-25942/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-25952 page",
"url": "https://www.suse.com/security/cve/CVE-2026-25952/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-25953 page",
"url": "https://www.suse.com/security/cve/CVE-2026-25953/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-25954 page",
"url": "https://www.suse.com/security/cve/CVE-2026-25954/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-25997 page",
"url": "https://www.suse.com/security/cve/CVE-2026-25997/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-26986 page",
"url": "https://www.suse.com/security/cve/CVE-2026-26986/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-27015 page",
"url": "https://www.suse.com/security/cve/CVE-2026-27015/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-27951 page",
"url": "https://www.suse.com/security/cve/CVE-2026-27951/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-29774 page",
"url": "https://www.suse.com/security/cve/CVE-2026-29774/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-29775 page",
"url": "https://www.suse.com/security/cve/CVE-2026-29775/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-29776 page",
"url": "https://www.suse.com/security/cve/CVE-2026-29776/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-31884 page",
"url": "https://www.suse.com/security/cve/CVE-2026-31884/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-31897 page",
"url": "https://www.suse.com/security/cve/CVE-2026-31897/"
}
],
"title": "Security update for freerdp",
"tracking": {
"current_release_date": "2026-04-27T12:04:30Z",
"generator": {
"date": "2026-04-27T12:04:30Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:1632-1",
"initial_release_date": "2026-04-27T12:04:30Z",
"revision_history": [
{
"date": "2026-04-27T12:04:30Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "freerdp-2.11.2-150600.4.26.1.aarch64",
"product": {
"name": "freerdp-2.11.2-150600.4.26.1.aarch64",
"product_id": "freerdp-2.11.2-150600.4.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "freerdp-devel-2.11.2-150600.4.26.1.aarch64",
"product": {
"name": "freerdp-devel-2.11.2-150600.4.26.1.aarch64",
"product_id": "freerdp-devel-2.11.2-150600.4.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-2.11.2-150600.4.26.1.aarch64",
"product": {
"name": "freerdp-proxy-2.11.2-150600.4.26.1.aarch64",
"product_id": "freerdp-proxy-2.11.2-150600.4.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "freerdp-server-2.11.2-150600.4.26.1.aarch64",
"product": {
"name": "freerdp-server-2.11.2-150600.4.26.1.aarch64",
"product_id": "freerdp-server-2.11.2-150600.4.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "freerdp-wayland-2.11.2-150600.4.26.1.aarch64",
"product": {
"name": "freerdp-wayland-2.11.2-150600.4.26.1.aarch64",
"product_id": "freerdp-wayland-2.11.2-150600.4.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "libfreerdp2-2-2.11.2-150600.4.26.1.aarch64",
"product": {
"name": "libfreerdp2-2-2.11.2-150600.4.26.1.aarch64",
"product_id": "libfreerdp2-2-2.11.2-150600.4.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "libuwac0-0-2.11.2-150600.4.26.1.aarch64",
"product": {
"name": "libuwac0-0-2.11.2-150600.4.26.1.aarch64",
"product_id": "libuwac0-0-2.11.2-150600.4.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "libwinpr2-2-2.11.2-150600.4.26.1.aarch64",
"product": {
"name": "libwinpr2-2-2.11.2-150600.4.26.1.aarch64",
"product_id": "libwinpr2-2-2.11.2-150600.4.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "uwac0-0-devel-2.11.2-150600.4.26.1.aarch64",
"product": {
"name": "uwac0-0-devel-2.11.2-150600.4.26.1.aarch64",
"product_id": "uwac0-0-devel-2.11.2-150600.4.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "winpr-devel-2.11.2-150600.4.26.1.aarch64",
"product": {
"name": "winpr-devel-2.11.2-150600.4.26.1.aarch64",
"product_id": "winpr-devel-2.11.2-150600.4.26.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "freerdp-2.11.2-150600.4.26.1.i586",
"product": {
"name": "freerdp-2.11.2-150600.4.26.1.i586",
"product_id": "freerdp-2.11.2-150600.4.26.1.i586"
}
},
{
"category": "product_version",
"name": "freerdp-devel-2.11.2-150600.4.26.1.i586",
"product": {
"name": "freerdp-devel-2.11.2-150600.4.26.1.i586",
"product_id": "freerdp-devel-2.11.2-150600.4.26.1.i586"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-2.11.2-150600.4.26.1.i586",
"product": {
"name": "freerdp-proxy-2.11.2-150600.4.26.1.i586",
"product_id": "freerdp-proxy-2.11.2-150600.4.26.1.i586"
}
},
{
"category": "product_version",
"name": "freerdp-server-2.11.2-150600.4.26.1.i586",
"product": {
"name": "freerdp-server-2.11.2-150600.4.26.1.i586",
"product_id": "freerdp-server-2.11.2-150600.4.26.1.i586"
}
},
{
"category": "product_version",
"name": "freerdp-wayland-2.11.2-150600.4.26.1.i586",
"product": {
"name": "freerdp-wayland-2.11.2-150600.4.26.1.i586",
"product_id": "freerdp-wayland-2.11.2-150600.4.26.1.i586"
}
},
{
"category": "product_version",
"name": "libfreerdp2-2-2.11.2-150600.4.26.1.i586",
"product": {
"name": "libfreerdp2-2-2.11.2-150600.4.26.1.i586",
"product_id": "libfreerdp2-2-2.11.2-150600.4.26.1.i586"
}
},
{
"category": "product_version",
"name": "libuwac0-0-2.11.2-150600.4.26.1.i586",
"product": {
"name": "libuwac0-0-2.11.2-150600.4.26.1.i586",
"product_id": "libuwac0-0-2.11.2-150600.4.26.1.i586"
}
},
{
"category": "product_version",
"name": "libwinpr2-2-2.11.2-150600.4.26.1.i586",
"product": {
"name": "libwinpr2-2-2.11.2-150600.4.26.1.i586",
"product_id": "libwinpr2-2-2.11.2-150600.4.26.1.i586"
}
},
{
"category": "product_version",
"name": "uwac0-0-devel-2.11.2-150600.4.26.1.i586",
"product": {
"name": "uwac0-0-devel-2.11.2-150600.4.26.1.i586",
"product_id": "uwac0-0-devel-2.11.2-150600.4.26.1.i586"
}
},
{
"category": "product_version",
"name": "winpr-devel-2.11.2-150600.4.26.1.i586",
"product": {
"name": "winpr-devel-2.11.2-150600.4.26.1.i586",
"product_id": "winpr-devel-2.11.2-150600.4.26.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "freerdp-2.11.2-150600.4.26.1.ppc64le",
"product": {
"name": "freerdp-2.11.2-150600.4.26.1.ppc64le",
"product_id": "freerdp-2.11.2-150600.4.26.1.ppc64le"
}
},
{
"category": "product_version",
"name": "freerdp-devel-2.11.2-150600.4.26.1.ppc64le",
"product": {
"name": "freerdp-devel-2.11.2-150600.4.26.1.ppc64le",
"product_id": "freerdp-devel-2.11.2-150600.4.26.1.ppc64le"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-2.11.2-150600.4.26.1.ppc64le",
"product": {
"name": "freerdp-proxy-2.11.2-150600.4.26.1.ppc64le",
"product_id": "freerdp-proxy-2.11.2-150600.4.26.1.ppc64le"
}
},
{
"category": "product_version",
"name": "freerdp-server-2.11.2-150600.4.26.1.ppc64le",
"product": {
"name": "freerdp-server-2.11.2-150600.4.26.1.ppc64le",
"product_id": "freerdp-server-2.11.2-150600.4.26.1.ppc64le"
}
},
{
"category": "product_version",
"name": "freerdp-wayland-2.11.2-150600.4.26.1.ppc64le",
"product": {
"name": "freerdp-wayland-2.11.2-150600.4.26.1.ppc64le",
"product_id": "freerdp-wayland-2.11.2-150600.4.26.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libfreerdp2-2-2.11.2-150600.4.26.1.ppc64le",
"product": {
"name": "libfreerdp2-2-2.11.2-150600.4.26.1.ppc64le",
"product_id": "libfreerdp2-2-2.11.2-150600.4.26.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libuwac0-0-2.11.2-150600.4.26.1.ppc64le",
"product": {
"name": "libuwac0-0-2.11.2-150600.4.26.1.ppc64le",
"product_id": "libuwac0-0-2.11.2-150600.4.26.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libwinpr2-2-2.11.2-150600.4.26.1.ppc64le",
"product": {
"name": "libwinpr2-2-2.11.2-150600.4.26.1.ppc64le",
"product_id": "libwinpr2-2-2.11.2-150600.4.26.1.ppc64le"
}
},
{
"category": "product_version",
"name": "uwac0-0-devel-2.11.2-150600.4.26.1.ppc64le",
"product": {
"name": "uwac0-0-devel-2.11.2-150600.4.26.1.ppc64le",
"product_id": "uwac0-0-devel-2.11.2-150600.4.26.1.ppc64le"
}
},
{
"category": "product_version",
"name": "winpr-devel-2.11.2-150600.4.26.1.ppc64le",
"product": {
"name": "winpr-devel-2.11.2-150600.4.26.1.ppc64le",
"product_id": "winpr-devel-2.11.2-150600.4.26.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "freerdp-2.11.2-150600.4.26.1.s390x",
"product": {
"name": "freerdp-2.11.2-150600.4.26.1.s390x",
"product_id": "freerdp-2.11.2-150600.4.26.1.s390x"
}
},
{
"category": "product_version",
"name": "freerdp-devel-2.11.2-150600.4.26.1.s390x",
"product": {
"name": "freerdp-devel-2.11.2-150600.4.26.1.s390x",
"product_id": "freerdp-devel-2.11.2-150600.4.26.1.s390x"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-2.11.2-150600.4.26.1.s390x",
"product": {
"name": "freerdp-proxy-2.11.2-150600.4.26.1.s390x",
"product_id": "freerdp-proxy-2.11.2-150600.4.26.1.s390x"
}
},
{
"category": "product_version",
"name": "freerdp-server-2.11.2-150600.4.26.1.s390x",
"product": {
"name": "freerdp-server-2.11.2-150600.4.26.1.s390x",
"product_id": "freerdp-server-2.11.2-150600.4.26.1.s390x"
}
},
{
"category": "product_version",
"name": "freerdp-wayland-2.11.2-150600.4.26.1.s390x",
"product": {
"name": "freerdp-wayland-2.11.2-150600.4.26.1.s390x",
"product_id": "freerdp-wayland-2.11.2-150600.4.26.1.s390x"
}
},
{
"category": "product_version",
"name": "libfreerdp2-2-2.11.2-150600.4.26.1.s390x",
"product": {
"name": "libfreerdp2-2-2.11.2-150600.4.26.1.s390x",
"product_id": "libfreerdp2-2-2.11.2-150600.4.26.1.s390x"
}
},
{
"category": "product_version",
"name": "libuwac0-0-2.11.2-150600.4.26.1.s390x",
"product": {
"name": "libuwac0-0-2.11.2-150600.4.26.1.s390x",
"product_id": "libuwac0-0-2.11.2-150600.4.26.1.s390x"
}
},
{
"category": "product_version",
"name": "libwinpr2-2-2.11.2-150600.4.26.1.s390x",
"product": {
"name": "libwinpr2-2-2.11.2-150600.4.26.1.s390x",
"product_id": "libwinpr2-2-2.11.2-150600.4.26.1.s390x"
}
},
{
"category": "product_version",
"name": "uwac0-0-devel-2.11.2-150600.4.26.1.s390x",
"product": {
"name": "uwac0-0-devel-2.11.2-150600.4.26.1.s390x",
"product_id": "uwac0-0-devel-2.11.2-150600.4.26.1.s390x"
}
},
{
"category": "product_version",
"name": "winpr-devel-2.11.2-150600.4.26.1.s390x",
"product": {
"name": "winpr-devel-2.11.2-150600.4.26.1.s390x",
"product_id": "winpr-devel-2.11.2-150600.4.26.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "freerdp-2.11.2-150600.4.26.1.x86_64",
"product": {
"name": "freerdp-2.11.2-150600.4.26.1.x86_64",
"product_id": "freerdp-2.11.2-150600.4.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "freerdp-devel-2.11.2-150600.4.26.1.x86_64",
"product": {
"name": "freerdp-devel-2.11.2-150600.4.26.1.x86_64",
"product_id": "freerdp-devel-2.11.2-150600.4.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-2.11.2-150600.4.26.1.x86_64",
"product": {
"name": "freerdp-proxy-2.11.2-150600.4.26.1.x86_64",
"product_id": "freerdp-proxy-2.11.2-150600.4.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "freerdp-server-2.11.2-150600.4.26.1.x86_64",
"product": {
"name": "freerdp-server-2.11.2-150600.4.26.1.x86_64",
"product_id": "freerdp-server-2.11.2-150600.4.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "freerdp-wayland-2.11.2-150600.4.26.1.x86_64",
"product": {
"name": "freerdp-wayland-2.11.2-150600.4.26.1.x86_64",
"product_id": "freerdp-wayland-2.11.2-150600.4.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "libfreerdp2-2-2.11.2-150600.4.26.1.x86_64",
"product": {
"name": "libfreerdp2-2-2.11.2-150600.4.26.1.x86_64",
"product_id": "libfreerdp2-2-2.11.2-150600.4.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "libuwac0-0-2.11.2-150600.4.26.1.x86_64",
"product": {
"name": "libuwac0-0-2.11.2-150600.4.26.1.x86_64",
"product_id": "libuwac0-0-2.11.2-150600.4.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "libwinpr2-2-2.11.2-150600.4.26.1.x86_64",
"product": {
"name": "libwinpr2-2-2.11.2-150600.4.26.1.x86_64",
"product_id": "libwinpr2-2-2.11.2-150600.4.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "uwac0-0-devel-2.11.2-150600.4.26.1.x86_64",
"product": {
"name": "uwac0-0-devel-2.11.2-150600.4.26.1.x86_64",
"product_id": "uwac0-0-devel-2.11.2-150600.4.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "winpr-devel-2.11.2-150600.4.26.1.x86_64",
"product": {
"name": "winpr-devel-2.11.2-150600.4.26.1.x86_64",
"product_id": "winpr-devel-2.11.2-150600.4.26.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Package Hub 15 SP7",
"product": {
"name": "SUSE Linux Enterprise Module for Package Hub 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP7",
"product_identification_helper": {
"cpe": "cpe:/o:suse:packagehub:15:sp7"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "uwac0-0-devel-2.11.2-150600.4.26.1.aarch64 as component of SUSE Linux Enterprise Module for Package Hub 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.aarch64"
},
"product_reference": "uwac0-0-devel-2.11.2-150600.4.26.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "uwac0-0-devel-2.11.2-150600.4.26.1.ppc64le as component of SUSE Linux Enterprise Module for Package Hub 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.ppc64le"
},
"product_reference": "uwac0-0-devel-2.11.2-150600.4.26.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "uwac0-0-devel-2.11.2-150600.4.26.1.s390x as component of SUSE Linux Enterprise Module for Package Hub 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.s390x"
},
"product_reference": "uwac0-0-devel-2.11.2-150600.4.26.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP7"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-25941",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-25941"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Versions on the 2.x branch prior to to 2.11.8 and on the 3.x branch prior to 3.23.0 have an out-of-bounds read vulnerability in the FreeRDP client\u0027s RDPGFX channel that allows a malicious RDP server to read uninitialized heap memory by sending a crafted WIRE_TO_SURFACE_2 PDU with a `bitmapDataLength` value larger than the actual data in the packet. This can lead to information disclosure or client crashes when a user connects to a malicious server. Versions 2.11.8 and 3.23.0 fix the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-25941",
"url": "https://www.suse.com/security/cve/CVE-2026-25941"
},
{
"category": "external",
"summary": "SUSE Bug 1258919 for CVE-2026-25941",
"url": "https://bugzilla.suse.com/1258919"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-27T12:04:30Z",
"details": "moderate"
}
],
"title": "CVE-2026-25941"
},
{
"cve": "CVE-2026-25942",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-25942"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `xf_rail_server_execute_result` indexes the global `error_code_names[]` array (7 elements, indices 0-6) with an unchecked `execResult-\u003eexecResult` value received from the server, allowing an out-of-bounds read when the server sends an `execResult` value of 7 or greater. Version 3.23.0 fixes the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-25942",
"url": "https://www.suse.com/security/cve/CVE-2026-25942"
},
{
"category": "external",
"summary": "SUSE Bug 1258920 for CVE-2026-25942",
"url": "https://bugzilla.suse.com/1258920"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-27T12:04:30Z",
"details": "moderate"
}
],
"title": "CVE-2026-25942"
},
{
"cve": "CVE-2026-25952",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-25952"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `xf_SetWindowMinMaxInfo` dereferences a freed `xfAppWindow` pointer because `xf_rail_get_window` in `xf_rail_server_min_max_info` returns an unprotected pointer from the `railWindows` hash table, and the main thread can concurrently delete the window (via a window delete order) while the RAIL channel thread is still using the pointer. Version 3.23.0 fixes the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-25952",
"url": "https://www.suse.com/security/cve/CVE-2026-25952"
},
{
"category": "external",
"summary": "SUSE Bug 1258921 for CVE-2026-25952",
"url": "https://bugzilla.suse.com/1258921"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-27T12:04:30Z",
"details": "moderate"
}
],
"title": "CVE-2026-25952"
},
{
"cve": "CVE-2026-25953",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-25953"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `xf_AppUpdateWindowFromSurface` reads from a freed `xfAppWindow` because the RDPGFX DVC thread obtains a bare pointer via `xf_rail_get_window` without any lifetime protection, while the main thread can concurrently delete the window through a fastpath window-delete order. Version 3.23.0 fixes the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-25953",
"url": "https://www.suse.com/security/cve/CVE-2026-25953"
},
{
"category": "external",
"summary": "SUSE Bug 1258923 for CVE-2026-25953",
"url": "https://bugzilla.suse.com/1258923"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-27T12:04:30Z",
"details": "moderate"
}
],
"title": "CVE-2026-25953"
},
{
"cve": "CVE-2026-25954",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-25954"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `xf_rail_server_local_move_size` dereferences a freed `xfAppWindow` pointer because `xf_rail_get_window` returns an unprotected pointer from the `railWindows` hash table, and the main thread can concurrently delete the window (via a window delete order) while the RAIL channel thread is still using the pointer. Version 3.23.0 fixes the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-25954",
"url": "https://www.suse.com/security/cve/CVE-2026-25954"
},
{
"category": "external",
"summary": "SUSE Bug 1258924 for CVE-2026-25954",
"url": "https://bugzilla.suse.com/1258924"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-27T12:04:30Z",
"details": "moderate"
}
],
"title": "CVE-2026-25954"
},
{
"cve": "CVE-2026-25997",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-25997"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `xf_clipboard_format_equal` reads freed `lastSentFormats` memory because `xf_clipboard_formats_free` (called from the cliprdr channel thread during auto-reconnect) frees the array while the X11 event thread concurrently iterates it in `xf_clipboard_changed`, triggering a heap use after free. Version 3.23.0 fixes the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-25997",
"url": "https://www.suse.com/security/cve/CVE-2026-25997"
},
{
"category": "external",
"summary": "SUSE Bug 1258977 for CVE-2026-25997",
"url": "https://bugzilla.suse.com/1258977"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-27T12:04:30Z",
"details": "moderate"
}
],
"title": "CVE-2026-25997"
},
{
"cve": "CVE-2026-26986",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-26986"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `rail_window_free` dereferences a freed `xfAppWindow` pointer during `HashTable_Free` cleanup because `xf_rail_window_common` calls `free(appWindow)` on title allocation failure without first removing the entry from the `railWindows` hash table, leaving a dangling pointer that is freed again on disconnect. Version 3.23.0 fixes the vulnerability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-26986",
"url": "https://www.suse.com/security/cve/CVE-2026-26986"
},
{
"category": "external",
"summary": "SUSE Bug 1258967 for CVE-2026-26986",
"url": "https://bugzilla.suse.com/1258967"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-27T12:04:30Z",
"details": "moderate"
}
],
"title": "CVE-2026-26986"
},
{
"cve": "CVE-2026-27015",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-27015"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, a missing bounds check in `smartcard_unpack_read_size_align()` (`libfreerdp/utils/smartcard_pack.c:1703`) allows a malicious RDP server to crash the FreeRDP client via a reachable `WINPR_ASSERT` -\u003e `abort()`. The crash occurs in upstream builds where `WITH_VERBOSE_WINPR_ASSERT=ON` (default in FreeRDP 3.22.0 / current WinPR CMake defaults). Smartcard redirection must be explicitly enabled by the user (e.g., `xfreerdp /smartcard`; `/smartcard-logon` implies `/smartcard`). Version 3.23.0 fixes the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-27015",
"url": "https://www.suse.com/security/cve/CVE-2026-27015"
},
{
"category": "external",
"summary": "SUSE Bug 1258987 for CVE-2026-27015",
"url": "https://bugzilla.suse.com/1258987"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-27T12:04:30Z",
"details": "moderate"
}
],
"title": "CVE-2026-27015"
},
{
"cve": "CVE-2026-27951",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-27951"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, the function `Stream_EnsureCapacity` can create an endless blocking loop. This may affect all client and server implementations using `FreeRDP`. For practical exploitation this will only work on 32bit systems where the available physical memory is `\u003e= SIZE_MAX`. Version 3.23.0 contains a patch. No known workarounds are available.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-27951",
"url": "https://www.suse.com/security/cve/CVE-2026-27951"
},
{
"category": "external",
"summary": "SUSE Bug 1258939 for CVE-2026-27951",
"url": "https://bugzilla.suse.com/1258939"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-27T12:04:30Z",
"details": "moderate"
}
],
"title": "CVE-2026-27951"
},
{
"cve": "CVE-2026-29774",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-29774"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, a client-side heap buffer overflow occurs in the FreeRDP client\u0027s AVC420/AVC444 YUV-to-RGB conversion path due to missing horizontal bounds validation of H.264 metablock regionRects coordinates. In yuv.c, the clamp() function (line 347) only validates top/bottom against the surface/YUV height, but never checks left/right against the surface width. When avc420_yuv_to_rgb (line 67) computes destination and source pointers using rect-\u003eleft, it performs unchecked pointer arithmetic that can reach far beyond the allocated surface buffer. A malicious server sends a WIRE_TO_SURFACE_PDU_1 with AVC420 codec containing a regionRects entry where left greatly exceeds the surface width (e.g., left=60000 on a 128px surface). The H.264 bitstream decodes successfully, then yuv420_process_work_callback calls avc420_yuv_to_rgb which computes pDstPoint = pDstData + rect-\u003etop * nDstStep + rect-\u003eleft * 4, writing 16-byte SSE vectors 1888+ bytes past the allocated heap region. This vulnerability is fixed in 3.24.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-29774",
"url": "https://www.suse.com/security/cve/CVE-2026-29774"
},
{
"category": "external",
"summary": "SUSE Bug 1259689 for CVE-2026-29774",
"url": "https://bugzilla.suse.com/1259689"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-27T12:04:30Z",
"details": "moderate"
}
],
"title": "CVE-2026-29774"
},
{
"cve": "CVE-2026-29775",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-29775"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, a client-side heap out-of-bounds read/write occurs in FreeRDP\u0027s bitmap cache subsystem due to an off-by-one boundary check in bitmap_cache_put. A malicious server can send a CACHE_BITMAP_ORDER (Rev1) with cacheId equal to maxCells, bypassing the guard and accessing cells[] one element past the allocated array. This vulnerability is fixed in 3.24.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-29775",
"url": "https://www.suse.com/security/cve/CVE-2026-29775"
},
{
"category": "external",
"summary": "SUSE Bug 1259684 for CVE-2026-29775",
"url": "https://bugzilla.suse.com/1259684"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.7,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-27T12:04:30Z",
"details": "low"
}
],
"title": "CVE-2026-29775"
},
{
"cve": "CVE-2026-29776",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-29776"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, Integer Underflow in update_read_cache_bitmap_order Function of FreeRDP\u0027s Core Library This vulnerability is fixed in 3.24.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-29776",
"url": "https://www.suse.com/security/cve/CVE-2026-29776"
},
{
"category": "external",
"summary": "SUSE Bug 1259692 for CVE-2026-29776",
"url": "https://bugzilla.suse.com/1259692"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.1,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-27T12:04:30Z",
"details": "low"
}
],
"title": "CVE-2026-29776"
},
{
"cve": "CVE-2026-31884",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-31884"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, division by zero in MS-ADPCM and IMA-ADPCM decoders when nBlockAlign is 0, leading to a crash. In libfreerdp/codec/dsp.c, both ADPCM decoders use size % block_size where block_size = context-\u003ecommon.format.nBlockAlign. The nBlockAlign value comes from the Server Audio Formats PDU on the RDPSND channel. The value 0 is not validated anywhere before reaching the decoder. When nBlockAlign = 0, the modulo operation causes a SIGFPE (floating point exception) crash. This vulnerability is fixed in 3.24.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-31884",
"url": "https://www.suse.com/security/cve/CVE-2026-31884"
},
{
"category": "external",
"summary": "SUSE Bug 1259680 for CVE-2026-31884",
"url": "https://bugzilla.suse.com/1259680"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-27T12:04:30Z",
"details": "moderate"
}
],
"title": "CVE-2026-31884"
},
{
"cve": "CVE-2026-31897",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-31897"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, there is an out-of-bounds read in freerdp_bitmap_decompress_planar when SrcSize is 0. The function dereferences *srcp (which points to pSrcData) without first verifying that SrcSize \u003e= 1. When SrcSize is 0 and pSrcData is non-NULL, this reads one byte past the end of the source buffer. This vulnerability is fixed in 3.24.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-31897",
"url": "https://www.suse.com/security/cve/CVE-2026-31897"
},
{
"category": "external",
"summary": "SUSE Bug 1259693 for CVE-2026-31897",
"url": "https://bugzilla.suse.com/1259693"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.1,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:uwac0-0-devel-2.11.2-150600.4.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-27T12:04:30Z",
"details": "low"
}
],
"title": "CVE-2026-31897"
}
]
}
SUSE-SU-2026:1640-1
Vulnerability from csaf_suse - Published: 2026-04-28 11:33 - Updated: 2026-04-28 11:33Summary
Security update for freerdp2
Severity
Important
Notes
Title of the patch: Security update for freerdp2
Description of the patch: This update for freerdp2 fixes the following issues:
- CVE-2026-25941: Out-of-Bounds Read in client RDPGFX channel via crafted `WIRE_TO_SURFACE_2` PDU (bsc#1258919).
