---

CVE-2020-4032 - log back

CVE-2020-4032 edited at 28 Jun 2020 15:55:11
Type	- Unknown + Information disclosure
Description	- An integer casting vulnerability has been found in FreeRDP before 2.1.2, in update_recv_secondary_order(), on clients with +glyph-cache or /relax-order-checks options enabled. + An integer casting vulnerability leading to an out-of-bounds read has been found in FreeRDP before 2.1.2, in update_recv_secondary_order(), on clients with +glyph-cache or /relax-order-checks options enabled.
References	https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-3898-mc89-x2vc + https://github.com/FreeRDP/FreeRDP/commit/e7bffa64ef5ed70bac94f823e2b95262642f5296

CVE-2020-4032 edited at 28 Jun 2020 15:41:08
Severity	- Unknown + Low
Remote	- Unknown + Remote
Description	+ An integer casting vulnerability has been found in FreeRDP before 2.1.2, in update_recv_secondary_order(), on clients with +glyph-cache or /relax-order-checks options enabled.
References	+ https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-3898-mc89-x2vc
Notes

CVE-2020-4032 created at 23 Jun 2020 12:41:29