rdesktop versions up to and including v1.8.3 contain an Out-Of-Bounds Read in function csspreadtsrequest() that results in a Denial of Service (segfault).
{ "urgency": "not yet assigned" }