The manufacturer Canonical has not yet set up its devicebase profile. Content such as updates, compatibilities and support may only be maintained with a delay.
Update

USN-7341-1: FreeRDP vulnerabilities

USN-7341-1: FreeRDP vulnerabilities
11 March 2025

Several security issues were fixed in FreeRDP.

Releases
Ubuntu 24.04 LTS

Packages
freerdp2 - RDP client for Windows Terminal Services

Details
Evgeny Legerov discovered that FreeRDP incorrectly handled certain memory
operations. If a user were tricked into connecting to a malicious server, a
remote attacker could use this issue to cause FreeRDP to crash, resulting
in a denial of service, or possibly execute arbitrary code.
(CVE-2024-32039, CVE-2024-32040, CVE-2024-32041)

Evgeny Legerov discovered that FreeRDP incorrectly handled certain memory
operations. If a user were tricked into connecting to a malicious server, a
remote attacker could possibly use this issue to cause FreeRDP to crash,
resulting in a denial of service. (CVE-2024-32458, CVE-2024-32460)

It was discovered that FreeRDP incorrectly handled certain memory
operations. If a user were tricked into connecting to a malicious server, a
remote attacker could possibly use this issue to cause FreeRDP to crash,
resulting in a denial of service. (CVE-2024-32661)

Update instructions
The problem can be corrected by updating your system to the following package versions:

Ubuntu 24.04

  • libfreerdp-client2-2t64 - 2.11.5+dfsg1-1ubuntu0.1~esm1
  • libfreerdp-server2-2t64 - 2.11.5+dfsg1-1ubuntu0.1~esm1
  • libfreerdp2-2t64 - 2.11.5+dfsg1-1ubuntu0.1~esm1
    In general, a standard system update will make all the necessary changes.
Version: 24.04 LTS Link
Receive Important Update Messages Stay tuned for upcoming Canonical Ubuntu Desktop updates

More from the Operating Systems section

Was the content helpful to you?

Advertisement Advertise here?
Udemy IT certification ad