CVE-2020-9498

Priority
Description
Apache Guacamole 1.1.0 and older may mishandle pointers involved
inprocessing data received via RDP static virtual channels. If a
userconnects to a malicious or compromised RDP server, a series
ofspecially-crafted PDUs could result in memory corruption,
possiblyallowing arbitrary code to be executed with the privileges of
therunning guacd process.
Notes
Package
Upstream:needs-triage
Ubuntu 18.04 LTS:needs-triage
Ubuntu 20.04 LTS:DNE
Ubuntu 21.10:DNE
Ubuntu 22.04 LTS:DNE
Ubuntu 14.04 ESM:DNE
Patches:
More Information

Updated: 2022-04-25 00:51:16 UTC (commit ecc1009cb19540b950de59270950018900f37f15)