UBUNTU-CVE-2024-22211
- Source
- https://ubuntu.com/security/CVE-2024-22211
- Import Source
- https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2024/UBUNTU-CVE-2024-22211.json
- JSON Data
- https://api.osv.dev/v1/vulns/UBUNTU-CVE-2024-22211
- Related
- Published
- 2024-01-19T20:15:00Z
- Modified
- 2024-10-15T14:12:51Z
- Severity
-
- 9.8 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- [none]
- Details
-
FreeRDP is a set of free and open source remote desktop protocol library and clients. In affected versions an integer overflow in
freerdp_bitmap_planar_context_resetleads to heap-buffer overflow. This affects FreeRDP based clients. FreeRDP based server implementations and proxy are not affected. A malicious server could prepare aRDPGFX_RESET_GRAPHICS_PDUto allocate too small buffers, possibly triggering later out of bound read/write. Data extraction over network is not possible, the buffers are used to display an image. This issue has been addressed in version 2.11.5 and 3.2.0. Users are advised to upgrade. there are no know workarounds for this vulnerability. - References
Affected packages
Ubuntu:Pro:16.04:LTS / freerdp
Package
- Name
- freerdp
- Purl
- pkg:deb/ubuntu/freerdp?arch=src?distro=esm-infra/xenial
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Ubuntu:Pro:18.04:LTS / freerdp2
Package
- Name
- freerdp2
- Purl
- pkg:deb/ubuntu/freerdp2?arch=src?distro=esm-infra/bionic
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Affected versions
2.*
2.0.0~git20170725.1.1648deb+dfsg1-1
2.0.0~git20170725.1.1648deb+dfsg1-5
2.0.0~git20170725.1.1648deb+dfsg1-5ubuntu1
2.0.0~git20170725.1.1648deb+dfsg1-5ubuntu2
2.0.0~git20170725.1.1648deb+dfsg1-6
2.0.0~git20170725.1.1648deb+dfsg1-6build1
2.0.0~git20170725.1.1648deb+dfsg1-7
2.0.0~git20170725.1.1648deb+dfsg1-7ubuntu0.1
2.1.1+dfsg1-0ubuntu0.18.04.1
2.2.0+dfsg1-0ubuntu0.18.04.1
2.2.0+dfsg1-0ubuntu0.18.04.2
2.2.0+dfsg1-0ubuntu0.18.04.3
2.2.0+dfsg1-0ubuntu0.18.04.4
2.2.0+dfsg1-0ubuntu0.18.04.4+esm1
2.2.0+dfsg1-0ubuntu0.18.04.4+esm2
Ubuntu:Pro:18.04:LTS / freerdp
Package
- Name
- freerdp
- Purl
- pkg:deb/ubuntu/freerdp?arch=src?distro=esm-apps/bionic
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Ubuntu:20.04:LTS / freerdp2
Package
- Name
- freerdp2
- Purl
- pkg:deb/ubuntu/freerdp2?arch=src?distro=focal
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed2.6.1+dfsg1-0ubuntu0.20.04.1
Affected versions
2.*
2.0.0~git20190204.1.2693389a+dfsg1-1
2.0.0~git20190204.1.2693389a+dfsg1-2
2.0.0~git20190204.1.2693389a+dfsg1-2build1
2.0.0~git20190204.1.2693389a+dfsg1-2build2
2.1.1+dfsg1-0ubuntu0.20.04.1
2.2.0+dfsg1-0ubuntu0.20.04.1
2.2.0+dfsg1-0ubuntu0.20.04.2
2.2.0+dfsg1-0ubuntu0.20.04.3
2.2.0+dfsg1-0ubuntu0.20.04.4
2.2.0+dfsg1-0ubuntu0.20.04.5
2.2.0+dfsg1-0ubuntu0.20.04.6
Ecosystem specific
{
"availability": "No subscription required",
"ubuntu_priority": "low",
"binaries": [
{
"binary_version": "2.6.1+dfsg1-0ubuntu0.20.04.1",
"binary_name": "freerdp2-dev"
},
{
"binary_version": "2.6.1+dfsg1-0ubuntu0.20.04.1",
