ELSA-2026-16482

ULN >
Oracle Linux Errata repository >
ELSA-2026-16482

ELSA-2026-16482 - freerdp security update

Type:	SECURITY
Impact:	MODERATE
Release Date:	2026-05-12

Description

[2:2.11.7-1.7]
- Fix double free in xf_rail_window_common cleanup (CVE-2026-26986)
- Fix growth of preallocated buffers (CVE-2026-27951)
- Fix heap-buffer-overflow in bitmap_cache_put (CVE-2026-29775)
- Add DSP format checks (CVE-2026-31884)
- Fix DSP array bounds checks (CVE-2026-31883)
- Fix DSP array bounds checks (CVE-2026-31885)
- Update CLEAR_GLYPH_ENTRY::count after alloc (CVE-2026-33985)
Resolves: RHEL-159815, RHEL-155477, RHEL-161046, RHEL-161481
Resolves: RHEL-161517, RHEL-161084, RHEL-167803

Related CVEs

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 9 (aarch64)	freerdp-2.11.7-1.el9_7.7.src.rpm	38805c6510c6dce19e435272acc0cc1b145b706831fc5500f45312a5d54fed61	-	ol9_aarch64_appstream
	freerdp-2.11.7-1.el9_7.7.src.rpm	38805c6510c6dce19e435272acc0cc1b145b706831fc5500f45312a5d54fed61	-	ol9_aarch64_codeready_builder
	freerdp-2.11.7-1.el9_7.7.aarch64.rpm	1e52dd5c1730bcb82847906937a9220b1602f1b76a2410a06fdc810830ca08f7	-	ol9_aarch64_appstream
	freerdp-devel-2.11.7-1.el9_7.7.aarch64.rpm	091a8aa03a16976c3e2b5547434bfc1a0308484466abbbb42ac1f3da38c10866	-	ol9_aarch64_codeready_builder
	freerdp-libs-2.11.7-1.el9_7.7.aarch64.rpm	0b39e569ac4a7db982fbcc5d4fb11e9b63e4cd0a7133125b73d0f03b67266595	-	ol9_aarch64_appstream
	libwinpr-2.11.7-1.el9_7.7.aarch64.rpm	7a5877c9f60d5d49f5f829369faa85157522a211a68eab43bcb08e2956fdc898	-	ol9_aarch64_appstream
	libwinpr-devel-2.11.7-1.el9_7.7.aarch64.rpm	be715e1d8c4baa84b4b21bdfd839812581fbeddc2f02ea8d10d7d9569991e52f	-	ol9_aarch64_codeready_builder

Oracle Linux 9 (x86_64)	freerdp-2.11.7-1.el9_7.7.src.rpm	38805c6510c6dce19e435272acc0cc1b145b706831fc5500f45312a5d54fed61	-	ol9_x86_64_appstream
	freerdp-2.11.7-1.el9_7.7.src.rpm	38805c6510c6dce19e435272acc0cc1b145b706831fc5500f45312a5d54fed61	-	ol9_x86_64_codeready_builder
	freerdp-2.11.7-1.el9_7.7.x86_64.rpm	50ff68b4cda67e6b1586c3d2f706ede7ca6e6e8c3ac178b91f3c8b556cd2afe3	-	ol9_x86_64_appstream
	freerdp-devel-2.11.7-1.el9_7.7.i686.rpm	589ca1d2793f5e25e74370c881c67c403ae11bca69108f11ba77feb87915f57d	-	ol9_x86_64_codeready_builder
	freerdp-devel-2.11.7-1.el9_7.7.x86_64.rpm	3670016196a4163b75e0f2170732e47a35d1b3ecb2095076ffec64e2d2bd72fd	-	ol9_x86_64_codeready_builder
	freerdp-libs-2.11.7-1.el9_7.7.i686.rpm	c7f25b9ecd9000e6e3ba01775873ca96cf10bfb8a202be55f19b16b0253809c1	-	ol9_x86_64_appstream
	freerdp-libs-2.11.7-1.el9_7.7.x86_64.rpm	e3d0b65f79bcb59ace56fffaee2609f4f99be78abb923a77c575b88f16608093	-	ol9_x86_64_appstream
	libwinpr-2.11.7-1.el9_7.7.i686.rpm	aa098460ab20b19fe78b09f307d425fd2812e07a22c7cfe5c101bddee864bdd0	-	ol9_x86_64_appstream
	libwinpr-2.11.7-1.el9_7.7.x86_64.rpm	0046ef2d2c07f9ffab3ab158d7d1deacf693f931f5b66bef2c65f6ddd439842a	-	ol9_x86_64_appstream
	libwinpr-devel-2.11.7-1.el9_7.7.i686.rpm	b0a29050a0119caf197f9337cb95e3afdbc31533c96a5380169e4ede90df4a97	-	ol9_x86_64_codeready_builder
	libwinpr-devel-2.11.7-1.el9_7.7.x86_64.rpm	fe477f177d4dc5413657ad69cac37f01ce57959ebc019d9b9b6211b92c9ce6b3	-	ol9_x86_64_codeready_builder

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691