{"id":"USN-8476-1","summary":"xrdp vulnerabilities","details":"It was discovered that xrdp incorrectly handled bounds checking when\nprocessing user domain information during the connection sequence. An\nunauthenticated remote attacker could use this issue to cause xrdp to\ncrash, resulting in a denial of service, or possibly execute arbitrary\ncode. (CVE-2025-68670)\n\nIt was discovered that xrdp did not correctly enforce the maximum number of\nlogin attempts configured by the MaxLoginRetry parameter. A remote attacker\ncould use this issue to perform an unlimited number of login attempts.\n(CVE-2024-39917)\n\nIt was discovered that xrdp did not perform bounds checking when accessing\nfont glyphs. Since some of this data is controllable by the user, a remote\nattacker could use this issue to cause xrdp to read out of bounds. This\nissue only affected Ubuntu 24.04 LTS. (CVE-2023-42822)\n\nIt was discovered that xrdp did not properly handle session establishment\nerrors. A remote attacker could use this issue to bypass OS-level session\nrestrictions enforced by PAM, such as the maximum number of concurrent\nsessions per user. This issue only affected Ubuntu 24.04 LTS.\n(CVE-2023-40184)","modified":"2026-06-25T23:59:17.105152448Z","published":"2026-06-25T14:47:42Z","related":["UBUNTU-CVE-2023-40184","UBUNTU-CVE-2023-42822","UBUNTU-CVE-2024-39917","UBUNTU-CVE-2025-68670"],"upstream":["CVE-2023-40184","CVE-2023-42822","CVE-2024-39917","CVE-2025-68670","UBUNTU-CVE-2023-40184","UBUNTU-CVE-2023-42822","UBUNTU-CVE-2024-39917","UBUNTU-CVE-2025-68670"],"references":[{"type":"ADVISORY","url":"https://ubuntu.com/security/notices/USN-8476-1"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2023-40184"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2023-42822"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2024-39917"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2025-68670"}],"affected":[{"package":{"name":"xrdp","ecosystem":"Ubuntu:Pro:18.04:LTS","purl":"pkg:deb/ubuntu/xrdp?arch=source&distro=esm-apps%2Fbionic"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0.9.5-2ubuntu0.1~esm3"}]}],"versions":["0.9.1-9","0.9.4-1","0.9.4-2","0.9.4-3","0.9.4-4","0.9.4-5","0.9.5-1","0.9.5-1build1","0.9.5-2","0.9.5-2ubuntu0.1~esm1","0.9.5-2ubuntu0.1~esm2"],"ecosystem_specific":{"availability":"Available with Ubuntu Pro: https://ubuntu.com/pro","binaries":[{"binary_version":"0.9.5-2ubuntu0.1~esm3","binary_name":"xorgxrdp"},{"binary_version":"0.9.5-2ubuntu0.1~esm3","binary_name":"xrdp"},{"binary_version":"0.9.5-2ubuntu0.1~esm3","binary_name":"xrdp-pulseaudio-installer"}]},"database_specific":{"cves_map":{"cves":[{"id":"CVE-2024-39917","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:L"},{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2025-68670","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H"},{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"type":"Ubuntu","score":"medium"}]}],"ecosystem":"Ubuntu:Pro:18.04:LTS"},"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-8476-1.json"}},{"package":{"name":"xrdp","ecosystem":"Ubuntu:Pro:20.04:LTS","purl":"pkg:deb/ubuntu/xrdp?arch=source&distro=esm-apps%2Ffocal"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0.9.12-1ubuntu0.1+esm2"}]}],"versions":["0.9.9-1","0.9.12-1","0.9.12-1ubuntu0.1","0.9.12-1ubuntu0.1+esm1"],"ecosystem_specific":{"availability":"Available with Ubuntu Pro: https://ubuntu.com/pro","binaries":[{"binary_version":"0.9.12-1ubuntu0.1+esm2","binary_name":"xrdp"}]},"database_specific":{"cves_map":{"cves":[{"id":"CVE-2024-39917","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:L"},{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2025-68670","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H"},{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"type":"Ubuntu","score":"medium"}]}],"ecosystem":"Ubuntu:Pro:20.04:LTS"},"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-8476-1.json"}},{"package":{"name":"xrdp","ecosystem":"Ubuntu:Pro:22.04:LTS","purl":"pkg:deb/ubuntu/xrdp?arch=source&distro=esm-apps%2Fjammy"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0.9.17-2ubuntu3+esm2"}]}],"versions":["0.9.15-1ubuntu1","0.9.17-1","0.9.17-2","0.9.17-2ubuntu1","0.9.17-2ubuntu2","0.9.17-2ubuntu2+esm1","0.9.17-2ubuntu3","0.9.17-2ubuntu3+esm1"],"ecosystem_specific":{"availability":"Available with Ubuntu Pro: https://ubuntu.com/pro","binaries":[{"binary_version":"0.9.17-2ubuntu3+esm2","binary_name":"xrdp"}]},"database_specific":{"cves_map":{"cves":[{"id":"CVE-2024-39917","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:L"},{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2025-68670","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H"},{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"type":"Ubuntu","score":"medium"}]}],"ecosystem":"Ubuntu:Pro:22.04:LTS"},"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-8476-1.json"}},{"package":{"name":"xrdp","ecosystem":"Ubuntu:Pro:24.04:LTS","purl":"pkg:deb/ubuntu/xrdp?arch=source&distro=esm-apps%2Fnoble"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0.9.24-4ubuntu0.1~esm1"}]}],"versions":["0.9.21.1-1","0.9.24-2","0.9.24-3","0.9.24-3build1","0.9.24-3build2","0.9.24-4"],"ecosystem_specific":{"availability":"Available with Ubuntu Pro: https://ubuntu.com/pro","binaries":[{"binary_version":"0.9.24-4ubuntu0.1~esm1","binary_name":"xrdp"}]},"database_specific":{"cves_map":{"cves":[{"id":"CVE-2023-40184","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:N/I:N/A:L"},{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2023-42822","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N"},{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2024-39917","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:L"},{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2025-68670","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H"},{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"type":"Ubuntu","score":"medium"}]}],"ecosystem":"Ubuntu:Pro:24.04:LTS"},"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-8476-1.json"}},{"package":{"name":"xrdp","ecosystem":"Ubuntu:25.10","purl":"pkg:deb/ubuntu/xrdp?arch=source&distro=questing"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0.10.1-3.1+deb13u1build0.25.10.1"}]}],"versions":["0.10.1-3","0.10.1-3.1"],"ecosystem_specific":{"availability":"No subscription required","binaries":[{"binary_version":"0.10.1-3.1+deb13u1build0.25.10.1","binary_name":"xrdp"}]},"database_specific":{"cves_map":{"cves":[{"id":"CVE-2025-68670","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H"},{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"type":"Ubuntu","score":"medium"}]}],"ecosystem":"Ubuntu:25.10"},"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-8476-1.json"}}],"schema_version":"1.7.5"}