"binary_name": "freerdp2-shadow-x11"
},
{
"binary_version": "2.6.1+dfsg1-0ubuntu0.20.04.1",
"binary_name": "freerdp2-wayland"
},
{
"binary_version": "2.6.1+dfsg1-0ubuntu0.20.04.1",
"binary_name": "freerdp2-x11"
},
{
"binary_version": "2.6.1+dfsg1-0ubuntu0.20.04.1",
"binary_name": "libfreerdp-client2-2"
},
{
"binary_version": "2.6.1+dfsg1-0ubuntu0.20.04.1",
"binary_name": "libfreerdp-server2-2"
},
{
"binary_version": "2.6.1+dfsg1-0ubuntu0.20.04.1",
"binary_name": "libfreerdp-shadow-subsystem2-2"
},
{
"binary_version": "2.6.1+dfsg1-0ubuntu0.20.04.1",
"binary_name": "libfreerdp-shadow2-2"
},
{
"binary_version": "2.6.1+dfsg1-0ubuntu0.20.04.1",
"binary_name": "libfreerdp2-2"
},
{
"binary_version": "2.6.1+dfsg1-0ubuntu0.20.04.1",
"binary_name": "libuwac0-0"
},
{
"binary_version": "2.6.1+dfsg1-0ubuntu0.20.04.1",
"binary_name": "libuwac0-dev"
},
{
"binary_version": "2.6.1+dfsg1-0ubuntu0.20.04.1",
"binary_name": "libwinpr-tools2-2"
},
{
"binary_version": "2.6.1+dfsg1-0ubuntu0.20.04.1",
"binary_name": "libwinpr2-2"
},
{
"binary_version": "2.6.1+dfsg1-0ubuntu0.20.04.1",
"binary_name": "libwinpr2-dev"
},
{
"binary_version": "2.6.1+dfsg1-0ubuntu0.20.04.1",
"binary_name": "winpr-utils"
}
],
"priority_reason": "FreeRDP developers have rated this as being a low severity issue"
}
Ubuntu:22.04:LTS / freerdp2
Package
- Name
- freerdp2
- Purl
- pkg:deb/ubuntu/freerdp2?arch=src?distro=jammy
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed2.6.1+dfsg1-3ubuntu2.6
Affected versions
2.*
2.3.0+dfsg1-2build1
2.3.0+dfsg1-2ubuntu1
2.3.0+dfsg1-2ubuntu2
2.4.1+dfsg1-1
2.4.1+dfsg1-1ubuntu1
2.4.1+dfsg1-1ubuntu2
2.5.0+dfsg1-1
2.6.0+dfsg1-1
2.6.1+dfsg1-1
2.6.1+dfsg1-3
2.6.1+dfsg1-3ubuntu1
2.6.1+dfsg1-3ubuntu2
2.6.1+dfsg1-3ubuntu2.1
2.6.1+dfsg1-3ubuntu2.2
2.6.1+dfsg1-3ubuntu2.3
2.6.1+dfsg1-3ubuntu2.4
2.6.1+dfsg1-3ubuntu2.5
Ecosystem specific
{
"availability": "No subscription required",
"ubuntu_priority": "low",
"binaries": [
{
"binary_version": "2.6.1+dfsg1-3ubuntu2.6",
"binary_name": "freerdp2-dev"
},
{
"binary_version": "2.6.1+dfsg1-3ubuntu2.6",
"binary_name": "freerdp2-shadow-x11"
},
{
"binary_version": "2.6.1+dfsg1-3ubuntu2.6",
"binary_name": "freerdp2-shadow-x11-dbgsym"
},
{
"binary_version": "2.6.1+dfsg1-3ubuntu2.6",
"binary_name": "freerdp2-wayland"
},
{
"binary_version": "2.6.1+dfsg1-3ubuntu2.6",
"binary_name": "freerdp2-wayland-dbgsym"
},
{
"binary_version": "2.6.1+dfsg1-3ubuntu2.6",
"binary_name": "freerdp2-x11"
},
{
"binary_version": "2.6.1+dfsg1-3ubuntu2.6",
"binary_name": "freerdp2-x11-dbgsym"
},
{
"binary_version": "2.6.1+dfsg1-3ubuntu2.6",
"binary_name": "libfreerdp-client2-2"
},
{
"binary_version": "2.6.1+dfsg1-3ubuntu2.6",
"binary_name": "libfreerdp-client2-2-dbgsym"
},
{
"binary_version": "2.6.1+dfsg1-3ubuntu2.6",
"binary_name": "libfreerdp-server2-2"
},
{
"binary_version": "2.6.1+dfsg1-3ubuntu2.6",
"binary_name": "libfreerdp-server2-2-dbgsym"
},
{
"binary_version": "2.6.1+dfsg1-3ubuntu2.6",
"binary_name": "libfreerdp-shadow-subsystem2-2"
},
{
"binary_version": "2.6.1+dfsg1-3ubuntu2.6",
