CVE-2022-24882

NameCVE-2022-24882
DescriptionFreeRDP is a free implementation of the Remote Desktop Protocol (RDP). In versions prior to 2.7.0, NT LAN Manager (NTLM) authentication does not properly abort when someone provides and empty password value. This issue affects FreeRDP based RDP Server implementations. RDP clients are not affected. The vulnerability is patched in FreeRDP 2.7.0. There are currently no known workarounds.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
freerdp (PTS)jessie, jessie (lts)1.1.0~git20140921.1.440916e+dfsg1-13~deb8u3vulnerable
stretch (security)1.1.0~git20140921.1.440916e+dfsg1-13+deb9u4vulnerable
stretch (lts), stretch1.1.0~git20140921.1.440916e+dfsg1-13+deb9u6vulnerable
freerdp2 (PTS)buster (security), buster, buster (lts)2.3.0+dfsg1-2+deb10u4vulnerable
bullseye2.3.0+dfsg1-2+deb11u1vulnerable
bookworm2.10.0+dfsg1-1fixed
sid, trixie2.11.7+dfsg1-4fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
freerdpsourcejessie(unfixed)end-of-life
freerdpsource(unstable)(unfixed)
freerdp2source(unstable)2.7.0+dfsg1-1

Notes

[bullseye] - freerdp2 <no-dsa> (Minor issue)
[buster] - freerdp2 <no-dsa> (Minor issue)
https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-6x5p-gp49-3jhh
https://gitlab.gnome.org/GNOME/gnome-remote-desktop/-/issues/95
Pull request for stable 2.0 branch: https://github.com/FreeRDP/FreeRDP/pull/7750
[stretch] - freerdp <ignored> (Affects only downstream server implementations authenticating against SAM files)

Search for package or bug name: Reporting problems