- CVE-2026-25942: Global-buffer-overflow in `xf_rail_server_execute_result` (bsc#1258920).
- CVE-2026-25952: Heap-use-after-free in `xf_SetWindowMinMaxInfo` (bsc#1258921).
- CVE-2026-25953: Heap-use-after-free in `xf_AppUpdateWindowFromSurface` (bsc#1258923).
- CVE-2026-25954: Heap-use-after-free in `xf_rail_server_local_move_size` (bsc#1258924).
- CVE-2026-25997: Heap-use-after-free in `xf_clipboard_format_equal` (bsc#1258977).
- CVE-2026-26986: Heap-use-after-free in `rail_window_free` (bsc#1258967).
- CVE-2026-27015: Smartcard NDR alignment padding triggers reachable `WINPR_ASSERT` abort (bsc#1258987).
- CVE-2026-27951: Denial of Service via endless blocking loop in `Stream_EnsureCapacity` (bsc#1258939).
- CVE-2026-29774: Missing bounds validation can cause a client-side heap buffer overflow (bsc#1259689).
- CVE-2026-29775: Malicious server can trigger a client-side heap out-of-bounds access (bsc#1259684).
- CVE-2026-29776: Missing length check can lead to an integer underflow (bsc#1259692).
- CVE-2026-31897: Missing length check can cause an out-of-bounds read (bsc#1259693).
Patchnames: SUSE-2026-1640,SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2026-1640,SUSE-SLE-Product-WE-15-SP7-2026-1640
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
4.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.9 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
8.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
References
| URL | Category | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for freerdp2",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for freerdp2 fixes the following issues:\n\n- CVE-2026-25941: Out-of-Bounds Read in client RDPGFX channel via crafted `WIRE_TO_SURFACE_2` PDU (bsc#1258919).\n- CVE-2026-25942: Global-buffer-overflow in `xf_rail_server_execute_result` (bsc#1258920).\n- CVE-2026-25952: Heap-use-after-free in `xf_SetWindowMinMaxInfo` (bsc#1258921).\n- CVE-2026-25953: Heap-use-after-free in `xf_AppUpdateWindowFromSurface` (bsc#1258923).\n- CVE-2026-25954: Heap-use-after-free in `xf_rail_server_local_move_size` (bsc#1258924).\n- CVE-2026-25997: Heap-use-after-free in `xf_clipboard_format_equal` (bsc#1258977).\n- CVE-2026-26986: Heap-use-after-free in `rail_window_free` (bsc#1258967).\n- CVE-2026-27015: Smartcard NDR alignment padding triggers reachable `WINPR_ASSERT` abort (bsc#1258987).\n- CVE-2026-27951: Denial of Service via endless blocking loop in `Stream_EnsureCapacity` (bsc#1258939).\n- CVE-2026-29774: Missing bounds validation can cause a client-side heap buffer overflow (bsc#1259689).\n- CVE-2026-29775: Malicious server can trigger a client-side heap out-of-bounds access (bsc#1259684).\n- CVE-2026-29776: Missing length check can lead to an integer underflow (bsc#1259692).\n- CVE-2026-31897: Missing length check can cause an out-of-bounds read (bsc#1259693).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2026-1640,SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2026-1640,SUSE-SLE-Product-WE-15-SP7-2026-1640",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_1640-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:1640-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20261640-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:1640-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-April/025752.html"
},
{
"category": "self",
"summary": "SUSE Bug 1258919",
"url": "https://bugzilla.suse.com/1258919"
},
{
"category": "self",
"summary": "SUSE Bug 1258920",
"url": "https://bugzilla.suse.com/1258920"
},
{
"category": "self",
"summary": "SUSE Bug 1258921",
"url": "https://bugzilla.suse.com/1258921"
},
{
"category": "self",
"summary": "SUSE Bug 1258923",
"url": "https://bugzilla.suse.com/1258923"
},
{
"category": "self",
"summary": "SUSE Bug 1258924",
"url": "https://bugzilla.suse.com/1258924"
},
{
"category": "self",
"summary": "SUSE Bug 1258939",
"url": "https://bugzilla.suse.com/1258939"
},
{
"category": "self",
"summary": "SUSE Bug 1258967",
"url": "https://bugzilla.suse.com/1258967"
},
{
"category": "self",
"summary": "SUSE Bug 1258977",
"url": "https://bugzilla.suse.com/1258977"
},
{
"category": "self",
"summary": "SUSE Bug 1258987",
"url": "https://bugzilla.suse.com/1258987"
},
{
"category": "self",
"summary": "SUSE Bug 1259653",
"url": "https://bugzilla.suse.com/1259653"
},
{
"category": "self",
"summary": "SUSE Bug 1259680",
"url": "https://bugzilla.suse.com/1259680"
},
{
"category": "self",
"summary": "SUSE Bug 1259684",
"url": "https://bugzilla.suse.com/1259684"
},
{
"category": "self",
"summary": "SUSE Bug 1259689",
"url": "https://bugzilla.suse.com/1259689"
},
{
"category": "self",
"summary": "SUSE Bug 1259692",
"url": "https://bugzilla.suse.com/1259692"
},
{
"category": "self",
"summary": "SUSE Bug 1259693",
"url": "https://bugzilla.suse.com/1259693"
},
{
"category": "self",
"summary": "SUSE Bug 1261848",
"url": "https://bugzilla.suse.com/1261848"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-25941 page",
"url": "https://www.suse.com/security/cve/CVE-2026-25941/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-25942 page",
"url": "https://www.suse.com/security/cve/CVE-2026-25942/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-25952 page",
"url": "https://www.suse.com/security/cve/CVE-2026-25952/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-25953 page",
"url": "https://www.suse.com/security/cve/CVE-2026-25953/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-25954 page",
"url": "https://www.suse.com/security/cve/CVE-2026-25954/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-25997 page",
"url": "https://www.suse.com/security/cve/CVE-2026-25997/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-26986 page",
"url": "https://www.suse.com/security/cve/CVE-2026-26986/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-27015 page",
"url": "https://www.suse.com/security/cve/CVE-2026-27015/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-27951 page",
"url": "https://www.suse.com/security/cve/CVE-2026-27951/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-29774 page",
"url": "https://www.suse.com/security/cve/CVE-2026-29774/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-29775 page",
"url": "https://www.suse.com/security/cve/CVE-2026-29775/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-29776 page",
"url": "https://www.suse.com/security/cve/CVE-2026-29776/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-31806 page",
"url": "https://www.suse.com/security/cve/CVE-2026-31806/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-31884 page",
"url": "https://www.suse.com/security/cve/CVE-2026-31884/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-31897 page",
"url": "https://www.suse.com/security/cve/CVE-2026-31897/"
}
],
"title": "Security update for freerdp2",
"tracking": {
"current_release_date": "2026-04-28T11:33:58Z",
"generator": {
"date": "2026-04-28T11:33:58Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:1640-1",
"initial_release_date": "2026-04-28T11:33:58Z",
"revision_history": [
{
"date": "2026-04-28T11:33:58Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "freerdp2-2.11.7-150700.3.22.1.aarch64",
"product": {
"name": "freerdp2-2.11.7-150700.3.22.1.aarch64",
"product_id": "freerdp2-2.11.7-150700.3.22.1.aarch64"
}
},
{
"category": "product_version",
"name": "freerdp2-devel-2.11.7-150700.3.22.1.aarch64",
"product": {
"name": "freerdp2-devel-2.11.7-150700.3.22.1.aarch64",
"product_id": "freerdp2-devel-2.11.7-150700.3.22.1.aarch64"
}
},
{
"category": "product_version",
"name": "freerdp2-proxy-2.11.7-150700.3.22.1.aarch64",
"product": {
"name": "freerdp2-proxy-2.11.7-150700.3.22.1.aarch64",
"product_id": "freerdp2-proxy-2.11.7-150700.3.22.1.aarch64"
}
},
{
"category": "product_version",
"name": "freerdp2-server-2.11.7-150700.3.22.1.aarch64",
"product": {
"name": "freerdp2-server-2.11.7-150700.3.22.1.aarch64",
"product_id": "freerdp2-server-2.11.7-150700.3.22.1.aarch64"
}
},
{
"category": "product_version",
"name": "libfreerdp2-2-2.11.7-150700.3.22.1.aarch64",
"product": {
"name": "libfreerdp2-2-2.11.7-150700.3.22.1.aarch64",
"product_id": "libfreerdp2-2-2.11.7-150700.3.22.1.aarch64"
}
},
{
"category": "product_version",
"name": "libwinpr2-2-2.11.7-150700.3.22.1.aarch64",
"product": {
"name": "libwinpr2-2-2.11.7-150700.3.22.1.aarch64",
"product_id": "libwinpr2-2-2.11.7-150700.3.22.1.aarch64"
}
},
{
"category": "product_version",
"name": "winpr2-devel-2.11.7-150700.3.22.1.aarch64",
"product": {
"name": "winpr2-devel-2.11.7-150700.3.22.1.aarch64",
"product_id": "winpr2-devel-2.11.7-150700.3.22.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "freerdp2-2.11.7-150700.3.22.1.i586",
"product": {
"name": "freerdp2-2.11.7-150700.3.22.1.i586",
"product_id": "freerdp2-2.11.7-150700.3.22.1.i586"
}
},
{
"category": "product_version",
"name": "freerdp2-devel-2.11.7-150700.3.22.1.i586",
"product": {
"name": "freerdp2-devel-2.11.7-150700.3.22.1.i586",
"product_id": "freerdp2-devel-2.11.7-150700.3.22.1.i586"
}
},
{
"category": "product_version",
"name": "freerdp2-proxy-2.11.7-150700.3.22.1.i586",
"product": {
"name": "freerdp2-proxy-2.11.7-150700.3.22.1.i586",
"product_id": "freerdp2-proxy-2.11.7-150700.3.22.1.i586"
}
},
{
"category": "product_version",
"name": "freerdp2-server-2.11.7-150700.3.22.1.i586",
"product": {
"name": "freerdp2-server-2.11.7-150700.3.22.1.i586",
"product_id": "freerdp2-server-2.11.7-150700.3.22.1.i586"
}
},
{
"category": "product_version",
"name": "libfreerdp2-2-2.11.7-150700.3.22.1.i586",
"product": {
"name": "libfreerdp2-2-2.11.7-150700.3.22.1.i586",
"product_id": "libfreerdp2-2-2.11.7-150700.3.22.1.i586"
}
},
{
"category": "product_version",
"name": "libwinpr2-2-2.11.7-150700.3.22.1.i586",
"product": {
"name": "libwinpr2-2-2.11.7-150700.3.22.1.i586",
"product_id": "libwinpr2-2-2.11.7-150700.3.22.1.i586"
}
},
{
"category": "product_version",
"name": "winpr2-devel-2.11.7-150700.3.22.1.i586",
"product": {
"name": "winpr2-devel-2.11.7-150700.3.22.1.i586",
"product_id": "winpr2-devel-2.11.7-150700.3.22.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "freerdp2-2.11.7-150700.3.22.1.ppc64le",
"product": {
"name": "freerdp2-2.11.7-150700.3.22.1.ppc64le",
"product_id": "freerdp2-2.11.7-150700.3.22.1.ppc64le"
}
},
{
"category": "product_version",
"name": "freerdp2-devel-2.11.7-150700.3.22.1.ppc64le",
"product": {
"name": "freerdp2-devel-2.11.7-150700.3.22.1.ppc64le",
"product_id": "freerdp2-devel-2.11.7-150700.3.22.1.ppc64le"
}
},
{
"category": "product_version",
"name": "freerdp2-proxy-2.11.7-150700.3.22.1.ppc64le",
"product": {
"name": "freerdp2-proxy-2.11.7-150700.3.22.1.ppc64le",
"product_id": "freerdp2-proxy-2.11.7-150700.3.22.1.ppc64le"
}
},
{
"category": "product_version",
"name": "freerdp2-server-2.11.7-150700.3.22.1.ppc64le",
"product": {
"name": "freerdp2-server-2.11.7-150700.3.22.1.ppc64le",
"product_id": "freerdp2-server-2.11.7-150700.3.22.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libfreerdp2-2-2.11.7-150700.3.22.1.ppc64le",
"product": {
"name": "libfreerdp2-2-2.11.7-150700.3.22.1.ppc64le",
"product_id": "libfreerdp2-2-2.11.7-150700.3.22.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libwinpr2-2-2.11.7-150700.3.22.1.ppc64le",
"product": {
"name": "libwinpr2-2-2.11.7-150700.3.22.1.ppc64le",
"product_id": "libwinpr2-2-2.11.7-150700.3.22.1.ppc64le"
}
},
{
"category": "product_version",
"name": "winpr2-devel-2.11.7-150700.3.22.1.ppc64le",
"product": {
"name": "winpr2-devel-2.11.7-150700.3.22.1.ppc64le",
"product_id": "winpr2-devel-2.11.7-150700.3.22.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "freerdp2-2.11.7-150700.3.22.1.s390x",
"product": {
"name": "freerdp2-2.11.7-150700.3.22.1.s390x",
"product_id": "freerdp2-2.11.7-150700.3.22.1.s390x"
}
},
{
"category": "product_version",
"name": "freerdp2-devel-2.11.7-150700.3.22.1.s390x",
"product": {
"name": "freerdp2-devel-2.11.7-150700.3.22.1.s390x",
"product_id": "freerdp2-devel-2.11.7-150700.3.22.1.s390x"
}
},
{
"category": "product_version",
"name": "freerdp2-proxy-2.11.7-150700.3.22.1.s390x",
"product": {
"name": "freerdp2-proxy-2.11.7-150700.3.22.1.s390x",
"product_id": "freerdp2-proxy-2.11.7-150700.3.22.1.s390x"
}
},
{
"category": "product_version",
"name": "freerdp2-server-2.11.7-150700.3.22.1.s390x",
"product": {
"name": "freerdp2-server-2.11.7-150700.3.22.1.s390x",
"product_id": "freerdp2-server-2.11.7-150700.3.22.1.s390x"
}
},
{
"category": "product_version",
"name": "libfreerdp2-2-2.11.7-150700.3.22.1.s390x",
"product": {
"name": "libfreerdp2-2-2.11.7-150700.3.22.1.s390x",
"product_id": "libfreerdp2-2-2.11.7-150700.3.22.1.s390x"
}
},
{
"category": "product_version",
"name": "libwinpr2-2-2.11.7-150700.3.22.1.s390x",
"product": {
"name": "libwinpr2-2-2.11.7-150700.3.22.1.s390x",
"product_id": "libwinpr2-2-2.11.7-150700.3.22.1.s390x"
}
},
{
"category": "product_version",
"name": "winpr2-devel-2.11.7-150700.3.22.1.s390x",
"product": {
"name": "winpr2-devel-2.11.7-150700.3.22.1.s390x",
"product_id": "winpr2-devel-2.11.7-150700.3.22.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "freerdp2-2.11.7-150700.3.22.1.x86_64",
"product": {
"name": "freerdp2-2.11.7-150700.3.22.1.x86_64",
"product_id": "freerdp2-2.11.7-150700.3.22.1.x86_64"
}
},
{
"category": "product_version",
"name": "freerdp2-devel-2.11.7-150700.3.22.1.x86_64",
"product": {
"name": "freerdp2-devel-2.11.7-150700.3.22.1.x86_64",
"product_id": "freerdp2-devel-2.11.7-150700.3.22.1.x86_64"
}
},
{
"category": "product_version",
"name": "freerdp2-proxy-2.11.7-150700.3.22.1.x86_64",
"product": {
"name": "freerdp2-proxy-2.11.7-150700.3.22.1.x86_64",
"product_id": "freerdp2-proxy-2.11.7-150700.3.22.1.x86_64"
}
},
{
"category": "product_version",
"name": "freerdp2-server-2.11.7-150700.3.22.1.x86_64",
"product": {
"name": "freerdp2-server-2.11.7-150700.3.22.1.x86_64",
"product_id": "freerdp2-server-2.11.7-150700.3.22.1.x86_64"
}
},
{
"category": "product_version",
"name": "libfreerdp2-2-2.11.7-150700.3.22.1.x86_64",
"product": {
"name": "libfreerdp2-2-2.11.7-150700.3.22.1.x86_64",
"product_id": "libfreerdp2-2-2.11.7-150700.3.22.1.x86_64"
}
},
{
"category": "product_version",
"name": "libwinpr2-2-2.11.7-150700.3.22.1.x86_64",
"product": {
"name": "libwinpr2-2-2.11.7-150700.3.22.1.x86_64",
"product_id": "libwinpr2-2-2.11.7-150700.3.22.1.x86_64"
}
},
{
"category": "product_version",
"name": "winpr2-devel-2.11.7-150700.3.22.1.x86_64",
"product": {
"name": "winpr2-devel-2.11.7-150700.3.22.1.x86_64",
"product_id": "winpr2-devel-2.11.7-150700.3.22.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Package Hub 15 SP7",
"product": {
"name": "SUSE Linux Enterprise Module for Package Hub 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP7",
"product_identification_helper": {
"cpe": "cpe:/o:suse:packagehub:15:sp7"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Workstation Extension 15 SP7",
"product": {
"name": "SUSE Linux Enterprise Workstation Extension 15 SP7",
"product_id": "SUSE Linux Enterprise Workstation Extension 15 SP7",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-we:15:sp7"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "winpr2-devel-2.11.7-150700.3.22.1.aarch64 as component of SUSE Linux Enterprise Module for Package Hub 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.aarch64"
},
"product_reference": "winpr2-devel-2.11.7-150700.3.22.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "winpr2-devel-2.11.7-150700.3.22.1.ppc64le as component of SUSE Linux Enterprise Module for Package Hub 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.ppc64le"
},
"product_reference": "winpr2-devel-2.11.7-150700.3.22.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "winpr2-devel-2.11.7-150700.3.22.1.s390x as component of SUSE Linux Enterprise Module for Package Hub 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.s390x"
},
"product_reference": "winpr2-devel-2.11.7-150700.3.22.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp2-2.11.7-150700.3.22.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 15 SP7",
"product_id": "SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-2.11.7-150700.3.22.1.x86_64"
},
"product_reference": "freerdp2-2.11.7-150700.3.22.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp2-devel-2.11.7-150700.3.22.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 15 SP7",
"product_id": "SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-devel-2.11.7-150700.3.22.1.x86_64"
},
"product_reference": "freerdp2-devel-2.11.7-150700.3.22.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp2-proxy-2.11.7-150700.3.22.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 15 SP7",
"product_id": "SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-proxy-2.11.7-150700.3.22.1.x86_64"
},
"product_reference": "freerdp2-proxy-2.11.7-150700.3.22.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp2-server-2.11.7-150700.3.22.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 15 SP7",
"product_id": "SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-server-2.11.7-150700.3.22.1.x86_64"
},
"product_reference": "freerdp2-server-2.11.7-150700.3.22.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp2-2-2.11.7-150700.3.22.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 15 SP7",
"product_id": "SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp2-2-2.11.7-150700.3.22.1.x86_64"
},
"product_reference": "libfreerdp2-2-2.11.7-150700.3.22.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr2-2-2.11.7-150700.3.22.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 15 SP7",
"product_id": "SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr2-2-2.11.7-150700.3.22.1.x86_64"
},
"product_reference": "libwinpr2-2-2.11.7-150700.3.22.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "winpr2-devel-2.11.7-150700.3.22.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 15 SP7",
"product_id": "SUSE Linux Enterprise Workstation Extension 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.x86_64"
},
"product_reference": "winpr2-devel-2.11.7-150700.3.22.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 15 SP7"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-25941",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-25941"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Versions on the 2.x branch prior to to 2.11.8 and on the 3.x branch prior to 3.23.0 have an out-of-bounds read vulnerability in the FreeRDP client\u0027s RDPGFX channel that allows a malicious RDP server to read uninitialized heap memory by sending a crafted WIRE_TO_SURFACE_2 PDU with a `bitmapDataLength` value larger than the actual data in the packet. This can lead to information disclosure or client crashes when a user connects to a malicious server. Versions 2.11.8 and 3.23.0 fix the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-devel-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-proxy-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-server-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-25941",
"url": "https://www.suse.com/security/cve/CVE-2026-25941"
},
{
"category": "external",
"summary": "SUSE Bug 1258919 for CVE-2026-25941",
"url": "https://bugzilla.suse.com/1258919"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-devel-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-proxy-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-server-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-devel-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-proxy-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-server-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-28T11:33:58Z",
"details": "moderate"
}
],
"title": "CVE-2026-25941"
},
{
"cve": "CVE-2026-25942",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-25942"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `xf_rail_server_execute_result` indexes the global `error_code_names[]` array (7 elements, indices 0-6) with an unchecked `execResult-\u003eexecResult` value received from the server, allowing an out-of-bounds read when the server sends an `execResult` value of 7 or greater. Version 3.23.0 fixes the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-devel-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-proxy-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-server-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-25942",
"url": "https://www.suse.com/security/cve/CVE-2026-25942"
},
{
"category": "external",
"summary": "SUSE Bug 1258920 for CVE-2026-25942",
"url": "https://bugzilla.suse.com/1258920"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-devel-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-proxy-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-server-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-devel-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-proxy-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-server-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-28T11:33:58Z",
"details": "moderate"
}
],
"title": "CVE-2026-25942"
},
{
"cve": "CVE-2026-25952",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-25952"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `xf_SetWindowMinMaxInfo` dereferences a freed `xfAppWindow` pointer because `xf_rail_get_window` in `xf_rail_server_min_max_info` returns an unprotected pointer from the `railWindows` hash table, and the main thread can concurrently delete the window (via a window delete order) while the RAIL channel thread is still using the pointer. Version 3.23.0 fixes the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-devel-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-proxy-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-server-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-25952",
"url": "https://www.suse.com/security/cve/CVE-2026-25952"
},
{
"category": "external",
"summary": "SUSE Bug 1258921 for CVE-2026-25952",
"url": "https://bugzilla.suse.com/1258921"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-devel-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-proxy-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-server-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-devel-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-proxy-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-server-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-28T11:33:58Z",
"details": "moderate"
}
],
"title": "CVE-2026-25952"
},
{
"cve": "CVE-2026-25953",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-25953"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `xf_AppUpdateWindowFromSurface` reads from a freed `xfAppWindow` because the RDPGFX DVC thread obtains a bare pointer via `xf_rail_get_window` without any lifetime protection, while the main thread can concurrently delete the window through a fastpath window-delete order. Version 3.23.0 fixes the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-devel-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-proxy-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-server-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-25953",
"url": "https://www.suse.com/security/cve/CVE-2026-25953"
},
{
"category": "external",
"summary": "SUSE Bug 1258923 for CVE-2026-25953",
"url": "https://bugzilla.suse.com/1258923"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-devel-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-proxy-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-server-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-devel-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-proxy-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-server-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-28T11:33:58Z",
"details": "moderate"
}
],
"title": "CVE-2026-25953"
},
{
"cve": "CVE-2026-25954",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-25954"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `xf_rail_server_local_move_size` dereferences a freed `xfAppWindow` pointer because `xf_rail_get_window` returns an unprotected pointer from the `railWindows` hash table, and the main thread can concurrently delete the window (via a window delete order) while the RAIL channel thread is still using the pointer. Version 3.23.0 fixes the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-devel-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-proxy-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-server-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-25954",
"url": "https://www.suse.com/security/cve/CVE-2026-25954"
},
{
"category": "external",
"summary": "SUSE Bug 1258924 for CVE-2026-25954",
"url": "https://bugzilla.suse.com/1258924"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-devel-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-proxy-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-server-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-devel-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-proxy-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-server-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-28T11:33:58Z",
"details": "moderate"
}
],
"title": "CVE-2026-25954"
},
{
"cve": "CVE-2026-25997",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-25997"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `xf_clipboard_format_equal` reads freed `lastSentFormats` memory because `xf_clipboard_formats_free` (called from the cliprdr channel thread during auto-reconnect) frees the array while the X11 event thread concurrently iterates it in `xf_clipboard_changed`, triggering a heap use after free. Version 3.23.0 fixes the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-devel-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-proxy-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-server-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-25997",
"url": "https://www.suse.com/security/cve/CVE-2026-25997"
},
{
"category": "external",
"summary": "SUSE Bug 1258977 for CVE-2026-25997",
