CVE-2020-11017Double Free in Freerdp

CWE-415Double FreeCWE-1341Multiple Releases of Same Resource or Handle10 documents6 sources
Severity
6.5MEDIUMNVD
EPSS
0.2%
top 53.72%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
FreerdpDebian LinuxOpensuse Leap
Timeline
PublishedMay 29
Latest updateJun 17

Description

In FreeRDP less than or equal to 2.0.0, by providing manipulated input a malicious client can create a double free condition and crash the server. This is fixed in version 2.1.0.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 2.8 | Impact: 3.6

Affected Packages3 packages

NVDfreerdp/freerdp< 2.1.0
CVEListV5freerdp/freerdp2.0.0
NVDopensuse/leap15.1

Also affects: Debian Linux 10.0

🔴Vulnerability Details

2
CVEList
Double free in cliprdr_server_receive_capabilities in FreeRDP2020-05-29
OSV
CVE-2020-11017: In FreeRDP less than or equal to 22020-05-29

📋Vendor Advisories

2
Red Hat
freerdp: Double free in cliprdr_server_receive_capabilities could result in data corruption2020-04-09
Debian
CVE-2020-11017: freerdp2 - In FreeRDP less than or equal to 2.0.0, by providing manipulated input a malicio...2020

💬Community

5
Bugzilla
CVE-2020-11017 freerdp1.2: freerdp: Double free in cliprdr_server_receive_capabilities could result in data corruption [fedora-all]2020-06-17
Bugzilla
CVE-2020-11017 freerdp: Double free in cliprdr_server_receive_capabilities could result in data corruption [fedora-all]2020-06-17
Bugzilla
CVE-2020-11018 freerdp: Out of bound read in cliprdr_server_receive_capabilities2020-06-17
Bugzilla
CVE-2020-11017 freerdp: Double free in cliprdr_server_receive_capabilities could result in data corruption2020-06-17
Bugzilla
CVE-2020-11017 freerdp: Double free in cliprdr_server_receive_capabilities could result in data corruption [epel-all]2020-06-17
CVE-2020-11017 — Double Free in Freerdp | cvebase