UBUNTU-CVE-2024-22211
- Source
- https://ubuntu.com/security/CVE-2024-22211
- Import Source
- https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2024/UBUNTU-CVE-2024-22211.json
- JSON Data
- https://api.osv.dev/v1/vulns/UBUNTU-CVE-2024-22211
- Upstream
- Downstream
- Related
- Published
- 2024-01-19T20:15:00Z
- Modified
- 2025-07-18T16:56:24Z
- Severity
-
- 3.7 (Low) CVSS_V3 - CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:N/I:L/A:L CVSS Calculator
- 9.8 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
- Ubuntu - low
- Summary
- [none]
- Details
-
FreeRDP is a set of free and open source remote desktop protocol library and clients. In affected versions an integer overflow in
freerdp_bitmap_planar_context_resetleads to heap-buffer overflow. This affects FreeRDP based clients. FreeRDP based server implementations and proxy are not affected. A malicious server could prepare aRDPGFX_RESET_GRAPHICS_PDUto allocate too small buffers, possibly triggering later out of bound read/write. Data extraction over network is not possible, the buffers are used to display an image. This issue has been addressed in version 2.11.5 and 3.2.0. Users are advised to upgrade. there are no know workarounds for this vulnerability. - References
Affected packages
Ubuntu:Pro:16.04:LTS / freerdp
Package
- Name
- freerdp
- Purl
- pkg:deb/ubuntu/freerdp@1.1.0~git20140921.1.440916e+dfsg1-5ubuntu1.4?arch=source&distro=esm-infra/xenial
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Ubuntu:Pro:18.04:LTS / freerdp2
Package
- Name
- freerdp2
- Purl
- pkg:deb/ubuntu/freerdp2@2.2.0+dfsg1-0ubuntu0.18.04.4+esm2?arch=source&distro=esm-infra/bionic
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Affected versions
2.*
2.0.0~git20170725.1.1648deb+dfsg1-1
2.0.0~git20170725.1.1648deb+dfsg1-5
2.0.0~git20170725.1.1648deb+dfsg1-5ubuntu1
2.0.0~git20170725.1.1648deb+dfsg1-5ubuntu2
2.0.0~git20170725.1.1648deb+dfsg1-6
2.0.0~git20170725.1.1648deb+dfsg1-6build1
2.0.0~git20170725.1.1648deb+dfsg1-7
2.0.0~git20170725.1.1648deb+dfsg1-7ubuntu0.1
2.1.1+dfsg1-0ubuntu0.18.04.1
2.2.0+dfsg1-0ubuntu0.18.04.1
2.2.0+dfsg1-0ubuntu0.18.04.2
2.2.0+dfsg1-0ubuntu0.18.04.3
2.2.0+dfsg1-0ubuntu0.18.04.4
2.2.0+dfsg1-0ubuntu0.18.04.4+esm1
2.2.0+dfsg1-0ubuntu0.18.04.4+esm2
Ubuntu:Pro:18.04:LTS / freerdp
Package
- Name
- freerdp
- Purl
- pkg:deb/ubuntu/freerdp@1.1.0~git20140921.1.440916e+dfsg1-15ubuntu1.18.04.2?arch=source&distro=esm-apps/bionic
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Ubuntu:20.04:LTS / freerdp2
Package
- Name
- freerdp2
- Purl
