Information on source package xrdp

Available versions

Release	Version
bullseye	0.9.21.1-1~deb11u1
bookworm	0.9.21.1-1
trixie	0.10.1-3
sid	0.10.1-3

Open issues

Bug	bullseye	bookworm	trixie	sid	Description
CVE-2024-39917	vulnerable (no DSA)	vulnerable (no DSA)	fixed	fixed	xrdp is an open source RDP server. xrdp versions prior to 0.10.0 have ...
CVE-2023-42822	vulnerable (no DSA)	vulnerable (no DSA)	fixed	fixed	xrdp is an open source remote desktop protocol server. Access to the f ...
CVE-2023-40184	vulnerable (no DSA)	vulnerable (no DSA)	fixed	fixed	xrdp is an open source remote desktop protocol (RDP) server. In versio ...

Resolved issues

Bug	Description
CVE-2022-23613	xrdp is an open source remote desktop protocol (RDP) server. In affect ...
CVE-2022-23493	xrdp is an open source project which provides a graphical login to rem ...
CVE-2022-23484	xrdp is an open source project which provides a graphical login to rem ...
CVE-2022-23483	xrdp is an open source project which provides a graphical login to rem ...
CVE-2022-23482	xrdp is an open source project which provides a graphical login to rem ...
CVE-2022-23481	xrdp is an open source project which provides a graphical login to rem ...
CVE-2022-23480	xrdp is an open source project which provides a graphical login to rem ...
CVE-2022-23479	xrdp is an open source project which provides a graphical login to rem ...
CVE-2022-23478	xrdp is an open source project which provides a graphical login to rem ...
CVE-2022-23477	xrdp is an open source project which provides a graphical login to rem ...
CVE-2022-23468	xrdp is an open source project which provides a graphical login to rem ...
CVE-2021-36158	In the xrdp package (in branches through 3.14) for Alpine Linux, RDP s ...
CVE-2020-4044	The xrdp-sesman service before version 0.9.13.1 can be crashed by conn ...
CVE-2017-16927	The scp_v0s_accept function in sesman/libscp/libscp_v0.c in the sessio ...
CVE-2017-6967	xrdp 0.9.1 calls the PAM function auth_start_session() in an incorrect ...
CVE-2013-1430	An issue was discovered in xrdp before 0.9.1. When successfully loggin ...
CVE-2008-5904	The rdp_rdp_process_color_pointer_pdu function in rdp/rdp_rdp.c in xrd ...
CVE-2008-5903	Array index error in the xrdp_bitmap_def_proc function in xrdp/funcs.c ...
CVE-2008-5902	Buffer overflow in the xrdp_bitmap_invalidate function in xrdp/xrdp_bi ...

Security announcements

DSA / DLA	Description
DSA-5502-1	xrdp - security update
DLA-3375-1	xrdp - security update
DLA-3370-1	xrdp - security update
DLA-2319-1	xrdp - security update
DSA-4737-1	xrdp - security update
DLA-1203-2	xrdp - regression update
DLA-1203-1	xrdp - security update
DLA-872-1	xrdp - security update