[Git][security-tracker-team/security-tracker][master] Add new freerdp3 issues

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sat May 30 08:56:44 BST 2026 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
8429cc4a by Salvatore Bonaccorso at 2026-05-30T09:56:27+02:00
Add new freerdp3 issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -29,7 +29,9 @@ CVE-2026-46385 (iskorotkov/avro is a fast Go Avro codec. Prior to 2.33.0, the Av
 CVE-2026-46384 (iskorotkov/avro is a fast Go Avro codec. Prior to 2.33.0, several Avro ...)
 	TODO: check
 CVE-2026-45700 (FreeRDP is a free implementation of the Remote Desktop Protocol. Prior ...)
-	TODO: check
+	- freerdp3 3.26.0+dfsg-1
+	- freerdp2 <removed>
+	NOTE: https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-mpxh-8fq3-x8mh
 CVE-2026-45697 (Formie is a Craft CMS plugin for creating forms. Prior to 2.2.20 and 3 ...)
 	NOT-FOR-US: Formie Craft CMS plugin
 CVE-2026-45613 (Rizin is a UNIX-like reverse engineering framework and command-line to ...)
@@ -51,11 +53,17 @@ CVE-2026-45149 (The brace-expansion library generates arbitrary strings containi
 CVE-2026-44640 (NanoMQ MQTT Broker (NanoMQ) is an all-around Edge Messaging Platform.  ...)
 	NOT-FOR-US: NanoMQ MQTT Broker (NanoMQ)
 CVE-2026-44422 (FreeRDP is a free implementation of the Remote Desktop Protocol. Prior ...)
-	TODO: check
+	- freerdp3 3.26.0+dfsg-1
+	- freerdp2 <removed>
+	NOTE: https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-j9q5-7g8m-jc9v
 CVE-2026-44421 (FreeRDP is a free implementation of the Remote Desktop Protocol. Prior ...)
-	TODO: check
+	- freerdp3 3.26.0+dfsg-1
+	- freerdp2 <removed>
+	NOTE: https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-p6r2-4hgm-m6ff
 CVE-2026-44420 (FreeRDP is a free implementation of the Remote Desktop Protocol. Prior ...)
-	TODO: check
+	- freerdp3 3.26.0+dfsg-1
+	- freerdp2 <removed>
+	NOTE: https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-mvpx-xj7r-3p3r
 CVE-2026-44287 (FastGPT is an AI Agent building platform. Prior to 4.15.0-beta1, the J ...)
 	NOT-FOR-US: FastGPT
 CVE-2026-44285 (FastGPT is an AI Agent building platform. Prior to 4.15.0-beta1, a Ser ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8429cc4a88fbd29a98e06fb56c9beeba78d9e7fd

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8429cc4a88fbd29a98e06fb56c9beeba78d9e7fd
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260530/2360145e/attachment.htm>

More information about the debian-security-tracker-commits mailing list