ELSA-2026-16019

ULN >
Oracle Linux Errata repository >
ELSA-2026-16019

ELSA-2026-16019 - freerdp security update

Type:	SECURITY
Impact:	MODERATE
Release Date:	2026-05-11

Description

[2:2.11.7-9]
- Lock appWindow to fix use-after-free in RAIL mode (CVE-2026-25952)
Resolves: RHEL-159850

[2:2.11.7-8]
- Fix double free in xf_rail_window_common cleanup (CVE-2026-26986)
- Fix growth of preallocated buffers (CVE-2026-27951)
- Fix heap-buffer-overflow in bitmap_cache_put (CVE-2026-29775)
- Add DSP format checks (CVE-2026-31884)
- Fix DSP array bounds checks (CVE-2026-31883)
- Fix DSP array bounds checks (CVE-2026-31885)
- Update CLEAR_GLYPH_ENTRY::count after alloc (CVE-2026-33985)
Resolves: RHEL-159806, RHEL-155468, RHEL-161037, RHEL-161472
Resolves: RHEL-161508, RHEL-161075, RHEL-167794

Related CVEs

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 8 (aarch64)	freerdp-2.11.7-9.el8_10.src.rpm	fe32891be4481567b805686262c55959ec90fd83646e491093c6510cd4d79393	-	ol8_aarch64_appstream
	freerdp-2.11.7-9.el8_10.src.rpm	fe32891be4481567b805686262c55959ec90fd83646e491093c6510cd4d79393	-	ol8_aarch64_codeready_builder
	freerdp-2.11.7-9.el8_10.aarch64.rpm	1e36cebc238698da58b7e8d2c9e4b6c11a96996acbd1f98171c14e228713b370	-	ol8_aarch64_appstream
	freerdp-devel-2.11.7-9.el8_10.aarch64.rpm	dee19a032a937a0ebda667163b03ae9589d0dd6dc26b2c3c66d889062b285bd9	-	ol8_aarch64_codeready_builder
	freerdp-libs-2.11.7-9.el8_10.aarch64.rpm	12d718dc76d867c717e259483bfcbb4296fd3719c9cbbf15614bab248f3904a2	-	ol8_aarch64_appstream
	libwinpr-2.11.7-9.el8_10.aarch64.rpm	1eed690037aebb2a16d1ce697164ecdeb6614effc43eaa946b87714bc120599d	-	ol8_aarch64_appstream
	libwinpr-devel-2.11.7-9.el8_10.aarch64.rpm	436d63d8deaa3798af168bf721702308314dcbbcfdec1a4de864d039e71eae49	-	ol8_aarch64_appstream

Oracle Linux 8 (x86_64)	freerdp-2.11.7-9.el8_10.src.rpm	fe32891be4481567b805686262c55959ec90fd83646e491093c6510cd4d79393	-	ol8_x86_64_appstream
	freerdp-2.11.7-9.el8_10.src.rpm	fe32891be4481567b805686262c55959ec90fd83646e491093c6510cd4d79393	-	ol8_x86_64_codeready_builder
	freerdp-2.11.7-9.el8_10.x86_64.rpm	92ec90ed4f1efcc30be53ae01f498bb47c5a0a55d3496ad5dd156f51920f9daf	-	ol8_x86_64_appstream
	freerdp-devel-2.11.7-9.el8_10.i686.rpm	d3fbbb154a276d2754f1a5cf2154a5ddd60ab625d6c071559a224a6fae690fb9	-	ol8_x86_64_codeready_builder
	freerdp-devel-2.11.7-9.el8_10.x86_64.rpm	ff7ba6b9e416ea28df787850dc7e7b4e4d25233a50b6f859f5b0e324945aac7a	-	ol8_x86_64_codeready_builder
	freerdp-libs-2.11.7-9.el8_10.i686.rpm	ba5c8e3b07aa445465152f3ed09590b32b91922e18793cb0afc81ff765906fb2	-	ol8_x86_64_appstream
	freerdp-libs-2.11.7-9.el8_10.x86_64.rpm	3f117ccf2f09ff8517030ce5d064161a0f3af9770c6ef6171ce692435b83d1ac	-	ol8_x86_64_appstream
	libwinpr-2.11.7-9.el8_10.i686.rpm	acfa538b851641e928561192472547d9c6ef5e867ccda965551d3665575cfed1	-	ol8_x86_64_appstream
	libwinpr-2.11.7-9.el8_10.x86_64.rpm	cc690f3217bff50b8740254c8a5cd7b3bbb41d6e60641cf2802c9ee3d75f1101	-	ol8_x86_64_appstream
	libwinpr-devel-2.11.7-9.el8_10.i686.rpm	6624b532c60c24dc3e8e27a604935dff9ea02622b7821ad9df84c76bf43f8376	-	ol8_x86_64_appstream
	libwinpr-devel-2.11.7-9.el8_10.x86_64.rpm	3ef18ec1ac55964df58a1f6e4a80180e53c14427085bea2359ebb16b3018a3b5	-	ol8_x86_64_appstream

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691