Red Hat Product Errata RHSA-2026:2824 - Security Advisory
Issued:
2026-02-17
Updated:
2026-02-17

RHSA-2026:2824 - Security Advisory

Synopsis

Important: freerdp security update

Type/Severity

Security Advisory: Important

Red Hat Lightspeed patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for freerdp is now available for Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. The xfreerdp client can connect to RDP servers such as Microsoft Windows machines, xrdp, and VirtualBox.

Security Fix(es):

  • freerdp: FreeRDP: Heap buffer overflow leading to denial of service and potential code execution from a malicious server. (CVE-2026-23530)
  • freerdp: FreeRDP: Denial of Service and potential code execution via use-after-free vulnerability (CVE-2026-23884)
  • freerdp: FreeRDP: Arbitrary code execution and denial of service via malicious server (CVE-2026-23883)
  • freerdp: FreeRDP: Heap buffer overflow leads to denial of service and potential code execution (CVE-2026-23533)
  • freerdp: FreeRDP: Heap buffer overflow via crafted RDPGFX surface updates leads to denial of service and potential code execution. (CVE-2026-23531)
  • freerdp: FreeRDP: Denial of Service and potential code execution via client-side heap buffer overflow (CVE-2026-23532)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

  • Red Hat Enterprise Linux Server - AUS 9.2 x86_64
  • Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.2 ppc64le
  • Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.2 x86_64
  • Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.2 aarch64
  • Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.2 s390x
  • Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 9.2 x86_64
  • Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 9.2 aarch64
  • Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 9.2 ppc64le
  • Red Hat Enterprise Linux for IBM z Systems - Extended Life Cycle 9.2 s390x

Fixes

  • BZ - 2430877 - CVE-2026-23530 freerdp: FreeRDP: Heap buffer overflow leading to denial of service and potential code execution from a malicious server.
  • BZ - 2430880 - CVE-2026-23884 freerdp: FreeRDP: Denial of Service and potential code execution via use-after-free vulnerability
  • BZ - 2430885 - CVE-2026-23883 freerdp: FreeRDP: Arbitrary code execution and denial of service via malicious server
  • BZ - 2430886 - CVE-2026-23533 freerdp: FreeRDP: Heap buffer overflow leads to denial of service and potential code execution
  • BZ - 2430887 - CVE-2026-23531 freerdp: FreeRDP: Heap buffer overflow via crafted RDPGFX surface updates leads to denial of service and potential code execution.
  • BZ - 2430891 - CVE-2026-23532 freerdp: FreeRDP: Denial of Service and potential code execution via client-side heap buffer overflow

Red Hat Enterprise Linux Server - AUS 9.2

SRPM
freerdp-2.4.1-6.el9_2.2.src.rpm SHA-256: 0ac6f31a488650edc29d4baa0b12247d7940f37a441412c94bd8b7f2887cbe5e
x86_64
freerdp-2.4.1-6.el9_2.2.x86_64.rpm SHA-256: 0d3723d717a49dc96efa9788396c331c79a8ccd84d45404ac807ad536e7df707
freerdp-debuginfo-2.4.1-6.el9_2.2.i686.rpm SHA-256: d9c776e70189af9ea2ff7fac3bbdbf1acbb2c8f86338d754a1035e8b4294c603
freerdp-debuginfo-2.4.1-6.el9_2.2.x86_64.rpm SHA-256: 36ebcf2f471bcf83374ce66547e7cc25d1470df4828ce3bfd9f4d8f74363403d
freerdp-debugsource-2.4.1-6.el9_2.2.i686.rpm SHA-256: f468cc26111c16ce722200596746d4f436a61b1ec0efb9e82f01deafeed6c980
freerdp-debugsource-2.4.1-6.el9_2.2.x86_64.rpm SHA-256: 48eaa44889875803216f60649f677a79cb0468d8d1bff353fe3af1b91af32f2f
freerdp-libs-2.4.1-6.el9_2.2.i686.rpm SHA-256: 65766a2ee83631e8921b6f5bb13e577e192db57dd2a6cbeaf242290306df604f
freerdp-libs-2.4.1-6.el9_2.2.x86_64.rpm SHA-256: 42a2cb73afdd1a1e9e1ec2e04031f79a794826485929faa5e91514b6f47bad43
freerdp-libs-debuginfo-2.4.1-6.el9_2.2.i686.rpm SHA-256: 4bd38b05d6324e9f5889338d00b605f552f929b83f0868379135dd5a1aaab129
freerdp-libs-debuginfo-2.4.1-6.el9_2.2.x86_64.rpm SHA-256: 0368df1cc709550d6566c1c9f9456745f956ffcd72e04bf1d4220ccd56e90bff
libwinpr-2.4.1-6.el9_2.2.i686.rpm SHA-256: b8b5d80a0e8f35d0b7436bf20e69fb0706851bfaff88bbb08a2f801d2891edf7
libwinpr-2.4.1-6.el9_2.2.x86_64.rpm SHA-256: be9455588eccb5cb6698b05fee31eb5937acf047b3f307d4923270c23b8607a9
libwinpr-debuginfo-2.4.1-6.el9_2.2.i686.rpm SHA-256: a91275e9c1b11401f82af2fa3b33370823ac5dc492650217d1b9b35e37569a0e
libwinpr-debuginfo-2.4.1-6.el9_2.2.x86_64.rpm SHA-256: 2c0319184002a1cebd645217d5c5b3509a3dc94e31fe45dec5b3697b2872137d

