Integer overflow due to missing input sanitation in rdpegfx channel. Reference: https://github.com/FreeRDP/FreeRDP/releases/tag/2.2.0
Created freerdp tracking bugs for this issue: Affects: epel-all [bug 1858911] Affects: fedora-all [bug 1858910]
Patch: https://github.com/FreeRDP/FreeRDP/commit/e08a23f93136f59a52651f66d064b8d4303872e1 https://github.com/FreeRDP/FreeRDP/commit/40393700642ad38437982e8a3afc34ff33ccf28e
External References: https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-4r38-6hq7-j3j9
This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2021:1849 https://access.redhat.com/errata/RHSA-2021:1849
This bug is now closed. Further updates for individual products will be reflected on the CVE page(s): https://access.redhat.com/security/cve/cve-2020-15103