Advisories » MGASA-2019-0401

Updated freerdp packages fix security vulnerabilities

Publication date: 19 Dec 2019
Modification date: 19 Dec 2019
Type: security
Affected Mageia releases : 7
CVE: CVE-2019-17177 , CVE-2019-17178

Description

Updated freerdp packages fix security vulnerabilities:

Multiple memory leaks in libfreerdp/codec/region.c (CVE-2019-17177).

Memory leak in HuffmanTree_makeFromFrequencies (CVE-2019-17178).
                

References

• https://bugs.mageia.org/show_bug.cgi?id=25815
• https://lists.opensuse.org/opensuse-updates/2019-12/msg00012.html
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17177
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17178

SRPMS

7/core

• freerdp-2.0.0-0.rc4.1.1.mga7