[Git][security-tracker-team/security-tracker][master] Add CVE-2024-32660/FreeRDP

Wed Apr 24 08:14:56 BST 2024


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
064ed4fb by Salvatore Bonaccorso at 2024-04-24T09:14:25+02:00
Add CVE-2024-32660/FreeRDP

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -38,7 +38,10 @@ CVE-2024-32679 (Missing Authorization vulnerability in Shared Files PRO Shared F
 CVE-2024-32661 (FreeRDP is a free implementation of the Remote Desktop Protocol. FreeR ...)
 	TODO: check
 CVE-2024-32660 (FreeRDP is a free implementation of the Remote Desktop Protocol. Prior ...)
-	TODO: check
+	- freerdp3 <unfixed>
+	- freerdp2 <unfixed>
+	NOTE: https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-mxv6-2cw6-m3mx
+	NOTE: Fixed by: https://github.com/FreeRDP/FreeRDP/commit/5e5d27cf310e4c10b854be7667bfb7a5d774eb47 (3.5.1)
 CVE-2024-32659 (FreeRDP is a free implementation of the Remote Desktop Protocol. FreeR ...)
 	- freerdp3 <unfixed>
 	- freerdp2 <unfixed>



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/064ed4fb21377a10868c0c88a8ac8e88f70acd6b

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/064ed4fb21377a10868c0c88a8ac8e88f70acd6b
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240424/8a6cbf22/attachment.htm>
