-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Sun, 25 May 2025 15:16:34 +0530 Source: xrdp Binary: xrdp xrdp-dbgsym Architecture: armhf Version: 0.9.21.1-1+deb12u1 Distribution: bookworm Urgency: high Maintainer: arm Build Daemon (arm-conova-04) Changed-By: Abhijith PA Description: xrdp - Remote Desktop Protocol (RDP) server Closes: 1051061 1053284 1076769 Changes: xrdp (0.9.21.1-1+deb12u1) bookworm; urgency=high . * Non-maintainer upload * Fix CVE-2023-40184: Improper handling of session establishment errors allows bypassing OS-level session restrictions. The `auth_start_session` function can return non-zero. PAM error which may result in session restrictions such as max concurrent sessions per user by PAM (ex ./etc/security/limits.conf) to be bypassed (Closes: #1051061) * Fix CVE-2023-42822: Access to the font glyphs in xrdp_painter.c is not bounds-checked. (Closes: #1053284) * Fix CVE-2024-39917: vulnerability that allows attackers to make an infinite number of login attempts. (Closes: #1076769) Checksums-Sha1: e4b66917cee8a84716509245c245f5fb5d2f66aa 832184 xrdp-dbgsym_0.9.21.1-1+deb12u1_armhf.deb c51057e8049d60687520f16092ff2649dac98e69 7808 xrdp_0.9.21.1-1+deb12u1_armhf-buildd.buildinfo 13936a093e080b3031f05bf344cbfc10264c477d 439932 xrdp_0.9.21.1-1+deb12u1_armhf.deb Checksums-Sha256: 5f07c4b79e6c5f71ed60a31192d01c40f5d435ad1aecc15dab6a4a78fefaa917 832184 xrdp-dbgsym_0.9.21.1-1+deb12u1_armhf.deb 8a3a6abf4381fcecaec6c311d536cdfdb9c2967e7250a95942c72090178a6f29 7808 xrdp_0.9.21.1-1+deb12u1_armhf-buildd.buildinfo 0b038b06d68c6cafc1fd2b2cf9d7ef69660d921085a1bdbbcbfd314a5c82a578 439932 xrdp_0.9.21.1-1+deb12u1_armhf.deb Files: 14c3004cd6f0daec94f94bac605e1118 832184 debug optional xrdp-dbgsym_0.9.21.1-1+deb12u1_armhf.deb 403e95b28939b5b64d13bb62949415e1 7808 net optional xrdp_0.9.21.1-1+deb12u1_armhf-buildd.buildinfo 071a5b37f96f6b75437ab3c06802f88a 439932 net optional xrdp_0.9.21.1-1+deb12u1_armhf.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEvEwFZ4bqkVI+Rh6t+N4VxR6LZYEFAmg7erkACgkQ+N4VxR6L ZYER8A/9Htgrm80rr1BY8YMG4E5PBUXu5seUv2/IIseffVlc9tB+r9G+eETL+71h COxO0RsMurnYyqvDAG7/n15odwKmcpySl8GPMHVd/MWbsfLFc8O/xSWXyfpqdTXc Gj8UP/WKQxGYzynsVdRS4cxxNJ7aFncZx4mk54HjpmlWBJdMvsb6m6p8F/krVxie STpp76Z5890iMyyw58GYlCJm+jrorHYIk70C627IrnjUFLgIYFh2Xopp1rfBYAFP ui+GMZC2HBZlNX7yhZhyBAkHjij36chEmx0meFqJX+QUhzeVJeWNYnz4mmu9brHm KgUCI6D4zUQNiQAWDvEcqVpa5+/c4zn8gP3K+EaUnitZHrjSdsN+zK7zwY9ShBMq D4lEeIYzbQTZCJtNf4xeSuHv9sUsB7Ej9YT81JKZm4iX9cWScUjukIFjr5smmFA2 35RQuvJOERYAHCykxILsav/G3b1uBFxfGXaYN+ufkkkFSzy9Tl4yjHhvoffyiQgU E6oRCbt2V1xsm7VDh3dPaA5z3geQ9L6ik6/9Y7Kmn8F6px1m5GRnUsrRDzMI1D4j U7r4RSjUucLFY9bg3eOWjIbCbfZ5PrUpP//xEp6/sVGl45EA0gmvYDv2vF7+2XDi apL0QQzz1mm+E3e1s3ZrrXWx+c888x50WDJayYlGtacXaFSTDxc= =iHSQ -----END PGP SIGNATURE-----