"url": "https://bugzilla.suse.com/1258977"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-devel-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-proxy-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-server-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-devel-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-proxy-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-server-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-28T11:33:58Z",
"details": "moderate"
}
],
"title": "CVE-2026-25997"
},
{
"cve": "CVE-2026-26986",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-26986"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `rail_window_free` dereferences a freed `xfAppWindow` pointer during `HashTable_Free` cleanup because `xf_rail_window_common` calls `free(appWindow)` on title allocation failure without first removing the entry from the `railWindows` hash table, leaving a dangling pointer that is freed again on disconnect. Version 3.23.0 fixes the vulnerability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-devel-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-proxy-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-server-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-26986",
"url": "https://www.suse.com/security/cve/CVE-2026-26986"
},
{
"category": "external",
"summary": "SUSE Bug 1258967 for CVE-2026-26986",
"url": "https://bugzilla.suse.com/1258967"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-devel-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-proxy-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-server-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-devel-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-proxy-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-server-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-28T11:33:58Z",
"details": "moderate"
}
],
"title": "CVE-2026-26986"
},
{
"cve": "CVE-2026-27015",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-27015"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, a missing bounds check in `smartcard_unpack_read_size_align()` (`libfreerdp/utils/smartcard_pack.c:1703`) allows a malicious RDP server to crash the FreeRDP client via a reachable `WINPR_ASSERT` -\u003e `abort()`. The crash occurs in upstream builds where `WITH_VERBOSE_WINPR_ASSERT=ON` (default in FreeRDP 3.22.0 / current WinPR CMake defaults). Smartcard redirection must be explicitly enabled by the user (e.g., `xfreerdp /smartcard`; `/smartcard-logon` implies `/smartcard`). Version 3.23.0 fixes the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-devel-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-proxy-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-server-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-27015",
"url": "https://www.suse.com/security/cve/CVE-2026-27015"
},
{
"category": "external",
"summary": "SUSE Bug 1258987 for CVE-2026-27015",
"url": "https://bugzilla.suse.com/1258987"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-devel-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-proxy-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-server-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-devel-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-proxy-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-server-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-28T11:33:58Z",
"details": "moderate"
}
],
"title": "CVE-2026-27015"
},
{
"cve": "CVE-2026-27951",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-27951"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, the function `Stream_EnsureCapacity` can create an endless blocking loop. This may affect all client and server implementations using `FreeRDP`. For practical exploitation this will only work on 32bit systems where the available physical memory is `\u003e= SIZE_MAX`. Version 3.23.0 contains a patch. No known workarounds are available.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-devel-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-proxy-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-server-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-27951",
"url": "https://www.suse.com/security/cve/CVE-2026-27951"
},
{
"category": "external",
"summary": "SUSE Bug 1258939 for CVE-2026-27951",
"url": "https://bugzilla.suse.com/1258939"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-devel-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-proxy-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-server-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-devel-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-proxy-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-server-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-28T11:33:58Z",
"details": "moderate"
}
],
"title": "CVE-2026-27951"
},
{
"cve": "CVE-2026-29774",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-29774"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, a client-side heap buffer overflow occurs in the FreeRDP client\u0027s AVC420/AVC444 YUV-to-RGB conversion path due to missing horizontal bounds validation of H.264 metablock regionRects coordinates. In yuv.c, the clamp() function (line 347) only validates top/bottom against the surface/YUV height, but never checks left/right against the surface width. When avc420_yuv_to_rgb (line 67) computes destination and source pointers using rect-\u003eleft, it performs unchecked pointer arithmetic that can reach far beyond the allocated surface buffer. A malicious server sends a WIRE_TO_SURFACE_PDU_1 with AVC420 codec containing a regionRects entry where left greatly exceeds the surface width (e.g., left=60000 on a 128px surface). The H.264 bitstream decodes successfully, then yuv420_process_work_callback calls avc420_yuv_to_rgb which computes pDstPoint = pDstData + rect-\u003etop * nDstStep + rect-\u003eleft * 4, writing 16-byte SSE vectors 1888+ bytes past the allocated heap region. This vulnerability is fixed in 3.24.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-devel-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-proxy-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-server-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-29774",
"url": "https://www.suse.com/security/cve/CVE-2026-29774"
},
{
"category": "external",
"summary": "SUSE Bug 1259689 for CVE-2026-29774",
"url": "https://bugzilla.suse.com/1259689"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-devel-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-proxy-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-server-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-devel-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-proxy-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-server-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-28T11:33:58Z",
"details": "moderate"
}
],
"title": "CVE-2026-29774"
},
{
"cve": "CVE-2026-29775",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-29775"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, a client-side heap out-of-bounds read/write occurs in FreeRDP\u0027s bitmap cache subsystem due to an off-by-one boundary check in bitmap_cache_put. A malicious server can send a CACHE_BITMAP_ORDER (Rev1) with cacheId equal to maxCells, bypassing the guard and accessing cells[] one element past the allocated array. This vulnerability is fixed in 3.24.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-devel-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-proxy-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-server-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-29775",
"url": "https://www.suse.com/security/cve/CVE-2026-29775"
},
{
"category": "external",
"summary": "SUSE Bug 1259684 for CVE-2026-29775",
"url": "https://bugzilla.suse.com/1259684"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-devel-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-proxy-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-server-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.7,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-devel-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-proxy-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-server-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-28T11:33:58Z",
"details": "low"
}
],
"title": "CVE-2026-29775"
},
{
"cve": "CVE-2026-29776",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-29776"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, Integer Underflow in update_read_cache_bitmap_order Function of FreeRDP\u0027s Core Library This vulnerability is fixed in 3.24.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-devel-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-proxy-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-server-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-29776",
"url": "https://www.suse.com/security/cve/CVE-2026-29776"
},
{
"category": "external",
"summary": "SUSE Bug 1259692 for CVE-2026-29776",
"url": "https://bugzilla.suse.com/1259692"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-devel-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-proxy-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-server-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.1,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-devel-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-proxy-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-server-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-28T11:33:58Z",
"details": "low"
}
],
"title": "CVE-2026-29776"
},
{
"cve": "CVE-2026-31806",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-31806"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, the gdi_surface_bits() function processes SURFACE_BITS_COMMAND messages sent by the RDP server. When the command is handled using NSCodec, the bmp.width and bmp.height values provided by the server are not properly validated against the actual desktop dimensions. A malicious RDP server can supply crafted bmp.width and bmp.height values that exceed the expected surface size. Because these values are used during bitmap decoding and memory operations without proper bounds checking, this can lead to a heap buffer overflow. Since the attacker can also control the associated pixel data transmitted by the server, the overflow may be exploitable to overwrite adjacent heap memory. This vulnerability is fixed in 3.24.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-devel-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-proxy-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-server-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-31806",
"url": "https://www.suse.com/security/cve/CVE-2026-31806"
},
{
"category": "external",
"summary": "SUSE Bug 1259653 for CVE-2026-31806",
"url": "https://bugzilla.suse.com/1259653"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-devel-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-proxy-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-server-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-devel-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-proxy-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-server-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-28T11:33:58Z",
"details": "important"
}
],
"title": "CVE-2026-31806"
},
{
"cve": "CVE-2026-31884",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-31884"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, division by zero in MS-ADPCM and IMA-ADPCM decoders when nBlockAlign is 0, leading to a crash. In libfreerdp/codec/dsp.c, both ADPCM decoders use size % block_size where block_size = context-\u003ecommon.format.nBlockAlign. The nBlockAlign value comes from the Server Audio Formats PDU on the RDPSND channel. The value 0 is not validated anywhere before reaching the decoder. When nBlockAlign = 0, the modulo operation causes a SIGFPE (floating point exception) crash. This vulnerability is fixed in 3.24.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-devel-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-proxy-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-server-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-31884",
"url": "https://www.suse.com/security/cve/CVE-2026-31884"
},
{
"category": "external",
"summary": "SUSE Bug 1259680 for CVE-2026-31884",
"url": "https://bugzilla.suse.com/1259680"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-devel-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-proxy-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-server-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-devel-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-proxy-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-server-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-28T11:33:58Z",
"details": "moderate"
}
],
"title": "CVE-2026-31884"
},
{
"cve": "CVE-2026-31897",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-31897"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, there is an out-of-bounds read in freerdp_bitmap_decompress_planar when SrcSize is 0. The function dereferences *srcp (which points to pSrcData) without first verifying that SrcSize \u003e= 1. When SrcSize is 0 and pSrcData is non-NULL, this reads one byte past the end of the source buffer. This vulnerability is fixed in 3.24.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-devel-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-proxy-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-server-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-31897",
"url": "https://www.suse.com/security/cve/CVE-2026-31897"
},
{
"category": "external",
"summary": "SUSE Bug 1259693 for CVE-2026-31897",
"url": "https://bugzilla.suse.com/1259693"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-devel-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-proxy-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-server-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.1,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-devel-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-proxy-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp2-server-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr2-2-2.11.7-150700.3.22.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr2-devel-2.11.7-150700.3.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-28T11:33:58Z",
"details": "low"
}
],
"title": "CVE-2026-31897"
}
]
}
SUSE-SU-2026:1635-1
Vulnerability from csaf_suse - Published: 2026-04-27 12:06 - Updated: 2026-04-27 12:06Summary
Security update for freerdp
Severity
Important
Notes
Title of the patch: Security update for freerdp
Description of the patch: This update for freerdp fixes the following issues:
- CVE-2026-25941: Out-of-Bounds Read in client RDPGFX channel via crafted `WIRE_TO_SURFACE_2` PDU (bsc#1258919).
- CVE-2026-25942: Global-buffer-overflow in `xf_rail_server_execute_result` (bsc#1258920).
- CVE-2026-25952: Heap-use-after-free in `xf_SetWindowMinMaxInfo` (bsc#1258921).
- CVE-2026-25953: Heap-use-after-free in `xf_AppUpdateWindowFromSurface` (bsc#1258923).
- CVE-2026-25954: Heap-use-after-free in `xf_rail_server_local_move_size` (bsc#1258924).
- CVE-2026-25997: Heap-use-after-free in `xf_clipboard_format_equal` (bsc#1258977).
- CVE-2026-26986: Heap-use-after-free in `rail_window_free` (bsc#1258967).
- CVE-2026-27015: Smartcard NDR alignment padding triggers reachable `WINPR_ASSERT` abort (bsc#1258987).
- CVE-2026-27951: Denial of service via endless blocking loop in `Stream_EnsureCapacity` (bsc#1258939).
- CVE-2026-29774: Missing bounds validation can cause a client-side heap buffer overflow (bsc#1259689).
- CVE-2026-29775: Malicious server can trigger a client-side heap out-of-bounds access (bsc#1259684).
- CVE-2026-29776: Missing length check can lead to an integer underflow (bsc#1259692).
- CVE-2026-31897: Missing length check can cause an out-of-bounds read (bsc#1259693).
Patchnames: SUSE-2026-1635,SUSE-SLE-SERVER-12-SP5-LTSS-2026-1635,SUSE-SLE-SERVER-12-SP5-LTSS-EXTENDED-SECURITY-2026-1635
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
4.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.9 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
References
| URL | Category | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for freerdp",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for freerdp fixes the following issues:\n\n- CVE-2026-25941: Out-of-Bounds Read in client RDPGFX channel via crafted `WIRE_TO_SURFACE_2` PDU (bsc#1258919).\n- CVE-2026-25942: Global-buffer-overflow in `xf_rail_server_execute_result` (bsc#1258920).\n- CVE-2026-25952: Heap-use-after-free in `xf_SetWindowMinMaxInfo` (bsc#1258921).\n- CVE-2026-25953: Heap-use-after-free in `xf_AppUpdateWindowFromSurface` (bsc#1258923).\n- CVE-2026-25954: Heap-use-after-free in `xf_rail_server_local_move_size` (bsc#1258924).\n- CVE-2026-25997: Heap-use-after-free in `xf_clipboard_format_equal` (bsc#1258977).\n- CVE-2026-26986: Heap-use-after-free in `rail_window_free` (bsc#1258967).\n- CVE-2026-27015: Smartcard NDR alignment padding triggers reachable `WINPR_ASSERT` abort (bsc#1258987).\n- CVE-2026-27951: Denial of service via endless blocking loop in `Stream_EnsureCapacity` (bsc#1258939).\n- CVE-2026-29774: Missing bounds validation can cause a client-side heap buffer overflow (bsc#1259689).\n- CVE-2026-29775: Malicious server can trigger a client-side heap out-of-bounds access (bsc#1259684).\n- CVE-2026-29776: Missing length check can lead to an integer underflow (bsc#1259692).\n- CVE-2026-31897: Missing length check can cause an out-of-bounds read (bsc#1259693).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2026-1635,SUSE-SLE-SERVER-12-SP5-LTSS-2026-1635,SUSE-SLE-SERVER-12-SP5-LTSS-EXTENDED-SECURITY-2026-1635",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_1635-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:1635-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20261635-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:1635-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2026-April/046045.html"
},
{
"category": "self",
"summary": "SUSE Bug 1258919",
"url": "https://bugzilla.suse.com/1258919"
},
{
"category": "self",
"summary": "SUSE Bug 1258920",
"url": "https://bugzilla.suse.com/1258920"
},
{
"category": "self",
"summary": "SUSE Bug 1258921",
"url": "https://bugzilla.suse.com/1258921"
},
{
"category": "self",
"summary": "SUSE Bug 1258923",
"url": "https://bugzilla.suse.com/1258923"
},
{
"category": "self",
"summary": "SUSE Bug 1258924",
"url": "https://bugzilla.suse.com/1258924"
},
{
"category": "self",
"summary": "SUSE Bug 1258939",
"url": "https://bugzilla.suse.com/1258939"
},
{
"category": "self",
"summary": "SUSE Bug 1258967",
"url": "https://bugzilla.suse.com/1258967"
},
{
"category": "self",
"summary": "SUSE Bug 1258977",
"url": "https://bugzilla.suse.com/1258977"
},
{
"category": "self",
"summary": "SUSE Bug 1258987",
"url": "https://bugzilla.suse.com/1258987"
},
{
"category": "self",
"summary": "SUSE Bug 1259680",
"url": "https://bugzilla.suse.com/1259680"
},
{
"category": "self",
"summary": "SUSE Bug 1259684",
"url": "https://bugzilla.suse.com/1259684"
},
{
"category": "self",
"summary": "SUSE Bug 1259689",
"url": "https://bugzilla.suse.com/1259689"
},
{
"category": "self",
"summary": "SUSE Bug 1259692",
"url": "https://bugzilla.suse.com/1259692"
},
{
"category": "self",
"summary": "SUSE Bug 1259693",
"url": "https://bugzilla.suse.com/1259693"
},
{
"category": "self",
"summary": "SUSE Bug 1261848",
"url": "https://bugzilla.suse.com/1261848"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-25941 page",
"url": "https://www.suse.com/security/cve/CVE-2026-25941/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-25942 page",
"url": "https://www.suse.com/security/cve/CVE-2026-25942/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-25952 page",
"url": "https://www.suse.com/security/cve/CVE-2026-25952/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-25953 page",
"url": "https://www.suse.com/security/cve/CVE-2026-25953/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-25954 page",
"url": "https://www.suse.com/security/cve/CVE-2026-25954/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-25997 page",
"url": "https://www.suse.com/security/cve/CVE-2026-25997/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-26986 page",
"url": "https://www.suse.com/security/cve/CVE-2026-26986/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-27015 page",
"url": "https://www.suse.com/security/cve/CVE-2026-27015/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-27951 page",
"url": "https://www.suse.com/security/cve/CVE-2026-27951/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-29774 page",
"url": "https://www.suse.com/security/cve/CVE-2026-29774/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-29775 page",
"url": "https://www.suse.com/security/cve/CVE-2026-29775/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-29776 page",
"url": "https://www.suse.com/security/cve/CVE-2026-29776/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-31884 page",
"url": "https://www.suse.com/security/cve/CVE-2026-31884/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-31897 page",
"url": "https://www.suse.com/security/cve/CVE-2026-31897/"
}
],
"title": "Security update for freerdp",
"tracking": {
"current_release_date": "2026-04-27T12:06:35Z",
"generator": {
"date": "2026-04-27T12:06:35Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:1635-1",
"initial_release_date": "2026-04-27T12:06:35Z",
"revision_history": [
{
"date": "2026-04-27T12:06:35Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "freerdp-2.1.2-12.68.1.aarch64",
"product": {
"name": "freerdp-2.1.2-12.68.1.aarch64",
"product_id": "freerdp-2.1.2-12.68.1.aarch64"
}
},
{
"category": "product_version",
"name": "freerdp-devel-2.1.2-12.68.1.aarch64",
"product": {
"name": "freerdp-devel-2.1.2-12.68.1.aarch64",
"product_id": "freerdp-devel-2.1.2-12.68.1.aarch64"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-2.1.2-12.68.1.aarch64",
"product": {
"name": "freerdp-proxy-2.1.2-12.68.1.aarch64",
"product_id": "freerdp-proxy-2.1.2-12.68.1.aarch64"
}
},
{
"category": "product_version",
"name": "freerdp-server-2.1.2-12.68.1.aarch64",
"product": {
"name": "freerdp-server-2.1.2-12.68.1.aarch64",
"product_id": "freerdp-server-2.1.2-12.68.1.aarch64"
}
},
{
"category": "product_version",
"name": "freerdp-wayland-2.1.2-12.68.1.aarch64",
"product": {
"name": "freerdp-wayland-2.1.2-12.68.1.aarch64",
"product_id": "freerdp-wayland-2.1.2-12.68.1.aarch64"
}
},
{
"category": "product_version",
"name": "libfreerdp2-2.1.2-12.68.1.aarch64",
"product": {
"name": "libfreerdp2-2.1.2-12.68.1.aarch64",
"product_id": "libfreerdp2-2.1.2-12.68.1.aarch64"
}
},
{
"category": "product_version",
"name": "libuwac0-0-2.1.2-12.68.1.aarch64",
"product": {
"name": "libuwac0-0-2.1.2-12.68.1.aarch64",
"product_id": "libuwac0-0-2.1.2-12.68.1.aarch64"
}
},
{
"category": "product_version",
"name": "libwinpr2-2.1.2-12.68.1.aarch64",
"product": {
"name": "libwinpr2-2.1.2-12.68.1.aarch64",
"product_id": "libwinpr2-2.1.2-12.68.1.aarch64"
}
},
{
"category": "product_version",
"name": "uwac0-0-devel-2.1.2-12.68.1.aarch64",
"product": {
"name": "uwac0-0-devel-2.1.2-12.68.1.aarch64",
"product_id": "uwac0-0-devel-2.1.2-12.68.1.aarch64"
}
},
{
"category": "product_version",
"name": "winpr2-devel-2.1.2-12.68.1.aarch64",
"product": {
"name": "winpr2-devel-2.1.2-12.68.1.aarch64",
"product_id": "winpr2-devel-2.1.2-12.68.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "freerdp-2.1.2-12.68.1.i586",
"product": {
"name": "freerdp-2.1.2-12.68.1.i586",
"product_id": "freerdp-2.1.2-12.68.1.i586"
}
},
{
"category": "product_version",
"name": "freerdp-devel-2.1.2-12.68.1.i586",
"product": {
"name": "freerdp-devel-2.1.2-12.68.1.i586",
"product_id": "freerdp-devel-2.1.2-12.68.1.i586"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-2.1.2-12.68.1.i586",
"product": {
"name": "freerdp-proxy-2.1.2-12.68.1.i586",
"product_id": "freerdp-proxy-2.1.2-12.68.1.i586"
}
},
{
"category": "product_version",
"name": "freerdp-server-2.1.2-12.68.1.i586",
"product": {
"name": "freerdp-server-2.1.2-12.68.1.i586",
"product_id": "freerdp-server-2.1.2-12.68.1.i586"
}
},
{
"category": "product_version",
"name": "freerdp-wayland-2.1.2-12.68.1.i586",
"product": {
"name": "freerdp-wayland-2.1.2-12.68.1.i586",
"product_id": "freerdp-wayland-2.1.2-12.68.1.i586"
}
},
{
"category": "product_version",
"name": "libfreerdp2-2.1.2-12.68.1.i586",
"product": {
"name": "libfreerdp2-2.1.2-12.68.1.i586",
"product_id": "libfreerdp2-2.1.2-12.68.1.i586"
}
},
{
"category": "product_version",
"name": "libuwac0-0-2.1.2-12.68.1.i586",
"product": {
"name": "libuwac0-0-2.1.2-12.68.1.i586",
"product_id": "libuwac0-0-2.1.2-12.68.1.i586"
}
},
{
"category": "product_version",
"name": "libwinpr2-2.1.2-12.68.1.i586",
"product": {
"name": "libwinpr2-2.1.2-12.68.1.i586",
"product_id": "libwinpr2-2.1.2-12.68.1.i586"
}
},
{
"category": "product_version",
"name": "uwac0-0-devel-2.1.2-12.68.1.i586",
"product": {
"name": "uwac0-0-devel-2.1.2-12.68.1.i586",
"product_id": "uwac0-0-devel-2.1.2-12.68.1.i586"
}
},
{
"category": "product_version",
"name": "winpr2-devel-2.1.2-12.68.1.i586",
"product": {
"name": "winpr2-devel-2.1.2-12.68.1.i586",
"product_id": "winpr2-devel-2.1.2-12.68.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "freerdp-2.1.2-12.68.1.ppc64le",
"product": {
"name": "freerdp-2.1.2-12.68.1.ppc64le",
"product_id": "freerdp-2.1.2-12.68.1.ppc64le"
}
},
{
"category": "product_version",
"name": "freerdp-devel-2.1.2-12.68.1.ppc64le",
"product": {
"name": "freerdp-devel-2.1.2-12.68.1.ppc64le",
"product_id": "freerdp-devel-2.1.2-12.68.1.ppc64le"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-2.1.2-12.68.1.ppc64le",
"product": {
"name": "freerdp-proxy-2.1.2-12.68.1.ppc64le",
"product_id": "freerdp-proxy-2.1.2-12.68.1.ppc64le"
}
},
{
"category": "product_version",
"name": "freerdp-server-2.1.2-12.68.1.ppc64le",
"product": {
"name": "freerdp-server-2.1.2-12.68.1.ppc64le",
