MGASA-2026-0046

Source
https://advisories.mageia.org/MGASA-2026-0046.html
Import Source
https://advisories.mageia.org/MGASA-2026-0046.json
JSON Data
https://api.test.osv.dev/v1/vulns/MGASA-2026-0046
Related
Published
2026-02-22T00:53:38Z
Modified
2026-02-22T01:21:45.008725Z
Summary
Updated freerdp packages fix security vulnerabilities
Details

FreeRDP has heap-buffer-overflow in planardecompressplanerle. (CVE-2026-23530) FreeRDP has heap-buffer-overflow in cleardecompress. (CVE-2026-23531) FreeRDP has heap-buffer-overflow in gdiSurfaceToSurface. (CVE-2026-23532) FreeRDP has heap-buffer-overflow in cleardecompressresidualdata. (CVE-2026-23533) FreeRDP has heap-buffer-overflow in cleardecompressbandsdata. (CVE-2026-23534) FreeRDP has a NULL Pointer Dereference in rdpwritelogoninfov2(). (CVE-2026-23948) FreeRDP has a heap-use-after-free in videotimer. (CVE-2026-24491) FreeRDP has a Heap-use-after-free in urbselectinterface. (CVE-2026-24675) FreeRDP has a heap-use-after-free in audioformatcompatible. (CVE-2026-24676) FreeRDP has a heap-buffer-overflow in ecamencodercompressh264. (CVE-2026-24677) FreeRDP has a Heap-use-after-free in camv4lstreamcapturethread. (CVE-2026-24678) FreeRDP has a heap-buffer-overflow in urbselectinterface. (CVE-2026-24679) FreeRDP has a heap-use-after-free in updatepointernew(SDL). (CVE-2026-24680) FreeRDP has a heap-use-after-free in urbbulktransfercb. (CVE-2026-24681) FreeRDP has a Heap-buffer-overflow in audioformatsfree. (CVE-2026-24682) FreeRDP has a heap-use-after-free in ainputsendinputevent. (CVE-2026-24683) FreeRDP has a Heap-use-after-free in playthread. (CVE-2026-24684)

References
Credits

Affected packages

Mageia:9 / freerdp

Package

Name
freerdp
Purl
pkg:rpm/mageia/freerdp?arch=source&distro=mageia-9

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.11.7-1.2.mga9

Ecosystem specific

{
    "section": "core"
}

Database specific

source
"https://advisories.mageia.org/MGASA-2026-0046.json"