RDP client: Read of uninitialized memory with parallel port redirection

Impact

FreeRDP based clients on unix systems using /parallel command line switch might read uninitialized data and send it to the server the client is currently connected to

FreeRDP based server implementations are not affected.

Patches

Upgrade to 2.8.1

Workarounds

Do not use parallel port redirection (/parallel command line switch)

Issue Reporter

Reported by BT5

For more information

If you have any questions or comments about this advisory:

Open an issue in https://github.com/FreeRDP/FreeRDP
See https://www.freerdp.com/ for contact details
Email us at security@freerdp.com

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

RDP client: Read of uninitialized memory with parallel port redirection

Package

Affected versions

Patched versions

Description

Impact

Patches

Workarounds

Issue Reporter

For more information

Severity

CVE ID

Weaknesses

Credits