CNNVD-202602-1324 Information

CNNVD ID

CNNVD-202602-1324

Related CVE

CVE-2026-24491

• CNNVD Published: 2026-02-09

Description (Chinese)

FreeRDP是FreeRDP团队的一款开源的远程桌面协议（RDP）的实现。 FreeRDP 3.22.0之前版本存在资源管理错误漏洞，该漏洞源于video_timer在控制通道关闭后发送客户端通知，可能导致释放后重用。

Description (English)

FreeRDP is an open-source remote desktop protocol (RDP) for the FreeRDP team. The previous version of FreeRDP 3.22.0 had a resource management error loophole, which originated in the delivery of client notifications after the control channel was closed, which could lead to reuse after release.

Vulnerability Type

资源管理错误

Affected Vendor

FreeRDP

Published

2026-02-09

Last Modified

2026-02-24

References

https://github.com/FreeRDP/FreeRDP/commit/e02e052f6692550e539d10f99de9c35a23492db2 https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-4x6j-w49r-869g

Patch

https://github.com/FreeRDP/FreeRDP/releases