FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

freerdp -- clients using the `/video` command line switch might read uninitialized data

Affected packages
freerdp < 2.8.1

Details

VuXML ID dd271de6-b444-11ed-9268-b42e991fc52e
Discovery 2022-10-13
Entry 2023-02-24

MITRE reports:

All FreeRDP based clients when using the `/video` command line switch might read uninitialized data, decode it as audio/video and display the result. FreeRDP based server implementations are not affected.

References

CVE Name CVE-2022-39283
URL https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-6cf9-3328-qrvh