{
  "schema_version": "1.7.0",
  "id": "MGASA-2019-0209",
  "published": "2019-07-21T18:17:27Z",
  "modified": "2019-07-21T12:40:10Z",
  "summary": "Updated rdesktop packages fix security issues",
  "details": "This is a security release to address various buffer overflow and overrun\nissues in the rdesktop protocol handling identified by Kaspersky Lab and\nNational Cyber Security Centre.\n\nrdesktop will now detect any attempts to access invalid areas and refuse\nto continue.\n",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://advisories.mageia.org/MGASA-2019-0209.html"
    },
    {
      "type": "REPORT",
      "url": "https://bugs.mageia.org/show_bug.cgi?id=24797"
    },
    {
      "type": "WEB",
      "url": "https://github.com/rdesktop/rdesktop/releases/tag/v1.8.5"
    }
  ],
  "affected": [
    {
      "package": {
        "ecosystem": "Mageia:6",
        "name": "rdesktop",
        "purl": "pkg:rpm/mageia/rdesktop?arch=source&distro=mageia-6"
      },
      "ranges": [
        {
          "type": "ECOSYSTEM",
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "1.8.5-1.mga6"
            }
          ]
        }
      ],
      "ecosystem_specific": {
        "section": "core"
      }
    }
  ],
  "credits": [
    {
      "name": "Mageia",
      "type": "COORDINATOR",
      "contact": [
        "https://wiki.mageia.org/en/Packages_Security_Team"
      ]
    }
  ]
}