Oval Definition:oval:org.opensuse.security:def:202011038
Revision Date:2022-09-02Version:1
Title:CVE-2020-11038
Description:

In FreeRDP less than or equal to 2.0.0, an Integer Overflow to Buffer Overflow exists. When using /video redirection, a manipulated server can instruct the client to allocate a buffer with a smaller size than requested due to an integer overflow in size calculation. With later messages, the server can manipulate the client to write data out of bound to the previously allocated buffer. This has been patched in 2.1.0.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2020-11038
SUSE-SU-2020:2032-1
SUSE-SU-2020:2068-1
SUSE-SU-2020:2272-1
openSUSE-SU-2020:1090-1
Mitre CVE-2020-11038
SUSE CVE-2020-11038
SUSE-SU-2020:2032-1
SUSE-SU-2020:2068-1
SUSE-SU-2020:2272-1
openSUSE-SU-2020:1090-1
Platform(s):openSUSE Leap 15.1
openSUSE Leap 15.3
openSUSE Leap 15.4
openSUSE Tumbleweed
SUSE Linux Enterprise Desktop 12 SP5
SUSE Linux Enterprise Desktop 15 SP1
SUSE Linux Enterprise Desktop 15 SP2
SUSE Linux Enterprise Desktop 15 SP4
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2
SUSE Linux Enterprise Server 12 SP5
SUSE Linux Enterprise Server 15 SP1
SUSE Linux Enterprise Server 15 SP2
SUSE Linux Enterprise Server 15 SP4
SUSE Linux Enterprise Server for SAP Applications 12 SP5
SUSE Linux Enterprise Server for SAP Applications 15 SP1
SUSE Linux Enterprise Server for SAP Applications 15 SP2
SUSE Linux Enterprise Server for SAP Applications 15 SP4
SUSE Linux Enterprise Software Development Kit 12 SP5
SUSE Linux Enterprise Workstation Extension 12 SP5
SUSE Linux Enterprise Workstation Extension 15 SP1
SUSE Linux Enterprise Workstation Extension 15 SP2
SUSE Linux Enterprise Workstation Extension 15 SP4
Product(s):
Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed
  • AND
  • freerdp-2.1.2-10.15 is installed
  • OR freerdp-server-2.1.2-10.15 is installed
  • OR freerdp-wayland-2.1.2-10.15 is installed
  • OR libuwac0-0-2.1.2-10.15 is installed
  • OR uwac0-0-devel-2.1.2-10.15 is installed
  • OR Package Information
  • SUSE Linux Enterprise Workstation Extension 15 SP1 is installed
  • AND
  • freerdp-2.1.2-10.15 is installed
  • OR freerdp-devel-2.1.2-10.15 is installed
  • OR libfreerdp2-2.1.2-10.15 is installed
  • OR libwinpr2-2.1.2-10.15 is installed
  • OR winpr2-devel-2.1.2-10.15 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed
  • AND
  • freerdp-2.1.2-10.15 is installed
  • OR freerdp-server-2.1.2-10.15 is installed
  • OR freerdp-wayland-2.1.2-10.15 is installed
  • OR libuwac0-0-2.1.2-10.15 is installed
  • OR uwac0-0-devel-2.1.2-10.15 is installed
  • OR Package Information
  • SUSE Linux Enterprise Workstation Extension 15 SP1 is installed
  • AND
  • freerdp-2.1.2-10.15 is installed
  • OR freerdp-devel-2.1.2-10.15 is installed
  • OR libfreerdp2-2.1.2-10.15 is installed
  • OR libwinpr2-2.1.2-10.15 is installed
  • OR winpr2-devel-2.1.2-10.15 is installed
  • OR Package Information
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed
  • AND
  • freerdp-2.1.2-15.7 is installed
  • OR freerdp-server-2.1.2-15.7 is installed
  • OR freerdp-wayland-2.1.2-15.7 is installed
  • OR libuwac0-0-2.1.2-15.7 is installed
  • OR uwac0-0-devel-2.1.2-15.7 is installed
  • OR Package Information
  • SUSE Linux Enterprise Workstation Extension 15 SP2 is installed
  • AND
  • freerdp-2.1.2-15.7 is installed
  • OR freerdp-devel-2.1.2-15.7 is installed
  • OR libfreerdp2-2.1.2-15.7 is installed
  • OR libwinpr2-2.1.2-15.7 is installed
  • OR winpr2-devel-2.1.2-15.7 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • freerdp-2.1.2-lp151.5.6 is installed
  • AND freerdp is signed with openSUSE key
  • OR
  • freerdp-devel-2.1.2-lp151.5.6 is installed
