In FreeRDP before version 2.1.2, there is an out of bounds read in licensereadneworupgradelicensepacket. A manipulated license packet can lead to out of bound reads to an internal buffer. This is fixed in version 2.1.2.
{ "urgency": "not yet assigned" }