diff options
| author | Gyorgy Sarvari <skandigraun@gmail.com> | 2026-02-10 06:48:00 +0100 |
|---|---|---|
| committer | Khem Raj <raj.khem@gmail.com> | 2026-02-10 21:11:45 -0800 |
| commit | 0b61ca33555feb7db8fffa93e83d0b626c551e8c (patch) | |
| tree | 11a3c3a35845bf45d3b4fc9621ff4989b29f76c1 | |
| parent | d4c3fdca5f2c04b2bf3dd9f7f914918b45369762 (diff) | |
| download | meta-openembedded-0b61ca33555feb7db8fffa93e83d0b626c551e8c.tar.gz | |
freerdp: patch CVE-2026-22854
Details: https://nvd.nist.gov/vuln/detail/CVE-2026-22854
Backport the patch that is referenced by the relevant Github
advisory[1].
[1]: https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-47vj-g3c3-3rmf
Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
| -rw-r--r-- | meta-oe/recipes-support/freerdp/freerdp/CVE-2026-22854.patch | 29 | ||||
| -rw-r--r-- | meta-oe/recipes-support/freerdp/freerdp_2.11.7.bb | 1 |
2 files changed, 30 insertions, 0 deletions
diff --git a/meta-oe/recipes-support/freerdp/freerdp/CVE-2026-22854.patch b/meta-oe/recipes-support/freerdp/freerdp/CVE-2026-22854.patch new file mode 100644 index 0000000000..791e10ab25 --- /dev/null +++ b/meta-oe/recipes-support/freerdp/freerdp/CVE-2026-22854.patch | |||
| @@ -0,0 +1,29 @@ | |||
| 1 | From 94d3791abcdbc1e72827921906d5f9c14a2b0a78 Mon Sep 17 00:00:00 2001 | ||
| 2 | From: Gyorgy Sarvari <skandigraun@gmail.com> | ||
| 3 | Date: Mon, 12 Jan 2026 03:44:06 +0100 | ||
| 4 | Subject: [PATCH] fix constant type | ||
| 5 | |||
| 6 | From: akallabeth <akallabeth@posteo.net> | ||
| 7 | |||
| 8 | ensure constant is of 64bit integer type | ||
| 9 | |||
| 10 | CVE: CVE-2026-22854 | ||
| 11 | Upstream-Status: Backport [https://github.com/FreeRDP/FreeRDP/commit/3da319570c8a6be0a79b3306f1ed354c4a943259] | ||
| 12 | Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> | ||
| 13 | --- | ||
| 14 | channels/drive/client/drive_main.c | 2 +- | ||
| 15 | 1 file changed, 1 insertion(+), 1 deletion(-) | ||
| 16 | |||
| 17 | diff --git a/channels/drive/client/drive_main.c b/channels/drive/client/drive_main.c | ||
| 18 | index b6cf2ad32..5df7fbe97 100644 | ||
| 19 | --- a/channels/drive/client/drive_main.c | ||
| 20 | +++ b/channels/drive/client/drive_main.c | ||
| 21 | @@ -295,7 +295,7 @@ static UINT drive_process_irp_read(DRIVE_DEVICE* drive, IRP* irp) | ||
| 22 | Length = 0; | ||
| 23 | } | ||
| 24 | |||
| 25 | - if (!Stream_EnsureRemainingCapacity(irp->output, Length + 4)) | ||
| 26 | + if (!Stream_EnsureRemainingCapacity(irp->output, 4ull + Length)) | ||
| 27 | { | ||
| 28 | WLog_ERR(TAG, "Stream_EnsureRemainingCapacity failed!"); | ||
| 29 | return ERROR_INTERNAL_ERROR; | ||
diff --git a/meta-oe/recipes-support/freerdp/freerdp_2.11.7.bb b/meta-oe/recipes-support/freerdp/freerdp_2.11.7.bb index 225f49a94b..0bdf56938b 100644 --- a/meta-oe/recipes-support/freerdp/freerdp_2.11.7.bb +++ b/meta-oe/recipes-support/freerdp/freerdp_2.11.7.bb | |||
| @@ -24,6 +24,7 @@ SRC_URI = "git://github.com/FreeRDP/FreeRDP.git;branch=stable-2.0;protocol=https | |||
| 24 | file://0002-Do-not-install-tools-a-CMake-targets.patch \ | 24 | file://0002-Do-not-install-tools-a-CMake-targets.patch \ |
| 25 | file://0001-Fixed-compilation-warnings-in-ainput-channel.patch \ | 25 | file://0001-Fixed-compilation-warnings-in-ainput-channel.patch \ |
| 26 | file://CVE-2024-32661.patch \ | 26 | file://CVE-2024-32661.patch \ |
| 27 | file://CVE-2026-22854.patch \ | ||
| 27 | " | 28 | " |
| 28 | 29 | ||
| 29 | 30 | ||
