Package Release Info

freerdp2-2.11.7-bp160.2.1

Update Info: Base Release
Available in Package Hub : 16.0

platforms

AArch64
ppc64le
s390x
x86-64

subpackages

freerdp2

freerdp2-devel

freerdp2-proxy

freerdp2-server

libfreerdp2-2

libwinpr2-2

winpr2-devel

Change Logs

* Wed Feb 18 2026 Michael Gorse <mgorse@suse.com>

- Add more CVE fixes:
  + freerdp-CVE-2026-24491.patch (CVE-2026-24491, bsc#1257981)
  + freerdp-CVE-2026-24675.patch (CVE-2026-24675, bsc#1257982)
  + freerdp-CVE-2026-24676.patch (CVE-2026-24676, bsc#1257983)
  + freerdp-CVE-2026-24679.patch (CVE-2026-24679, bsc#1257986)
  + freerdp-CVE-2026-24681.patch (CVE-2026-24681, bsc#1257988)
  + freerdp-CVE-2026-24682.patch (CVE-2026-24682, bsc#1257989)
  + freerdp-CVE-2026-24683.patch (CVE-2026-24683, bsc#1257990)
  + freerdp-CVE-2026-24684.patch (CVE-2026-24684, bsc#1257991)
  + freerdp-CVE-2026-24684-2.patch (CVE-2026-24684, bsc#1257991)

* Fri Feb 06 2026 Yifan Jiang <yfjiang@suse.com>

- Add patches to fix CVE issues:
  + freerdp-CVE-2026-22852.patch (CVE-2026-22852, bsc#1256718)
  + freerdp-CVE-2026-22854.patch (CVE-2026-22854, bsc#1256720)
  + freerdp-CVE-2026-22856.patch (CVE-2026-22856, bsc#1256722)
  + freerdp-CVE-2026-22859.patch (CVE-2026-22859, bsc#1256725)
  + freerdp-CVE-2026-23530.patch (CVE-2026-23530, bsc#1256940)
  + freerdp-CVE-2026-23531.patch (CVE-2026-23531, bsc#1256941)
  + freerdp-CVE-2026-23532.patch (CVE-2026-23532, bsc#1256942)
  + freerdp-CVE-2026-23534.patch (CVE-2026-23534, bsc#1256944)

* Fri Oct 24 2025 Yifan Jiang <yfjiang@suse.com>

- Update 0001-Fix-build-with-ffmpeg-7.patch: fix build issue in
  h264_ffmpeg.c.

* Sat Oct 05 2024 Christophe Marin <christophe@krop.fr>

- Add upstream fixes (picked from Debian) (boo#1231317)
  * 0001-info-Fix-incompatible-pointer-type.patch
  * 0002-redirection-Fix-incompatible-pointer-type.patch
  * 0003-redirection-Fix-incompatible-pointer-type.patch
  * 0004-X11-fix-pointer-integer-type-mismatch.patch
  * 0005-client-wayland-fix-const-correctness.patch
  * 0006-warnings-fix-Wincompatible-pointer-types.patch
  * 0007-server-proxy-deactivate-capture-module.patch
  * 0001-Fix-build-with-ffmpeg-7.patch

Version: 2.11.7-bp160.1.14

* Mon Jun 03 2024 Hans-Peter Jansen <hpj@urpla.net>

- Update to 2.11.7
  + Backported oss-fuzz fixes
- Update to 2.11.6
  + CVE:
  * CVE-2024-32041 [Low[ OutOfBound Read in
    zgfx_decompress_segment
  * CVE-2024-32039 [Moderate] Integer overflow & OutOfBound Write
    in clear_decompress_residual_data
  * CVE-2024-32040 [Low] integer underflow in nsc_rle_decode
  * CVE-2024-32458 [Low] OutOfBound Read in planar_skip_plane_rle
  * CVE-2024-32459 [Low] OutOfBound Read in ncrush_decompress
  * CVE-2024-32460 [Low] OutOfBound Read in
    interleaved_decompress
  + Noteworthy changes:
  * Backported #10077
- Remove these patches, applied upstream:
  + freerdp-CVE-2023-40574-to-2023-40576.patch
  + freerdp-CVE-2024-32658.patch
  + freerdp-CVE-2024-32659.patch
  + freerdp-CVE-2024-32660.patch

* Thu May 23 2024 Daike Yu <yu.daike@suse.com>

- Multiple CVE fixes
  + Add freerdp-CVE-2024-32659.patch (bsc#1223346, CVE-2024-32659)
  - out-of-bounds read if `((nWidth == 0) and (nHeight == 0))`
  + Add freerdp-CVE-2024-32660.patch (bsc#1223347, CVE-2024-32660)
  - client crash via invalid huge allocation size
  + Add freerdp-CVE-2024-32661.patch (bsc#1223348, CVE-2024-32661)
  - client NULL pointer dereference
  + Add freerdp-CVE-2024-32658.patch (bsc#1223353, CVE-2024-32658)
  - out-of-bounds read in Interleaved RLE Bitmap Codec in FreeRDP based clients

* Wed Apr 10 2024 Hans-Peter Jansen <hpj@urpla.net>

- Add xfreerdp binary/man builds back with new name: xfreerdp2

* Tue Apr 09 2024 Christophe Marin <christophe@krop.fr>

- Add patch to avoid unneeded dependencies when using winpr-devel:
  * 0001-Don-t-add-winpr-cli-tools-to-exported-CMake-targets.patch

* Tue Apr 02 2024 Joan Torres <joan.torres@suse.com>

- Update Source0 URL to make it valid with the actual Source0.

* Tue Mar 26 2024 Joan Torres <joan.torres@suse.com>

- Fix file conflict of wlog.7 with freerdp3

* Thu Mar 14 2024 Joan Torres <joan.torres@suse.com>

- Update to version 2.11.5:
  * Fix integer overflow in progressive decoder
  * Update OpenSSL API usage for compatiblility with newer versions (#9747)
  * Prevent NULL dereference for single thread decoder (#9712)

* Thu Mar 14 2024 Joan Torres <joan.torres@suse.com>

- Modify package names to freerdp2:
  * This allows to have a freerdp version 2 and freerdp version 3
    simultaneously installed

* Tue Feb 06 2024 Daike Yu <yu.daike@suse.com>

- Add freerdp-CVE-2023-40574-to-2023-40576.patch
  * Fix CVE-2023-40574 - bsc#1214869
    Out-Of-Bounds Write in general_YUV444ToRGB_8u_P3AC4R_BGRX
  * Fix CVE-2023-40575 - bsc#1214870
    Out-Of-Bounds Read in general_YUV444ToRGB_8u_P3AC4R_BGRX
  * Fix CVE-2023-40576 - bsc#1214871
    Out-Of-Bounds Read in RleDecompress

* Thu Nov 16 2023 Christophe Marin <christophe@krop.fr>

- Fix winpr-devel dependencies. WinePRTargets-*.cmake defines
  CMake targets for winpr-hash and winpr-makecert. They have to be
  present.