1670413 – (CVE-2018-20174) CVE-2018-20174 rdesktop: Information leak in ui_clip_handle_data

Bug 1670413 (CVE-2018-20174) - CVE-2018-20174 rdesktop: Information leak in ui_clip_handle_data

Summary: CVE-2018-20174 rdesktop: Information leak in ui_clip_handle_data

Keywords:
Status:	CLOSED WONTFIX
Alias:	CVE-2018-20174
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Red Hat Product Security
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:	1670427
Blocks:	1667054
TreeView+	depends on / blocked

Reported:	2019-01-29 13:54 UTC by Pedro Sampaio
Modified:	2019-09-29 15:06 UTC (History)
CC List:	1 user (show)
Fixed In Version:	rdesktop 1.8.4
Doc Type:	If docs needed, set a value
Doc Text:
Clone Of:
Environment:
Last Closed:	2019-02-19 04:13:10 UTC
Embargoed:

Attachments	(Terms of Use)

Description Pedro Sampaio 2019-01-29 13:54:01 UTC

A flaw was found in rdesktop before 1.8.4. A issue in ui_clip_handle_data function may lead to unintentional exposure of data.

Upstream patch:

https://github.com/rdesktop/rdesktop/commit/766ebcf6f23ccfe8323ac10242ae6e127d4505d2
https://github.com/rdesktop/rdesktop/releases/tag/v1.8.4

Comment 1 Pedro Sampaio 2019-01-29 14:04:03 UTC

Created rdesktop tracking bugs for this issue:

Affects: fedora-all [bug 1670427]

Comment 2 Huzaifa S. Sidhpurwala 2019-02-19 04:13:10 UTC

Note:

You need to connect to a malicious or a MITM RDP server in order to trigger this flaw. The malicious RDP server can cause information leak on the client i.e. it could retrieve a small portion of the client memory space.

Note You need to log in before you can comment on or make changes to this bug.