"binary_name": "libfreerdp-shadow-subsystem2-2-dbgsym"
},
{
"binary_version": "2.6.1+dfsg1-3ubuntu2.6",
"binary_name": "libfreerdp-shadow2-2"
},
{
"binary_version": "2.6.1+dfsg1-3ubuntu2.6",
"binary_name": "libfreerdp-shadow2-2-dbgsym"
},
{
"binary_version": "2.6.1+dfsg1-3ubuntu2.6",
"binary_name": "libfreerdp2-2"
},
{
"binary_version": "2.6.1+dfsg1-3ubuntu2.6",
"binary_name": "libfreerdp2-2-dbgsym"
},
{
"binary_version": "2.6.1+dfsg1-3ubuntu2.6",
"binary_name": "libuwac0-0"
},
{
"binary_version": "2.6.1+dfsg1-3ubuntu2.6",
"binary_name": "libuwac0-0-dbgsym"
},
{
"binary_version": "2.6.1+dfsg1-3ubuntu2.6",
"binary_name": "libuwac0-dev"
},
{
"binary_version": "2.6.1+dfsg1-3ubuntu2.6",
"binary_name": "libwinpr-tools2-2"
},
{
"binary_version": "2.6.1+dfsg1-3ubuntu2.6",
"binary_name": "libwinpr-tools2-2-dbgsym"
},
{
"binary_version": "2.6.1+dfsg1-3ubuntu2.6",
"binary_name": "libwinpr2-2"
},
{
"binary_version": "2.6.1+dfsg1-3ubuntu2.6",
"binary_name": "libwinpr2-2-dbgsym"
},
{
"binary_version": "2.6.1+dfsg1-3ubuntu2.6",
"binary_name": "libwinpr2-dev"
},
{
"binary_version": "2.6.1+dfsg1-3ubuntu2.6",
"binary_name": "winpr-utils"
},
{
"binary_version": "2.6.1+dfsg1-3ubuntu2.6",
"binary_name": "winpr-utils-dbgsym"
}
],
"priority_reason": "FreeRDP developers have rated this as being a low severity issue"
}
Ubuntu:24.10 / freerdp2
Package
- Name
- freerdp2
- Purl
- pkg:deb/ubuntu/freerdp2?arch=src?distro=oracular
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed2.11.5+dfsg1-1build2
Ecosystem specific
{
"availability": "No subscription required",
"ubuntu_priority": "low",
"binaries": [
{
"binary_version": "2.11.5+dfsg1-1build2",
"binary_name": "freerdp2-dev"
},
{
"binary_version": "2.11.5+dfsg1-1build2",
"binary_name": "freerdp2-shadow-x11"
},
{
"binary_version": "2.11.5+dfsg1-1build2",
"binary_name": "freerdp2-shadow-x11-dbgsym"
},
{
"binary_version": "2.11.5+dfsg1-1build2",
"binary_name": "freerdp2-wayland"
},
{
"binary_version": "2.11.5+dfsg1-1build2",
"binary_name": "freerdp2-wayland-dbgsym"
},
{
"binary_version": "2.11.5+dfsg1-1build2",
"binary_name": "freerdp2-x11"
},
{
"binary_version": "2.11.5+dfsg1-1build2",
"binary_name": "freerdp2-x11-dbgsym"
},
{
"binary_version": "2.11.5+dfsg1-1build2",
"binary_name": "libfreerdp-client2-2t64"
},
{
"binary_version": "2.11.5+dfsg1-1build2",
"binary_name": "libfreerdp-client2-2t64-dbgsym"
},
{
"binary_version": "2.11.5+dfsg1-1build2",
"binary_name": "libfreerdp-server2-2t64"
},
{
"binary_version": "2.11.5+dfsg1-1build2",
"binary_name": "libfreerdp-server2-2t64-dbgsym"
},
{
"binary_version": "2.11.5+dfsg1-1build2",
"binary_name": "libfreerdp-shadow-subsystem2-2t64"
},
{
"binary_version": "2.11.5+dfsg1-1build2",
"binary_name": "libfreerdp-shadow-subsystem2-2t64-dbgsym"
},
{
"binary_version": "2.11.5+dfsg1-1build2",
"binary_name": "libfreerdp-shadow2-2t64"
},
{
"binary_version": "2.11.5+dfsg1-1build2",
"binary_name": "libfreerdp-shadow2-2t64-dbgsym"
},
{
"binary_version": "2.11.5+dfsg1-1build2",
