CVE-2017-2837 (retired)

Priority
Description
An exploitable denial of service vulnerability exists within the handling
of security data in FreeRDP 2.0.0-beta1+android11. A specially crafted
challenge packet can cause the program termination leading to a denial of
service condition. An attacker can compromise the server or use man in the
middle to trigger this vulnerability.
Assigned-to
mdeslaur
Package
Upstream:needed
Ubuntu 12.04 ESM (Precise Pangolin):DNE
Ubuntu 14.04 LTS (Trusty Tahr):released (1.0.2-2ubuntu1.1)
Ubuntu 16.04 LTS (Xenial Xerus):released (1.1.0~git20140921.1.440916e+dfsg1-5ubuntu1.2)
Patches:
Upstream:https://github.com/FreeRDP/FreeRDP/commit/03ab68318966c3a22935a02838daaea7b7fbe96c (1.1)
More Information

Updated: 2019-03-26 12:25:35 UTC (commit ccdecfcf0fead22bd291e5f4ea745a46872dcb15)