"product_id": "freerdp-server-2.1.2-12.68.1.ppc64le"
}
},
{
"category": "product_version",
"name": "freerdp-wayland-2.1.2-12.68.1.ppc64le",
"product": {
"name": "freerdp-wayland-2.1.2-12.68.1.ppc64le",
"product_id": "freerdp-wayland-2.1.2-12.68.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libfreerdp2-2.1.2-12.68.1.ppc64le",
"product": {
"name": "libfreerdp2-2.1.2-12.68.1.ppc64le",
"product_id": "libfreerdp2-2.1.2-12.68.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libuwac0-0-2.1.2-12.68.1.ppc64le",
"product": {
"name": "libuwac0-0-2.1.2-12.68.1.ppc64le",
"product_id": "libuwac0-0-2.1.2-12.68.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libwinpr2-2.1.2-12.68.1.ppc64le",
"product": {
"name": "libwinpr2-2.1.2-12.68.1.ppc64le",
"product_id": "libwinpr2-2.1.2-12.68.1.ppc64le"
}
},
{
"category": "product_version",
"name": "uwac0-0-devel-2.1.2-12.68.1.ppc64le",
"product": {
"name": "uwac0-0-devel-2.1.2-12.68.1.ppc64le",
"product_id": "uwac0-0-devel-2.1.2-12.68.1.ppc64le"
}
},
{
"category": "product_version",
"name": "winpr2-devel-2.1.2-12.68.1.ppc64le",
"product": {
"name": "winpr2-devel-2.1.2-12.68.1.ppc64le",
"product_id": "winpr2-devel-2.1.2-12.68.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "freerdp-2.1.2-12.68.1.s390",
"product": {
"name": "freerdp-2.1.2-12.68.1.s390",
"product_id": "freerdp-2.1.2-12.68.1.s390"
}
},
{
"category": "product_version",
"name": "freerdp-devel-2.1.2-12.68.1.s390",
"product": {
"name": "freerdp-devel-2.1.2-12.68.1.s390",
"product_id": "freerdp-devel-2.1.2-12.68.1.s390"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-2.1.2-12.68.1.s390",
"product": {
"name": "freerdp-proxy-2.1.2-12.68.1.s390",
"product_id": "freerdp-proxy-2.1.2-12.68.1.s390"
}
},
{
"category": "product_version",
"name": "freerdp-server-2.1.2-12.68.1.s390",
"product": {
"name": "freerdp-server-2.1.2-12.68.1.s390",
"product_id": "freerdp-server-2.1.2-12.68.1.s390"
}
},
{
"category": "product_version",
"name": "freerdp-wayland-2.1.2-12.68.1.s390",
"product": {
"name": "freerdp-wayland-2.1.2-12.68.1.s390",
"product_id": "freerdp-wayland-2.1.2-12.68.1.s390"
}
},
{
"category": "product_version",
"name": "libfreerdp2-2.1.2-12.68.1.s390",
"product": {
"name": "libfreerdp2-2.1.2-12.68.1.s390",
"product_id": "libfreerdp2-2.1.2-12.68.1.s390"
}
},
{
"category": "product_version",
"name": "libuwac0-0-2.1.2-12.68.1.s390",
"product": {
"name": "libuwac0-0-2.1.2-12.68.1.s390",
"product_id": "libuwac0-0-2.1.2-12.68.1.s390"
}
},
{
"category": "product_version",
"name": "libwinpr2-2.1.2-12.68.1.s390",
"product": {
"name": "libwinpr2-2.1.2-12.68.1.s390",
"product_id": "libwinpr2-2.1.2-12.68.1.s390"
}
},
{
"category": "product_version",
"name": "uwac0-0-devel-2.1.2-12.68.1.s390",
"product": {
"name": "uwac0-0-devel-2.1.2-12.68.1.s390",
"product_id": "uwac0-0-devel-2.1.2-12.68.1.s390"
}
},
{
"category": "product_version",
"name": "winpr2-devel-2.1.2-12.68.1.s390",
"product": {
"name": "winpr2-devel-2.1.2-12.68.1.s390",
"product_id": "winpr2-devel-2.1.2-12.68.1.s390"
}
}
],
"category": "architecture",
"name": "s390"
},
{
"branches": [
{
"category": "product_version",
"name": "freerdp-2.1.2-12.68.1.s390x",
"product": {
"name": "freerdp-2.1.2-12.68.1.s390x",
"product_id": "freerdp-2.1.2-12.68.1.s390x"
}
},
{
"category": "product_version",
"name": "freerdp-devel-2.1.2-12.68.1.s390x",
"product": {
"name": "freerdp-devel-2.1.2-12.68.1.s390x",
"product_id": "freerdp-devel-2.1.2-12.68.1.s390x"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-2.1.2-12.68.1.s390x",
"product": {
"name": "freerdp-proxy-2.1.2-12.68.1.s390x",
"product_id": "freerdp-proxy-2.1.2-12.68.1.s390x"
}
},
{
"category": "product_version",
"name": "freerdp-server-2.1.2-12.68.1.s390x",
"product": {
"name": "freerdp-server-2.1.2-12.68.1.s390x",
"product_id": "freerdp-server-2.1.2-12.68.1.s390x"
}
},
{
"category": "product_version",
"name": "freerdp-wayland-2.1.2-12.68.1.s390x",
"product": {
"name": "freerdp-wayland-2.1.2-12.68.1.s390x",
"product_id": "freerdp-wayland-2.1.2-12.68.1.s390x"
}
},
{
"category": "product_version",
"name": "libfreerdp2-2.1.2-12.68.1.s390x",
"product": {
"name": "libfreerdp2-2.1.2-12.68.1.s390x",
"product_id": "libfreerdp2-2.1.2-12.68.1.s390x"
}
},
{
"category": "product_version",
"name": "libuwac0-0-2.1.2-12.68.1.s390x",
"product": {
"name": "libuwac0-0-2.1.2-12.68.1.s390x",
"product_id": "libuwac0-0-2.1.2-12.68.1.s390x"
}
},
{
"category": "product_version",
"name": "libwinpr2-2.1.2-12.68.1.s390x",
"product": {
"name": "libwinpr2-2.1.2-12.68.1.s390x",
"product_id": "libwinpr2-2.1.2-12.68.1.s390x"
}
},
{
"category": "product_version",
"name": "uwac0-0-devel-2.1.2-12.68.1.s390x",
"product": {
"name": "uwac0-0-devel-2.1.2-12.68.1.s390x",
"product_id": "uwac0-0-devel-2.1.2-12.68.1.s390x"
}
},
{
"category": "product_version",
"name": "winpr2-devel-2.1.2-12.68.1.s390x",
"product": {
"name": "winpr2-devel-2.1.2-12.68.1.s390x",
"product_id": "winpr2-devel-2.1.2-12.68.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "freerdp-2.1.2-12.68.1.x86_64",
"product": {
"name": "freerdp-2.1.2-12.68.1.x86_64",
"product_id": "freerdp-2.1.2-12.68.1.x86_64"
}
},
{
"category": "product_version",
"name": "freerdp-devel-2.1.2-12.68.1.x86_64",
"product": {
"name": "freerdp-devel-2.1.2-12.68.1.x86_64",
"product_id": "freerdp-devel-2.1.2-12.68.1.x86_64"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-2.1.2-12.68.1.x86_64",
"product": {
"name": "freerdp-proxy-2.1.2-12.68.1.x86_64",
"product_id": "freerdp-proxy-2.1.2-12.68.1.x86_64"
}
},
{
"category": "product_version",
"name": "freerdp-server-2.1.2-12.68.1.x86_64",
"product": {
"name": "freerdp-server-2.1.2-12.68.1.x86_64",
"product_id": "freerdp-server-2.1.2-12.68.1.x86_64"
}
},
{
"category": "product_version",
"name": "freerdp-wayland-2.1.2-12.68.1.x86_64",
"product": {
"name": "freerdp-wayland-2.1.2-12.68.1.x86_64",
"product_id": "freerdp-wayland-2.1.2-12.68.1.x86_64"
}
},
{
"category": "product_version",
"name": "libfreerdp2-2.1.2-12.68.1.x86_64",
"product": {
"name": "libfreerdp2-2.1.2-12.68.1.x86_64",
"product_id": "libfreerdp2-2.1.2-12.68.1.x86_64"
}
},
{
"category": "product_version",
"name": "libuwac0-0-2.1.2-12.68.1.x86_64",
"product": {
"name": "libuwac0-0-2.1.2-12.68.1.x86_64",
"product_id": "libuwac0-0-2.1.2-12.68.1.x86_64"
}
},
{
"category": "product_version",
"name": "libwinpr2-2.1.2-12.68.1.x86_64",
"product": {
"name": "libwinpr2-2.1.2-12.68.1.x86_64",
"product_id": "libwinpr2-2.1.2-12.68.1.x86_64"
}
},
{
"category": "product_version",
"name": "uwac0-0-devel-2.1.2-12.68.1.x86_64",
"product": {
"name": "uwac0-0-devel-2.1.2-12.68.1.x86_64",
"product_id": "uwac0-0-devel-2.1.2-12.68.1.x86_64"
}
},
{
"category": "product_version",
"name": "winpr2-devel-2.1.2-12.68.1.x86_64",
"product": {
"name": "winpr2-devel-2.1.2-12.68.1.x86_64",
"product_id": "winpr2-devel-2.1.2-12.68.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP5-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:12:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
"product": {
"name": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
"product_id": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss-extended-security:12:sp5"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-devel-2.1.2-12.68.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.aarch64"
},
"product_reference": "freerdp-devel-2.1.2-12.68.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-devel-2.1.2-12.68.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.ppc64le"
},
"product_reference": "freerdp-devel-2.1.2-12.68.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-devel-2.1.2-12.68.1.s390x as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.s390x"
},
"product_reference": "freerdp-devel-2.1.2-12.68.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-devel-2.1.2-12.68.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.x86_64"
},
"product_reference": "freerdp-devel-2.1.2-12.68.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "winpr2-devel-2.1.2-12.68.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.aarch64"
},
"product_reference": "winpr2-devel-2.1.2-12.68.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "winpr2-devel-2.1.2-12.68.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.ppc64le"
},
"product_reference": "winpr2-devel-2.1.2-12.68.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "winpr2-devel-2.1.2-12.68.1.s390x as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.s390x"
},
"product_reference": "winpr2-devel-2.1.2-12.68.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "winpr2-devel-2.1.2-12.68.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.x86_64"
},
"product_reference": "winpr2-devel-2.1.2-12.68.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-devel-2.1.2-12.68.1.x86_64 as component of SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
"product_id": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:freerdp-devel-2.1.2-12.68.1.x86_64"
},
"product_reference": "freerdp-devel-2.1.2-12.68.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "winpr2-devel-2.1.2-12.68.1.x86_64 as component of SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
"product_id": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:winpr2-devel-2.1.2-12.68.1.x86_64"
},
"product_reference": "winpr2-devel-2.1.2-12.68.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-25941",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-25941"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Versions on the 2.x branch prior to to 2.11.8 and on the 3.x branch prior to 3.23.0 have an out-of-bounds read vulnerability in the FreeRDP client\u0027s RDPGFX channel that allows a malicious RDP server to read uninitialized heap memory by sending a crafted WIRE_TO_SURFACE_2 PDU with a `bitmapDataLength` value larger than the actual data in the packet. This can lead to information disclosure or client crashes when a user connects to a malicious server. Versions 2.11.8 and 3.23.0 fix the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:winpr2-devel-2.1.2-12.68.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-25941",
"url": "https://www.suse.com/security/cve/CVE-2026-25941"
},
{
"category": "external",
"summary": "SUSE Bug 1258919 for CVE-2026-25941",
"url": "https://bugzilla.suse.com/1258919"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:winpr2-devel-2.1.2-12.68.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:winpr2-devel-2.1.2-12.68.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-27T12:06:35Z",
"details": "moderate"
}
],
"title": "CVE-2026-25941"
},
{
"cve": "CVE-2026-25942",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-25942"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `xf_rail_server_execute_result` indexes the global `error_code_names[]` array (7 elements, indices 0-6) with an unchecked `execResult-\u003eexecResult` value received from the server, allowing an out-of-bounds read when the server sends an `execResult` value of 7 or greater. Version 3.23.0 fixes the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:winpr2-devel-2.1.2-12.68.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-25942",
"url": "https://www.suse.com/security/cve/CVE-2026-25942"
},
{
"category": "external",
"summary": "SUSE Bug 1258920 for CVE-2026-25942",
"url": "https://bugzilla.suse.com/1258920"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:winpr2-devel-2.1.2-12.68.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:winpr2-devel-2.1.2-12.68.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-27T12:06:35Z",
"details": "moderate"
}
],
"title": "CVE-2026-25942"
},
{
"cve": "CVE-2026-25952",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-25952"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `xf_SetWindowMinMaxInfo` dereferences a freed `xfAppWindow` pointer because `xf_rail_get_window` in `xf_rail_server_min_max_info` returns an unprotected pointer from the `railWindows` hash table, and the main thread can concurrently delete the window (via a window delete order) while the RAIL channel thread is still using the pointer. Version 3.23.0 fixes the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:winpr2-devel-2.1.2-12.68.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-25952",
"url": "https://www.suse.com/security/cve/CVE-2026-25952"
},
{
"category": "external",
"summary": "SUSE Bug 1258921 for CVE-2026-25952",
"url": "https://bugzilla.suse.com/1258921"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:winpr2-devel-2.1.2-12.68.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:winpr2-devel-2.1.2-12.68.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-27T12:06:35Z",
"details": "moderate"
}
],
"title": "CVE-2026-25952"
},
{
"cve": "CVE-2026-25953",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-25953"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `xf_AppUpdateWindowFromSurface` reads from a freed `xfAppWindow` because the RDPGFX DVC thread obtains a bare pointer via `xf_rail_get_window` without any lifetime protection, while the main thread can concurrently delete the window through a fastpath window-delete order. Version 3.23.0 fixes the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:winpr2-devel-2.1.2-12.68.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-25953",
"url": "https://www.suse.com/security/cve/CVE-2026-25953"
},
{
"category": "external",
"summary": "SUSE Bug 1258923 for CVE-2026-25953",
"url": "https://bugzilla.suse.com/1258923"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:winpr2-devel-2.1.2-12.68.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:winpr2-devel-2.1.2-12.68.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-27T12:06:35Z",
"details": "moderate"
}
],
"title": "CVE-2026-25953"
},
{
"cve": "CVE-2026-25954",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-25954"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `xf_rail_server_local_move_size` dereferences a freed `xfAppWindow` pointer because `xf_rail_get_window` returns an unprotected pointer from the `railWindows` hash table, and the main thread can concurrently delete the window (via a window delete order) while the RAIL channel thread is still using the pointer. Version 3.23.0 fixes the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:winpr2-devel-2.1.2-12.68.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-25954",
"url": "https://www.suse.com/security/cve/CVE-2026-25954"
},
{
"category": "external",
"summary": "SUSE Bug 1258924 for CVE-2026-25954",
"url": "https://bugzilla.suse.com/1258924"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:winpr2-devel-2.1.2-12.68.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:winpr2-devel-2.1.2-12.68.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-27T12:06:35Z",
"details": "moderate"
}
],
"title": "CVE-2026-25954"
},
{
"cve": "CVE-2026-25997",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-25997"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `xf_clipboard_format_equal` reads freed `lastSentFormats` memory because `xf_clipboard_formats_free` (called from the cliprdr channel thread during auto-reconnect) frees the array while the X11 event thread concurrently iterates it in `xf_clipboard_changed`, triggering a heap use after free. Version 3.23.0 fixes the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:winpr2-devel-2.1.2-12.68.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-25997",
"url": "https://www.suse.com/security/cve/CVE-2026-25997"
},
{
"category": "external",
"summary": "SUSE Bug 1258977 for CVE-2026-25997",
"url": "https://bugzilla.suse.com/1258977"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:winpr2-devel-2.1.2-12.68.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:winpr2-devel-2.1.2-12.68.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-27T12:06:35Z",
"details": "moderate"
}
],
"title": "CVE-2026-25997"
},
{
"cve": "CVE-2026-26986",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-26986"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `rail_window_free` dereferences a freed `xfAppWindow` pointer during `HashTable_Free` cleanup because `xf_rail_window_common` calls `free(appWindow)` on title allocation failure without first removing the entry from the `railWindows` hash table, leaving a dangling pointer that is freed again on disconnect. Version 3.23.0 fixes the vulnerability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:winpr2-devel-2.1.2-12.68.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-26986",
"url": "https://www.suse.com/security/cve/CVE-2026-26986"
},
{
"category": "external",
"summary": "SUSE Bug 1258967 for CVE-2026-26986",
"url": "https://bugzilla.suse.com/1258967"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:winpr2-devel-2.1.2-12.68.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:winpr2-devel-2.1.2-12.68.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-27T12:06:35Z",
"details": "moderate"
}
],
"title": "CVE-2026-26986"
},
{
"cve": "CVE-2026-27015",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-27015"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, a missing bounds check in `smartcard_unpack_read_size_align()` (`libfreerdp/utils/smartcard_pack.c:1703`) allows a malicious RDP server to crash the FreeRDP client via a reachable `WINPR_ASSERT` -\u003e `abort()`. The crash occurs in upstream builds where `WITH_VERBOSE_WINPR_ASSERT=ON` (default in FreeRDP 3.22.0 / current WinPR CMake defaults). Smartcard redirection must be explicitly enabled by the user (e.g., `xfreerdp /smartcard`; `/smartcard-logon` implies `/smartcard`). Version 3.23.0 fixes the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:winpr2-devel-2.1.2-12.68.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-27015",
"url": "https://www.suse.com/security/cve/CVE-2026-27015"
},
{
"category": "external",
"summary": "SUSE Bug 1258987 for CVE-2026-27015",
"url": "https://bugzilla.suse.com/1258987"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:winpr2-devel-2.1.2-12.68.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:winpr2-devel-2.1.2-12.68.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-27T12:06:35Z",
"details": "moderate"
}
],
"title": "CVE-2026-27015"
},
{
"cve": "CVE-2026-27951",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-27951"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, the function `Stream_EnsureCapacity` can create an endless blocking loop. This may affect all client and server implementations using `FreeRDP`. For practical exploitation this will only work on 32bit systems where the available physical memory is `\u003e= SIZE_MAX`. Version 3.23.0 contains a patch. No known workarounds are available.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:winpr2-devel-2.1.2-12.68.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-27951",
"url": "https://www.suse.com/security/cve/CVE-2026-27951"
},
{
"category": "external",
"summary": "SUSE Bug 1258939 for CVE-2026-27951",
"url": "https://bugzilla.suse.com/1258939"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:winpr2-devel-2.1.2-12.68.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:winpr2-devel-2.1.2-12.68.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-27T12:06:35Z",
"details": "moderate"
}
],
"title": "CVE-2026-27951"
},
{
"cve": "CVE-2026-29774",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-29774"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, a client-side heap buffer overflow occurs in the FreeRDP client\u0027s AVC420/AVC444 YUV-to-RGB conversion path due to missing horizontal bounds validation of H.264 metablock regionRects coordinates. In yuv.c, the clamp() function (line 347) only validates top/bottom against the surface/YUV height, but never checks left/right against the surface width. When avc420_yuv_to_rgb (line 67) computes destination and source pointers using rect-\u003eleft, it performs unchecked pointer arithmetic that can reach far beyond the allocated surface buffer. A malicious server sends a WIRE_TO_SURFACE_PDU_1 with AVC420 codec containing a regionRects entry where left greatly exceeds the surface width (e.g., left=60000 on a 128px surface). The H.264 bitstream decodes successfully, then yuv420_process_work_callback calls avc420_yuv_to_rgb which computes pDstPoint = pDstData + rect-\u003etop * nDstStep + rect-\u003eleft * 4, writing 16-byte SSE vectors 1888+ bytes past the allocated heap region. This vulnerability is fixed in 3.24.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:winpr2-devel-2.1.2-12.68.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-29774",
"url": "https://www.suse.com/security/cve/CVE-2026-29774"
},
{
"category": "external",
"summary": "SUSE Bug 1259689 for CVE-2026-29774",
"url": "https://bugzilla.suse.com/1259689"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:winpr2-devel-2.1.2-12.68.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:winpr2-devel-2.1.2-12.68.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-27T12:06:35Z",
"details": "moderate"
}
],
"title": "CVE-2026-29774"
},
{
"cve": "CVE-2026-29775",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-29775"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, a client-side heap out-of-bounds read/write occurs in FreeRDP\u0027s bitmap cache subsystem due to an off-by-one boundary check in bitmap_cache_put. A malicious server can send a CACHE_BITMAP_ORDER (Rev1) with cacheId equal to maxCells, bypassing the guard and accessing cells[] one element past the allocated array. This vulnerability is fixed in 3.24.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:winpr2-devel-2.1.2-12.68.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-29775",
"url": "https://www.suse.com/security/cve/CVE-2026-29775"
},
{
"category": "external",
"summary": "SUSE Bug 1259684 for CVE-2026-29775",
"url": "https://bugzilla.suse.com/1259684"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:winpr2-devel-2.1.2-12.68.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.7,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:winpr2-devel-2.1.2-12.68.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-27T12:06:35Z",
"details": "low"
}
],
"title": "CVE-2026-29775"
},
{
"cve": "CVE-2026-29776",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-29776"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, Integer Underflow in update_read_cache_bitmap_order Function of FreeRDP\u0027s Core Library This vulnerability is fixed in 3.24.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:winpr2-devel-2.1.2-12.68.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-29776",
"url": "https://www.suse.com/security/cve/CVE-2026-29776"
},
{
"category": "external",
"summary": "SUSE Bug 1259692 for CVE-2026-29776",
"url": "https://bugzilla.suse.com/1259692"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:winpr2-devel-2.1.2-12.68.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.1,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:winpr2-devel-2.1.2-12.68.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-27T12:06:35Z",
"details": "low"
}
],
"title": "CVE-2026-29776"
},
{
"cve": "CVE-2026-31884",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-31884"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, division by zero in MS-ADPCM and IMA-ADPCM decoders when nBlockAlign is 0, leading to a crash. In libfreerdp/codec/dsp.c, both ADPCM decoders use size % block_size where block_size = context-\u003ecommon.format.nBlockAlign. The nBlockAlign value comes from the Server Audio Formats PDU on the RDPSND channel. The value 0 is not validated anywhere before reaching the decoder. When nBlockAlign = 0, the modulo operation causes a SIGFPE (floating point exception) crash. This vulnerability is fixed in 3.24.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:winpr2-devel-2.1.2-12.68.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-31884",
"url": "https://www.suse.com/security/cve/CVE-2026-31884"
},
{
"category": "external",
"summary": "SUSE Bug 1259680 for CVE-2026-31884",
"url": "https://bugzilla.suse.com/1259680"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:winpr2-devel-2.1.2-12.68.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:winpr2-devel-2.1.2-12.68.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-27T12:06:35Z",
"details": "moderate"
}
],
"title": "CVE-2026-31884"
},
{
"cve": "CVE-2026-31897",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-31897"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, there is an out-of-bounds read in freerdp_bitmap_decompress_planar when SrcSize is 0. The function dereferences *srcp (which points to pSrcData) without first verifying that SrcSize \u003e= 1. When SrcSize is 0 and pSrcData is non-NULL, this reads one byte past the end of the source buffer. This vulnerability is fixed in 3.24.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:winpr2-devel-2.1.2-12.68.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-31897",
"url": "https://www.suse.com/security/cve/CVE-2026-31897"
},
{
"category": "external",
"summary": "SUSE Bug 1259693 for CVE-2026-31897",
"url": "https://bugzilla.suse.com/1259693"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:winpr2-devel-2.1.2-12.68.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.1,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:winpr2-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:freerdp-devel-2.1.2-12.68.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:winpr2-devel-2.1.2-12.68.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-27T12:06:35Z",
"details": "low"
}
],
"title": "CVE-2026-31897"
}
]
}
SUSE-SU-2026:1633-1
Vulnerability from csaf_suse - Published: 2026-04-27 12:05 - Updated: 2026-04-27 12:05Summary
Security update for freerdp
Severity
Important
Notes
Title of the patch: Security update for freerdp
Description of the patch: This update for freerdp fixes the following issues:
- CVE-2026-25941: Out-of-Bounds Read in client RDPGFX channel via crafted `WIRE_TO_SURFACE_2` PDU (bsc#1258919).
