{"id":"RHSA-2020:4647","summary":"Red Hat Security Advisory: freerdp and vinagre security, bug fix, and enhancement update","modified":"2026-02-24T10:04:14Z","published":"2024-09-16T04:03:40Z","upstream":["CVE-2020-11018","CVE-2020-11019","CVE-2020-11038","CVE-2020-11039","CVE-2020-11040","CVE-2020-11041","CVE-2020-11042","CVE-2020-11043","CVE-2020-11044","CVE-2020-11045","CVE-2020-11046","CVE-2020-11047","CVE-2020-11048","CVE-2020-11049","CVE-2020-11058","CVE-2020-11085","CVE-2020-11086","CVE-2020-11087","CVE-2020-11088","CVE-2020-11089","CVE-2020-11522","CVE-2020-11525","CVE-2020-11526","CVE-2020-13396","CVE-2020-13397"],"references":[{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2020:4647"},{"type":"ARTICLE","url":"https://access.redhat.com/security/updates/classification/#moderate"},{"type":"ARTICLE","url":"https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.3_release_notes/"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1761144"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1803054"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1834287"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1835382"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1835391"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1835399"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1835403"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1835762"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1835766"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1835772"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1835779"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1836223"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1836239"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1836247"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1839744"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1841189"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1841196"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1844161"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1844166"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1844171"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1844177"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1844184"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1848008"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1848012"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1848018"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1848022"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1848029"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1848034"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1848038"},{"type":"ADVISORY","url":"https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_4647.json"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2020-11018"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2020-11018"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2020-11018"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2020-11019"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2020-11019"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2020-11019"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2020-11038"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2020-11038"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2020-11038"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2020-11039"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2020-11039"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2020-11039"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2020-11040"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2020-11040"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2020-11040"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2020-11041"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2020-11041"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2020-11041"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2020-11042"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2020-11042"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2020-11042"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2020-11043"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2020-11043"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2020-11043"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2020-11044"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2020-11044"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2020-11044"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2020-11045"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2020-11045"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2020-11045"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2020-11046"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2020-11046"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2020-11046"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2020-11047"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2020-11047"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2020-11047"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2020-11048"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2020-11048"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2020-11048"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2020-11049"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2020-11049"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2020-11049"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2020-11058"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2020-11058"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2020-11058"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2020-11085"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2020-11085"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2020-11085"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2020-11086"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2020-11086"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2020-11086"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2020-11087"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2020-11087"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2020-11087"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2020-11088"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2020-11088"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2020-11088"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2020-11089"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2020-11089"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2020-11089"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2020-11522"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2020-11522"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2020-11522"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2020-11525"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2020-11525"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2020-11525"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2020-11526"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2020-11526"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2020-11526"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2020-13396"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2020-13396"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2020-13396"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2020-13397"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2020-13397"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2020-13397"}],"affected":[{"package":{"name":"freerdp","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/freerdp"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:2.1.1-1.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:4647.json"}},{"package":{"name":"freerdp-debuginfo","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/freerdp-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:2.1.1-1.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:4647.json"}},{"package":{"name":"freerdp-debugsource","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/freerdp-debugsource"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:2.1.1-1.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:4647.json"}},{"package":{"name":"freerdp-devel","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/freerdp-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:2.1.1-1.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:4647.json"}},{"package":{"name":"freerdp-libs","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/freerdp-libs"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:2.1.1-1.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:4647.json"}},{"package":{"name":"freerdp-libs-debuginfo","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/freerdp-libs-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:2.1.1-1.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:4647.json"}},{"package":{"name":"libwinpr","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/libwinpr"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:2.1.1-1.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:4647.json"}},{"package":{"name":"libwinpr-debuginfo","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/libwinpr-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:2.1.1-1.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:4647.json"}},{"package":{"name":"libwinpr-devel","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/libwinpr-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:2.1.1-1.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:4647.json"}},{"package":{"name":"vinagre","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/vinagre"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.22.0-23.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:4647.json"}},{"package":{"name":"vinagre-debuginfo","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/vinagre-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.22.0-23.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:4647.json"}},{"package":{"name":"vinagre-debugsource","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/vinagre-debugsource"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.22.0-23.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:4647.json"}},{"package":{"name":"freerdp","ecosystem":"Red Hat:enterprise_linux:8::crb","purl":"pkg:rpm/redhat/freerdp"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:2.1.1-1.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:4647.json"}},{"package":{"name":"freerdp-debuginfo","ecosystem":"Red Hat:enterprise_linux:8::crb","purl":"pkg:rpm/redhat/freerdp-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:2.1.1-1.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:4647.json"}},{"package":{"name":"freerdp-debugsource","ecosystem":"Red Hat:enterprise_linux:8::crb","purl":"pkg:rpm/redhat/freerdp-debugsource"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:2.1.1-1.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:4647.json"}},{"package":{"name":"freerdp-devel","ecosystem":"Red Hat:enterprise_linux:8::crb","purl":"pkg:rpm/redhat/freerdp-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:2.1.1-1.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:4647.json"}},{"package":{"name":"freerdp-libs","ecosystem":"Red Hat:enterprise_linux:8::crb","purl":"pkg:rpm/redhat/freerdp-libs"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:2.1.1-1.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:4647.json"}},{"package":{"name":"freerdp-libs-debuginfo","ecosystem":"Red Hat:enterprise_linux:8::crb","purl":"pkg:rpm/redhat/freerdp-libs-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:2.1.1-1.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:4647.json"}},{"package":{"name":"libwinpr","ecosystem":"Red Hat:enterprise_linux:8::crb","purl":"pkg:rpm/redhat/libwinpr"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:2.1.1-1.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:4647.json"}},{"package":{"name":"libwinpr-debuginfo","ecosystem":"Red Hat:enterprise_linux:8::crb","purl":"pkg:rpm/redhat/libwinpr-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:2.1.1-1.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:4647.json"}},{"package":{"name":"libwinpr-devel","ecosystem":"Red Hat:enterprise_linux:8::crb","purl":"pkg:rpm/redhat/libwinpr-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:2.1.1-1.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:4647.json"}}],"schema_version":"1.7.3","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L"}]}