All FreeRDP based clients when using the `/video` command line switch might read uninitialized data, decode it as audio/video and display the result. Reference: https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-6cf9-3328-qrvh
Created freerdp tracking bugs for this issue: Affects: fedora-all [bug 2134718] Created freerdp1.2 tracking bugs for this issue: Affects: epel-7 [bug 2134719]
Reference: https://github.com/FreeRDP/FreeRDP/releases/tag/2.8.1
This issue has been addressed in the following products: Red Hat Enterprise Linux 9 Via RHSA-2023:2326 https://access.redhat.com/errata/RHSA-2023:2326
This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2023:2851 https://access.redhat.com/errata/RHSA-2023:2851
This bug is now closed. Further updates for individual products will be reflected on the CVE page(s): https://access.redhat.com/security/cve/cve-2022-39283