"binary_name": "libfreerdp2-2t64"
},
{
"binary_version": "2.11.5+dfsg1-1build2",
"binary_name": "libfreerdp2-2t64-dbgsym"
},
{
"binary_version": "2.11.5+dfsg1-1build2",
"binary_name": "libuwac0-0t64"
},
{
"binary_version": "2.11.5+dfsg1-1build2",
"binary_name": "libuwac0-0t64-dbgsym"
},
{
"binary_version": "2.11.5+dfsg1-1build2",
"binary_name": "libuwac0-dev"
},
{
"binary_version": "2.11.5+dfsg1-1build2",
"binary_name": "libwinpr-tools2-2t64"
},
{
"binary_version": "2.11.5+dfsg1-1build2",
"binary_name": "libwinpr-tools2-2t64-dbgsym"
},
{
"binary_version": "2.11.5+dfsg1-1build2",
"binary_name": "libwinpr2-2t64"
},
{
"binary_version": "2.11.5+dfsg1-1build2",
"binary_name": "libwinpr2-2t64-dbgsym"
},
{
"binary_version": "2.11.5+dfsg1-1build2",
"binary_name": "libwinpr2-dev"
},
{
"binary_version": "2.11.5+dfsg1-1build2",
"binary_name": "winpr-utils"
},
{
"binary_version": "2.11.5+dfsg1-1build2",
"binary_name": "winpr-utils-dbgsym"
}
],
"priority_reason": "FreeRDP developers have rated this as being a low severity issue"
}
Ubuntu:24.10 / freerdp3
Package
- Name
- freerdp3
- Purl
- pkg:deb/ubuntu/freerdp3?arch=src?distro=oracular
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed3.5.0+dfsg1-0ubuntu1
Ecosystem specific
{
"availability": "No subscription required",
"ubuntu_priority": "low",
"binaries": [
{
"binary_version": "3.5.0+dfsg1-0ubuntu1",
"binary_name": "freerdp3-dev"
},
{
"binary_version": "3.5.0+dfsg1-0ubuntu1",
"binary_name": "freerdp3-shadow-x11"
},
{
"binary_version": "3.5.0+dfsg1-0ubuntu1",
"binary_name": "freerdp3-shadow-x11-dbgsym"
},
{
"binary_version": "3.5.0+dfsg1-0ubuntu1",
"binary_name": "freerdp3-wayland"
},
{
"binary_version": "3.5.0+dfsg1-0ubuntu1",
"binary_name": "freerdp3-wayland-dbgsym"
},
{
"binary_version": "3.5.0+dfsg1-0ubuntu1",
"binary_name": "freerdp3-x11"
},
{
"binary_version": "3.5.0+dfsg1-0ubuntu1",
"binary_name": "freerdp3-x11-dbgsym"
},
{
"binary_version": "3.5.0+dfsg1-0ubuntu1",
"binary_name": "libfreerdp-client3-3"
},
{
"binary_version": "3.5.0+dfsg1-0ubuntu1",
"binary_name": "libfreerdp-client3-3-dbgsym"
},
{
"binary_version": "3.5.0+dfsg1-0ubuntu1",
"binary_name": "libfreerdp-server3-3"
},
{
"binary_version": "3.5.0+dfsg1-0ubuntu1",
"binary_name": "libfreerdp-server3-3-dbgsym"
},
{
"binary_version": "3.5.0+dfsg1-0ubuntu1",
"binary_name": "libfreerdp-shadow-subsystem3-3"
},
{
"binary_version": "3.5.0+dfsg1-0ubuntu1",
"binary_name": "libfreerdp-shadow-subsystem3-3-dbgsym"
},
{
"binary_version": "3.5.0+dfsg1-0ubuntu1",
"binary_name": "libfreerdp-shadow3-3"
},
{
"binary_version": "3.5.0+dfsg1-0ubuntu1",
"binary_name": "libfreerdp-shadow3-3-dbgsym"
},
{
"binary_version": "3.5.0+dfsg1-0ubuntu1",
"binary_name": "libfreerdp3-3"
},
{
"binary_version": "3.5.0+dfsg1-0ubuntu1",
"binary_name": "libfreerdp3-3-dbgsym"
},
{
"binary_version": "3.5.0+dfsg1-0ubuntu1",
"binary_name": "libwinpr-tools3-3"
},
{
"binary_version": "3.5.0+dfsg1-0ubuntu1",
"binary_name": "libwinpr-tools3-3-dbgsym"
},
{
"binary_version": "3.5.0+dfsg1-0ubuntu1",
