pool/freerdp2
SHA256
17
0
Fork 1
Code Issues Pull Requests Activity
Files
factory
freerdp2/freerdp-CVE-2026-23534.patch
Dirk Mueller b9b46cb552 - Add patches to fix CVE issues: 
+ freerdp-CVE-2026-22852.patch (CVE-2026-22852, bsc#1256718)
  + freerdp-CVE-2026-22854.patch (CVE-2026-22854, bsc#1256720)
  + freerdp-CVE-2026-22856.patch (CVE-2026-22856, bsc#1256722)
  + freerdp-CVE-2026-22859.patch (CVE-2026-22859, bsc#1256725)
  + freerdp-CVE-2026-23530.patch (CVE-2026-23530, bsc#1256940)
  + freerdp-CVE-2026-23531.patch (CVE-2026-23531, bsc#1256941)
  + freerdp-CVE-2026-23532.patch (CVE-2026-23532, bsc#1256942)
  + freerdp-CVE-2026-23534.patch (CVE-2026-23534, bsc#1256944)

  * Fix integer overflow in progressive decoder (bsc#1219049, CVE-2024-22211)

OBS-URL: https://build.opensuse.org/package/show/X11:RemoteDesktop/freerdp2?expand=0&rev=21
2026-02-11 07:14:28 +00:00

29 lines
1.0 KiB
Diff
Raw Permalink Blame History

From f8688b57f6cfad9a0b05475a6afbde355ffab720 Mon Sep 17 00:00:00 2001
From: akallabeth <akallabeth@posteo.net>
Date: Thu, 15 Jan 2026 12:19:53 +0100
Subject: [PATCH] [codec,clear] fix off by one length check
---
libfreerdp/codec/clear.c | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
Index: freerdp-2.11.7/libfreerdp/codec/clear.c
===================================================================
--- freerdp-2.11.7.orig/libfreerdp/codec/clear.c
+++ freerdp-2.11.7/libfreerdp/codec/clear.c
@@ -883,11 +883,13 @@ static BOOL clear_decompress_bands_data(
if (count > nHeight)
count = nHeight;
- if (nXDstRel + i > nDstWidth)
+ if (nXDstRel + i >= nDstWidth)
return FALSE;
for (UINT32 y = 0; y < count; y++)
{
+ if (nYDstRel + y >= nDstHeight)
+ return FALSE;
BYTE* pDstPixel8 = &pDstData[((nYDstRel + y) * nDstStep) +
((nXDstRel + i) * GetBytesPerPixel(DstFormat))];
UINT32 color = ReadColor(cpSrcPixel, clear->format);
Reference in New Issue View Git Blame Copy Permalink