CVE-2014-0250
high
CVSS v3
—
CVSS v2
7.5
VIR risk
7.5
Description
Multiple integer overflows in client/X11/xf_graphics.c in FreeRDP allow remote attackers to have an unspecified impact via the width and height to the (1) xf_Pointer_New or (2) xf_Bitmap_Decompress function, which causes an incorrect amount of memory to be allocated.
Predictions
Exploit likelihood
20%
Patch ETA
—
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
Vendor advisory: secalert@redhat.com — https://github.com/FreeRDP/FreeRDP/issues/1871
Vendor advisory: secalert@redhat.com — https://bugzilla.redhat.com/show_bug.cgi?id=998934
Vendor advisory: suse — https://www.suse.com/security/cve/CVE-2014-0250.html
OS impact
| OS | Version | Status | Fixed in |
|---|---|---|---|
| sles | affected | | |
| suse | 13.1 | affected | |
| suse | 12.3 | affected | |
References
- https://www.suse.com/security/cve/CVE-2014-0250.html
- http://advisories.mageia.org/MGASA-2014-0287.html
- http://lists.opensuse.org/opensuse-updates/2014-07/msg00008.html
- http://seclists.org/oss-sec/2014/q2/365
- http://security.gentoo.org/glsa/glsa-201412-18.xml
- http://www.mandriva.com/security/advisories?name=MDVSA-2015:171
- http://www.securityfocus.com/bid/67670
- https://bugzilla.redhat.com/show_bug.cgi?id=998934
- https://github.com/FreeRDP/FreeRDP/issues/1871
- https://github.com/FreeRDP/FreeRDP/pull/1874
CWEs
CWE-189
Verify integrity in audit chain (admin only). AS-IS.