openEuler update for freerdp
| Risk | Medium |
| Patch available | YES |
| Number of vulnerabilities | 2 |
| CVE-ID | CVE-2022-39317 CVE-2022-39320 |
| CWE-ID | CWE-129 CWE-125 |
| Exploitation vector | Network |
| Public exploit | N/A |
| Vulnerable software |
openEuler Operating systems & Components / Operating system freerdp-debugsource Operating systems & Components / Operating system package or component freerdp-help Operating systems & Components / Operating system package or component libwinpr-devel Operating systems & Components / Operating system package or component freerdp-devel Operating systems & Components / Operating system package or component freerdp-debuginfo Operating systems & Components / Operating system package or component libwinpr Operating systems & Components / Operating system package or component freerdp Operating systems & Components / Operating system package or component |
| Vendor | openEuler |
Security Bulletin
This security bulletin contains information about 2 vulnerabilities.
1) Improper Validation of Array Index
EUVDB-ID: #VU69592
Risk: Medium
CVSSv4.0: 4.8 [CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2022-39317
CWE-ID:
CWE-129 - Improper Validation of Array Index
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to compromise the affected system.
The vulnerability exists due to a missing range check for input offset index in ZGFX decoder. A malicious server can trick a FreeRDP based client to read out of bound data and try to decode it.
Successful exploitation of the vulnerability may allows remote code execution.
Install updates from vendor's repository.
Vulnerable software versionsopenEuler: 20.03 LTS SP1 - 22.03 LTS
freerdp-debugsource: before 2.8.1-3
freerdp-help: before 2.8.1-3
libwinpr-devel: before 2.8.1-3
freerdp-devel: before 2.8.1-3
freerdp-debuginfo: before 2.8.1-3
libwinpr: before 2.8.1-3
freerdp: before 2.8.1-3
CPE2.3- cpe:2.3:o:openeuler:openeuler:20.03:LTS SP1:*:*:*:*:*:*
- cpe:2.3:o:openeuler:openeuler:20.03:LTS SP3:*:*:*:*:*:*
- cpe:2.3:o:openeuler:openeuler:22.03:LTS:*:*:*:*:*:*
- cpe:2.3:a:openeuler:freerdp-debugsource:*:*:*:*:*:openeuler:*:*
- cpe:2.3:a:openeuler:freerdp-help:*:*:*:*:*:openeuler:*:*
- cpe:2.3:a:openeuler:libwinpr-devel:*:*:*:*:*:openeuler:*:*
- cpe:2.3:a:openeuler:freerdp-devel:*:*:*:*:*:openeuler:*:*
- cpe:2.3:a:openeuler:freerdp-debuginfo:*:*:*:*:*:openeuler:*:*
- cpe:2.3:a:openeuler:libwinpr:*:*:*:*:*:openeuler:*:*
- cpe:2.3:a:openeuler:freerdp:*:*:*:*:*:openeuler:*:*
https://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2022-2120
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
2) Out-of-bounds read
EUVDB-ID: #VU69589
Risk: Low
CVSSv4.0: 0.5 [CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:A/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2022-39320
CWE-ID:
CWE-125 - Out-of-bounds read
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to gain access to potentially sensitive information.
The vulnerability exists due to a boundary condition within the urbdrc channel. A malicious server can trick the FreeRDP based client to read out of bound data and send it back to the server.
MitigationInstall updates from vendor's repository.
Vulnerable software versionsopenEuler: 20.03 LTS SP1 - 22.03 LTS
freerdp-debugsource: before 2.8.1-3
freerdp-help: before 2.8.1-3
libwinpr-devel: before 2.8.1-3
freerdp-devel: before 2.8.1-3
freerdp-debuginfo: before 2.8.1-3
libwinpr: before 2.8.1-3
freerdp: before 2.8.1-3
CPE2.3- cpe:2.3:o:openeuler:openeuler:20.03:LTS SP1:*:*:*:*:*:*
- cpe:2.3:o:openeuler:openeuler:20.03:LTS SP3:*:*:*:*:*:*
- cpe:2.3:o:openeuler:openeuler:22.03:LTS:*:*:*:*:*:*
- cpe:2.3:a:openeuler:freerdp-debugsource:*:*:*:*:*:openeuler:*:*
- cpe:2.3:a:openeuler:freerdp-help:*:*:*:*:*:openeuler:*:*
- cpe:2.3:a:openeuler:libwinpr-devel:*:*:*:*:*:openeuler:*:*
- cpe:2.3:a:openeuler:freerdp-devel:*:*:*:*:*:openeuler:*:*
- cpe:2.3:a:openeuler:freerdp-debuginfo:*:*:*:*:*:openeuler:*:*
- cpe:2.3:a:openeuler:libwinpr:*:*:*:*:*:openeuler:*:*
- cpe:2.3:a:openeuler:freerdp:*:*:*:*:*:openeuler:*:*
https://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2022-2120
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
