FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients prior to version 3.5.1 are vulnerable to out-of-bounds read if ((nWidth == 0) and (nHeight == 0))
. Version 3.5.1 contains a patch for the issue. No known workarounds are available.
{ "vanir_signatures": [ { "digest": { "function_hash": "245208013832575399984640192656988015344", "length": 930.0 }, "signature_version": "v1", "signature_type": "Function", "deprecated": false, "id": "CVE-2024-32659-29dd304a", "source": "https://github.com/freerdp/freerdp/commit/6430945ce003a5e24d454d8566f54aae1b6b617b", "target": { "function": "freerdp_image_copy", "file": "libfreerdp/codec/color.c" } } ] }