CVE-2018-8799 (NVD)

2019-02-05

rdesktop versions up to and including v1.8.3 contain an Out-Of-Bounds Read in function process_secondary_order() that results in a Denial of Service (segfault).

Products Debian_linux, Rdesktop
Type Out-of-bounds Read (CWE-125)
First patch https://github.com/rdesktop/rdesktop/commit/4dca546d04321a610c1835010b5dad85163b65e1
Relevant file/s • ./asn.c (modified, +1, -1)
• ./bitmap.c (modified, +4, -4)
• ./cliprdr.c (modified, +6)
• ./constants.h (modified, +3)
• ./cssp.c (modified, +16, -1)
• ./lspci.c (modified, +8, -1)
• ./mcs.c (modified, +18, -2)
• ./orders.c (modified, +6)
• ./proto.h (modified, +2, -1)
• ./rdp.c (modified, +132, -60)
• ./rdpdr.c (modified, +11)
• ./rdpsnd.c (modified, +11)
• ./seamless.c (modified, +12)
• ./secure.c (modified, +17)
• ./stream.h (modified, +1, -1)
• ./types.h (modified, +2)
Links http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00040.html
https://security.gentoo.org/glsa/201903-06
https://www.debian.org/security/2019/dsa-4394
https://research.checkpoint.com/reverse-rdp-attack-code-execution-on-rdp-clients/
http://www.securityfocus.com/bid/106938

rdesktop - Tree: 4dca546d04

(? files)

Filter Settings
Files
Navigation
Patch data:

(on by default)


Patched area: