FreeRDP prior to version 2.0.0-rc4 contains an Integer Overflow that leads to a Heap-Based Buffer Overflow in function gdi_Bitmap_Decompress() and results in a memory corruption. Upstream patch: https://github.com/FreeRDP/FreeRDP/commit/09b9d4f1994a674c4ec85b4947aa656eda1aed8a
Created freerdp tracking bugs for this issue: Affects: epel-6 [bug 1671370]
This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Via RHSA-2019:0697 https://access.redhat.com/errata/RHSA-2019:0697