| Revision Date: | 2018-11-29 | Version: | 1 | | Title: | CVE-2018-8785 on Ubuntu 16.04 LTS (xenial) - medium. | | Description: | FreeRDP prior to version 2.0.0-rc4 contains a Heap-Based Buffer Overflow in function zgfx_decompress() that results in a memory corruption and probably even a remote code execution.
| | Family: | unix | Class: | vulnerability | | Status: | | Reference(s): | CVE-2018-8785
| | Platform(s): | Ubuntu 16.04 LTS
| Product(s): | | | Definition Synopsis | | Ubuntu 16.04 LTS (xenial) is installed. AND Package Information
NOT freerdp-x11 package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT libfreerdp-cache1.1 package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT libfreerdp-client1.1 package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT libfreerdp-codec1.1 package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT libfreerdp-common1.1.0 package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT libfreerdp-core1.1 package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT libfreerdp-crypto1.1 package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT libfreerdp-gdi1.1 package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT libfreerdp-locale1.1 package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT libfreerdp-plugins-standard package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT libfreerdp-primitives1.1 package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT libfreerdp-rail1.1 package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT libfreerdp-utils1.1 package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT libwinpr-asn1-0.1 package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT libwinpr-bcrypt0.1 package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT libwinpr-credentials0.1 package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT libwinpr-credui0.1 package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT libwinpr-crt0.1 package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT libwinpr-crypto0.1 package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT libwinpr-dsparse0.1 package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT libwinpr-environment0.1 package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT libwinpr-error0.1 package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT libwinpr-file0.1 package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT libwinpr-handle0.1 package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT libwinpr-heap0.1 package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT libwinpr-input0.1 package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT libwinpr-interlocked0.1 package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT libwinpr-io0.1 package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT libwinpr-library0.1 package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT libwinpr-path0.1 package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT libwinpr-pipe0.1 package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT libwinpr-pool0.1 package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT libwinpr-registry0.1 package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT libwinpr-rpc0.1 package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT libwinpr-sspi0.1 package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT libwinpr-sspicli0.1 package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT libwinpr-synch0.1 package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT libwinpr-sysinfo0.1 package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT libwinpr-thread0.1 package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT libwinpr-timezone0.1 package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT libwinpr-utils0.1 package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT libwinpr-winhttp0.1 package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT libwinpr-winsock0.1 package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
OR NOT libxfreerdp-client1.1 package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
|
|