- pkg:deb/ubuntu/freerdp2@2.6.1+dfsg1-0ubuntu0.20.04.1?arch=source&distro=focal
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed2.6.1+dfsg1-0ubuntu0.20.04.1
Affected versions
2.*
2.0.0~git20190204.1.2693389a+dfsg1-1
2.0.0~git20190204.1.2693389a+dfsg1-2
2.0.0~git20190204.1.2693389a+dfsg1-2build1
2.0.0~git20190204.1.2693389a+dfsg1-2build2
2.1.1+dfsg1-0ubuntu0.20.04.1
2.2.0+dfsg1-0ubuntu0.20.04.1
2.2.0+dfsg1-0ubuntu0.20.04.2
2.2.0+dfsg1-0ubuntu0.20.04.3
2.2.0+dfsg1-0ubuntu0.20.04.4
2.2.0+dfsg1-0ubuntu0.20.04.5
2.2.0+dfsg1-0ubuntu0.20.04.6
Ecosystem specific
{
"availability": "No subscription required",
"priority_reason": "FreeRDP developers have rated this as being a low severity issue",
"binaries": [
{
"binary_name": "freerdp2-dev",
"binary_version": "2.6.1+dfsg1-0ubuntu0.20.04.1"
},
{
"binary_name": "freerdp2-shadow-x11",
"binary_version": "2.6.1+dfsg1-0ubuntu0.20.04.1"
},
{
"binary_name": "freerdp2-wayland",
"binary_version": "2.6.1+dfsg1-0ubuntu0.20.04.1"
},
{
"binary_name": "freerdp2-x11",
"binary_version": "2.6.1+dfsg1-0ubuntu0.20.04.1"
},
{
"binary_name": "libfreerdp-client2-2",
"binary_version": "2.6.1+dfsg1-0ubuntu0.20.04.1"
},
{
"binary_name": "libfreerdp-server2-2",
"binary_version": "2.6.1+dfsg1-0ubuntu0.20.04.1"
},
{
"binary_name": "libfreerdp-shadow-subsystem2-2",
"binary_version": "2.6.1+dfsg1-0ubuntu0.20.04.1"
},
{
"binary_name": "libfreerdp-shadow2-2",
"binary_version": "2.6.1+dfsg1-0ubuntu0.20.04.1"
},
{
"binary_name": "libfreerdp2-2",
"binary_version": "2.6.1+dfsg1-0ubuntu0.20.04.1"
},
{
"binary_name": "libuwac0-0",
"binary_version": "2.6.1+dfsg1-0ubuntu0.20.04.1"
},
{
"binary_name": "libuwac0-dev",
"binary_version": "2.6.1+dfsg1-0ubuntu0.20.04.1"
},
{
"binary_name": "libwinpr-tools2-2",
"binary_version": "2.6.1+dfsg1-0ubuntu0.20.04.1"
},
{
"binary_name": "libwinpr2-2",
"binary_version": "2.6.1+dfsg1-0ubuntu0.20.04.1"
},
{
"binary_name": "libwinpr2-dev",
"binary_version": "2.6.1+dfsg1-0ubuntu0.20.04.1"
},
{
"binary_name": "winpr-utils",
"binary_version": "2.6.1+dfsg1-0ubuntu0.20.04.1"
}
]
}
Ubuntu:22.04:LTS / freerdp2
Package
- Name
- freerdp2
- Purl
- pkg:deb/ubuntu/freerdp2@2.6.1+dfsg1-3ubuntu2.6?arch=source&distro=jammy
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed2.6.1+dfsg1-3ubuntu2.6
Affected versions
2.*
2.3.0+dfsg1-2build1
2.3.0+dfsg1-2ubuntu1
2.3.0+dfsg1-2ubuntu2
2.4.1+dfsg1-1
2.4.1+dfsg1-1ubuntu1
2.4.1+dfsg1-1ubuntu2
2.5.0+dfsg1-1
2.6.0+dfsg1-1
2.6.1+dfsg1-1
2.6.1+dfsg1-3
2.6.1+dfsg1-3ubuntu1
2.6.1+dfsg1-3ubuntu2
2.6.1+dfsg1-3ubuntu2.1
2.6.1+dfsg1-3ubuntu2.2
