-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Wed, 14 Jan 2026 16:36:18 +0300 Source: freerdp3 Architecture: source Version: 3.20.2+dfsg-1 Distribution: unstable Urgency: medium Maintainer: Debian Remote Maintainers <[email protected]> Changed-By: Michael Tokarev <[email protected]> Changes: freerdp3 (3.20.2+dfsg-1) unstable; urgency=medium . * new upstream release, with multiple security fixes for: CVE-2026-22851: RDPGFX ResetGraphics race leads to use after free in SDL client (sdl->primary) https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-8g87-6pvc-wh99 CVE-2026-22852: Heap buffer overflow in audin_process_formats https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-9chc-g79v-4qq4 CVE-2026-22853: Heap-buffer-overflow in ndr_read_uint8Array https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-47v9-p4gp-w5ch CVE-2026-22854: Heap buffer overflow in drive_process_irp_read https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-47vj-g3c3-3rmf CVE-2026-22855: Heap buffer overflow in smartcard_unpack_set_attrib_call https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-rwp3-g84r-6mx9 CVE-2026-22856: Heap use after free in create_irp_thread https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-w842-c386-fxhv CVE-2026-22857: Heap use after free in irp_thread_func https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-4gxq-jhq6-4cr8 CVE-2026-22858 Global buffer overflow in crypto_base64_decode https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-qmqf-m84q-x896 CVE-2026-22859: Heap buffer overflow in urb_select_configuration https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-56f5-76qv-2r36 Checksums-Sha1: b1b406abe4710bb64a74f623dcb467fd42941721 4179 freerdp3_3.20.2+dfsg-1.dsc 599c31c24c85ced779c97aceedf456c127fd406f 5086068 freerdp3_3.20.2+dfsg.orig.tar.xz 88bc5e80f1afeb62cafb8200d61b091ea49d034c 50360 freerdp3_3.20.2+dfsg-1.debian.tar.xz 9c29c2409ef73674042a4a499f51f8a8b608a58c 10573 freerdp3_3.20.2+dfsg-1_source.buildinfo Checksums-Sha256: 598f369f8aede3e1f63213698979153f11a914e5f7a4d96b9489d2d77887dbec 4179 freerdp3_3.20.2+dfsg-1.dsc 58a61ccd2b46a9982c2e58c1f93c7a4e83c08903d0618de1e3d77fe870d38c4d 5086068 freerdp3_3.20.2+dfsg.orig.tar.xz 327253e228a36a0e21772aa959f47040180b27ac2a5042e881c44a9708700794 50360 freerdp3_3.20.2+dfsg-1.debian.tar.xz 2c97aa2830725a5d3fb73703ee3b7ad618cb29d52164c52e307a9fff9f0e864a 10573 freerdp3_3.20.2+dfsg-1_source.buildinfo Files: b3c77383ec8339cd6c7a24a9897ce82f 4179 x11 optional freerdp3_3.20.2+dfsg-1.dsc 8380925b2c403ff10bd6e44012de55b8 5086068 x11 optional freerdp3_3.20.2+dfsg.orig.tar.xz 029132996d69f09e4849280081185680 50360 x11 optional freerdp3_3.20.2+dfsg-1.debian.tar.xz fc82047b0b952a77aaa5307a8aca39fe 10573 x11 optional freerdp3_3.20.2+dfsg-1_source.buildinfo
-----BEGIN PGP SIGNATURE----- wsG7BAEBCgBvBYJpZ5vuCRCCqkokOx6UeEcUAAAAAAAeACBzYWx0QG5vdGF0aW9u cy5zZXF1b2lhLXBncC5vcmewY8HAZ5TuyycQGffaEOb2H4sR2zQgTh7BVAoETkzm 9BYhBGSqKrUx1WkDNmv++YKqSiQ7HpR4AABVDg/+LZPl41b52gJeUt4VjTvzO71D zCC3TEzMH3SEtHrcKaOuzcTGizCvz75upTZ650fRmzwE7ZrXc0hp6lpL4h8GZxmz DEU7ce9WL4UwLW19mOa0CXDvGND9wn62xknsPS9P9UKqh7WWCEc4YAGMhObAAfcY BQnPvMU1eylWtyT0PK4PMnJrLwpFAONNftrWHVZClu/t7UnLrNgasJ+W5wa9ZgrH NK4Hut1KClCrVSHvL92ReI44QnlTp8l73iYe4uYF/qvxxYYwjnQSMvqxzJmet9D4 9XD9JxvV+xxYShyM5HcmBYE7YTpmcQbM9K7gsslKnbvOPSjt7b/FMQ4CJNbAgdc5 W+5EixcQJ37fLz9DE/MsOoKzxW/7lGjYyLYv+m7Z2nKPARdYn/LAMHINuCGtazRQ 9Uc106LZ6YV+ddRZ/NJ8BeDGlp1RDIRbx1iWz8zh3BpezzgfItMluK2QpCFYaRrf Ykyo1OCbzf2ReFYJ/6FWEnJV6jH3KYSgRjzQgl9cXxFa72ZsCJGxvz6UtGV0BuiD VP/tksRFFKtSoqgCVjrRYQzI6+WYwvGE2T1dPUJgHw5D3F4de4Cbzf2msxpB5whZ xXZc7Bsdh+eVP597rebKQlXLHAF0RV2+aItiyF3gn4wG84oBUmKHm7SheHwkWs4s hd/oh3uSocN6pXljwhU= =JfnS -----END PGP SIGNATURE-----
pgpooAEjW6FkM.pgp
Description: PGP signature
