FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-04-19 20:48:44 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
a66f9be2-d519-11e7-9866-c85b763a2f96xrdp -- local user can cause a denial of service

xrdp reports:

The scp_v0s_accept function in the session manager uses an untrusted integer as a write length, which allows local users to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact via a crafted input stream.


Discovery 2017-11-23
Entry 2017-11-29
xrdp-devel
le 0.9.3,1

gt 0.9.3_1,1 le 0.9.4,1

CVE-2017-16927
fc2a9541-8893-11ec-9d01-80ee73419af3xrdp -- privilege escalation

xrdp project reports:

An integer underflow leading to a heap overflow in the sesman server allows any unauthenticated attacker which is accessible to a sesman server (listens by default on localhost when installing xrdp, but can be remote if configured otherwise) to execute code as root.


Discovery 2022-01-23
Entry 2022-02-08
Modified 2022-02-15
xrdp
ge 0.9.17,1 lt 0.9.18.1,1

xrdp-devel
ge 0.9.17,1 lt 0.9.18.1,1

CVE-2022-23613
https://github.com/neutrinolabs/xrdp/security/advisories/GHSA-8h98-h426-xf32