CVE-2026-33986 in FreeRDPinformation

Résumé (Anglaise)

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, in yuv_ensure_buffer() in libfreerdp/codec/h264.c, h264->width and h264->height are updated before the reallocation loop. If any winpr_aligned_recalloc() call fails, the function returns FALSE but width/height are already inflated. This issue has been patched in version 3.24.2.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Responsable

GitHub_M

Réserver

24/03/2026

Divulgation

31/03/2026

Statut

Confirmé

Entrées

VulDB provides additional information and datapoints for this CVE:

ID	Vulnérabilité	CWE	Exp	Con	CVE
354277	FreeRDP h264.c yuv_ensure_buffer buffer overflow	122	Non défini	Correctif officiel	CVE-2026-33986

Description

CPE

CWE

CVSS

Exploits

Histoire

Diff

Relier

Renseignements sur les menaces

API JSON

API XML

API CSV

Sources

◂ PrécédentAperçuSuivant ▸

Do you need the next level of professionalism?

Upgrade your account now!