  • AND freerdp-devel is signed with openSUSE key
  • OR
  • freerdp-proxy-2.1.2-lp151.5.6 is installed
  • AND freerdp-proxy is signed with openSUSE key
  • OR
  • freerdp-server-2.1.2-lp151.5.6 is installed
  • AND freerdp-server is signed with openSUSE key
  • OR
  • freerdp-wayland-2.1.2-lp151.5.6 is installed
  • AND freerdp-wayland is signed with openSUSE key
  • OR
  • libfreerdp2-2.1.2-lp151.5.6 is installed
  • AND libfreerdp2 is signed with openSUSE key
  • OR
  • libuwac0-0-2.1.2-lp151.5.6 is installed
  • AND libuwac0-0 is signed with openSUSE key
  • OR
  • libwinpr2-2.1.2-lp151.5.6 is installed
  • AND libwinpr2 is signed with openSUSE key
  • OR
  • uwac0-0-devel-2.1.2-lp151.5.6 is installed
  • AND uwac0-0-devel is signed with openSUSE key
  • OR
  • winpr2-devel-2.1.2-lp151.5.6 is installed
  • AND winpr2-devel is signed with openSUSE key
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Software Development Kit 12 SP5 is installed
  • AND
  • freerdp-2.1.2-12.20 is installed
  • OR freerdp-devel-2.1.2-12.20 is installed
  • OR libfreerdp2-2.1.2-12.20 is installed
  • OR libwinpr2-2.1.2-12.20 is installed
  • OR winpr2-devel-2.1.2-12.20 is installed
  • OR Package Information
  • SUSE Linux Enterprise Workstation Extension 12 SP5 is installed
  • AND
  • freerdp-2.1.2-12.20 is installed
  • OR freerdp-proxy-2.1.2-12.20 is installed
  • OR freerdp-server-2.1.2-12.20 is installed
  • OR libfreerdp2-2.1.2-12.20 is installed
  • OR libwinpr2-2.1.2-12.20 is installed
  • OR vinagre-3.20.2-16.3 is installed
  • OR vinagre-lang-3.20.2-16.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 12 SP5 is installed
  • AND Package Information
  • freerdp-2.1.2-12.20 is installed
  • OR freerdp-proxy-2.1.2-12.20 is installed
  • OR freerdp-server-2.1.2-12.20 is installed
  • OR libfreerdp2-2.1.2-12.20 is installed
  • OR libwinpr2-2.1.2-12.20 is installed
  • OR vinagre-3.20.2-16.3 is installed
  • OR vinagre-lang-3.20.2-16.3 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed
  • AND
  • freerdp-2.1.2-15.7 is installed
  • OR freerdp-server-2.1.2-15.7 is installed
  • OR freerdp-wayland-2.1.2-15.7 is installed
  • OR libuwac0-0-2.1.2-15.7 is installed
  • OR uwac0-0-devel-2.1.2-15.7 is installed
  • OR Package Information
  • SUSE Linux Enterprise Workstation Extension 15 SP2 is installed
  • AND
  • freerdp-2.1.2-15.7 is installed
  • OR freerdp-devel-2.1.2-15.7 is installed
  • OR libfreerdp2-2.1.2-15.7 is installed
  • OR libwinpr2-2.1.2-15.7 is installed
  • OR winpr2-devel-2.1.2-15.7 is installed
    • Definition Synopsis
  • openSUSE Tumbleweed is installed
  • AND Package Information
  • freerdp-2.4.0-2.1 is installed
  • OR freerdp-devel-2.4.0-2.1 is installed
  • OR freerdp-proxy-2.4.0-2.1 is installed
  • OR freerdp-server-2.4.0-2.1 is installed
  • OR freerdp-wayland-2.4.0-2.1 is installed
  • OR libfreerdp2-2.4.0-2.1 is installed
  • OR libuwac0-0-2.4.0-2.1 is installed
  • OR libwinpr2-2.4.0-2.1 is installed
  • OR uwac0-0-devel-2.4.0-2.1 is installed
  • OR winpr2-devel-2.4.0-2.1 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 15 SP1 is installed
  • OR SUSE Linux Enterprise Server 15 SP1 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP1 is installed
  • OR SUSE Linux Enterprise Workstation Extension 15 SP1 is installed
  • AND Package Information
  • freerdp-2.1.2-10.15.1 is installed
  • OR freerdp-devel-2.1.2-10.15.1 is installed
  • OR libfreerdp2-2.1.2-10.15.1 is installed
  • OR libwinpr2-2.1.2-10.15.1 is installed
  • OR winpr2-devel-2.1.2-10.15.1 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 15 SP2 is installed
  • OR SUSE Linux Enterprise Server 15 SP2 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP2 is installed
