-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Sun, 25 May 2025 15:16:34 +0530 Source: xrdp Binary: xrdp xrdp-dbgsym Architecture: s390x Version: 0.9.21.1-1+deb12u1 Distribution: bookworm Urgency: high Maintainer: s390x Build Daemon (zandonai) Changed-By: Abhijith PA Description: xrdp - Remote Desktop Protocol (RDP) server Closes: 1051061 1053284 1076769 Changes: xrdp (0.9.21.1-1+deb12u1) bookworm; urgency=high . * Non-maintainer upload * Fix CVE-2023-40184: Improper handling of session establishment errors allows bypassing OS-level session restrictions. The `auth_start_session` function can return non-zero. PAM error which may result in session restrictions such as max concurrent sessions per user by PAM (ex ./etc/security/limits.conf) to be bypassed (Closes: #1051061) * Fix CVE-2023-42822: Access to the font glyphs in xrdp_painter.c is not bounds-checked. (Closes: #1053284) * Fix CVE-2024-39917: vulnerability that allows attackers to make an infinite number of login attempts. (Closes: #1076769) Checksums-Sha1: 357786e339d075ce2a3120f5089c2bc02f19fe0f 825848 xrdp-dbgsym_0.9.21.1-1+deb12u1_s390x.deb 3b656c717294edc0cf5bb697192aed17bf06736f 7836 xrdp_0.9.21.1-1+deb12u1_s390x-buildd.buildinfo 9ee443d909bc393bcd543b117817b1f08b9c5504 466436 xrdp_0.9.21.1-1+deb12u1_s390x.deb Checksums-Sha256: 57069865f0cda6a5afa040ec0996b32e040cbb0d3d282c556540807c40c569ca 825848 xrdp-dbgsym_0.9.21.1-1+deb12u1_s390x.deb 9fd1064f0e1f8459cd64c4279510e4f9cccd9a09141b282f20ec1382837b84dc 7836 xrdp_0.9.21.1-1+deb12u1_s390x-buildd.buildinfo 13505c97e1dfb584a1d1a197525149e908111703611fad0cfb1656277a666ec5 466436 xrdp_0.9.21.1-1+deb12u1_s390x.deb Files: 97e69ffc315fa985178ccb15bbba796b 825848 debug optional xrdp-dbgsym_0.9.21.1-1+deb12u1_s390x.deb 142ba44111a4932fec298e2db71bcafd 7836 net optional xrdp_0.9.21.1-1+deb12u1_s390x-buildd.buildinfo 8922596f8894db7307818c0b21e9b520 466436 net optional xrdp_0.9.21.1-1+deb12u1_s390x.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEu0D/YpnnSxv8epH9AKOyQzsWVasFAmg7g9kACgkQAKOyQzsW Vatk/BAAuAwg9kB6/ZKz1LDWzCv8LVnEmg2cCN8XHfnxmW94WJxgwYQ6qvzVv2ad joxd7T3jx0aJcrSBAUuZqtBUXcffQykvd02w1azfd3aiXcDkQ8gsrwav8B73xy1l O/xIuOWGHn6+ObEAa14SkkbRnP5iAythafHLO5+CZFHY7r0TRMKh6y4IOcg1f3lw wEs8wfqRG9j1X2TkyaPAzkn77EbXpP5lJBW3JelYgq5ZT5ycrbVcIIJRBMnhkbEQ URtvTfMt/EcFneHu366Xm/SLNcURP5PZtYCRXNT061H9bttzvmzi09uw9tyCzOds p4pvKUePUZ/ET/lOOdA99UpWoTyCEE6SdG4AzBE1vl7Z3tvkn8GmDQGt5KgUWBsf oifOZDshaU8Lc9ZVbHg0d6iDfaIt942AQf670rv3bS0+h2rPlGSr6dAWdk/Td5p8 9CqMMzcE5/fmEqpCM5VZt5DsDM004yvFGWS9sVqIlCtvWi9fn1i7g9xw3YWziBXf liNOZQZnIm0f/ZRazfY1neiGo5hdB6Vwn2b1IxmJCdrqWY/cDG2BiNXdhPP8/sIM SivdEbwEViofHQxa5CdnJqMGpbLw0R8VVjCH7HvLjjOBJ8+eg44q7MKdEBEchG38 hlCkXhRbASkmsWeg6OutNH0qSMIYgcOzoSw0BkIDVlgISShLbuM= =zihq -----END PGP SIGNATURE-----