- CVE-2026-25942: Global-buffer-overflow in `xf_rail_server_execute_result` (bsc#1258920).
- CVE-2026-25952: Heap-use-after-free in `xf_SetWindowMinMaxInfo` (bsc#1258921).
- CVE-2026-25953: Heap-use-after-free in `xf_AppUpdateWindowFromSurface` (bsc#1258923).
- CVE-2026-25954: Heap-use-after-free in `xf_rail_server_local_move_size` (bsc#1258924).
- CVE-2026-25955: Heap-use-after-free in `xf_AppUpdateWindowFromSurface` (bsc#1258973).
- CVE-2026-25959: Heap-use-after-free in `xf_cliprdr_provide_data_` (bsc#1258976).
- CVE-2026-25997: Heap-use-after-free in `xf_clipboard_format_equal` (bsc#1258977).
- CVE-2026-26986: Heap-use-after-free in `rail_window_free` (bsc#1258967).
- CVE-2026-27015: Smartcard NDR alignment padding triggers reachable `WINPR_ASSERT` abort (bsc#1258987).
- CVE-2026-27950: Denial of service due to incomplete fix for heap-use-after-free vulnerability (bsc#1258941).
- CVE-2026-27951: Denial of service via endless blocking loop in `Stream_EnsureCapacity` (bsc#1258939).
- CVE-2026-29774: Missing bounds validation can cause a client-side heap buffer overflow (bsc#1259689).
- CVE-2026-29775: Malicious server can trigger a client-side heap out-of-bounds access (bsc#1259684).
- CVE-2026-29776: Missing length check can lead to an integer underflow (bsc#1259692).
- CVE-2026-31897: Missing length check can cause an out-of-bounds read (bsc#1259693).
Patchnames: SUSE-2026-1633,SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2026-1633,SUSE-SLE-Product-WE-15-SP7-2026-1633
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
4.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.9 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
References
| URL | Category | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for freerdp",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for freerdp fixes the following issues:\n\n- CVE-2026-25941: Out-of-Bounds Read in client RDPGFX channel via crafted `WIRE_TO_SURFACE_2` PDU (bsc#1258919).\n- CVE-2026-25942: Global-buffer-overflow in `xf_rail_server_execute_result` (bsc#1258920).\n- CVE-2026-25952: Heap-use-after-free in `xf_SetWindowMinMaxInfo` (bsc#1258921).\n- CVE-2026-25953: Heap-use-after-free in `xf_AppUpdateWindowFromSurface` (bsc#1258923).\n- CVE-2026-25954: Heap-use-after-free in `xf_rail_server_local_move_size` (bsc#1258924).\n- CVE-2026-25955: Heap-use-after-free in `xf_AppUpdateWindowFromSurface` (bsc#1258973).\n- CVE-2026-25959: Heap-use-after-free in `xf_cliprdr_provide_data_` (bsc#1258976).\n- CVE-2026-25997: Heap-use-after-free in `xf_clipboard_format_equal` (bsc#1258977).\n- CVE-2026-26986: Heap-use-after-free in `rail_window_free` (bsc#1258967).\n- CVE-2026-27015: Smartcard NDR alignment padding triggers reachable `WINPR_ASSERT` abort (bsc#1258987).\n- CVE-2026-27950: Denial of service due to incomplete fix for heap-use-after-free vulnerability (bsc#1258941).\n- CVE-2026-27951: Denial of service via endless blocking loop in `Stream_EnsureCapacity` (bsc#1258939).\n- CVE-2026-29774: Missing bounds validation can cause a client-side heap buffer overflow (bsc#1259689).\n- CVE-2026-29775: Malicious server can trigger a client-side heap out-of-bounds access (bsc#1259684).\n- CVE-2026-29776: Missing length check can lead to an integer underflow (bsc#1259692).\n- CVE-2026-31897: Missing length check can cause an out-of-bounds read (bsc#1259693).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2026-1633,SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2026-1633,SUSE-SLE-Product-WE-15-SP7-2026-1633",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_1633-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:1633-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20261633-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:1633-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2026-April/046047.html"
},
{
"category": "self",
"summary": "SUSE Bug 1258919",
"url": "https://bugzilla.suse.com/1258919"
},
{
"category": "self",
"summary": "SUSE Bug 1258920",
"url": "https://bugzilla.suse.com/1258920"
},
{
"category": "self",
"summary": "SUSE Bug 1258921",
"url": "https://bugzilla.suse.com/1258921"
},
{
"category": "self",
"summary": "SUSE Bug 1258923",
"url": "https://bugzilla.suse.com/1258923"
},
{
"category": "self",
"summary": "SUSE Bug 1258924",
"url": "https://bugzilla.suse.com/1258924"
},
{
"category": "self",
"summary": "SUSE Bug 1258939",
"url": "https://bugzilla.suse.com/1258939"
},
{
"category": "self",
"summary": "SUSE Bug 1258941",
"url": "https://bugzilla.suse.com/1258941"
},
{
"category": "self",
"summary": "SUSE Bug 1258967",
"url": "https://bugzilla.suse.com/1258967"
},
{
"category": "self",
"summary": "SUSE Bug 1258973",
"url": "https://bugzilla.suse.com/1258973"
},
{
"category": "self",
"summary": "SUSE Bug 1258976",
"url": "https://bugzilla.suse.com/1258976"
},
{
"category": "self",
"summary": "SUSE Bug 1258977",
"url": "https://bugzilla.suse.com/1258977"
},
{
"category": "self",
"summary": "SUSE Bug 1258987",
"url": "https://bugzilla.suse.com/1258987"
},
{
"category": "self",
"summary": "SUSE Bug 1259680",
"url": "https://bugzilla.suse.com/1259680"
},
{
"category": "self",
"summary": "SUSE Bug 1259684",
"url": "https://bugzilla.suse.com/1259684"
},
{
"category": "self",
"summary": "SUSE Bug 1259689",
"url": "https://bugzilla.suse.com/1259689"
},
{
"category": "self",
"summary": "SUSE Bug 1259692",
"url": "https://bugzilla.suse.com/1259692"
},
{
"category": "self",
"summary": "SUSE Bug 1259693",
"url": "https://bugzilla.suse.com/1259693"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-25941 page",
"url": "https://www.suse.com/security/cve/CVE-2026-25941/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-25942 page",
"url": "https://www.suse.com/security/cve/CVE-2026-25942/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-25952 page",
"url": "https://www.suse.com/security/cve/CVE-2026-25952/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-25953 page",
"url": "https://www.suse.com/security/cve/CVE-2026-25953/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-25954 page",
"url": "https://www.suse.com/security/cve/CVE-2026-25954/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-25955 page",
"url": "https://www.suse.com/security/cve/CVE-2026-25955/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-25959 page",
"url": "https://www.suse.com/security/cve/CVE-2026-25959/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-25997 page",
"url": "https://www.suse.com/security/cve/CVE-2026-25997/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-26986 page",
"url": "https://www.suse.com/security/cve/CVE-2026-26986/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-27015 page",
"url": "https://www.suse.com/security/cve/CVE-2026-27015/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-27950 page",
"url": "https://www.suse.com/security/cve/CVE-2026-27950/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-27951 page",
"url": "https://www.suse.com/security/cve/CVE-2026-27951/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-29774 page",
"url": "https://www.suse.com/security/cve/CVE-2026-29774/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-29775 page",
"url": "https://www.suse.com/security/cve/CVE-2026-29775/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-29776 page",
"url": "https://www.suse.com/security/cve/CVE-2026-29776/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-31884 page",
"url": "https://www.suse.com/security/cve/CVE-2026-31884/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-31897 page",
"url": "https://www.suse.com/security/cve/CVE-2026-31897/"
}
],
"title": "Security update for freerdp",
"tracking": {
"current_release_date": "2026-04-27T12:05:30Z",
"generator": {
"date": "2026-04-27T12:05:30Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:1633-1",
"initial_release_date": "2026-04-27T12:05:30Z",
"revision_history": [
{
"date": "2026-04-27T12:05:30Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "freerdp-3.10.3-150700.3.14.1.aarch64",
"product": {
"name": "freerdp-3.10.3-150700.3.14.1.aarch64",
"product_id": "freerdp-3.10.3-150700.3.14.1.aarch64"
}
},
{
"category": "product_version",
"name": "freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"product": {
"name": "freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"product_id": "freerdp-devel-3.10.3-150700.3.14.1.aarch64"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"product": {
"name": "freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"product_id": "freerdp-proxy-3.10.3-150700.3.14.1.aarch64"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-plugins-3.10.3-150700.3.14.1.aarch64",
"product": {
"name": "freerdp-proxy-plugins-3.10.3-150700.3.14.1.aarch64",
"product_id": "freerdp-proxy-plugins-3.10.3-150700.3.14.1.aarch64"
}
},
{
"category": "product_version",
"name": "freerdp-sdl-3.10.3-150700.3.14.1.aarch64",
"product": {
"name": "freerdp-sdl-3.10.3-150700.3.14.1.aarch64",
"product_id": "freerdp-sdl-3.10.3-150700.3.14.1.aarch64"
}
},
{
"category": "product_version",
"name": "freerdp-server-3.10.3-150700.3.14.1.aarch64",
"product": {
"name": "freerdp-server-3.10.3-150700.3.14.1.aarch64",
"product_id": "freerdp-server-3.10.3-150700.3.14.1.aarch64"
}
},
{
"category": "product_version",
"name": "freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"product": {
"name": "freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"product_id": "freerdp-wayland-3.10.3-150700.3.14.1.aarch64"
}
},
{
"category": "product_version",
"name": "libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.aarch64",
"product": {
"name": "libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.aarch64",
"product_id": "libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.aarch64"
}
},
{
"category": "product_version",
"name": "libfreerdp3-3-3.10.3-150700.3.14.1.aarch64",
"product": {
"name": "libfreerdp3-3-3.10.3-150700.3.14.1.aarch64",
"product_id": "libfreerdp3-3-3.10.3-150700.3.14.1.aarch64"
}
},
{
"category": "product_version",
"name": "librdtk0-0-3.10.3-150700.3.14.1.aarch64",
"product": {
"name": "librdtk0-0-3.10.3-150700.3.14.1.aarch64",
"product_id": "librdtk0-0-3.10.3-150700.3.14.1.aarch64"
}
},
{
"category": "product_version",
"name": "libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"product": {
"name": "libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"product_id": "libuwac0-0-3.10.3-150700.3.14.1.aarch64"
}
},
{
"category": "product_version",
"name": "libwinpr3-3-3.10.3-150700.3.14.1.aarch64",
"product": {
"name": "libwinpr3-3-3.10.3-150700.3.14.1.aarch64",
"product_id": "libwinpr3-3-3.10.3-150700.3.14.1.aarch64"
}
},
{
"category": "product_version",
"name": "rdtk0-devel-3.10.3-150700.3.14.1.aarch64",
"product": {
"name": "rdtk0-devel-3.10.3-150700.3.14.1.aarch64",
"product_id": "rdtk0-devel-3.10.3-150700.3.14.1.aarch64"
}
},
{
"category": "product_version",
"name": "uwac0-devel-3.10.3-150700.3.14.1.aarch64",
"product": {
"name": "uwac0-devel-3.10.3-150700.3.14.1.aarch64",
"product_id": "uwac0-devel-3.10.3-150700.3.14.1.aarch64"
}
},
{
"category": "product_version",
"name": "winpr-devel-3.10.3-150700.3.14.1.aarch64",
"product": {
"name": "winpr-devel-3.10.3-150700.3.14.1.aarch64",
"product_id": "winpr-devel-3.10.3-150700.3.14.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "freerdp-3.10.3-150700.3.14.1.i586",
"product": {
"name": "freerdp-3.10.3-150700.3.14.1.i586",
"product_id": "freerdp-3.10.3-150700.3.14.1.i586"
}
},
{
"category": "product_version",
"name": "freerdp-devel-3.10.3-150700.3.14.1.i586",
"product": {
"name": "freerdp-devel-3.10.3-150700.3.14.1.i586",
"product_id": "freerdp-devel-3.10.3-150700.3.14.1.i586"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-3.10.3-150700.3.14.1.i586",
"product": {
"name": "freerdp-proxy-3.10.3-150700.3.14.1.i586",
"product_id": "freerdp-proxy-3.10.3-150700.3.14.1.i586"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-plugins-3.10.3-150700.3.14.1.i586",
"product": {
"name": "freerdp-proxy-plugins-3.10.3-150700.3.14.1.i586",
"product_id": "freerdp-proxy-plugins-3.10.3-150700.3.14.1.i586"
}
},
{
"category": "product_version",
"name": "freerdp-sdl-3.10.3-150700.3.14.1.i586",
"product": {
"name": "freerdp-sdl-3.10.3-150700.3.14.1.i586",
"product_id": "freerdp-sdl-3.10.3-150700.3.14.1.i586"
}
},
{
"category": "product_version",
"name": "freerdp-server-3.10.3-150700.3.14.1.i586",
"product": {
"name": "freerdp-server-3.10.3-150700.3.14.1.i586",
"product_id": "freerdp-server-3.10.3-150700.3.14.1.i586"
}
},
{
"category": "product_version",
"name": "freerdp-wayland-3.10.3-150700.3.14.1.i586",
"product": {
"name": "freerdp-wayland-3.10.3-150700.3.14.1.i586",
"product_id": "freerdp-wayland-3.10.3-150700.3.14.1.i586"
}
},
{
"category": "product_version",
"name": "libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.i586",
"product": {
"name": "libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.i586",
"product_id": "libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.i586"
}
},
{
"category": "product_version",
"name": "libfreerdp3-3-3.10.3-150700.3.14.1.i586",
"product": {
"name": "libfreerdp3-3-3.10.3-150700.3.14.1.i586",
"product_id": "libfreerdp3-3-3.10.3-150700.3.14.1.i586"
}
},
{
"category": "product_version",
"name": "librdtk0-0-3.10.3-150700.3.14.1.i586",
"product": {
"name": "librdtk0-0-3.10.3-150700.3.14.1.i586",
"product_id": "librdtk0-0-3.10.3-150700.3.14.1.i586"
}
},
{
"category": "product_version",
"name": "libuwac0-0-3.10.3-150700.3.14.1.i586",
"product": {
"name": "libuwac0-0-3.10.3-150700.3.14.1.i586",
"product_id": "libuwac0-0-3.10.3-150700.3.14.1.i586"
}
},
{
"category": "product_version",
"name": "libwinpr3-3-3.10.3-150700.3.14.1.i586",
"product": {
"name": "libwinpr3-3-3.10.3-150700.3.14.1.i586",
"product_id": "libwinpr3-3-3.10.3-150700.3.14.1.i586"
}
},
{
"category": "product_version",
"name": "rdtk0-devel-3.10.3-150700.3.14.1.i586",
"product": {
"name": "rdtk0-devel-3.10.3-150700.3.14.1.i586",
"product_id": "rdtk0-devel-3.10.3-150700.3.14.1.i586"
}
},
{
"category": "product_version",
"name": "uwac0-devel-3.10.3-150700.3.14.1.i586",
"product": {
"name": "uwac0-devel-3.10.3-150700.3.14.1.i586",
"product_id": "uwac0-devel-3.10.3-150700.3.14.1.i586"
}
},
{
"category": "product_version",
"name": "winpr-devel-3.10.3-150700.3.14.1.i586",
"product": {
"name": "winpr-devel-3.10.3-150700.3.14.1.i586",
"product_id": "winpr-devel-3.10.3-150700.3.14.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "freerdp-3.10.3-150700.3.14.1.ppc64le",
"product": {
"name": "freerdp-3.10.3-150700.3.14.1.ppc64le",
"product_id": "freerdp-3.10.3-150700.3.14.1.ppc64le"
}
},
{
"category": "product_version",
"name": "freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"product": {
"name": "freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"product_id": "freerdp-devel-3.10.3-150700.3.14.1.ppc64le"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"product": {
"name": "freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"product_id": "freerdp-proxy-3.10.3-150700.3.14.1.ppc64le"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-plugins-3.10.3-150700.3.14.1.ppc64le",
"product": {
"name": "freerdp-proxy-plugins-3.10.3-150700.3.14.1.ppc64le",
"product_id": "freerdp-proxy-plugins-3.10.3-150700.3.14.1.ppc64le"
}
},
{
"category": "product_version",
"name": "freerdp-sdl-3.10.3-150700.3.14.1.ppc64le",
"product": {
"name": "freerdp-sdl-3.10.3-150700.3.14.1.ppc64le",
"product_id": "freerdp-sdl-3.10.3-150700.3.14.1.ppc64le"
}
},
{
"category": "product_version",
"name": "freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"product": {
"name": "freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"product_id": "freerdp-server-3.10.3-150700.3.14.1.ppc64le"
}
},
{
"category": "product_version",
"name": "freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"product": {
"name": "freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"product_id": "freerdp-wayland-3.10.3-150700.3.14.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.ppc64le",
"product": {
"name": "libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.ppc64le",
"product_id": "libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libfreerdp3-3-3.10.3-150700.3.14.1.ppc64le",
"product": {
"name": "libfreerdp3-3-3.10.3-150700.3.14.1.ppc64le",
"product_id": "libfreerdp3-3-3.10.3-150700.3.14.1.ppc64le"
}
},
{
"category": "product_version",
"name": "librdtk0-0-3.10.3-150700.3.14.1.ppc64le",
"product": {
"name": "librdtk0-0-3.10.3-150700.3.14.1.ppc64le",
"product_id": "librdtk0-0-3.10.3-150700.3.14.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"product": {
"name": "libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"product_id": "libuwac0-0-3.10.3-150700.3.14.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libwinpr3-3-3.10.3-150700.3.14.1.ppc64le",
"product": {
"name": "libwinpr3-3-3.10.3-150700.3.14.1.ppc64le",
"product_id": "libwinpr3-3-3.10.3-150700.3.14.1.ppc64le"
}
},
{
"category": "product_version",
"name": "rdtk0-devel-3.10.3-150700.3.14.1.ppc64le",
"product": {
"name": "rdtk0-devel-3.10.3-150700.3.14.1.ppc64le",
"product_id": "rdtk0-devel-3.10.3-150700.3.14.1.ppc64le"
}
},
{
"category": "product_version",
"name": "uwac0-devel-3.10.3-150700.3.14.1.ppc64le",
"product": {
"name": "uwac0-devel-3.10.3-150700.3.14.1.ppc64le",
"product_id": "uwac0-devel-3.10.3-150700.3.14.1.ppc64le"
}
},
{
"category": "product_version",
"name": "winpr-devel-3.10.3-150700.3.14.1.ppc64le",
"product": {
"name": "winpr-devel-3.10.3-150700.3.14.1.ppc64le",
"product_id": "winpr-devel-3.10.3-150700.3.14.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "freerdp-3.10.3-150700.3.14.1.s390x",
"product": {
"name": "freerdp-3.10.3-150700.3.14.1.s390x",
"product_id": "freerdp-3.10.3-150700.3.14.1.s390x"
}
},
{
"category": "product_version",
"name": "freerdp-devel-3.10.3-150700.3.14.1.s390x",
"product": {
"name": "freerdp-devel-3.10.3-150700.3.14.1.s390x",
"product_id": "freerdp-devel-3.10.3-150700.3.14.1.s390x"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"product": {
"name": "freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"product_id": "freerdp-proxy-3.10.3-150700.3.14.1.s390x"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-plugins-3.10.3-150700.3.14.1.s390x",
"product": {
"name": "freerdp-proxy-plugins-3.10.3-150700.3.14.1.s390x",
"product_id": "freerdp-proxy-plugins-3.10.3-150700.3.14.1.s390x"
}
},
{
"category": "product_version",
"name": "freerdp-sdl-3.10.3-150700.3.14.1.s390x",
"product": {
"name": "freerdp-sdl-3.10.3-150700.3.14.1.s390x",
"product_id": "freerdp-sdl-3.10.3-150700.3.14.1.s390x"
}
},
{
"category": "product_version",
"name": "freerdp-server-3.10.3-150700.3.14.1.s390x",
"product": {
"name": "freerdp-server-3.10.3-150700.3.14.1.s390x",
"product_id": "freerdp-server-3.10.3-150700.3.14.1.s390x"
}
},
{
"category": "product_version",
"name": "freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"product": {
"name": "freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"product_id": "freerdp-wayland-3.10.3-150700.3.14.1.s390x"
}
},
{
"category": "product_version",
"name": "libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.s390x",
"product": {
"name": "libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.s390x",
"product_id": "libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.s390x"
}
},
{
"category": "product_version",
"name": "libfreerdp3-3-3.10.3-150700.3.14.1.s390x",
"product": {
"name": "libfreerdp3-3-3.10.3-150700.3.14.1.s390x",
"product_id": "libfreerdp3-3-3.10.3-150700.3.14.1.s390x"
}
},
{
"category": "product_version",
"name": "librdtk0-0-3.10.3-150700.3.14.1.s390x",
"product": {
"name": "librdtk0-0-3.10.3-150700.3.14.1.s390x",
"product_id": "librdtk0-0-3.10.3-150700.3.14.1.s390x"
}
},
{
"category": "product_version",
"name": "libuwac0-0-3.10.3-150700.3.14.1.s390x",
"product": {
"name": "libuwac0-0-3.10.3-150700.3.14.1.s390x",
"product_id": "libuwac0-0-3.10.3-150700.3.14.1.s390x"
}
},
{
"category": "product_version",
"name": "libwinpr3-3-3.10.3-150700.3.14.1.s390x",
"product": {
"name": "libwinpr3-3-3.10.3-150700.3.14.1.s390x",
"product_id": "libwinpr3-3-3.10.3-150700.3.14.1.s390x"
}
},
{
"category": "product_version",
"name": "rdtk0-devel-3.10.3-150700.3.14.1.s390x",
"product": {
"name": "rdtk0-devel-3.10.3-150700.3.14.1.s390x",
"product_id": "rdtk0-devel-3.10.3-150700.3.14.1.s390x"
}
},
{
"category": "product_version",
"name": "uwac0-devel-3.10.3-150700.3.14.1.s390x",
"product": {
"name": "uwac0-devel-3.10.3-150700.3.14.1.s390x",
"product_id": "uwac0-devel-3.10.3-150700.3.14.1.s390x"
}
},
{
"category": "product_version",
"name": "winpr-devel-3.10.3-150700.3.14.1.s390x",
"product": {
"name": "winpr-devel-3.10.3-150700.3.14.1.s390x",
"product_id": "winpr-devel-3.10.3-150700.3.14.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "freerdp-3.10.3-150700.3.14.1.x86_64",
"product": {
"name": "freerdp-3.10.3-150700.3.14.1.x86_64",
"product_id": "freerdp-3.10.3-150700.3.14.1.x86_64"
}
},
{
"category": "product_version",
"name": "freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"product": {
"name": "freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"product_id": "freerdp-devel-3.10.3-150700.3.14.1.x86_64"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"product": {
"name": "freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"product_id": "freerdp-proxy-3.10.3-150700.3.14.1.x86_64"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"product": {
"name": "freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"product_id": "freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64"
}
},
{
"category": "product_version",
"name": "freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"product": {
"name": "freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"product_id": "freerdp-sdl-3.10.3-150700.3.14.1.x86_64"
}
},
{
"category": "product_version",
"name": "freerdp-server-3.10.3-150700.3.14.1.x86_64",
"product": {
"name": "freerdp-server-3.10.3-150700.3.14.1.x86_64",
"product_id": "freerdp-server-3.10.3-150700.3.14.1.x86_64"
}
},
{
"category": "product_version",
"name": "freerdp-wayland-3.10.3-150700.3.14.1.x86_64",
"product": {
"name": "freerdp-wayland-3.10.3-150700.3.14.1.x86_64",
"product_id": "freerdp-wayland-3.10.3-150700.3.14.1.x86_64"
}
},
{
"category": "product_version",
"name": "libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"product": {
"name": "libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"product_id": "libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64"
}
},
{
"category": "product_version",
"name": "libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"product": {
"name": "libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"product_id": "libfreerdp3-3-3.10.3-150700.3.14.1.x86_64"
}
},
{
"category": "product_version",
"name": "librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"product": {
"name": "librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"product_id": "librdtk0-0-3.10.3-150700.3.14.1.x86_64"
}
},
{
"category": "product_version",
"name": "libuwac0-0-3.10.3-150700.3.14.1.x86_64",
"product": {
"name": "libuwac0-0-3.10.3-150700.3.14.1.x86_64",
"product_id": "libuwac0-0-3.10.3-150700.3.14.1.x86_64"
}
},
{
"category": "product_version",
"name": "libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"product": {
"name": "libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"product_id": "libwinpr3-3-3.10.3-150700.3.14.1.x86_64"
}
},
{
"category": "product_version",
"name": "rdtk0-devel-3.10.3-150700.3.14.1.x86_64",
"product": {
"name": "rdtk0-devel-3.10.3-150700.3.14.1.x86_64",
"product_id": "rdtk0-devel-3.10.3-150700.3.14.1.x86_64"
}
},
{
"category": "product_version",
"name": "uwac0-devel-3.10.3-150700.3.14.1.x86_64",
"product": {
"name": "uwac0-devel-3.10.3-150700.3.14.1.x86_64",
"product_id": "uwac0-devel-3.10.3-150700.3.14.1.x86_64"
}
},
{
"category": "product_version",
"name": "winpr-devel-3.10.3-150700.3.14.1.x86_64",
"product": {
"name": "winpr-devel-3.10.3-150700.3.14.1.x86_64",
"product_id": "winpr-devel-3.10.3-150700.3.14.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Package Hub 15 SP7",
"product": {
"name": "SUSE Linux Enterprise Module for Package Hub 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP7",