  • OR SUSE Linux Enterprise Workstation Extension 15 SP2 is installed
  • AND Package Information
  • freerdp-2.1.2-15.7.1 is installed
  • OR freerdp-devel-2.1.2-15.7.1 is installed
  • OR libfreerdp2-2.1.2-15.7.1 is installed
  • OR libwinpr2-2.1.2-15.7.1 is installed
  • OR winpr2-devel-2.1.2-15.7.1 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Workstation Extension 15 SP1 is installed
  • AND
  • freerdp-2.1.2-10.15.1 is installed
  • OR freerdp-devel-2.1.2-10.15.1 is installed
  • OR libfreerdp2-2.1.2-10.15.1 is installed
  • OR libwinpr2-2.1.2-10.15.1 is installed
  • OR winpr2-devel-2.1.2-10.15.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Workstation Extension 15 SP2 is installed
  • AND
  • freerdp-2.1.2-15.7.1 is installed
  • OR freerdp-devel-2.1.2-15.7.1 is installed
  • OR libfreerdp2-2.1.2-15.7.1 is installed
  • OR libwinpr2-2.1.2-15.7.1 is installed
  • OR winpr2-devel-2.1.2-15.7.1 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 12 SP5 is installed
  • OR SUSE Linux Enterprise Server 12 SP5 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed
  • OR SUSE Linux Enterprise Workstation Extension 12 SP5 is installed
  • AND Package Information
  • freerdp-2.1.2-12.20.1 is installed
  • OR freerdp-proxy-2.1.2-12.20.1 is installed
  • OR freerdp-server-2.1.2-12.20.1 is installed
  • OR libfreerdp2-2.1.2-12.20.1 is installed
  • OR libwinpr2-2.1.2-12.20.1 is installed
  • OR vinagre-3.20.2-16.3.3 is installed
  • OR vinagre-lang-3.20.2-16.3.3 is installed
    • Definition Synopsis
  • openSUSE Leap 15.3 is installed
  • AND Package Information
  • freerdp-2.1.2-bp153.1.35 is installed
  • AND freerdp is signed with openSUSE key
  • OR
  • libfreerdp2-2.1.2-bp153.1.35 is installed
  • AND libfreerdp2 is signed with openSUSE key
  • OR
  • libwinpr2-2.1.2-bp153.1.35 is installed
  • AND libwinpr2 is signed with openSUSE key
    • Definition Synopsis
  • openSUSE Leap 15.4 is installed
  • AND Package Information
  • freerdp-2.4.0-150400.1.12 is installed
  • AND freerdp is signed with openSUSE key
  • OR
  • libfreerdp2-2.4.0-150400.1.12 is installed
  • AND libfreerdp2 is signed with openSUSE key
  • OR
  • libwinpr2-2.4.0-150400.1.12 is installed
  • AND libwinpr2 is signed with openSUSE key
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 15 SP4 is installed
  • OR SUSE Linux Enterprise Server 15 SP4 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP4 is installed
  • OR SUSE Linux Enterprise Workstation Extension 15 SP4 is installed
  • AND Package Information
  • freerdp-2.4.0-150400.1.12 is installed
  • OR freerdp-devel-2.4.0-150400.1.12 is installed
  • OR freerdp-proxy-2.4.0-150400.1.12 is installed
  • OR libfreerdp2-2.4.0-150400.1.12 is installed
  • OR libwinpr2-2.4.0-150400.1.12 is installed
  • OR winpr2-devel-2.4.0-150400.1.12 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 12 SP5 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed
  • OR SUSE Linux Enterprise Software Development Kit 12 SP5 is installed
  • AND
  • freerdp-devel-2.1.2-12.20.1 is installed
  • OR libfreerdp2-2.1.2-12.20.1 is installed
  • OR libwinpr2-2.1.2-12.20.1 is installed
  • OR winpr2-devel-2.1.2-12.20.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Desktop 12 SP5 is installed
  • OR SUSE Linux Enterprise Server 12 SP5 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed
  • OR SUSE Linux Enterprise Workstation Extension 12 SP5 is installed
  • AND
  • freerdp-2.1.2-12.20.1 is installed
  • OR freerdp-proxy-2.1.2-12.20.1 is installed
  • OR freerdp-server-2.1.2-12.20.1 is installed
  • OR libfreerdp2-2.1.2-12.20.1 is installed
  • OR libwinpr2-2.1.2-12.20.1 is installed
  • OR vinagre-3.20.2-16.3.3 is installed
  • OR vinagre-lang-3.20.2-16.3.3 is installed
    • BACK