Search CVE reports


Toggle filters

1 – 10 of 183 results


CVE-2026-57158

Medium priority
Needs evaluation

FreeRDP is a free implementation of the Remote Desktop Protocol. From 3.21.0 before 3.28.0, FreeRDP clients using the GFX pipeline contain an incomplete fix for CVE-2026-23530 in planar_decompress_plane_rle_only...

3 affected packages

freerdp, freerdp2, freerdp3

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
freerdp Not in release Not in release Not in release Needs evaluation
freerdp2 Not in release Needs evaluation Needs evaluation Needs evaluation Needs evaluation
freerdp3 Needs evaluation Needs evaluation Not in release
Show less packages

CVE-2026-57157

Medium priority
Needs evaluation

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.28.0, FreeRDP server implementations with the MS-RDPECAM camera device enumerator channel enabled scan attacker-supplied DeviceName and VirtualChannelName...

3 affected packages

freerdp, freerdp2, freerdp3

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
freerdp Not in release Not in release Not in release Needs evaluation
freerdp2 Not in release Needs evaluation Needs evaluation Needs evaluation Needs evaluation
freerdp3 Needs evaluation Needs evaluation Not in release
Show less packages

CVE-2026-57156

Medium priority
Needs evaluation

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.28.0 on 32-bit builds, FreeRDP clients contain an integer overflow in update_read_delta_points in libfreerdp/core/orders.c when multiplying...

3 affected packages

freerdp, freerdp2, freerdp3

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
freerdp Not in release Not in release Not in release Needs evaluation
freerdp2 Not in release Needs evaluation Needs evaluation Needs evaluation Needs evaluation
freerdp3 Needs evaluation Needs evaluation Not in release
Show less packages

CVE-2026-55827

Medium priority
Needs evaluation

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.27.1, FreeRDP clients launched with the non-default /cache:codec:rfx option pass desktop stride and height to RemoteFX decoding for Cache Bitmap V3 data...

3 affected packages

freerdp, freerdp2, freerdp3

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
freerdp Not in release Not in release Not in release Needs evaluation
freerdp2 Not in release Needs evaluation Needs evaluation Needs evaluation Needs evaluation
freerdp3 Needs evaluation Needs evaluation Not in release
Show less packages

CVE-2026-55648

Medium priority
Needs evaluation

Integer Overflow in `freerdp_image_copy_from_icon_data` Bypasses Bounds Check

3 affected packages

freerdp, freerdp2, freerdp3

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
freerdp Not in release Not in release Not in release Needs evaluation
freerdp2 Not in release Needs evaluation Needs evaluation Needs evaluation Needs evaluation
freerdp3 Needs evaluation Needs evaluation Not in release
Show less packages

CVE-2026-55564

Medium priority
Needs evaluation

Out-of-bounds read in glyph_cache_get via crafted glyph fragments

3 affected packages

freerdp, freerdp2, freerdp3

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
freerdp Not in release Not in release Not in release Needs evaluation
freerdp2 Not in release Needs evaluation Needs evaluation Needs evaluation Needs evaluation
freerdp3 Needs evaluation Needs evaluation Not in release
Show less packages

CVE-2026-55194

Medium priority
Needs evaluation

Heap-buffer-overflow write in TS Gateway RPC RESPONSE reassembly due to alloc_hint capacity mismatch

3 affected packages

freerdp, freerdp2, freerdp3

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
freerdp Not in release Not in release Not in release Needs evaluation
freerdp2 Not in release Needs evaluation Needs evaluation Needs evaluation Needs evaluation
freerdp3 Needs evaluation Needs evaluation Not in release
Show less packages

CVE-2026-55193

Medium priority
Needs evaluation

Heap-buffer-overflow write in TS Gateway RPC fragment receive due to uncapped bind_ack max_xmit_frag

3 affected packages

freerdp, freerdp2, freerdp3

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
freerdp Not in release Not in release Not in release Needs evaluation
freerdp2 Not in release Needs evaluation Needs evaluation Needs evaluation Needs evaluation
freerdp3 Needs evaluation Needs evaluation Not in release
Show less packages

CVE-2026-55192

Medium priority
Needs evaluation

Out-of-bounds read in H.264 YUV-to-RGB conversion due to decoder/surface dimension mismatch

3 affected packages

freerdp, freerdp2, freerdp3

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
freerdp Not in release Not in release Not in release Needs evaluation
freerdp2 Not in release Needs evaluation Needs evaluation Needs evaluation Needs evaluation
freerdp3 Needs evaluation Needs evaluation Not in release
Show less packages

CVE-2026-55191

Medium priority
Needs evaluation

Heap-buffer-overflow write in AVC444 YUV buffer allocation

3 affected packages

freerdp, freerdp2, freerdp3

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
freerdp Not in release Not in release Not in release Needs evaluation
freerdp2 Not in release Needs evaluation Needs evaluation Needs evaluation Needs evaluation
freerdp3 Needs evaluation Needs evaluation Not in release
Show less packages