-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Sun, 25 May 2025 15:16:34 +0530 Source: xrdp Binary: xrdp xrdp-dbgsym Architecture: arm64 Version: 0.9.21.1-1+deb12u1 Distribution: bookworm Urgency: high Maintainer: arm Build Daemon (arm-ubc-02) Changed-By: Abhijith PA Description: xrdp - Remote Desktop Protocol (RDP) server Closes: 1051061 1053284 1076769 Changes: xrdp (0.9.21.1-1+deb12u1) bookworm; urgency=high . * Non-maintainer upload * Fix CVE-2023-40184: Improper handling of session establishment errors allows bypassing OS-level session restrictions. The `auth_start_session` function can return non-zero. PAM error which may result in session restrictions such as max concurrent sessions per user by PAM (ex ./etc/security/limits.conf) to be bypassed (Closes: #1051061) * Fix CVE-2023-42822: Access to the font glyphs in xrdp_painter.c is not bounds-checked. (Closes: #1053284) * Fix CVE-2024-39917: vulnerability that allows attackers to make an infinite number of login attempts. (Closes: #1076769) Checksums-Sha1: d31af6e57d571a37e0733d9a4c1c4884015b82fd 833756 xrdp-dbgsym_0.9.21.1-1+deb12u1_arm64.deb a60b70c4523555a5fdf8bb7f262d8a65ca1b8379 7964 xrdp_0.9.21.1-1+deb12u1_arm64-buildd.buildinfo 604b5dba31b7d6b951308badaf516691d8035bf7 466580 xrdp_0.9.21.1-1+deb12u1_arm64.deb Checksums-Sha256: 313d33278624e55340d3240974fd207d7a1356de8d6e25c7ad994eb1c39b3a58 833756 xrdp-dbgsym_0.9.21.1-1+deb12u1_arm64.deb ea4a0a5f28c570e68e8b9527020fa51fbbe2d511021962c0b2dbb58ff94580e6 7964 xrdp_0.9.21.1-1+deb12u1_arm64-buildd.buildinfo 447b9907a691758086f6af6986654e48c7b68e5328afcabaed1c7ec348a97ed1 466580 xrdp_0.9.21.1-1+deb12u1_arm64.deb Files: f9a4459f60939464f99b6f422ff2f268 833756 debug optional xrdp-dbgsym_0.9.21.1-1+deb12u1_arm64.deb de1f782557067d30d5befd6fb71470ec 7964 net optional xrdp_0.9.21.1-1+deb12u1_arm64-buildd.buildinfo 2d4c1db36fe0fac26c2ee9210dbf112c 466580 net optional xrdp_0.9.21.1-1+deb12u1_arm64.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEbIns2iWsAAdAqh2MS/ZIXkV8oLAFAmg7emkACgkQS/ZIXkV8 oLCWEw/+L2xOr4nKnwjG6tTWXLcL22QvdQHQoZgfNIoewVljO+hMmgb17c4GoITW qnTzLu6HEl8B4Ab2M/jHEtNRTRYRW+xPtW9S35RpIS8Iqguuo6sPFIw0oNc4oEqZ FlNZUgqGsTl04Fh6OX5XCYHq5bu6HpAfmM8Ow136vdHxdJQiFAQmUR3Q+TWK0S3s ESu7Sracv0c/hAdFFdaia+t4zrqeesHIGEB1DWC22p9tFGttRsDfdv02roYdjXUY DNaUpEu+hJxmk2pGkvVcySQ8yF/YVtcz2RG3o+5VuqTyourflpR9kBs6OXZCWlf5 2MCXUyRwoh/NvPyKUzJawIAR/0/orCcWbLjf0o/YYOpsKDUMi9ZwBk6cqWJ8ZL3C TaJAHrG9F4YbdZJ11JT/XxXgBkm6dgiHQdvBPC3ZBnVOJedAm8gyk5F9rNDOE+S5 woGWIsbm/ij/56Emq9iZ1inbw0Avik4io2egfw/nx6KmYABM+0ov6chxUFot48LL yLS3Qcg5uB3KcvVblHLSJDBb7YfsBeXxCfYDzW02KS/2Tik5Z1qHbU24eEFqxzsV DlSx9hXhp7U9BJbW6Ng6BIzoVKCmiex1L/3MxzcNUxCMsXYAp92wVplz2E663lkS 6/BfCfbdl9nNAoEm1qx3F5CTXybPDFEN7ptC91KnLWohE7yT6iU= =BDwI -----END PGP SIGNATURE-----