{"id":"RHSA-2024:2208","summary":"Red Hat Security Advisory: freerdp security update","modified":"2026-03-18T11:33:17.965521Z","published":"2024-09-16T16:00:24Z","upstream":["CVE-2023-39350","CVE-2023-39351","CVE-2023-39352","CVE-2023-39353","CVE-2023-39354","CVE-2023-39356","CVE-2023-40181","CVE-2023-40186","CVE-2023-40188","CVE-2023-40567","CVE-2023-40569","CVE-2023-40589"],"references":[{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2024:2208"},{"type":"ARTICLE","url":"https://access.redhat.com/security/updates/classification/#moderate"},{"type":"ARTICLE","url":"https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/9/html/9.4_release_notes/index"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2236606"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2236650"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2236656"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2236669"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2236730"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2236750"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2236759"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2236763"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2236766"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2236774"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2236779"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2236784"},{"type":"ARTICLE","url":"https://issues.redhat.com/browse/RHEL-10060"},{"type":"ADVISORY","url":"https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_2208.json"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2023-39350"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2023-39350"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-39350"},{"type":"ARTICLE","url":"https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-rrrv-3w42-pffh"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2023-39351"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2023-39351"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-39351"},{"type":"ARTICLE","url":"https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-q9x9-cqjc-rgwq"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2023-39352"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2023-39352"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-39352"},{"type":"ARTICLE","url":"https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-whwr-qcf2-2mvj"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2023-39353"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2023-39353"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-39353"},{"type":"ARTICLE","url":"https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-hg53-9j9h-3c8f"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2023-39354"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2023-39354"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-39354"},{"type":"ARTICLE","url":"https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-c3r2-pxxp-f8r6"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2023-39356"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2023-39356"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-39356"},{"type":"ARTICLE","url":"https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-q5v5-qhj5-mh6m"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2023-40181"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2023-40181"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-40181"},{"type":"ARTICLE","url":"https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-mxp4-rx7x-h2g8"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2023-40186"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2023-40186"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-40186"},{"type":"ARTICLE","url":"https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-hcj4-3c3r-5j3v"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2023-40188"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2023-40188"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-40188"},{"type":"ARTICLE","url":"https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-9w28-wwj5-p4xq"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2023-40567"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2023-40567"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-40567"},{"type":"ARTICLE","url":"https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-2w9f-8wg4-8jfp"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2023-40569"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2023-40569"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-40569"},{"type":"ARTICLE","url":"https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-hm8c-rcjg-c8qp"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2023-40589"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2023-40589"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-40589"},{"type":"ARTICLE","url":"https://github.com/FreeRDP/FreeRDP/commit/16141a30f983dd6f7a6e5b0356084171942c9416"},{"type":"ARTICLE","url":"https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-gc34-mw6m-g42x"}],"affected":[{"package":{"name":"freerdp","ecosystem":"Red Hat:enterprise_linux:9::appstream","purl":"pkg:rpm/redhat/freerdp"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:2.11.2-1.el9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:2208.json"}},{"package":{"name":"freerdp-debuginfo","ecosystem":"Red Hat:enterprise_linux:9::appstream","purl":"pkg:rpm/redhat/freerdp-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:2.11.2-1.el9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:2208.json"}},{"package":{"name":"freerdp-debugsource","ecosystem":"Red Hat:enterprise_linux:9::appstream","purl":"pkg:rpm/redhat/freerdp-debugsource"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:2.11.2-1.el9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:2208.json"}},{"package":{"name":"freerdp-devel","ecosystem":"Red Hat:enterprise_linux:9::appstream","purl":"pkg:rpm/redhat/freerdp-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:2.11.2-1.el9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:2208.json"}},{"package":{"name":"freerdp-libs","ecosystem":"Red Hat:enterprise_linux:9::appstream","purl":"pkg:rpm/redhat/freerdp-libs"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:2.11.2-1.el9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:2208.json"}},{"package":{"name":"freerdp-libs-debuginfo","ecosystem":"Red Hat:enterprise_linux:9::appstream","purl":"pkg:rpm/redhat/freerdp-libs-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:2.11.2-1.el9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:2208.json"}},{"package":{"name":"libwinpr","ecosystem":"Red Hat:enterprise_linux:9::appstream","purl":"pkg:rpm/redhat/libwinpr"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:2.11.2-1.el9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:2208.json"}},{"package":{"name":"libwinpr-debuginfo","ecosystem":"Red Hat:enterprise_linux:9::appstream","purl":"pkg:rpm/redhat/libwinpr-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:2.11.2-1.el9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:2208.json"}},{"package":{"name":"libwinpr-devel","ecosystem":"Red Hat:enterprise_linux:9::appstream","purl":"pkg:rpm/redhat/libwinpr-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:2.11.2-1.el9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:2208.json"}},{"package":{"name":"freerdp","ecosystem":"Red Hat:enterprise_linux:9::crb","purl":"pkg:rpm/redhat/freerdp"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:2.11.2-1.el9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:2208.json"}},{"package":{"name":"freerdp-debuginfo","ecosystem":"Red Hat:enterprise_linux:9::crb","purl":"pkg:rpm/redhat/freerdp-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:2.11.2-1.el9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:2208.json"}},{"package":{"name":"freerdp-debugsource","ecosystem":"Red Hat:enterprise_linux:9::crb","purl":"pkg:rpm/redhat/freerdp-debugsource"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:2.11.2-1.el9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:2208.json"}},{"package":{"name":"freerdp-devel","ecosystem":"Red Hat:enterprise_linux:9::crb","purl":"pkg:rpm/redhat/freerdp-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:2.11.2-1.el9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:2208.json"}},{"package":{"name":"freerdp-libs","ecosystem":"Red Hat:enterprise_linux:9::crb","purl":"pkg:rpm/redhat/freerdp-libs"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:2.11.2-1.el9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:2208.json"}},{"package":{"name":"freerdp-libs-debuginfo","ecosystem":"Red Hat:enterprise_linux:9::crb","purl":"pkg:rpm/redhat/freerdp-libs-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:2.11.2-1.el9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:2208.json"}},{"package":{"name":"libwinpr","ecosystem":"Red Hat:enterprise_linux:9::crb","purl":"pkg:rpm/redhat/libwinpr"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:2.11.2-1.el9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:2208.json"}},{"package":{"name":"libwinpr-debuginfo","ecosystem":"Red Hat:enterprise_linux:9::crb","purl":"pkg:rpm/redhat/libwinpr-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:2.11.2-1.el9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:2208.json"}},{"package":{"name":"libwinpr-devel","ecosystem":"Red Hat:enterprise_linux:9::crb","purl":"pkg:rpm/redhat/libwinpr-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:2.11.2-1.el9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:2208.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}]}