Search CVE reports
61 – 70 of 37376 results
A flaw was found in the udisks storage management daemon that exposes a privileged D-Bus API for restoring LUKS encryption headers without proper authorization checks. The issue allows a local unprivileged user to instruct the...
1 affected package
udisks2
| Package | 20.04 LTS |
|---|---|
| udisks2 | Not affected |
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `xf_clipboard_format_equal` reads freed `lastSentFormats` memory because `xf_clipboard_formats_free` (called from the cliprdr channel thread...
3 affected packages
freerdp, freerdp2, freerdp3
| Package | 20.04 LTS |
|---|---|
| freerdp | — |
| freerdp2 | Needs evaluation |
| freerdp3 | — |
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `xf_cliprdr_provide_data_` passes freed `pDstData` to `XChangeProperty` because the cliprdr channel thread...
3 affected packages
freerdp, freerdp2, freerdp3
| Package | 20.04 LTS |
|---|---|
| freerdp | — |
| freerdp2 | Needs evaluation |
| freerdp3 | — |
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `xf_AppUpdateWindowFromSurface` reuses a cached `XImage` whose `data` pointer references a freed RDPGFX surface buffer,...
3 affected packages
freerdp, freerdp2, freerdp3
| Package | 20.04 LTS |
|---|---|
| freerdp | — |
| freerdp2 | Needs evaluation |
| freerdp3 | — |
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `xf_rail_server_local_move_size` dereferences a freed `xfAppWindow` pointer because `xf_rail_get_window` returns an unprotected pointer from...
3 affected packages
freerdp, freerdp2, freerdp3
| Package | 20.04 LTS |
|---|---|
| freerdp | — |
| freerdp2 | Needs evaluation |
| freerdp3 | — |
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `xf_AppUpdateWindowFromSurface` reads from a freed `xfAppWindow` because the RDPGFX DVC thread obtains a bare pointer...
3 affected packages
freerdp, freerdp2, freerdp3
| Package | 20.04 LTS |
|---|---|
| freerdp | — |
| freerdp2 | Needs evaluation |
| freerdp3 | — |
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `xf_SetWindowMinMaxInfo` dereferences a freed `xfAppWindow` pointer because `xf_rail_get_window` in `xf_rail_server_min_max_info` returns an...
3 affected packages
freerdp, freerdp2, freerdp3
| Package | 20.04 LTS |
|---|---|
| freerdp | — |
| freerdp2 | Needs evaluation |
| freerdp3 | — |
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `xf_rail_server_execute_result` indexes the global `error_code_names[]` array (7 elements, indices 0–6) with an...
3 affected packages
freerdp, freerdp2, freerdp3
| Package | 20.04 LTS |
|---|---|
| freerdp | — |
| freerdp2 | Needs evaluation |
| freerdp3 | — |
FreeRDP is a free implementation of the Remote Desktop Protocol. Versions on the 2.x branch prior to to 2.11.8 and on the 3.x branch prior to 3.23.0 have an out-of-bounds read vulnerability in the FreeRDP client's RDPGFX channel...
3 affected packages
freerdp, freerdp2, freerdp3
| Package | 20.04 LTS |
|---|---|
| freerdp | — |
| freerdp2 | Needs evaluation |
| freerdp3 | — |
URLs containing percent-encoded slashes (`/` or `\`) can trick wcurl into saving the output file outside of the current directory without the user explicitly asking for it. This flaw only affects the wcurl command line tool.
1 affected package
curl
| Package | 20.04 LTS |
|---|---|
| curl | Not affected |