ID de Prueba:	1.3.6.1.4.1.25623.1.1.12.2025.7341.1
Categoría:	Ubuntu Local Security Checks
Título:	Ubuntu: Security Advisory (USN-7341-1)
Resumen:	The remote host is missing an update for the 'freerdp2' package(s) announced via the USN-7341-1 advisory.
Descripción:	Summary: The remote host is missing an update for the 'freerdp2' package(s) announced via the USN-7341-1 advisory. Vulnerability Insight: Evgeny Legerov discovered that FreeRDP incorrectly handled certain memory operations. If a user were tricked into connecting to a malicious server, a remote attacker could use this issue to cause FreeRDP to crash, resulting in a denial of service, or possibly execute arbitrary code. (CVE-2024-32039, CVE-2024-32040, CVE-2024-32041) Evgeny Legerov discovered that FreeRDP incorrectly handled certain memory operations. If a user were tricked into connecting to a malicious server, a remote attacker could possibly use this issue to cause FreeRDP to crash, resulting in a denial of service. (CVE-2024-32458, CVE-2024-32460) It was discovered that FreeRDP incorrectly handled certain memory operations. If a user were tricked into connecting to a malicious server, a remote attacker could possibly use this issue to cause FreeRDP to crash, resulting in a denial of service. (CVE-2024-32661) Affected Software/OS: 'freerdp2' package(s) on Ubuntu 24.04. Solution: Please install the updated package(s). CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2024-32039 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7SIS6NUNLUBOV4CPCSWKDE6T6C2W3WTR/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZKI4UISUXYNBPN4K6TIQKDRTIJ6CDCKJ/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5JL476WVJSIE7SBUKVJRVA6A52V2HOLZ/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PX3U6YPZQ7PEJBVKSBUOLWVH7DHROHY5/ https://github.com/FreeRDP/FreeRDP/pull/10077 https://github.com/FreeRDP/FreeRDP/releases/tag/2.11.6 https://github.com/FreeRDP/FreeRDP/releases/tag/3.5.0 https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-q5h8-7j42-j4r9 Common Vulnerability Exposure (CVE) ID: CVE-2024-32040 https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-23c5-cp23-h2h5 Common Vulnerability Exposure (CVE) ID: CVE-2024-32041 https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-5r4p-mfx2-m44r Common Vulnerability Exposure (CVE) ID: CVE-2024-32460 https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-4rr8-gr65-vqrr Common Vulnerability Exposure (CVE) ID: CVE-2024-32658 https://github.com/FreeRDP/FreeRDP/commit/1a755d898ddc028cc818d0dd9d49d5acff4c44bf https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vpv3-m3m9-4c2v https://oss-fuzz.com/testcase-detail/4852534033317888 https://oss-fuzz.com/testcase-detail/6196819496337408 Common Vulnerability Exposure (CVE) ID: CVE-2024-32661 https://github.com/FreeRDP/FreeRDP/commit/71e463e31b4d69f4022d36bfc814592f56600793 https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-p5m5-342g-pv9m
Copyright	Copyright (C) 2025 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.