-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Wed, 14 Jan 2026 16:36:18 +0300
Source: freerdp3
Architecture: source
Version: 3.20.2+dfsg-1
Distribution: unstable
Urgency: medium
Maintainer: Debian Remote Maintainers <debian-remote@lists.debian.org>
Changed-By: Michael Tokarev <mjt@tls.msk.ru>
Changes:
freerdp3 (3.20.2+dfsg-1) unstable; urgency=medium
.
* new upstream release, with multiple security fixes for:
CVE-2026-22851: RDPGFX ResetGraphics race leads to use after free
in SDL client (sdl->primary)
https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-8g87-6pvc-wh99
CVE-2026-22852: Heap buffer overflow in audin_process_formats
https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-9chc-g79v-4qq4
CVE-2026-22853: Heap-buffer-overflow in ndr_read_uint8Array
https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-47v9-p4gp-w5ch
CVE-2026-22854: Heap buffer overflow in drive_process_irp_read
https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-47vj-g3c3-3rmf
CVE-2026-22855: Heap buffer overflow in smartcard_unpack_set_attrib_call
https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-rwp3-g84r-6mx9
CVE-2026-22856: Heap use after free in create_irp_thread
https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-w842-c386-fxhv
CVE-2026-22857: Heap use after free in irp_thread_func
https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-4gxq-jhq6-4cr8
CVE-2026-22858 Global buffer overflow in crypto_base64_decode
https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-qmqf-m84q-x896
CVE-2026-22859: Heap buffer overflow in urb_select_configuration
https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-56f5-76qv-2r36
Checksums-Sha1:
b1b406abe4710bb64a74f623dcb467fd42941721 4179 freerdp3_3.20.2+dfsg-1.dsc
599c31c24c85ced779c97aceedf456c127fd406f 5086068 freerdp3_3.20.2+dfsg.orig.tar.xz
88bc5e80f1afeb62cafb8200d61b091ea49d034c 50360 freerdp3_3.20.2+dfsg-1.debian.tar.xz
9c29c2409ef73674042a4a499f51f8a8b608a58c 10573 freerdp3_3.20.2+dfsg-1_source.buildinfo
Checksums-Sha256:
598f369f8aede3e1f63213698979153f11a914e5f7a4d96b9489d2d77887dbec 4179 freerdp3_3.20.2+dfsg-1.dsc
58a61ccd2b46a9982c2e58c1f93c7a4e83c08903d0618de1e3d77fe870d38c4d 5086068 freerdp3_3.20.2+dfsg.orig.tar.xz
327253e228a36a0e21772aa959f47040180b27ac2a5042e881c44a9708700794 50360 freerdp3_3.20.2+dfsg-1.debian.tar.xz
2c97aa2830725a5d3fb73703ee3b7ad618cb29d52164c52e307a9fff9f0e864a 10573 freerdp3_3.20.2+dfsg-1_source.buildinfo
Files:
b3c77383ec8339cd6c7a24a9897ce82f 4179 x11 optional freerdp3_3.20.2+dfsg-1.dsc
8380925b2c403ff10bd6e44012de55b8 5086068 x11 optional freerdp3_3.20.2+dfsg.orig.tar.xz
029132996d69f09e4849280081185680 50360 x11 optional freerdp3_3.20.2+dfsg-1.debian.tar.xz
fc82047b0b952a77aaa5307a8aca39fe 10573 x11 optional freerdp3_3.20.2+dfsg-1_source.buildinfo
-----BEGIN PGP SIGNATURE-----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=JfnS
-----END PGP SIGNATURE-----