"product_identification_helper": {
"cpe": "cpe:/o:suse:packagehub:15:sp7"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Workstation Extension 15 SP7",
"product": {
"name": "SUSE Linux Enterprise Workstation Extension 15 SP7",
"product_id": "SUSE Linux Enterprise Workstation Extension 15 SP7",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-we:15:sp7"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-3.10.3-150700.3.14.1.aarch64 as component of SUSE Linux Enterprise Module for Package Hub 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64"
},
"product_reference": "freerdp-3.10.3-150700.3.14.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-3.10.3-150700.3.14.1.ppc64le as component of SUSE Linux Enterprise Module for Package Hub 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le"
},
"product_reference": "freerdp-3.10.3-150700.3.14.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-3.10.3-150700.3.14.1.s390x as component of SUSE Linux Enterprise Module for Package Hub 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x"
},
"product_reference": "freerdp-3.10.3-150700.3.14.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-devel-3.10.3-150700.3.14.1.aarch64 as component of SUSE Linux Enterprise Module for Package Hub 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64"
},
"product_reference": "freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-devel-3.10.3-150700.3.14.1.ppc64le as component of SUSE Linux Enterprise Module for Package Hub 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le"
},
"product_reference": "freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-devel-3.10.3-150700.3.14.1.s390x as component of SUSE Linux Enterprise Module for Package Hub 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x"
},
"product_reference": "freerdp-devel-3.10.3-150700.3.14.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-proxy-3.10.3-150700.3.14.1.aarch64 as component of SUSE Linux Enterprise Module for Package Hub 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64"
},
"product_reference": "freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-proxy-3.10.3-150700.3.14.1.ppc64le as component of SUSE Linux Enterprise Module for Package Hub 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le"
},
"product_reference": "freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-proxy-3.10.3-150700.3.14.1.s390x as component of SUSE Linux Enterprise Module for Package Hub 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x"
},
"product_reference": "freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-server-3.10.3-150700.3.14.1.aarch64 as component of SUSE Linux Enterprise Module for Package Hub 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64"
},
"product_reference": "freerdp-server-3.10.3-150700.3.14.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-server-3.10.3-150700.3.14.1.ppc64le as component of SUSE Linux Enterprise Module for Package Hub 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le"
},
"product_reference": "freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-server-3.10.3-150700.3.14.1.s390x as component of SUSE Linux Enterprise Module for Package Hub 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x"
},
"product_reference": "freerdp-server-3.10.3-150700.3.14.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-wayland-3.10.3-150700.3.14.1.aarch64 as component of SUSE Linux Enterprise Module for Package Hub 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64"
},
"product_reference": "freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-wayland-3.10.3-150700.3.14.1.ppc64le as component of SUSE Linux Enterprise Module for Package Hub 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le"
},
"product_reference": "freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-wayland-3.10.3-150700.3.14.1.s390x as component of SUSE Linux Enterprise Module for Package Hub 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x"
},
"product_reference": "freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libuwac0-0-3.10.3-150700.3.14.1.aarch64 as component of SUSE Linux Enterprise Module for Package Hub 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64"
},
"product_reference": "libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libuwac0-0-3.10.3-150700.3.14.1.ppc64le as component of SUSE Linux Enterprise Module for Package Hub 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le"
},
"product_reference": "libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libuwac0-0-3.10.3-150700.3.14.1.s390x as component of SUSE Linux Enterprise Module for Package Hub 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x"
},
"product_reference": "libuwac0-0-3.10.3-150700.3.14.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-3.10.3-150700.3.14.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 15 SP7",
"product_id": "SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64"
},
"product_reference": "freerdp-3.10.3-150700.3.14.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-devel-3.10.3-150700.3.14.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 15 SP7",
"product_id": "SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64"
},
"product_reference": "freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-proxy-3.10.3-150700.3.14.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 15 SP7",
"product_id": "SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64"
},
"product_reference": "freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 15 SP7",
"product_id": "SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64"
},
"product_reference": "freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-sdl-3.10.3-150700.3.14.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 15 SP7",
"product_id": "SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64"
},
"product_reference": "freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freerdp-server-3.10.3-150700.3.14.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 15 SP7",
"product_id": "SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64"
},
"product_reference": "freerdp-server-3.10.3-150700.3.14.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 15 SP7",
"product_id": "SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64"
},
"product_reference": "libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp3-3-3.10.3-150700.3.14.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 15 SP7",
"product_id": "SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64"
},
"product_reference": "libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "librdtk0-0-3.10.3-150700.3.14.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 15 SP7",
"product_id": "SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64"
},
"product_reference": "librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr3-3-3.10.3-150700.3.14.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 15 SP7",
"product_id": "SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64"
},
"product_reference": "libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "winpr-devel-3.10.3-150700.3.14.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 15 SP7",
"product_id": "SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
},
"product_reference": "winpr-devel-3.10.3-150700.3.14.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 15 SP7"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-25941",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-25941"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Versions on the 2.x branch prior to to 2.11.8 and on the 3.x branch prior to 3.23.0 have an out-of-bounds read vulnerability in the FreeRDP client\u0027s RDPGFX channel that allows a malicious RDP server to read uninitialized heap memory by sending a crafted WIRE_TO_SURFACE_2 PDU with a `bitmapDataLength` value larger than the actual data in the packet. This can lead to information disclosure or client crashes when a user connects to a malicious server. Versions 2.11.8 and 3.23.0 fix the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-25941",
"url": "https://www.suse.com/security/cve/CVE-2026-25941"
},
{
"category": "external",
"summary": "SUSE Bug 1258919 for CVE-2026-25941",
"url": "https://bugzilla.suse.com/1258919"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-27T12:05:30Z",
"details": "moderate"
}
],
"title": "CVE-2026-25941"
},
{
"cve": "CVE-2026-25942",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-25942"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `xf_rail_server_execute_result` indexes the global `error_code_names[]` array (7 elements, indices 0-6) with an unchecked `execResult-\u003eexecResult` value received from the server, allowing an out-of-bounds read when the server sends an `execResult` value of 7 or greater. Version 3.23.0 fixes the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-25942",
"url": "https://www.suse.com/security/cve/CVE-2026-25942"
},
{
"category": "external",
"summary": "SUSE Bug 1258920 for CVE-2026-25942",
"url": "https://bugzilla.suse.com/1258920"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-27T12:05:30Z",
"details": "moderate"
}
],
"title": "CVE-2026-25942"
},
{
"cve": "CVE-2026-25952",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-25952"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `xf_SetWindowMinMaxInfo` dereferences a freed `xfAppWindow` pointer because `xf_rail_get_window` in `xf_rail_server_min_max_info` returns an unprotected pointer from the `railWindows` hash table, and the main thread can concurrently delete the window (via a window delete order) while the RAIL channel thread is still using the pointer. Version 3.23.0 fixes the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-25952",
"url": "https://www.suse.com/security/cve/CVE-2026-25952"
},
{
"category": "external",
"summary": "SUSE Bug 1258921 for CVE-2026-25952",
"url": "https://bugzilla.suse.com/1258921"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-27T12:05:30Z",
"details": "moderate"
}
],
"title": "CVE-2026-25952"
},
{
"cve": "CVE-2026-25953",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-25953"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `xf_AppUpdateWindowFromSurface` reads from a freed `xfAppWindow` because the RDPGFX DVC thread obtains a bare pointer via `xf_rail_get_window` without any lifetime protection, while the main thread can concurrently delete the window through a fastpath window-delete order. Version 3.23.0 fixes the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-25953",
"url": "https://www.suse.com/security/cve/CVE-2026-25953"
},
{
"category": "external",
"summary": "SUSE Bug 1258923 for CVE-2026-25953",
"url": "https://bugzilla.suse.com/1258923"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-27T12:05:30Z",
"details": "moderate"
}
],
"title": "CVE-2026-25953"
},
{
"cve": "CVE-2026-25954",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-25954"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `xf_rail_server_local_move_size` dereferences a freed `xfAppWindow` pointer because `xf_rail_get_window` returns an unprotected pointer from the `railWindows` hash table, and the main thread can concurrently delete the window (via a window delete order) while the RAIL channel thread is still using the pointer. Version 3.23.0 fixes the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-25954",
"url": "https://www.suse.com/security/cve/CVE-2026-25954"
},
{
"category": "external",
"summary": "SUSE Bug 1258924 for CVE-2026-25954",
"url": "https://bugzilla.suse.com/1258924"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-27T12:05:30Z",
"details": "moderate"
}
],
"title": "CVE-2026-25954"
},
{
"cve": "CVE-2026-25955",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-25955"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `xf_AppUpdateWindowFromSurface` reuses a cached `XImage` whose `data` pointer references a freed RDPGFX surface buffer, because `gdi_DeleteSurface` frees `surface-\u003edata` without invalidating the `appWindow-\u003eimage` that aliases it. Version 3.23.0 fixes the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-25955",
"url": "https://www.suse.com/security/cve/CVE-2026-25955"
},
{
"category": "external",
"summary": "SUSE Bug 1258973 for CVE-2026-25955",
"url": "https://bugzilla.suse.com/1258973"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-27T12:05:30Z",
"details": "moderate"
}
],
"title": "CVE-2026-25955"
},
{
"cve": "CVE-2026-25959",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-25959"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `xf_cliprdr_provide_data_` passes freed `pDstData` to `XChangeProperty` because the cliprdr channel thread calls `xf_cliprdr_server_format_data_response` which converts and uses the clipboard data without holding any lock, while the X11 event thread concurrently calls `xf_cliprdr_clear_cached_data` -\u003e `HashTable_Clear` which frees the same data via `xf_cached_data_free`, triggering a heap use after free. Version 3.23.0 fixes the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-25959",
"url": "https://www.suse.com/security/cve/CVE-2026-25959"
},
{
"category": "external",
"summary": "SUSE Bug 1258976 for CVE-2026-25959",
"url": "https://bugzilla.suse.com/1258976"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-27T12:05:30Z",
"details": "moderate"
}
],
"title": "CVE-2026-25959"
},
{
"cve": "CVE-2026-25997",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-25997"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `xf_clipboard_format_equal` reads freed `lastSentFormats` memory because `xf_clipboard_formats_free` (called from the cliprdr channel thread during auto-reconnect) frees the array while the X11 event thread concurrently iterates it in `xf_clipboard_changed`, triggering a heap use after free. Version 3.23.0 fixes the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-25997",
"url": "https://www.suse.com/security/cve/CVE-2026-25997"
},
{
"category": "external",
"summary": "SUSE Bug 1258977 for CVE-2026-25997",
"url": "https://bugzilla.suse.com/1258977"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-27T12:05:30Z",
"details": "moderate"
}
],
"title": "CVE-2026-25997"
},
{
"cve": "CVE-2026-26986",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-26986"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `rail_window_free` dereferences a freed `xfAppWindow` pointer during `HashTable_Free` cleanup because `xf_rail_window_common` calls `free(appWindow)` on title allocation failure without first removing the entry from the `railWindows` hash table, leaving a dangling pointer that is freed again on disconnect. Version 3.23.0 fixes the vulnerability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-26986",
"url": "https://www.suse.com/security/cve/CVE-2026-26986"
},
{
"category": "external",
"summary": "SUSE Bug 1258967 for CVE-2026-26986",
"url": "https://bugzilla.suse.com/1258967"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-27T12:05:30Z",
"details": "moderate"
}
],
"title": "CVE-2026-26986"
},
{
"cve": "CVE-2026-27015",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-27015"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, a missing bounds check in `smartcard_unpack_read_size_align()` (`libfreerdp/utils/smartcard_pack.c:1703`) allows a malicious RDP server to crash the FreeRDP client via a reachable `WINPR_ASSERT` -\u003e `abort()`. The crash occurs in upstream builds where `WITH_VERBOSE_WINPR_ASSERT=ON` (default in FreeRDP 3.22.0 / current WinPR CMake defaults). Smartcard redirection must be explicitly enabled by the user (e.g., `xfreerdp /smartcard`; `/smartcard-logon` implies `/smartcard`). Version 3.23.0 fixes the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-27015",
"url": "https://www.suse.com/security/cve/CVE-2026-27015"
},
{
"category": "external",
"summary": "SUSE Bug 1258987 for CVE-2026-27015",
"url": "https://bugzilla.suse.com/1258987"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-27T12:05:30Z",
"details": "moderate"
}
],
"title": "CVE-2026-27015"
},
{
"cve": "CVE-2026-27950",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-27950"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, the fix for the heap-use-after-free described in CVE-2026-24680 is incomplete. While the vulnerable execution flow referenced in the advisory exists in the SDL2 implementation, the fix appears to have been applied only to the SDL3 code path. In the SDL2 implementation, the pointer is not nulled after free. This creates a situation where the advisory suggests the vulnerability is fully resolved, while builds or environments still using SDL2 may retain the vulnerable logic. A complete fix is available in version 3.23.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-27950",
"url": "https://www.suse.com/security/cve/CVE-2026-27950"
},
{
"category": "external",
"summary": "SUSE Bug 1258941 for CVE-2026-27950",
"url": "https://bugzilla.suse.com/1258941"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-27T12:05:30Z",
"details": "moderate"
}
],
"title": "CVE-2026-27950"
},
{
"cve": "CVE-2026-27951",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-27951"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, the function `Stream_EnsureCapacity` can create an endless blocking loop. This may affect all client and server implementations using `FreeRDP`. For practical exploitation this will only work on 32bit systems where the available physical memory is `\u003e= SIZE_MAX`. Version 3.23.0 contains a patch. No known workarounds are available.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-27951",
"url": "https://www.suse.com/security/cve/CVE-2026-27951"
},
{
"category": "external",
"summary": "SUSE Bug 1258939 for CVE-2026-27951",
"url": "https://bugzilla.suse.com/1258939"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-27T12:05:30Z",
"details": "moderate"
}
],
"title": "CVE-2026-27951"
},
{
"cve": "CVE-2026-29774",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-29774"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, a client-side heap buffer overflow occurs in the FreeRDP client\u0027s AVC420/AVC444 YUV-to-RGB conversion path due to missing horizontal bounds validation of H.264 metablock regionRects coordinates. In yuv.c, the clamp() function (line 347) only validates top/bottom against the surface/YUV height, but never checks left/right against the surface width. When avc420_yuv_to_rgb (line 67) computes destination and source pointers using rect-\u003eleft, it performs unchecked pointer arithmetic that can reach far beyond the allocated surface buffer. A malicious server sends a WIRE_TO_SURFACE_PDU_1 with AVC420 codec containing a regionRects entry where left greatly exceeds the surface width (e.g., left=60000 on a 128px surface). The H.264 bitstream decodes successfully, then yuv420_process_work_callback calls avc420_yuv_to_rgb which computes pDstPoint = pDstData + rect-\u003etop * nDstStep + rect-\u003eleft * 4, writing 16-byte SSE vectors 1888+ bytes past the allocated heap region. This vulnerability is fixed in 3.24.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-29774",
"url": "https://www.suse.com/security/cve/CVE-2026-29774"
},
{
"category": "external",
"summary": "SUSE Bug 1259689 for CVE-2026-29774",
"url": "https://bugzilla.suse.com/1259689"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-27T12:05:30Z",
"details": "moderate"
}
],
"title": "CVE-2026-29774"
},
{
"cve": "CVE-2026-29775",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-29775"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, a client-side heap out-of-bounds read/write occurs in FreeRDP\u0027s bitmap cache subsystem due to an off-by-one boundary check in bitmap_cache_put. A malicious server can send a CACHE_BITMAP_ORDER (Rev1) with cacheId equal to maxCells, bypassing the guard and accessing cells[] one element past the allocated array. This vulnerability is fixed in 3.24.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-29775",
"url": "https://www.suse.com/security/cve/CVE-2026-29775"
},
{
"category": "external",
"summary": "SUSE Bug 1259684 for CVE-2026-29775",
"url": "https://bugzilla.suse.com/1259684"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.7,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-27T12:05:30Z",
"details": "low"
}
],
"title": "CVE-2026-29775"
},
{
"cve": "CVE-2026-29776",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-29776"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, Integer Underflow in update_read_cache_bitmap_order Function of FreeRDP\u0027s Core Library This vulnerability is fixed in 3.24.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-29776",
"url": "https://www.suse.com/security/cve/CVE-2026-29776"
},
{
"category": "external",
"summary": "SUSE Bug 1259692 for CVE-2026-29776",
"url": "https://bugzilla.suse.com/1259692"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.1,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-27T12:05:30Z",
"details": "low"
}
],
"title": "CVE-2026-29776"
},
{
"cve": "CVE-2026-31884",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-31884"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, division by zero in MS-ADPCM and IMA-ADPCM decoders when nBlockAlign is 0, leading to a crash. In libfreerdp/codec/dsp.c, both ADPCM decoders use size % block_size where block_size = context-\u003ecommon.format.nBlockAlign. The nBlockAlign value comes from the Server Audio Formats PDU on the RDPSND channel. The value 0 is not validated anywhere before reaching the decoder. When nBlockAlign = 0, the modulo operation causes a SIGFPE (floating point exception) crash. This vulnerability is fixed in 3.24.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-31884",
"url": "https://www.suse.com/security/cve/CVE-2026-31884"
},
{
"category": "external",
"summary": "SUSE Bug 1259680 for CVE-2026-31884",
"url": "https://bugzilla.suse.com/1259680"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-27T12:05:30Z",
"details": "moderate"
}
],
"title": "CVE-2026-31884"
},
{
"cve": "CVE-2026-31897",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-31897"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, there is an out-of-bounds read in freerdp_bitmap_decompress_planar when SrcSize is 0. The function dereferences *srcp (which points to pSrcData) without first verifying that SrcSize \u003e= 1. When SrcSize is 0 and pSrcData is non-NULL, this reads one byte past the end of the source buffer. This vulnerability is fixed in 3.24.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-31897",
"url": "https://www.suse.com/security/cve/CVE-2026-31897"
},
{
"category": "external",
"summary": "SUSE Bug 1259693 for CVE-2026-31897",
"url": "https://bugzilla.suse.com/1259693"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.1,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-server-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:freerdp-wayland-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libuwac0-0-3.10.3-150700.3.14.1.s390x",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-devel-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-proxy-plugins-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-sdl-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:freerdp-server-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp-server-proxy3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libfreerdp3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:librdtk0-0-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:libwinpr3-3-3.10.3-150700.3.14.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:winpr-devel-3.10.3-150700.3.14.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-27T12:05:30Z",
"details": "low"
}
],
"title": "CVE-2026-31897"
}
]
}
SUSE-SU-2026:1634-1
Vulnerability from csaf_suse - Published: 2026-04-27 12:06 - Updated: 2026-04-27 12:06Summary
Security update for freerdp
Severity
Important
Notes
Title of the patch: Security update for freerdp
Description of the patch: This update for freerdp fixes the following issues:
- CVE-2026-25941: Out-of-Bounds Read in client RDPGFX channel via crafted `WIRE_TO_SURFACE_2` PDU (bsc#1258919).
