-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Mon, 19 Jan 2026 22:46:38 +0300
Source: freerdp3
Architecture: source
Version: 3.21.0+dfsg-1
Distribution: unstable
Urgency: medium
Maintainer: Debian Remote Maintainers <debian-remote@lists.debian.org>
Changed-By: Michael Tokarev <mjt@tls.msk.ru>
Changes:
freerdp3 (3.21.0+dfsg-1) unstable; urgency=medium
.
* new upstream release, with multiple security fixes for the following
client-side vulnerabilities (medium):
CVE-2026-23530: Heap buffer overflow in planar_decompress_plane_rle
https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-r4hv-852m-fq7p
CVE-2026-23531: Heap buffer overflow in clear_decompress
https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-xj5h-9cr5-23c5
CVE-2026-23532: Heap buffer overflow in gdi_SurfaceToSurface
https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-fq8c-87hj-7gvr
CVE-2026-23533: Heap buffer overflow in clear_decompress_residual_data
https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-32q9-m5qr-9j2v
CVE-2026-23534: Heap buffer overflow in clear_decompress_bands_data
https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-3frr-mp8w-4599
CVE-2026-23732: Heap buffer overflow in Glyph_Alloc
https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-7qxp-j2fj-c3pp
CVE-2026-23883: Heap use after free in update_pointer_new
https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-qcrr-85qx-4p6x
CVE-2026-23884: Heap use after free in gdi_set_bounds
https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-cfgj-vc84-f3pp
* d/libfreerdp3-3.symbols: add 3 new symbols
Checksums-Sha1:
411b1653e78b2eda269fdef2910c9ea815c01fa5 4179 freerdp3_3.21.0+dfsg-1.dsc
2fcffc44b7859ca7371134ae8e3371943e8499cf 5089672 freerdp3_3.21.0+dfsg.orig.tar.xz
1da449e67e131d7eed012a292ddabcec4aa828d7 50644 freerdp3_3.21.0+dfsg-1.debian.tar.xz
d4f2dd305e98b27d4270fa3b25ffc1b2877327f9 10573 freerdp3_3.21.0+dfsg-1_source.buildinfo
Checksums-Sha256:
e7d2b2baedb68bd118801ee5566c79c3554d5cfbaffcd9ecb113d4f5a438c54c 4179 freerdp3_3.21.0+dfsg-1.dsc
a492f35304ab24b8eb08ce4ecfe1b537e1191b237e57db27012e3c0f8d2933ee 5089672 freerdp3_3.21.0+dfsg.orig.tar.xz
c0b8b6e22d9d480c78e91e548cad14cc66576acd26a35c0fb664e92f80df5789 50644 freerdp3_3.21.0+dfsg-1.debian.tar.xz
c7a9f5655b465a6c45024f3b2b6de239b1759b75bd1570cc1a3f7035cd9c1881 10573 freerdp3_3.21.0+dfsg-1_source.buildinfo
Files:
ecbc4648e9807676131f3af0703cd6c0 4179 x11 optional freerdp3_3.21.0+dfsg-1.dsc
d7a52b1b605cd8e03a971b1ecbfa8f5b 5089672 x11 optional freerdp3_3.21.0+dfsg.orig.tar.xz
a0ebaf8ed9ec146cc430828aeb43ecf3 50644 x11 optional freerdp3_3.21.0+dfsg-1.debian.tar.xz
911da3ee8b57859219e1f8139e21eb54 10573 x11 optional freerdp3_3.21.0+dfsg-1_source.buildinfo
-----BEGIN PGP SIGNATURE-----
wsG7BAEBCgBvBYJpbotDCRCCqkokOx6UeEcUAAAAAAAeACBzYWx0QG5vdGF0aW9u
cy5zZXF1b2lhLXBncC5vcmdFpodNmf778wXAUnWZbXhsu+etErCXgQhlVvV8266Z
nBYhBGSqKrUx1WkDNmv++YKqSiQ7HpR4AADIQBAAyNGkDaw4N6MPH+KxgBZ/8VtR
b0of2biIX9mGeNKBw4Vs4XGIvbB0jPfHco9bbReX1B1HRDL7x1owGOcxUYMercPV
PbsIUyK9h9RU7Efh1MGIxrhV/pNVfzJCnqauaiAl1bT65i6k6f5usKAsIaIEXABv
kYSgBYrsXP6K+pFjFyrgt4SRdXRaKGDslVYk4dbTC/NpjEAyVmhDWjMFXC0AGxXW
UVLN1d8//M0ej4C8frBGvnclzvsrZ8LTrIS5B4Vja9KWqpk7CzCcJe8Av/kcw/4f
1O1b7jMbUcaFy/iA8IJgCoKmEl/8uMxO1i8OMn99vKbKnNocm8c22cMzW/tbUQAr
tYyntP/PO9cQHixXJzSzh3sSxb7IAd0f6z7vY/aBrqBDwAxBtExk26PlpQi0BTJ/
1fXkr16pkobf7OdriAvQVECTy8SpmfMmOVcBoswJYWb3ayHTBtS7tKgmp2VUPSaY
Px5cBLVK2lqhE1NrTCvfAcEt+poqgn5Cq62dtyRVHakKTv8Z6f1lwgye1HGoECbF
3tw6nlaZ3up/Ky01duZgbSZWLZjXdGZlgpKq6hYhCIUmRdxb5Y3VGSXv0wtQF3OF
LdoEBFyNOMq8tgDctYdmP1B1RSooaUXVzg8NaGRFqQGQz6383yGGlph1g7MYDfiE
v6/q4Hn30cYN8Z9/DWk=
=yx+h
-----END PGP SIGNATURE-----
