CNNVD-202601-3040 Information
CNNVD ID
CNNVD-202601-3040
Related CVE
- CNNVD Published: 2026-01-19
Description (Chinese)
FreeRDP是FreeRDP团队的一款开源的远程桌面协议(RDP)的实现。 FreeRDP 3.21.0之前版本存在安全漏洞,该漏洞源于freerdp_bitmap_decompress_planar函数在RLE解码前未验证nSrcWidth和nSrcHeight参数,可能导致堆缓冲区溢出,进而引发崩溃或任意代码执行。
Description (English)
FreeRDP is an open-source remote desktop protocol (RDP) for the FreeRDP team. The security gap in the pre-FreeRDP 3.21.0 version stems from the failure of the Freerdp bitmap decompress planar function to verify the nSrcWidth and nSrhaight parameters prior to the RLE decode, which could result in a spill over the buffer zone, which could trigger a collapse or arbitrary code execution.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
FreeRDP
Published
2026-01-19
Last Modified
2026-02-24
References
https://github.com/FreeRDP/FreeRDP/blob/38514dfa5813aa945a86cfbcec279033f8394468/libfreerdp/codec/planar.c#L1689-L1696 https://github.com/FreeRDP/FreeRDP/blob/38514dfa5813aa945a86cfbcec279033f8394468/libfreerdp/codec/planar.c#L1713-L1716 https://github.com/FreeRDP/FreeRDP/blob/38514dfa5813aa945a86cfbcec279033f8394468/libfreerdp/codec/planar.c#L951-L953 https://github.com/FreeRDP/FreeRDP/releases/tag/3.21.0 https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-r4hv-852m-fq7p https://access.redhat.com/security/cve/cve-2026-23530
Patch
https://github.com/FreeRDP/FreeRDP/releases
Share on: