CVE-2014-0791

Priority
Low
Description
Integer overflow in the license_read_scope_list function in
libfreerdp/core/license.c in FreeRDP through 1.0.2 allows remote RDP
servers to cause a denial of service (application crash) or possibly have
unspecified other impact via a large ScopeCount value in a Scope List in a
Server License Request packet.
References
Bugs
Assigned-to
mdeslaur
Package
Upstream:needs-triage
Ubuntu 17.10 (Artful Aardvark):released (1.1.0~git20140921.1.440916e+dfsg1-10ubuntu2)
Ubuntu 12.04 ESM (Precise Pangolin):DNE (precise was needed)
Ubuntu 14.04 LTS (Trusty Tahr):released (1.0.2-2ubuntu1.1)
Ubuntu Core 15.04:DNE
Ubuntu 16.04 LTS (Xenial Xerus):released (1.1.0~git20140921.1.440916e+dfsg1-5ubuntu1.2)
Ubuntu 17.04 (Zesty Zapus):released (1.1.0~git20140921.1.440916e+dfsg1-10ubuntu1.1)
Patches:
Upstream:https://github.com/FreeRDP/FreeRDP/commit/f1d6afca6ae620f9855a33280bdc6f3ad9153be0
More Information

Updated: 2017-08-11 23:51:45 UTC (commit 13081)