| Revision Date: | 2014-05-26 | Version: | 20 |
| Title: | ELSA-2008:0575: rdesktop security update (Moderate) |
| Description: | Integer signedness error in the xrealloc function (rdesktop.c) in RDesktop 1.5.0 allows remote attackers to execute arbitrary code via unknown parameters that trigger a heap-based overflow.NOTE: the role of the channel_process function was not specified by the original researcher. |
| Family: | unix | Class: | patch |
| Status: | ACCEPTED | Reference(s): | CVE-2008-1801
CVE-2008-1803
ELSA-2008:0575-01
|
| Platform(s): | Oracle Linux 5
| Product(s): | rdesktop
|
| Definition Synopsis |
| Oracle Linux 5.x AND rdesktop is earlier than 0:1.4.1-6
|