VDB

GCVE-110-MAGEIA-2020-338

GCVE-110-MAGEIA-2020-338
Advisory Published
Vulnetix · Advisory published August 18, 2020
Integer overflow due to missing input sanitation in rdpegfx channel. The input rectangles from the server are not checked against local surface coordinates and blindly accepted. A malicious server can send data that will crash the client later on (invalid length arguments to a memcpy) (CVE-2020-15103). The freerdp package has been updated to version 2.2.0, fixing this issue and other bugs.

Affected Products

VendorProductVersionsPlatforms
Mageiafreerdp0 (affected), 2.2.0-1.mga7 (unaffected)

Browse GCVE Records

73,834 records in the GCVE database · Updated July 19, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›