Oval Definition:	oval:org.opensuse.security:def:202223478
Revision Date: 2023-06-22 Version: 1 Title: CVE-2022-23478 Description: xrdp is an open source project which provides a graphical login to remote machines using Microsoft Remote Desktop Protocol (RDP). xrdp < v0.9.21 contain a Out of Bound Write in xrdp_mm_trans_process_drdynvc_channel_open() function. There are no known workarounds for this issue. Users are advised to upgrade. Family: unix Class: vulnerability Status: Reference(s): Mitre CVE-2022-23478 SUSE CVE-2022-23478 SUSE-SU-2023:0033-1 SUSE-SU-2023:0374-1 Platform(s): SUSE Linux Enterprise Desktop 15 SP5 SUSE Linux Enterprise High Performance Computing 15 SP5 SUSE Linux Enterprise Module for Basesystem 15 SP5 SUSE Linux Enterprise Server 15 SP5 SUSE Linux Enterprise Server for SAP Applications 15 SP5 Product(s): Definition Synopsis Release Information SUSE Linux Enterprise Desktop 15 SP5 is installed OR SUSE Linux Enterprise High Performance Computing 15 SP5 is installed OR SUSE Linux Enterprise Module for Basesystem 15 SP5 is installed OR SUSE Linux Enterprise Server 15 SP5 is installed OR SUSE Linux Enterprise Server for SAP Applications 15 SP5 is installed AND Package Information libpainter0-0.9.13.1-150200.4.18.1 is installed OR librfxencode0-0.9.13.1-150200.4.18.1 is installed OR xrdp-0.9.13.1-150200.4.18.1 is installed OR xrdp-devel-0.9.13.1-150200.4.18.1 is installed
BACK