ID de Prueba:	1.3.6.1.4.1.25623.1.1.12.2025.7371.1
Categoría:	Ubuntu Local Security Checks
Título:	Ubuntu: Security Advisory (USN-7371-1)
Resumen:	The remote host is missing an update for the 'freerdp2' package(s) announced via the USN-7371-1 advisory.
Descripción:	Summary: The remote host is missing an update for the 'freerdp2' package(s) announced via the USN-7371-1 advisory. Vulnerability Insight: Evgeny Legerov discovered that FreeRDP incorrectly handled certain memory operations. If a user were tricked into connecting to a malicious server, a remote attacker could possibly use this issue to cause FreeRDP to crash, resulting in a denial of service. (CVE-2024-32458) Evgeny Legerov discovered that FreeRDP incorrectly handled certain memory operations. A remote attacker could possibly use this issue to cause FreeRDP clients and servers to crash, resulting in a denial of service. (CVE-2024-32459) It was discovered that FreeRDP incorrectly handled certain memory operations. If a user were tricked into connecting to a malicious server, a remote attacker could possibly use this issue to cause FreeRDP to crash, resulting in a denial of service. (CVE-2024-32659, CVE-2024-32660) Affected Software/OS: 'freerdp2' package(s) on Ubuntu 24.04. Solution: Please install the updated package(s). CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2024-32458 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7SIS6NUNLUBOV4CPCSWKDE6T6C2W3WTR/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZKI4UISUXYNBPN4K6TIQKDRTIJ6CDCKJ/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5JL476WVJSIE7SBUKVJRVA6A52V2HOLZ/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PX3U6YPZQ7PEJBVKSBUOLWVH7DHROHY5/ https://github.com/FreeRDP/FreeRDP/pull/10077 https://github.com/FreeRDP/FreeRDP/releases/tag/2.11.6 https://github.com/FreeRDP/FreeRDP/releases/tag/3.5.0 https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vvr6-h646-mp4p Common Vulnerability Exposure (CVE) ID: CVE-2024-32459 https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-cp4q-p737-rmw9 Common Vulnerability Exposure (CVE) ID: CVE-2024-32659 https://github.com/FreeRDP/FreeRDP/commit/6430945ce003a5e24d454d8566f54aae1b6b617b https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-8jgr-7r33-x87w https://oss-fuzz.com/testcase-detail/6156779722440704 Common Vulnerability Exposure (CVE) ID: CVE-2024-32660 https://github.com/FreeRDP/FreeRDP/commit/5e5d27cf310e4c10b854be7667bfb7a5d774eb47 https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-mxv6-2cw6-m3mx https://oss-fuzz.com/testcase-detail/5559242514825216
Copyright	Copyright (C) 2025 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.