[ol10_appstream] freerdp-libs-2:3.10.3-5.el10_1.8.aarch64

Name:	freerdp-libs
Epoch:	2
Version:	3.10.3
Release:	5.el10_1.8
Architecture:	aarch64
Group:	Unspecified
Size:	4601865
License:	Apache-2.0 AND HPND AND LGPL-2.1-or-later AND LicenseRef-Fedora-Public-Domain AND OFL-1.1
RPM:	freerdp-libs-3.10.3-5.el10_1.8.aarch64.rpm
Source RPM:	freerdp-3.10.3-5.el10_1.8.src.rpm
Build Date:	Mon May 11 2026
Build Host:	build-ol10-aarch64.oracle.com
Vendor:	Oracle America
URL:	http://www.freerdp.com/
Summary:	Core libraries implementing the RDP protocol
Description:	libfreerdp-core can be embedded in applications. libfreerdp-channels and libfreerdp-kbd might be convenient to use in X applications together with libfreerdp-core. libfreerdp-core can be extended with plugins handling RDP channels.

Changelog (Show File list) (Show related packages)

Wed Apr 29 2026 Ondrej Holy <oholy@redhat.com> - 2:3.10.3-5.8

- Fix double free in xf_rail_window_common cleanup (CVE-2026-26986)
- Fix clipboard use-after-free during auto-reconnect (CVE-2026-25997)
- Fix heap-buffer-overflow in bitmap_cache_put (CVE-2026-29775)
- Add DSP format checks (CVE-2026-31884)
- Fix DSP array bounds checks (CVE-2026-31883)
- Fix DSP array bounds checks (CVE-2026-31885)
- Update PERSISTENT_CACHE_ENTRY::size after realloc (CVE-2026-33987)
- Update CLEAR_GLYPH_ENTRY::count after alloc (CVE-2026-33985)
- Use winpr_aligned_calloc in persistent cache (CVE-2026-33982)
  Resolves: RHEL-159803, RHEL-159659, RHEL-161033, RHEL-161468
  Resolves: RHEL-161504, RHEL-161071, RHEL-163653, RHEL-167791, RHEL-162930

Fri Apr 10 2026 Ondrej Holy <oholy@redhat.com> - 2:3.10.3-5.6

- Update CLEAR_VBAR_ENTRY size after alloc (CVE-2026-33984)
- Fail progressive_rfx_quant_sub on invalid values (CVE-2026-33983)
  Resolves: RHEL-162946, RHEL-162962

Tue Mar 31 2026 Ondrej Holy <oholy@redhat.com> - 2:3.10.3-5.5

- Fix use of nsc_process_message
- Increase timeout for TestSynchCritical
  Resolves: RHEL-155979

Fri Mar 27 2026 Ondrej Holy <oholy@redhat.com> - 2:3.10.3-5.4

- Backport several CVE fixes
  Resolves: RHEL-147948, RHEL-147949, RHEL-147956, RHEL-147963, RHEL-147964
  Resolves: RHEL-147972, RHEL-147979, RHEL-147984, RHEL-147985, RHEL-148898
  Resolves: RHEL-148978, RHEL-148984, RHEL-149051, RHEL-155979

Wed Mar 25 2026 Ondrej Holy <oholy@redhat.com> - 2:3.10.3-5.3

- Backport several CVE fixes
  Resolves: RHEL-151975, RHEL-152202

Tue Feb 17 2026 Ondrej Holy <oholy@redhat.com> - 2:3.10.3-5.2

- Backport several CVE fixes
  Resolves: RHEL-147912, RHEL-148815, RHEL-148859, RHEL-148892, RHEL-148973

Tue Jan 27 2026 Ondrej Holy <oholy@redhat.com> - 2:3.10.3-5.1

- Backport several CVE fixes
  Resolves: RHEL-142413, RHEL-142397, RHEL-142381, RHEL-142365, RHEL-142349
  Resolves: RHEL-142333, RHEL-142317

Tue Sep 30 2025 Marek Kasik <mkasik@redhat.com> - 2:3.10.3-5
```
- Silence abidiff
- Resolves: RHEL-86251
```
Mon Sep 29 2025 Marek Kasik <mkasik@redhat.com> - 2:3.10.3-4
```
- Limit threadpool to 16 threads
- Resolves: RHEL-86251
```

Mon Jun 16 2025 Marek Kasik <mkasik@redhat.com> - 2:3.10.3-3

- Initialize function pointers after resource allocation
- Fixes CVE-2025-4478
- Resolves: RHEL-91583