CVE-2020-9497

Priority
Description
Apache Guacamole 1.1.0 and older do not properly validate datareceived from
RDP servers via static virtual channels. If a userconnects to a malicious
or compromised RDP server, specially-craftedPDUs could result in disclosure
of information within the memory ofthe guacd process handling the
connection.
Notes
Package
Upstream:needs-triage
Ubuntu 18.04 LTS:needs-triage
Ubuntu 20.04 LTS:DNE
Ubuntu 21.10:DNE
Ubuntu 22.04 LTS:DNE
Ubuntu 14.04 ESM:DNE
Patches:
More Information

Updated: 2022-04-25 00:51:16 UTC (commit ecc1009cb19540b950de59270950018900f37f15)