CVE-2023-42822

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2023-42822

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-42822.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2023-42822

Aliases

GHSA-2hjx-rm4f-r9hw

Related

Published

2023-09-27T18:15:11Z

Modified

2024-10-11T23:50:45.598260Z

Severity

6.5 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N CVSS Calculator

Summary

[none]

Details

xrdp is an open source remote desktop protocol server. Access to the font glyphs in xrdp_painter.c is not bounds-checked . Since some of this data is controllable by the user, this can result in an out-of-bounds read within the xrdp executable. The vulnerability allows an out-of-bounds read within a potentially privileged process. On non-Debian platforms, xrdp tends to run as root. Potentially an out-of-bounds write can follow the out-of-bounds read. There is no denial-of-service impact, providing xrdp is running in forking mode. This issue has been addressed in release 0.9.23.1. Users are advised to upgrade. There are no known workarounds for this vulnerability.

References

Affected packages

Debian:11 / xrdp

Package

Name: xrdp
Purl: pkg:deb/debian/xrdp?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

0.*

0.9.12-1.1

0.9.15-1

0.9.17-1

0.9.17-2

0.9.17-2.1

0.9.19-1

0.9.21.1-1~deb11u1

0.9.21.1-1

0.9.24-1

0.9.24-2

0.9.24-3

0.9.24-4

0.9.24-5~bpo12+1

0.9.24-5

0.10.0~beta1-1

0.10.0~beta1-2

0.10.0~beta2-1

0.10.0-1

0.10.0-2

0.10.1-1

0.10.1-2

0.10.1-3

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:12 / xrdp

Package

Name: xrdp
Purl: pkg:deb/debian/xrdp?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

0.*

0.9.21.1-1

0.9.24-1

0.9.24-2

0.9.24-3

0.9.24-4

0.9.24-5~bpo12+1

0.9.24-5

0.10.0~beta1-1

0.10.0~beta1-2

0.10.0~beta2-1

0.10.0-1

0.10.0-2

0.10.1-1

0.10.1-2

0.10.1-3

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:13 / xrdp

Package

Name: xrdp
Purl: pkg:deb/debian/xrdp?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.9.24-2

Affected versions

0.*

0.9.21.1-1

0.9.24-1

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Git / github.com/neutrinolabs/xrdp

Affected ranges

Type: GIT
Repo: https://github.com/neutrinolabs/xrdp
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

73acbe1f7957c65122b00de4d6f57a8d0d257c40

Affected versions

v0.*

v0.9.1

v0.9.10

v0.9.11

v0.9.12

v0.9.13

v0.9.14

v0.9.15

v0.9.16

v0.9.17

v0.9.18

v0.9.2

v0.9.3

v0.9.3.rc1

v0.9.4

v0.9.4.rc1

v0.9.5

v0.9.6

v0.9.7

v0.9.8

v0.9.9