CNNVD-202601-4534 Information
CNNVD ID
CNNVD-202601-4534
Related CVE
- CNNVD Published: 2026-01-27
Description (Chinese)
xrdp是neutrinolabs开源的一款开源远程桌面协议服务器。 xrdp v0.10.5之前版本存在安全漏洞,该漏洞源于处理用户域信息时边界检查不当,可能导致基于栈的缓冲区溢出和执行任意代码。
Description (English)
xrdp is an open-source remote desktop protocol server for the newrinolabs open source. There was a security loophole in the pre-version version of xrdp v. 0.10.5, which stemmed from inadequate border checks when processing domain information, which could lead to the spilling out of a fence-based buffer zone and the implementation of random codes.
Hazard Level
Low
Vulnerability Type
其他
Affected Vendor
neutrinolabs
Published
2026-01-27
Last Modified
2026-02-24
References
https://github.com/neutrinolabs/xrdp/commit/488c8c7d4d189514a366cd8301b6e816c5218ffa https://github.com/neutrinolabs/xrdp/releases/tag/v0.10.5 https://github.com/neutrinolabs/xrdp/security/advisories/GHSA-rwvg-gp87-gh6f https://access.redhat.com/security/cve/cve-2025-68670
Patch
https://github.com/neutrinolabs/xrdp/releases
Share on: