CVE-2020-11044

LOW

FreeRDP >1.2 <2.0.0 - Use After Free

Title source: llm

Description

In FreeRDP greater than 1.2 and before 2.0.0, a double free in update_read_cache_bitmap_v3_order crashes the client application if corrupted data from a manipulated server is parsed. This has been patched in 2.0.0.

References (5)

[Patch, Third Party Advisory] https://github.com/FreeRDP/FreeRDP/commit/67c2aa52b2ae0341d469071d1bc8aab91f8d2ed8

View Patch ZIP pw:eip

[Exploit, Third Party Advisory] https://github.com/FreeRDP/FreeRDP/issues/6013

[Third Party Advisory] https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-cgqh-p732-6x2w

[Mailing List, Third Party Advisory] https://lists.debian.org/debian-lts-announce/2023/10/msg00008.html

[Third Party Advisory] https://usn.ubuntu.com/4379-1/

Scores

CVSS v3 2.2

EPSS 0.0012

EPSS Percentile 31.4%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:L

Classification

CWE

CWE-415 CWE-672

Status published

Affected Products (5)

freerdp/freerdp < 2.0.0

canonical/ubuntu_linux

debian/debian_linux

Timeline

Published May 07, 2020

Tracked Since Feb 18, 2026