"binary_name": "libwinpr3-3"
},
{
"binary_version": "3.5.0+dfsg1-0ubuntu1",
"binary_name": "libwinpr3-3-dbgsym"
},
{
"binary_version": "3.5.0+dfsg1-0ubuntu1",
"binary_name": "libwinpr3-dev"
},
{
"binary_version": "3.5.0+dfsg1-0ubuntu1",
"binary_name": "winpr3-utils"
},
{
"binary_version": "3.5.0+dfsg1-0ubuntu1",
"binary_name": "winpr3-utils-dbgsym"
}
],
"priority_reason": "FreeRDP developers have rated this as being a low severity issue"
}
Ubuntu:24.04:LTS / freerdp2
Package
- Name
- freerdp2
- Purl
- pkg:deb/ubuntu/freerdp2?arch=src?distro=noble
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Ubuntu:24.04:LTS / freerdp3
Package
- Name
- freerdp3
- Purl
- pkg:deb/ubuntu/freerdp3?arch=src?distro=noble
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed3.5.0+dfsg1-0ubuntu1
Ecosystem specific
{
"availability": "No subscription required",
"ubuntu_priority": "low",
"binaries": [
{
"binary_version": "3.5.0+dfsg1-0ubuntu1",
"binary_name": "freerdp3-dev"
},
{
"binary_version": "3.5.0+dfsg1-0ubuntu1",
"binary_name": "freerdp3-shadow-x11"
},
{
"binary_version": "3.5.0+dfsg1-0ubuntu1",
"binary_name": "freerdp3-shadow-x11-dbgsym"
},
{
"binary_version": "3.5.0+dfsg1-0ubuntu1",
"binary_name": "freerdp3-wayland"
},
{
"binary_version": "3.5.0+dfsg1-0ubuntu1",
"binary_name": "freerdp3-wayland-dbgsym"
},
{
"binary_version": "3.5.0+dfsg1-0ubuntu1",
"binary_name": "freerdp3-x11"
},
{
"binary_version": "3.5.0+dfsg1-0ubuntu1",
"binary_name": "freerdp3-x11-dbgsym"
},
{
"binary_version": "3.5.0+dfsg1-0ubuntu1",
"binary_name": "libfreerdp-client3-3"
},
{
"binary_version": "3.5.0+dfsg1-0ubuntu1",
"binary_name": "libfreerdp-client3-3-dbgsym"
},
{
"binary_version": "3.5.0+dfsg1-0ubuntu1",
"binary_name": "libfreerdp-server3-3"
},
{
"binary_version": "3.5.0+dfsg1-0ubuntu1",
"binary_name": "libfreerdp-server3-3-dbgsym"
},
{
"binary_version": "3.5.0+dfsg1-0ubuntu1",
"binary_name": "libfreerdp-shadow-subsystem3-3"
},
{
"binary_version": "3.5.0+dfsg1-0ubuntu1",
"binary_name": "libfreerdp-shadow-subsystem3-3-dbgsym"
},
{
"binary_version": "3.5.0+dfsg1-0ubuntu1",
"binary_name": "libfreerdp-shadow3-3"
},
{
"binary_version": "3.5.0+dfsg1-0ubuntu1",
"binary_name": "libfreerdp-shadow3-3-dbgsym"
},
{
"binary_version": "3.5.0+dfsg1-0ubuntu1",
"binary_name": "libfreerdp3-3"
},
{
"binary_version": "3.5.0+dfsg1-0ubuntu1",
"binary_name": "libfreerdp3-3-dbgsym"
},
{
"binary_version": "3.5.0+dfsg1-0ubuntu1",
"binary_name": "libwinpr-tools3-3"
},
{
"binary_version": "3.5.0+dfsg1-0ubuntu1",
"binary_name": "libwinpr-tools3-3-dbgsym"
},
{
"binary_version": "3.5.0+dfsg1-0ubuntu1",
"binary_name": "libwinpr3-3"
},
{
"binary_version": "3.5.0+dfsg1-0ubuntu1",
"binary_name": "libwinpr3-3-dbgsym"
},
{
"binary_version": "3.5.0+dfsg1-0ubuntu1",
"binary_name": "libwinpr3-dev"
},
{
"binary_version": "3.5.0+dfsg1-0ubuntu1",
"binary_name": "winpr3-utils"
},
{
"binary_version": "3.5.0+dfsg1-0ubuntu1",
"binary_name": "winpr3-utils-dbgsym"
}
],
"priority_reason": "FreeRDP developers have rated this as being a low severity issue"
}