- CVE-2026-25942: Global-buffer-overflow in `xf_rail_server_execute_result` (bsc#1258920).
- CVE-2026-25952: Heap-use-after-free in `xf_SetWindowMinMaxInfo` (bsc#1258921).
- CVE-2026-25953: Heap-use-after-free in `xf_AppUpdateWindowFromSurface` (bsc#1258923).
- CVE-2026-25954: Heap-use-after-free in `xf_rail_server_local_move_size` (bsc#1258924).
- CVE-2026-25997: Heap-use-after-free in `xf_clipboard_format_equal` (bsc#1258977).
- CVE-2026-26986: Heap-use-after-free in `rail_window_free` (bsc#1258967).
- CVE-2026-27015: Smartcard NDR alignment padding triggers reachable `WINPR_ASSERT` abort (bsc#1258987).
- CVE-2026-27951: Denial of service via endless blocking loop in `Stream_EnsureCapacity` (bsc#1258939).
- CVE-2026-29774: Missing bounds validation can cause a client-side heap buffer overflow (bsc#1259689).
- CVE-2026-29775: Malicious server can trigger a client-side heap out-of-bounds access (bsc#1259684).
- CVE-2026-29776: Missing length check can lead to an integer underflow (bsc#1259692).
- CVE-2026-31897: Missing length check can cause an out-of-bounds read (bsc#1259693).
Patchnames: SUSE-2026-1634,SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2026-1634
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
4.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.9 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
References
| URL | Category | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for freerdp",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for freerdp fixes the following issues:\n\n- CVE-2026-25941: Out-of-Bounds Read in client RDPGFX channel via crafted `WIRE_TO_SURFACE_2` PDU (bsc#1258919).\n- CVE-2026-25942: Global-buffer-overflow in `xf_rail_server_execute_result` (bsc#1258920).\n- CVE-2026-25952: Heap-use-after-free in `xf_SetWindowMinMaxInfo` (bsc#1258921).\n- CVE-2026-25953: Heap-use-after-free in `xf_AppUpdateWindowFromSurface` (bsc#1258923).\n- CVE-2026-25954: Heap-use-after-free in `xf_rail_server_local_move_size` (bsc#1258924).\n- CVE-2026-25997: Heap-use-after-free in `xf_clipboard_format_equal` (bsc#1258977).\n- CVE-2026-26986: Heap-use-after-free in `rail_window_free` (bsc#1258967).\n- CVE-2026-27015: Smartcard NDR alignment padding triggers reachable `WINPR_ASSERT` abort (bsc#1258987).\n- CVE-2026-27951: Denial of service via endless blocking loop in `Stream_EnsureCapacity` (bsc#1258939).\n- CVE-2026-29774: Missing bounds validation can cause a client-side heap buffer overflow (bsc#1259689).\n- CVE-2026-29775: Malicious server can trigger a client-side heap out-of-bounds access (bsc#1259684).\n- CVE-2026-29776: Missing length check can lead to an integer underflow (bsc#1259692).\n- CVE-2026-31897: Missing length check can cause an out-of-bounds read (bsc#1259693).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2026-1634,SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2026-1634",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_1634-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:1634-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20261634-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:1634-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2026-April/046046.html"
},
{
"category": "self",
"summary": "SUSE Bug 1258919",
"url": "https://bugzilla.suse.com/1258919"
},
{
"category": "self",
"summary": "SUSE Bug 1258920",
"url": "https://bugzilla.suse.com/1258920"
},
{
"category": "self",
"summary": "SUSE Bug 1258921",
"url": "https://bugzilla.suse.com/1258921"
},
{
"category": "self",
"summary": "SUSE Bug 1258923",
"url": "https://bugzilla.suse.com/1258923"
},
{
"category": "self",
"summary": "SUSE Bug 1258924",
"url": "https://bugzilla.suse.com/1258924"
},
{
"category": "self",
"summary": "SUSE Bug 1258939",
"url": "https://bugzilla.suse.com/1258939"
},
{
"category": "self",
"summary": "SUSE Bug 1258967",
"url": "https://bugzilla.suse.com/1258967"
},
{
"category": "self",
"summary": "SUSE Bug 1258977",
"url": "https://bugzilla.suse.com/1258977"
},
{
"category": "self",
"summary": "SUSE Bug 1258987",
"url": "https://bugzilla.suse.com/1258987"
},
{
"category": "self",
"summary": "SUSE Bug 1259680",
"url": "https://bugzilla.suse.com/1259680"
},
{
"category": "self",
"summary": "SUSE Bug 1259684",
"url": "https://bugzilla.suse.com/1259684"
},
{
"category": "self",
"summary": "SUSE Bug 1259689",
"url": "https://bugzilla.suse.com/1259689"
},
{
"category": "self",
"summary": "SUSE Bug 1259692",
"url": "https://bugzilla.suse.com/1259692"
},
{
"category": "self",
"summary": "SUSE Bug 1259693",
"url": "https://bugzilla.suse.com/1259693"
},
{
"category": "self",
"summary": "SUSE Bug 1261848",
"url": "https://bugzilla.suse.com/1261848"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-25941 page",
"url": "https://www.suse.com/security/cve/CVE-2026-25941/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-25942 page",
"url": "https://www.suse.com/security/cve/CVE-2026-25942/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-25952 page",
"url": "https://www.suse.com/security/cve/CVE-2026-25952/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-25953 page",
"url": "https://www.suse.com/security/cve/CVE-2026-25953/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-25954 page",
"url": "https://www.suse.com/security/cve/CVE-2026-25954/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-25997 page",
"url": "https://www.suse.com/security/cve/CVE-2026-25997/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-26986 page",
"url": "https://www.suse.com/security/cve/CVE-2026-26986/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-27015 page",
"url": "https://www.suse.com/security/cve/CVE-2026-27015/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-27951 page",
"url": "https://www.suse.com/security/cve/CVE-2026-27951/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-29774 page",
"url": "https://www.suse.com/security/cve/CVE-2026-29774/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-29775 page",
"url": "https://www.suse.com/security/cve/CVE-2026-29775/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-29776 page",
"url": "https://www.suse.com/security/cve/CVE-2026-29776/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-31884 page",
"url": "https://www.suse.com/security/cve/CVE-2026-31884/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-31897 page",
"url": "https://www.suse.com/security/cve/CVE-2026-31897/"
}
],
"title": "Security update for freerdp",
"tracking": {
"current_release_date": "2026-04-27T12:06:21Z",
"generator": {
"date": "2026-04-27T12:06:21Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:1634-1",
"initial_release_date": "2026-04-27T12:06:21Z",
"revision_history": [
{
"date": "2026-04-27T12:06:21Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "freerdp-2.4.0-150400.3.52.1.aarch64",
"product": {
"name": "freerdp-2.4.0-150400.3.52.1.aarch64",
"product_id": "freerdp-2.4.0-150400.3.52.1.aarch64"
}
},
{
"category": "product_version",
"name": "freerdp-devel-2.4.0-150400.3.52.1.aarch64",
"product": {
"name": "freerdp-devel-2.4.0-150400.3.52.1.aarch64",
"product_id": "freerdp-devel-2.4.0-150400.3.52.1.aarch64"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-2.4.0-150400.3.52.1.aarch64",
"product": {
"name": "freerdp-proxy-2.4.0-150400.3.52.1.aarch64",
"product_id": "freerdp-proxy-2.4.0-150400.3.52.1.aarch64"
}
},
{
"category": "product_version",
"name": "freerdp-server-2.4.0-150400.3.52.1.aarch64",
"product": {
"name": "freerdp-server-2.4.0-150400.3.52.1.aarch64",
"product_id": "freerdp-server-2.4.0-150400.3.52.1.aarch64"
}
},
{
"category": "product_version",
"name": "freerdp-wayland-2.4.0-150400.3.52.1.aarch64",
"product": {
"name": "freerdp-wayland-2.4.0-150400.3.52.1.aarch64",
"product_id": "freerdp-wayland-2.4.0-150400.3.52.1.aarch64"
}
},
{
"category": "product_version",
"name": "libfreerdp2-2.4.0-150400.3.52.1.aarch64",
"product": {
"name": "libfreerdp2-2.4.0-150400.3.52.1.aarch64",
"product_id": "libfreerdp2-2.4.0-150400.3.52.1.aarch64"
}
},
{
"category": "product_version",
"name": "libuwac0-0-2.4.0-150400.3.52.1.aarch64",
"product": {
"name": "libuwac0-0-2.4.0-150400.3.52.1.aarch64",
"product_id": "libuwac0-0-2.4.0-150400.3.52.1.aarch64"
}
},
{
"category": "product_version",
"name": "libwinpr2-2.4.0-150400.3.52.1.aarch64",
"product": {
"name": "libwinpr2-2.4.0-150400.3.52.1.aarch64",
"product_id": "libwinpr2-2.4.0-150400.3.52.1.aarch64"
}
},
{
"category": "product_version",
"name": "uwac0-0-devel-2.4.0-150400.3.52.1.aarch64",
"product": {
"name": "uwac0-0-devel-2.4.0-150400.3.52.1.aarch64",
"product_id": "uwac0-0-devel-2.4.0-150400.3.52.1.aarch64"
}
},
{
"category": "product_version",
"name": "winpr2-devel-2.4.0-150400.3.52.1.aarch64",
"product": {
"name": "winpr2-devel-2.4.0-150400.3.52.1.aarch64",
"product_id": "winpr2-devel-2.4.0-150400.3.52.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "freerdp-2.4.0-150400.3.52.1.i586",
"product": {
"name": "freerdp-2.4.0-150400.3.52.1.i586",
"product_id": "freerdp-2.4.0-150400.3.52.1.i586"
}
},
{
"category": "product_version",
"name": "freerdp-devel-2.4.0-150400.3.52.1.i586",
"product": {
"name": "freerdp-devel-2.4.0-150400.3.52.1.i586",
"product_id": "freerdp-devel-2.4.0-150400.3.52.1.i586"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-2.4.0-150400.3.52.1.i586",
"product": {
"name": "freerdp-proxy-2.4.0-150400.3.52.1.i586",
"product_id": "freerdp-proxy-2.4.0-150400.3.52.1.i586"
}
},
{
"category": "product_version",
"name": "freerdp-server-2.4.0-150400.3.52.1.i586",
"product": {
"name": "freerdp-server-2.4.0-150400.3.52.1.i586",
"product_id": "freerdp-server-2.4.0-150400.3.52.1.i586"
}
},
{
"category": "product_version",
"name": "freerdp-wayland-2.4.0-150400.3.52.1.i586",
"product": {
"name": "freerdp-wayland-2.4.0-150400.3.52.1.i586",
"product_id": "freerdp-wayland-2.4.0-150400.3.52.1.i586"
}
},
{
"category": "product_version",
"name": "libfreerdp2-2.4.0-150400.3.52.1.i586",
"product": {
"name": "libfreerdp2-2.4.0-150400.3.52.1.i586",
"product_id": "libfreerdp2-2.4.0-150400.3.52.1.i586"
}
},
{
"category": "product_version",
"name": "libuwac0-0-2.4.0-150400.3.52.1.i586",
"product": {
"name": "libuwac0-0-2.4.0-150400.3.52.1.i586",
"product_id": "libuwac0-0-2.4.0-150400.3.52.1.i586"
}
},
{
"category": "product_version",
"name": "libwinpr2-2.4.0-150400.3.52.1.i586",
"product": {
"name": "libwinpr2-2.4.0-150400.3.52.1.i586",
"product_id": "libwinpr2-2.4.0-150400.3.52.1.i586"
}
},
{
"category": "product_version",
"name": "uwac0-0-devel-2.4.0-150400.3.52.1.i586",
"product": {
"name": "uwac0-0-devel-2.4.0-150400.3.52.1.i586",
"product_id": "uwac0-0-devel-2.4.0-150400.3.52.1.i586"
}
},
{
"category": "product_version",
"name": "winpr2-devel-2.4.0-150400.3.52.1.i586",
"product": {
"name": "winpr2-devel-2.4.0-150400.3.52.1.i586",
"product_id": "winpr2-devel-2.4.0-150400.3.52.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "freerdp-2.4.0-150400.3.52.1.ppc64le",
"product": {
"name": "freerdp-2.4.0-150400.3.52.1.ppc64le",
"product_id": "freerdp-2.4.0-150400.3.52.1.ppc64le"
}
},
{
"category": "product_version",
"name": "freerdp-devel-2.4.0-150400.3.52.1.ppc64le",
"product": {
"name": "freerdp-devel-2.4.0-150400.3.52.1.ppc64le",
"product_id": "freerdp-devel-2.4.0-150400.3.52.1.ppc64le"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-2.4.0-150400.3.52.1.ppc64le",
"product": {
"name": "freerdp-proxy-2.4.0-150400.3.52.1.ppc64le",
"product_id": "freerdp-proxy-2.4.0-150400.3.52.1.ppc64le"
}
},
{
"category": "product_version",
"name": "freerdp-server-2.4.0-150400.3.52.1.ppc64le",
"product": {
"name": "freerdp-server-2.4.0-150400.3.52.1.ppc64le",
"product_id": "freerdp-server-2.4.0-150400.3.52.1.ppc64le"
}
},
{
"category": "product_version",
"name": "freerdp-wayland-2.4.0-150400.3.52.1.ppc64le",
"product": {
"name": "freerdp-wayland-2.4.0-150400.3.52.1.ppc64le",
"product_id": "freerdp-wayland-2.4.0-150400.3.52.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libfreerdp2-2.4.0-150400.3.52.1.ppc64le",
"product": {
"name": "libfreerdp2-2.4.0-150400.3.52.1.ppc64le",
"product_id": "libfreerdp2-2.4.0-150400.3.52.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libuwac0-0-2.4.0-150400.3.52.1.ppc64le",
"product": {
"name": "libuwac0-0-2.4.0-150400.3.52.1.ppc64le",
"product_id": "libuwac0-0-2.4.0-150400.3.52.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libwinpr2-2.4.0-150400.3.52.1.ppc64le",
"product": {
"name": "libwinpr2-2.4.0-150400.3.52.1.ppc64le",
"product_id": "libwinpr2-2.4.0-150400.3.52.1.ppc64le"
}
},
{
"category": "product_version",
"name": "uwac0-0-devel-2.4.0-150400.3.52.1.ppc64le",
"product": {
"name": "uwac0-0-devel-2.4.0-150400.3.52.1.ppc64le",
"product_id": "uwac0-0-devel-2.4.0-150400.3.52.1.ppc64le"
}
},
{
"category": "product_version",
"name": "winpr2-devel-2.4.0-150400.3.52.1.ppc64le",
"product": {
"name": "winpr2-devel-2.4.0-150400.3.52.1.ppc64le",
"product_id": "winpr2-devel-2.4.0-150400.3.52.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "freerdp-2.4.0-150400.3.52.1.s390x",
"product": {
"name": "freerdp-2.4.0-150400.3.52.1.s390x",
"product_id": "freerdp-2.4.0-150400.3.52.1.s390x"
}
},
{
"category": "product_version",
"name": "freerdp-devel-2.4.0-150400.3.52.1.s390x",
"product": {
"name": "freerdp-devel-2.4.0-150400.3.52.1.s390x",
"product_id": "freerdp-devel-2.4.0-150400.3.52.1.s390x"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-2.4.0-150400.3.52.1.s390x",
"product": {
"name": "freerdp-proxy-2.4.0-150400.3.52.1.s390x",
"product_id": "freerdp-proxy-2.4.0-150400.3.52.1.s390x"
}
},
{
"category": "product_version",
"name": "freerdp-server-2.4.0-150400.3.52.1.s390x",
"product": {
"name": "freerdp-server-2.4.0-150400.3.52.1.s390x",
"product_id": "freerdp-server-2.4.0-150400.3.52.1.s390x"
}
},
{
"category": "product_version",
"name": "freerdp-wayland-2.4.0-150400.3.52.1.s390x",
"product": {
"name": "freerdp-wayland-2.4.0-150400.3.52.1.s390x",
"product_id": "freerdp-wayland-2.4.0-150400.3.52.1.s390x"
}
},
{
"category": "product_version",
"name": "libfreerdp2-2.4.0-150400.3.52.1.s390x",
"product": {
"name": "libfreerdp2-2.4.0-150400.3.52.1.s390x",
"product_id": "libfreerdp2-2.4.0-150400.3.52.1.s390x"
}
},
{
"category": "product_version",
"name": "libuwac0-0-2.4.0-150400.3.52.1.s390x",
"product": {
"name": "libuwac0-0-2.4.0-150400.3.52.1.s390x",
"product_id": "libuwac0-0-2.4.0-150400.3.52.1.s390x"
}
},
{
"category": "product_version",
"name": "libwinpr2-2.4.0-150400.3.52.1.s390x",
"product": {
"name": "libwinpr2-2.4.0-150400.3.52.1.s390x",
"product_id": "libwinpr2-2.4.0-150400.3.52.1.s390x"
}
},
{
"category": "product_version",
"name": "uwac0-0-devel-2.4.0-150400.3.52.1.s390x",
"product": {
"name": "uwac0-0-devel-2.4.0-150400.3.52.1.s390x",
"product_id": "uwac0-0-devel-2.4.0-150400.3.52.1.s390x"
}
},
{
"category": "product_version",
"name": "winpr2-devel-2.4.0-150400.3.52.1.s390x",
"product": {
"name": "winpr2-devel-2.4.0-150400.3.52.1.s390x",
"product_id": "winpr2-devel-2.4.0-150400.3.52.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "freerdp-2.4.0-150400.3.52.1.x86_64",
"product": {
"name": "freerdp-2.4.0-150400.3.52.1.x86_64",
"product_id": "freerdp-2.4.0-150400.3.52.1.x86_64"
}
},
{
"category": "product_version",
"name": "freerdp-devel-2.4.0-150400.3.52.1.x86_64",
"product": {
"name": "freerdp-devel-2.4.0-150400.3.52.1.x86_64",
"product_id": "freerdp-devel-2.4.0-150400.3.52.1.x86_64"
}
},
{
"category": "product_version",
"name": "freerdp-proxy-2.4.0-150400.3.52.1.x86_64",
"product": {
"name": "freerdp-proxy-2.4.0-150400.3.52.1.x86_64",
"product_id": "freerdp-proxy-2.4.0-150400.3.52.1.x86_64"
}
},
{
"category": "product_version",
"name": "freerdp-server-2.4.0-150400.3.52.1.x86_64",
"product": {
"name": "freerdp-server-2.4.0-150400.3.52.1.x86_64",
"product_id": "freerdp-server-2.4.0-150400.3.52.1.x86_64"
}
},
{
"category": "product_version",
"name": "freerdp-wayland-2.4.0-150400.3.52.1.x86_64",
"product": {
"name": "freerdp-wayland-2.4.0-150400.3.52.1.x86_64",
"product_id": "freerdp-wayland-2.4.0-150400.3.52.1.x86_64"
}
},
{
"category": "product_version",
"name": "libfreerdp2-2.4.0-150400.3.52.1.x86_64",
"product": {
"name": "libfreerdp2-2.4.0-150400.3.52.1.x86_64",
"product_id": "libfreerdp2-2.4.0-150400.3.52.1.x86_64"
}
},
{
"category": "product_version",
"name": "libuwac0-0-2.4.0-150400.3.52.1.x86_64",
"product": {
"name": "libuwac0-0-2.4.0-150400.3.52.1.x86_64",
"product_id": "libuwac0-0-2.4.0-150400.3.52.1.x86_64"
}
},
{
"category": "product_version",
"name": "libwinpr2-2.4.0-150400.3.52.1.x86_64",
"product": {
"name": "libwinpr2-2.4.0-150400.3.52.1.x86_64",
"product_id": "libwinpr2-2.4.0-150400.3.52.1.x86_64"
}
},
{
"category": "product_version",
"name": "uwac0-0-devel-2.4.0-150400.3.52.1.x86_64",
"product": {
"name": "uwac0-0-devel-2.4.0-150400.3.52.1.x86_64",
"product_id": "uwac0-0-devel-2.4.0-150400.3.52.1.x86_64"
}
},
{
"category": "product_version",
"name": "winpr2-devel-2.4.0-150400.3.52.1.x86_64",
"product": {
"name": "winpr2-devel-2.4.0-150400.3.52.1.x86_64",
"product_id": "winpr2-devel-2.4.0-150400.3.52.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Package Hub 15 SP7",
"product": {
"name": "SUSE Linux Enterprise Module for Package Hub 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP7",
"product_identification_helper": {
"cpe": "cpe:/o:suse:packagehub:15:sp7"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp2-2.4.0-150400.3.52.1.aarch64 as component of SUSE Linux Enterprise Module for Package Hub 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.aarch64"
},
"product_reference": "libfreerdp2-2.4.0-150400.3.52.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp2-2.4.0-150400.3.52.1.ppc64le as component of SUSE Linux Enterprise Module for Package Hub 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.ppc64le"
},
"product_reference": "libfreerdp2-2.4.0-150400.3.52.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libfreerdp2-2.4.0-150400.3.52.1.s390x as component of SUSE Linux Enterprise Module for Package Hub 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.s390x"
},
"product_reference": "libfreerdp2-2.4.0-150400.3.52.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr2-2.4.0-150400.3.52.1.aarch64 as component of SUSE Linux Enterprise Module for Package Hub 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.aarch64"
},
"product_reference": "libwinpr2-2.4.0-150400.3.52.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr2-2.4.0-150400.3.52.1.ppc64le as component of SUSE Linux Enterprise Module for Package Hub 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.ppc64le"
},
"product_reference": "libwinpr2-2.4.0-150400.3.52.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwinpr2-2.4.0-150400.3.52.1.s390x as component of SUSE Linux Enterprise Module for Package Hub 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.s390x"
},
"product_reference": "libwinpr2-2.4.0-150400.3.52.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP7"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-25941",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-25941"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Versions on the 2.x branch prior to to 2.11.8 and on the 3.x branch prior to 3.23.0 have an out-of-bounds read vulnerability in the FreeRDP client\u0027s RDPGFX channel that allows a malicious RDP server to read uninitialized heap memory by sending a crafted WIRE_TO_SURFACE_2 PDU with a `bitmapDataLength` value larger than the actual data in the packet. This can lead to information disclosure or client crashes when a user connects to a malicious server. Versions 2.11.8 and 3.23.0 fix the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-25941",
"url": "https://www.suse.com/security/cve/CVE-2026-25941"
},
{
"category": "external",
"summary": "SUSE Bug 1258919 for CVE-2026-25941",
"url": "https://bugzilla.suse.com/1258919"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-27T12:06:21Z",
"details": "moderate"
}
],
"title": "CVE-2026-25941"
},
{
"cve": "CVE-2026-25942",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-25942"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `xf_rail_server_execute_result` indexes the global `error_code_names[]` array (7 elements, indices 0-6) with an unchecked `execResult-\u003eexecResult` value received from the server, allowing an out-of-bounds read when the server sends an `execResult` value of 7 or greater. Version 3.23.0 fixes the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-25942",
"url": "https://www.suse.com/security/cve/CVE-2026-25942"
},
{
"category": "external",
"summary": "SUSE Bug 1258920 for CVE-2026-25942",
"url": "https://bugzilla.suse.com/1258920"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-27T12:06:21Z",
"details": "moderate"
}
],
"title": "CVE-2026-25942"
},
{
"cve": "CVE-2026-25952",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-25952"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `xf_SetWindowMinMaxInfo` dereferences a freed `xfAppWindow` pointer because `xf_rail_get_window` in `xf_rail_server_min_max_info` returns an unprotected pointer from the `railWindows` hash table, and the main thread can concurrently delete the window (via a window delete order) while the RAIL channel thread is still using the pointer. Version 3.23.0 fixes the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-25952",
"url": "https://www.suse.com/security/cve/CVE-2026-25952"
},
{
"category": "external",
"summary": "SUSE Bug 1258921 for CVE-2026-25952",
"url": "https://bugzilla.suse.com/1258921"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-27T12:06:21Z",
"details": "moderate"
}
],
"title": "CVE-2026-25952"
},
{
"cve": "CVE-2026-25953",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-25953"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `xf_AppUpdateWindowFromSurface` reads from a freed `xfAppWindow` because the RDPGFX DVC thread obtains a bare pointer via `xf_rail_get_window` without any lifetime protection, while the main thread can concurrently delete the window through a fastpath window-delete order. Version 3.23.0 fixes the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-25953",
"url": "https://www.suse.com/security/cve/CVE-2026-25953"
