CNNVD-202602-1323 Information

CNNVD ID

CNNVD-202602-1323

Related CVE

CVE-2026-24675

• CNNVD Published: 2026-02-09

Description (Chinese)

FreeRDP是FreeRDP团队的一款开源的远程桌面协议（RDP）的实现。 FreeRDP 3.22.0之前版本存在资源管理错误漏洞，该漏洞源于urb_select_interface在出错时释放设备MS配置但后续代码仍引用它，可能导致释放后重用。

Description (English)

FreeRDP is an open-source remote desktop protocol (RDP) for the FreeRDP team. The previous version of FreeRDP 3.22.0 had a resource management error loophole, which originated from the release of the device MS configuration in the event of an error by the urb select interface but is still quoted in the subsequent code and may lead to reuse after release.

Vulnerability Type

资源管理错误

Affected Vendor

FreeRDP

Published

2026-02-09

Last Modified

2026-02-24

References

https://github.com/FreeRDP/FreeRDP/commit/d676518809c319eec15911c705c13536036af2ae https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-x9jr-99h2-g7mj

Patch

https://github.com/FreeRDP/FreeRDP/releases