2.6.1+dfsg1-3ubuntu2.3
2.6.1+dfsg1-3ubuntu2.4
2.6.1+dfsg1-3ubuntu2.5
Ecosystem specific
{
"availability": "No subscription required",
"priority_reason": "FreeRDP developers have rated this as being a low severity issue",
"binaries": [
{
"binary_name": "freerdp2-dev",
"binary_version": "2.6.1+dfsg1-3ubuntu2.6"
},
{
"binary_name": "freerdp2-shadow-x11",
"binary_version": "2.6.1+dfsg1-3ubuntu2.6"
},
{
"binary_name": "freerdp2-shadow-x11-dbgsym",
"binary_version": "2.6.1+dfsg1-3ubuntu2.6"
},
{
"binary_name": "freerdp2-wayland",
"binary_version": "2.6.1+dfsg1-3ubuntu2.6"
},
{
"binary_name": "freerdp2-wayland-dbgsym",
"binary_version": "2.6.1+dfsg1-3ubuntu2.6"
},
{
"binary_name": "freerdp2-x11",
"binary_version": "2.6.1+dfsg1-3ubuntu2.6"
},
{
"binary_name": "freerdp2-x11-dbgsym",
"binary_version": "2.6.1+dfsg1-3ubuntu2.6"
},
{
"binary_name": "libfreerdp-client2-2",
"binary_version": "2.6.1+dfsg1-3ubuntu2.6"
},
{
"binary_name": "libfreerdp-client2-2-dbgsym",
"binary_version": "2.6.1+dfsg1-3ubuntu2.6"
},
{
"binary_name": "libfreerdp-server2-2",
"binary_version": "2.6.1+dfsg1-3ubuntu2.6"
},
{
"binary_name": "libfreerdp-server2-2-dbgsym",
"binary_version": "2.6.1+dfsg1-3ubuntu2.6"
},
{
"binary_name": "libfreerdp-shadow-subsystem2-2",
"binary_version": "2.6.1+dfsg1-3ubuntu2.6"
},
{
"binary_name": "libfreerdp-shadow-subsystem2-2-dbgsym",
"binary_version": "2.6.1+dfsg1-3ubuntu2.6"
},
{
"binary_name": "libfreerdp-shadow2-2",
"binary_version": "2.6.1+dfsg1-3ubuntu2.6"
},
{
"binary_name": "libfreerdp-shadow2-2-dbgsym",
"binary_version": "2.6.1+dfsg1-3ubuntu2.6"
},
{
"binary_name": "libfreerdp2-2",
"binary_version": "2.6.1+dfsg1-3ubuntu2.6"
},
{
"binary_name": "libfreerdp2-2-dbgsym",
"binary_version": "2.6.1+dfsg1-3ubuntu2.6"
},
{
"binary_name": "libuwac0-0",
"binary_version": "2.6.1+dfsg1-3ubuntu2.6"
},
{
"binary_name": "libuwac0-0-dbgsym",
"binary_version": "2.6.1+dfsg1-3ubuntu2.6"
},
{
"binary_name": "libuwac0-dev",
"binary_version": "2.6.1+dfsg1-3ubuntu2.6"
},
{
"binary_name": "libwinpr-tools2-2",
"binary_version": "2.6.1+dfsg1-3ubuntu2.6"
},
{
"binary_name": "libwinpr-tools2-2-dbgsym",
"binary_version": "2.6.1+dfsg1-3ubuntu2.6"
},
{
"binary_name": "libwinpr2-2",
"binary_version": "2.6.1+dfsg1-3ubuntu2.6"
},
{
"binary_name": "libwinpr2-2-dbgsym",
"binary_version": "2.6.1+dfsg1-3ubuntu2.6"
},
{
"binary_name": "libwinpr2-dev",
"binary_version": "2.6.1+dfsg1-3ubuntu2.6"
},
{
"binary_name": "winpr-utils",
"binary_version": "2.6.1+dfsg1-3ubuntu2.6"
},
{
"binary_name": "winpr-utils-dbgsym",
"binary_version": "2.6.1+dfsg1-3ubuntu2.6"
}
]
}