},
{
"category": "external",
"summary": "SUSE Bug 1258923 for CVE-2026-25953",
"url": "https://bugzilla.suse.com/1258923"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-27T12:06:21Z",
"details": "moderate"
}
],
"title": "CVE-2026-25953"
},
{
"cve": "CVE-2026-25954",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-25954"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `xf_rail_server_local_move_size` dereferences a freed `xfAppWindow` pointer because `xf_rail_get_window` returns an unprotected pointer from the `railWindows` hash table, and the main thread can concurrently delete the window (via a window delete order) while the RAIL channel thread is still using the pointer. Version 3.23.0 fixes the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-25954",
"url": "https://www.suse.com/security/cve/CVE-2026-25954"
},
{
"category": "external",
"summary": "SUSE Bug 1258924 for CVE-2026-25954",
"url": "https://bugzilla.suse.com/1258924"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-27T12:06:21Z",
"details": "moderate"
}
],
"title": "CVE-2026-25954"
},
{
"cve": "CVE-2026-25997",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-25997"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `xf_clipboard_format_equal` reads freed `lastSentFormats` memory because `xf_clipboard_formats_free` (called from the cliprdr channel thread during auto-reconnect) frees the array while the X11 event thread concurrently iterates it in `xf_clipboard_changed`, triggering a heap use after free. Version 3.23.0 fixes the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-25997",
"url": "https://www.suse.com/security/cve/CVE-2026-25997"
},
{
"category": "external",
"summary": "SUSE Bug 1258977 for CVE-2026-25997",
"url": "https://bugzilla.suse.com/1258977"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-27T12:06:21Z",
"details": "moderate"
}
],
"title": "CVE-2026-25997"
},
{
"cve": "CVE-2026-26986",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-26986"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `rail_window_free` dereferences a freed `xfAppWindow` pointer during `HashTable_Free` cleanup because `xf_rail_window_common` calls `free(appWindow)` on title allocation failure without first removing the entry from the `railWindows` hash table, leaving a dangling pointer that is freed again on disconnect. Version 3.23.0 fixes the vulnerability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-26986",
"url": "https://www.suse.com/security/cve/CVE-2026-26986"
},
{
"category": "external",
"summary": "SUSE Bug 1258967 for CVE-2026-26986",
"url": "https://bugzilla.suse.com/1258967"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-27T12:06:21Z",
"details": "moderate"
}
],
"title": "CVE-2026-26986"
},
{
"cve": "CVE-2026-27015",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-27015"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, a missing bounds check in `smartcard_unpack_read_size_align()` (`libfreerdp/utils/smartcard_pack.c:1703`) allows a malicious RDP server to crash the FreeRDP client via a reachable `WINPR_ASSERT` -\u003e `abort()`. The crash occurs in upstream builds where `WITH_VERBOSE_WINPR_ASSERT=ON` (default in FreeRDP 3.22.0 / current WinPR CMake defaults). Smartcard redirection must be explicitly enabled by the user (e.g., `xfreerdp /smartcard`; `/smartcard-logon` implies `/smartcard`). Version 3.23.0 fixes the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-27015",
"url": "https://www.suse.com/security/cve/CVE-2026-27015"
},
{
"category": "external",
"summary": "SUSE Bug 1258987 for CVE-2026-27015",
"url": "https://bugzilla.suse.com/1258987"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-27T12:06:21Z",
"details": "moderate"
}
],
"title": "CVE-2026-27015"
},
{
"cve": "CVE-2026-27951",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-27951"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, the function `Stream_EnsureCapacity` can create an endless blocking loop. This may affect all client and server implementations using `FreeRDP`. For practical exploitation this will only work on 32bit systems where the available physical memory is `\u003e= SIZE_MAX`. Version 3.23.0 contains a patch. No known workarounds are available.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-27951",
"url": "https://www.suse.com/security/cve/CVE-2026-27951"
},
{
"category": "external",
"summary": "SUSE Bug 1258939 for CVE-2026-27951",
"url": "https://bugzilla.suse.com/1258939"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-27T12:06:21Z",
"details": "moderate"
}
],
"title": "CVE-2026-27951"
},
{
"cve": "CVE-2026-29774",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-29774"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, a client-side heap buffer overflow occurs in the FreeRDP client\u0027s AVC420/AVC444 YUV-to-RGB conversion path due to missing horizontal bounds validation of H.264 metablock regionRects coordinates. In yuv.c, the clamp() function (line 347) only validates top/bottom against the surface/YUV height, but never checks left/right against the surface width. When avc420_yuv_to_rgb (line 67) computes destination and source pointers using rect-\u003eleft, it performs unchecked pointer arithmetic that can reach far beyond the allocated surface buffer. A malicious server sends a WIRE_TO_SURFACE_PDU_1 with AVC420 codec containing a regionRects entry where left greatly exceeds the surface width (e.g., left=60000 on a 128px surface). The H.264 bitstream decodes successfully, then yuv420_process_work_callback calls avc420_yuv_to_rgb which computes pDstPoint = pDstData + rect-\u003etop * nDstStep + rect-\u003eleft * 4, writing 16-byte SSE vectors 1888+ bytes past the allocated heap region. This vulnerability is fixed in 3.24.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-29774",
"url": "https://www.suse.com/security/cve/CVE-2026-29774"
},
{
"category": "external",
"summary": "SUSE Bug 1259689 for CVE-2026-29774",
"url": "https://bugzilla.suse.com/1259689"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-27T12:06:21Z",
"details": "moderate"
}
],
"title": "CVE-2026-29774"
},
{
"cve": "CVE-2026-29775",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-29775"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, a client-side heap out-of-bounds read/write occurs in FreeRDP\u0027s bitmap cache subsystem due to an off-by-one boundary check in bitmap_cache_put. A malicious server can send a CACHE_BITMAP_ORDER (Rev1) with cacheId equal to maxCells, bypassing the guard and accessing cells[] one element past the allocated array. This vulnerability is fixed in 3.24.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-29775",
"url": "https://www.suse.com/security/cve/CVE-2026-29775"
},
{
"category": "external",
"summary": "SUSE Bug 1259684 for CVE-2026-29775",
"url": "https://bugzilla.suse.com/1259684"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.7,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-27T12:06:21Z",
"details": "low"
}
],
"title": "CVE-2026-29775"
},
{
"cve": "CVE-2026-29776",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-29776"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, Integer Underflow in update_read_cache_bitmap_order Function of FreeRDP\u0027s Core Library This vulnerability is fixed in 3.24.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-29776",
"url": "https://www.suse.com/security/cve/CVE-2026-29776"
},
{
"category": "external",
"summary": "SUSE Bug 1259692 for CVE-2026-29776",
"url": "https://bugzilla.suse.com/1259692"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.1,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-27T12:06:21Z",
"details": "low"
}
],
"title": "CVE-2026-29776"
},
{
"cve": "CVE-2026-31884",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-31884"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, division by zero in MS-ADPCM and IMA-ADPCM decoders when nBlockAlign is 0, leading to a crash. In libfreerdp/codec/dsp.c, both ADPCM decoders use size % block_size where block_size = context-\u003ecommon.format.nBlockAlign. The nBlockAlign value comes from the Server Audio Formats PDU on the RDPSND channel. The value 0 is not validated anywhere before reaching the decoder. When nBlockAlign = 0, the modulo operation causes a SIGFPE (floating point exception) crash. This vulnerability is fixed in 3.24.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-31884",
"url": "https://www.suse.com/security/cve/CVE-2026-31884"
},
{
"category": "external",
"summary": "SUSE Bug 1259680 for CVE-2026-31884",
"url": "https://bugzilla.suse.com/1259680"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-27T12:06:21Z",
"details": "moderate"
}
],
"title": "CVE-2026-31884"
},
{
"cve": "CVE-2026-31897",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-31897"
}
],
"notes": [
{
"category": "general",
"text": "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, there is an out-of-bounds read in freerdp_bitmap_decompress_planar when SrcSize is 0. The function dereferences *srcp (which points to pSrcData) without first verifying that SrcSize \u003e= 1. When SrcSize is 0 and pSrcData is non-NULL, this reads one byte past the end of the source buffer. This vulnerability is fixed in 3.24.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-31897",
"url": "https://www.suse.com/security/cve/CVE-2026-31897"
},
{
"category": "external",
"summary": "SUSE Bug 1259693 for CVE-2026-31897",
"url": "https://bugzilla.suse.com/1259693"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.1,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfreerdp2-2.4.0-150400.3.52.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:libwinpr2-2.4.0-150400.3.52.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-27T12:06:21Z",
"details": "low"
}
],
"title": "CVE-2026-31897"
}
]
}
WID-SEC-W-2026-0725
Vulnerability from csaf_certbund - Published: 2026-03-12 23:00 - Updated: 2026-04-09 22:00Summary
FreeRDP: Mehrere Schwachstellen
Severity
Hoch
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung: FreeRDP ist eine freie Implementierung des Remote Desktop Protocol (RDP).
Angriff: Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in FreeRDP ausnutzen, um potenziell beliebigen Code auszuführen, einen Denial-of-Service-Zustand herbeizuführen, Speicherbeschädigungen zu verursachen, Daten zu manipulieren oder vertrauliche Informationen offenzulegen.
Betroffene Betriebssysteme: - Linux
- Sonstiges
- UNIX
- Windows
References
| URL | Category | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"document": {
"aggregate_severity": {
"text": "hoch"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "FreeRDP ist eine freie Implementierung des Remote Desktop Protocol (RDP).",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in FreeRDP ausnutzen, um potenziell beliebigen Code auszuf\u00fchren, einen Denial-of-Service-Zustand herbeizuf\u00fchren, Speicherbesch\u00e4digungen zu verursachen, Daten zu manipulieren oder vertrauliche Informationen offenzulegen.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Linux\n- Sonstiges\n- UNIX\n- Windows",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2026-0725 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2026/wid-sec-w-2026-0725.json"
},
{
"category": "self",
"summary": "WID-SEC-2026-0725 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2026-0725"
},
{
"category": "external",
"summary": "FreeRDP 3.24.0 release notes vom 2026-03-12",
"url": "https://www.freerdp.com/2026/03/13/3_24_0-release"
},
{
"category": "external",
"summary": "GitHub Security Advisory GHSA-5q35-hv9x-7794 vom 2026-03-12",
"url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-5q35-hv9x-7794"
},
{
"category": "external",
"summary": "GitHub Security Advisory GHSA-85x9-4xxp-xhm5 vom 2026-03-12",
"url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-85x9-4xxp-xhm5"
},
{
"category": "external",
"summary": "GitHub Security Advisory GHSA-c747-x4wf-cqrr vom 2026-03-12",
"url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-c747-x4wf-cqrr"
},
{
"category": "external",
"summary": "GitHub Security Advisory GHSA-h23r-3988-3wf3 vom 2026-03-12",
"url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-h23r-3988-3wf3"
},
{
"category": "external",
"summary": "GitHub Security Advisory GHSA-h666-rfw3-jhvj vom 2026-03-12",
"url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-h666-rfw3-jhvj"
},
{
"category": "external",
"summary": "GitHub Security Advisory GHSA-jp7m-94ww-p56r vom 2026-03-12",
"url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-jp7m-94ww-p56r"
},
{
"category": "external",
"summary": "GitHub Security Advisory GHSA-rrqm-46rj-cmx2 vom 2026-03-12",
"url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-rrqm-46rj-cmx2"
},
{
"category": "external",
"summary": "GitHub Security Advisory GHSA-xgv6-r22m-7c9x vom 2026-03-12",
"url": "https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-xgv6-r22m-7c9x"
},
{
"category": "external",
"summary": "Fedora Security Advisory FEDORA-2026-BF4C5BB9C5 vom 2026-03-16",
"url": "https://bodhi.fedoraproject.org/updates/FEDORA-2026-bf4c5bb9c5"
},
{
"category": "external",
"summary": "Fedora Security Advisory FEDORA-2026-2C1AB5B23B vom 2026-03-16",
"url": "https://bodhi.fedoraproject.org/updates/FEDORA-2026-2c1ab5b23b"
},
{
"category": "external",
"summary": "Fedora Security Advisory FEDORA-2026-34886ABFAD vom 2026-03-16",
"url": "https://bodhi.fedoraproject.org/updates/FEDORA-2026-34886abfad"
},
{
"category": "external",
"summary": "Fedora Security Advisory FEDORA-2026-AAE50DC427 vom 2026-03-16",
"url": "https://bodhi.fedoraproject.org/updates/FEDORA-2026-aae50dc427"
},
{
"category": "external",
"summary": "Fedora Security Advisory FEDORA-2026-07418A381F vom 2026-03-26",
"url": "https://bodhi.fedoraproject.org/updates/FEDORA-2026-07418a381f"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:1129-1 vom 2026-03-28",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-March/025021.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:1160-1 vom 2026-03-31",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-March/025071.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2026:6340 vom 2026-04-01",
"url": "https://access.redhat.com/errata/RHSA-2026:6340"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2026-6340 vom 2026-04-01",
"url": "http://linux.oracle.com/errata/ELSA-2026-6340.html"
},
{
"category": "external",
"summary": "openSUSE Security Update OPENSUSE-SU-2026:10459-1 vom 2026-04-01",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/34ABPSLQFVRGFKDSR5ZEDKG5UH6KIBCA/"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:1164-1 vom 2026-04-01",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-April/025118.html"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALAS2-2026-3221 vom 2026-04-01",
"url": "https://alas.aws.amazon.com/AL2/ALAS2-2026-3221.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:1165-1 vom 2026-04-01",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-April/025117.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2026:6727 vom 2026-04-07",
"url": "https://access.redhat.com/errata/RHSA-2026:6727"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2026:6743 vom 2026-04-07",
"url": "https://access.redhat.com/errata/RHSA-2026:6743"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2026:6799 vom 2026-04-07",
"url": "https://access.redhat.com/errata/RHSA-2026:6799"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2026-6918 vom 2026-04-08",
"url": "https://linux.oracle.com/errata/ELSA-2026-6918.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2026:6958 vom 2026-04-08",
"url": "https://access.redhat.com/errata/RHSA-2026:6958"
},
{
"category": "external",
"summary": "Rocky Linux Security Advisory RLSA-2026:6340 vom 2026-04-07",
"url": "https://errata.build.resf.org/RLSA-2026:6340"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2026:6918 vom 2026-04-08",
"url": "https://access.redhat.com/errata/RHSA-2026:6918"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2026-6799 vom 2026-04-08",
"url": "https://linux.oracle.com/errata/ELSA-2026-6799.html"
},
{
"category": "external",
"summary": "Rocky Linux Security Advisory RLSA-2026:6918 vom 2026-04-09",
"url": "https://errata.build.resf.org/RLSA-2026:6918"
},
{
"category": "external",
"summary": "Rocky Linux Security Advisory RLSA-2026:6799 vom 2026-04-09",
"url": "https://errata.build.resf.org/RLSA-2026:6799"
}
],
"source_lang": "en-US",
"title": "FreeRDP: Mehrere Schwachstellen",
"tracking": {
"current_release_date": "2026-04-09T22:00:00.000+00:00",
"generator": {
"date": "2026-04-10T07:16:56.098+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.5.0"
}
},
"id": "WID-SEC-W-2026-0725",
"initial_release_date": "2026-03-12T23:00:00.000+00:00",
"revision_history": [
{
"date": "2026-03-12T23:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2026-03-15T23:00:00.000+00:00",
"number": "2",
"summary": "Neue Updates von Fedora und European Union Vulnerability Database aufgenommen"
},
{
"date": "2026-03-25T23:00:00.000+00:00",
"number": "3",
"summary": "Neue Updates von Fedora aufgenommen"
},
{
"date": "2026-03-29T22:00:00.000+00:00",
"number": "4",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2026-03-31T22:00:00.000+00:00",
"number": "5",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2026-04-01T22:00:00.000+00:00",
"number": "6",
"summary": "Neue Updates von Oracle Linux, openSUSE, SUSE und Amazon aufgenommen"
},
{
"date": "2026-04-06T22:00:00.000+00:00",
"number": "7",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2026-04-07T22:00:00.000+00:00",
"number": "8",
"summary": "Neue Updates von Red Hat, Oracle Linux und Rocky Enterprise Software Foundation aufgenommen"
},
{
"date": "2026-04-08T22:00:00.000+00:00",
"number": "9",
"summary": "Neue Updates von Rocky Enterprise Software Foundation aufgenommen"
},
{
"date": "2026-04-09T22:00:00.000+00:00",
"number": "10",
"summary": "Neue Updates von Rocky Enterprise Software Foundation aufgenommen"
}
],
"status": "final",
"version": "10"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Amazon Linux 2",
"product": {
"name": "Amazon Linux 2",
"product_id": "398363",
"product_identification_helper": {
"cpe": "cpe:/o:amazon:linux_2:-"
}
}
}
],
"category": "vendor",
"name": "Amazon"
},
{
"branches": [
{
"category": "product_name",
"name": "Fedora Linux",
"product": {
"name": "Fedora Linux",
"product_id": "74185",
"product_identification_helper": {
"cpe": "cpe:/o:fedoraproject:fedora:-"
}
}
}
],
"category": "vendor",
"name": "Fedora"
},
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c3.24.0",
"product": {
"name": "Open Source FreeRDP \u003c3.24.0",
"product_id": "T051732"
}
},
{
"category": "product_version",
"name": "3.24.0",
"product": {
"name": "Open Source FreeRDP 3.24.0",
"product_id": "T051732-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:freerdp:freerdp:3.24.0"
}
}
}
],
"category": "product_name",
"name": "FreeRDP"
}
],
"category": "vendor",
"name": "Open Source"
},
{
"branches": [
{
"category": "product_name",
"name": "Oracle Linux",
"product": {
"name": "Oracle Linux",
"product_id": "T004914",
"product_identification_helper": {
"cpe": "cpe:/o:oracle:linux:-"
}
}
}
],
"category": "vendor",
"name": "Oracle"
},
{
"branches": [
{
"category": "product_name",
"name": "RESF Rocky Linux",
"product": {
"name": "RESF Rocky Linux",
"product_id": "T032255",
"product_identification_helper": {
"cpe": "cpe:/o:resf:rocky_linux:-"
}
}
}
],
"category": "vendor",
"name": "RESF"
},
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux",
"product": {
"name": "Red Hat Enterprise Linux",
"product_id": "67646",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:-"
}
}
}
],
"category": "vendor",
"name": "Red Hat"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux",
"product": {
"name": "SUSE Linux",
"product_id": "T002207",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse_linux:-"
}
}
},
{
"category": "product_name",
"name": "SUSE openSUSE",
"product": {
"name": "SUSE openSUSE",
"product_id": "T027843",
"product_identification_helper": {
"cpe": "cpe:/o:suse:opensuse:-"
}
}
}
],
"category": "vendor",
"name": "SUSE"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-29774",
"product_status": {
"known_affected": [
"T002207",
"67646",
"T027843",
"T051732",
"398363",
"T004914",
"T032255",
"74185"
]
},
"release_date": "2026-03-12T23:00:00.000+00:00",
"title": "CVE-2026-29774"
},
{
"cve": "CVE-2026-29775",
"product_status": {
"known_affected": [
"T002207",
"67646",
"T027843",
"T051732",
"398363",
"T004914",
"T032255",
"74185"
]
},
"release_date": "2026-03-12T23:00:00.000+00:00",
"title": "CVE-2026-29775"
},
{
"cve": "CVE-2026-29776",
"product_status": {
"known_affected": [
"T002207",
"67646",
"T027843",
"T051732",
"398363",
"T004914",
"T032255",
"74185"
]
},
"release_date": "2026-03-12T23:00:00.000+00:00",
"title": "CVE-2026-29776"
},
{
"cve": "CVE-2026-31806",
"product_status": {
"known_affected": [
"T002207",
"67646",
"T027843",
"T051732",
"398363",
"T004914",
"T032255",
"74185"
]
},
"release_date": "2026-03-12T23:00:00.000+00:00",
"title": "CVE-2026-31806"
},
{
"cve": "CVE-2026-31883",
"product_status": {
"known_affected": [
"T002207",
"67646",
"T027843",
"T051732",
"398363",
"T004914",
"T032255",
"74185"
]
},
"release_date": "2026-03-12T23:00:00.000+00:00",
"title": "CVE-2026-31883"
},
{
"cve": "CVE-2026-31884",
"product_status": {
"known_affected": [
"T002207",
"67646",
"T027843",
"T051732",
"398363",
"T004914",
"T032255",
"74185"
]
},
"release_date": "2026-03-12T23:00:00.000+00:00",
"title": "CVE-2026-31884"
},
{
"cve": "CVE-2026-31885",
"product_status": {
"known_affected": [
"T002207",
"67646",
"T027843",
"T051732",
"398363",
"T004914",
"T032255",
"74185"
]
},
"release_date": "2026-03-12T23:00:00.000+00:00",
"title": "CVE-2026-31885"
},
{
"cve": "CVE-2026-31897",
"product_status": {
"known_affected": [
"T002207",
"67646",
"T027843",
"T051732",
"398363",
"T004914",
"T032255",
"74185"
]
},
"release_date": "2026-03-12T23:00:00.000+00:00",
"title": "CVE-2026-31897"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…