Oval Definition:oval:org.opensuse.security:def:202223482
Revision Date:2023-06-22Version:1
Title:CVE-2022-23482
Description:

xrdp is an open source project which provides a graphical login to remote machines using Microsoft Remote Desktop Protocol (RDP). xrdp < v0.9.21 contain a Out of Bound Read in xrdp_sec_process_mcs_data_CS_CORE() function. There are no known workarounds for this issue. Users are advised to upgrade.
Family:unixClass:vulnerability
Status:Reference(s):Mitre CVE-2022-23482
SUSE CVE-2022-23482
SUSE-SU-2023:0012-1
SUSE-SU-2023:0033-1
SUSE-SU-2023:0340-1
SUSE-SU-2023:0374-1
SUSE-SU-2023:0387-1
TID000021087
Platform(s):SUSE Linux Enterprise Desktop 15 SP5
SUSE Linux Enterprise High Performance Computing 15 SP5
SUSE Linux Enterprise Module for Basesystem 15 SP5
SUSE Linux Enterprise Server 15 SP5
SUSE Linux Enterprise Server for SAP Applications 15 SP5
Product(s):
Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 15 SP5 is installed
  • OR SUSE Linux Enterprise High Performance Computing 15 SP5 is installed
  • OR SUSE Linux Enterprise Module for Basesystem 15 SP5 is installed
  • OR SUSE Linux Enterprise Server 15 SP5 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP5 is installed
  • AND Package Information
  • libpainter0-0.9.13.1-150200.4.18.1 is installed
  • OR librfxencode0-0.9.13.1-150200.4.18.1 is installed
  • OR xrdp-0.9.13.1-150200.4.18.1 is installed
  • OR xrdp-devel-0.9.13.1-150200.4.18.1 is installed
    • BACK