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.2

SRPM
freerdp-2.4.1-6.el9_2.2.src.rpm SHA-256: 0ac6f31a488650edc29d4baa0b12247d7940f37a441412c94bd8b7f2887cbe5e
ppc64le
freerdp-2.4.1-6.el9_2.2.ppc64le.rpm SHA-256: 31c2be09d85d73e63b4048ffc11511de7fe30532ebdfb1d524ac969fc16a709a
freerdp-debuginfo-2.4.1-6.el9_2.2.ppc64le.rpm SHA-256: de7603ebc31af78fa13423547645c8fc735062f08c353cc5f611d21899af4310
freerdp-debugsource-2.4.1-6.el9_2.2.ppc64le.rpm SHA-256: 1d4a1310145f110cadf72dd9ad44554a0ed372e186cae09fb9321d21ccb6b0fd
freerdp-libs-2.4.1-6.el9_2.2.ppc64le.rpm SHA-256: d814fb326979ab141228582f4cabbcae33556b4200ad3c2e422e64da9562a11e
freerdp-libs-debuginfo-2.4.1-6.el9_2.2.ppc64le.rpm SHA-256: cb90ee9d6a421c0a4af58f2cfe7a2196f95dbfb51dd4f3b99ed0b99616c964cd
libwinpr-2.4.1-6.el9_2.2.ppc64le.rpm SHA-256: d41398411c55ddbbf6449bfd49ca63036890b409239458199b9ca780d6c1adc8
libwinpr-debuginfo-2.4.1-6.el9_2.2.ppc64le.rpm SHA-256: c1e84ba35bf6649559396f8c79a6ecd32a62720123c1f90ea6cb3073de508c2a

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.2

SRPM
freerdp-2.4.1-6.el9_2.2.src.rpm SHA-256: 0ac6f31a488650edc29d4baa0b12247d7940f37a441412c94bd8b7f2887cbe5e
x86_64
freerdp-2.4.1-6.el9_2.2.x86_64.rpm SHA-256: 0d3723d717a49dc96efa9788396c331c79a8ccd84d45404ac807ad536e7df707
freerdp-debuginfo-2.4.1-6.el9_2.2.i686.rpm SHA-256: d9c776e70189af9ea2ff7fac3bbdbf1acbb2c8f86338d754a1035e8b4294c603
freerdp-debuginfo-2.4.1-6.el9_2.2.x86_64.rpm SHA-256: 36ebcf2f471bcf83374ce66547e7cc25d1470df4828ce3bfd9f4d8f74363403d
freerdp-debugsource-2.4.1-6.el9_2.2.i686.rpm SHA-256: f468cc26111c16ce722200596746d4f436a61b1ec0efb9e82f01deafeed6c980
freerdp-debugsource-2.4.1-6.el9_2.2.x86_64.rpm SHA-256: 48eaa44889875803216f60649f677a79cb0468d8d1bff353fe3af1b91af32f2f
freerdp-libs-2.4.1-6.el9_2.2.i686.rpm SHA-256: 65766a2ee83631e8921b6f5bb13e577e192db57dd2a6cbeaf242290306df604f
freerdp-libs-2.4.1-6.el9_2.2.x86_64.rpm SHA-256: 42a2cb73afdd1a1e9e1ec2e04031f79a794826485929faa5e91514b6f47bad43
freerdp-libs-debuginfo-2.4.1-6.el9_2.2.i686.rpm SHA-256: 4bd38b05d6324e9f5889338d00b605f552f929b83f0868379135dd5a1aaab129
freerdp-libs-debuginfo-2.4.1-6.el9_2.2.x86_64.rpm SHA-256: 0368df1cc709550d6566c1c9f9456745f956ffcd72e04bf1d4220ccd56e90bff
libwinpr-2.4.1-6.el9_2.2.i686.rpm SHA-256: b8b5d80a0e8f35d0b7436bf20e69fb0706851bfaff88bbb08a2f801d2891edf7
libwinpr-2.4.1-6.el9_2.2.x86_64.rpm SHA-256: be9455588eccb5cb6698b05fee31eb5937acf047b3f307d4923270c23b8607a9
libwinpr-debuginfo-2.4.1-6.el9_2.2.i686.rpm SHA-256: a91275e9c1b11401f82af2fa3b33370823ac5dc492650217d1b9b35e37569a0e
libwinpr-debuginfo-2.4.1-6.el9_2.2.x86_64.rpm SHA-256: 2c0319184002a1cebd645217d5c5b3509a3dc94e31fe45dec5b3697b2872137d

Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.2

SRPM
freerdp-2.4.1-6.el9_2.2.src.rpm SHA-256: 0ac6f31a488650edc29d4baa0b12247d7940f37a441412c94bd8b7f2887cbe5e
aarch64
freerdp-2.4.1-6.el9_2.2.aarch64.rpm SHA-256: 22a06efe4a870c052d4b2eef883f2c2648f0520d07cd98337af2e879a600a137
freerdp-debuginfo-2.4.1-6.el9_2.2.aarch64.rpm SHA-256: 99d215f29a83d870b64a50595adb8778a4d06641cc6b77560173192a6e60a66d
freerdp-debugsource-2.4.1-6.el9_2.2.aarch64.rpm SHA-256: 4abe730d518360bfe86635beecd3cc16d9ced0331fda48b90815ee4a5bdc697c
freerdp-libs-2.4.1-6.el9_2.2.aarch64.rpm SHA-256: cc1c7f8d8836a33573f5cffeb28b0d94a73a6a9e627a4001fe7a5e7cde1b4386
freerdp-libs-debuginfo-2.4.1-6.el9_2.2.aarch64.rpm SHA-256: 8896fdc6d0ec8c86c50af5c4c09b2eb2ef1e67527b29dafa29fedc24d10563b3
libwinpr-2.4.1-6.el9_2.2.aarch64.rpm SHA-256: a4c0befe21dcd5e7f91cd6b71a61d765e74bd91ff100fe0298983677f16168d2
libwinpr-debuginfo-2.4.1-6.el9_2.2.aarch64.rpm SHA-256: b6abcae21ce4a4a511e559cc65f87d14bc071ad701c83fc73769b5b88ea362aa

Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.2

SRPM
freerdp-2.4.1-6.el9_2.2.src.rpm SHA-256: 0ac6f31a488650edc29d4baa0b12247d7940f37a441412c94bd8b7f2887cbe5e
s390x
freerdp-2.4.1-6.el9_2.2.s390x.rpm SHA-256: 5f964b6350674cca60fd780e0df42d25e3f214902fd033a74cb029169514c093
freerdp-debuginfo-2.4.1-6.el9_2.2.s390x.rpm SHA-256: f6a47e077475ad4582e73eee4b08175a7cfb332a3bb3b07f4f41e89833827437
freerdp-debugsource-2.4.1-6.el9_2.2.s390x.rpm SHA-256: 88a5ddf9fced9da0b72e4938632a4de063b044a4dbc8a2226d432ad47bb428c6
freerdp-libs-2.4.1-6.el9_2.2.s390x.rpm SHA-256: 80055b9d7973d70dfdee5c5de41bbab2cc14b64393572b2553b37fc14f6e2ab1
freerdp-libs-debuginfo-2.4.1-6.el9_2.2.s390x.rpm SHA-256: 40725dc1883b57879975945cb950ac13ddca5e3e359ec84454e6ff0fe6ddfff9
libwinpr-2.4.1-6.el9_2.2.s390x.rpm SHA-256: 23ac07f5173ad8920cedbd5c719fd69a349d6f5a4c4508fcf398d4de09375d01
libwinpr-debuginfo-2.4.1-6.el9_2.2.s390x.rpm SHA-256: e6ebd6e38a8e816e2a9cf5e7acbbf51417be90d70b651e6e605e8ed8f52b9cb9

Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 9.2

SRPM
freerdp-2.4.1-6.el9_2.2.src.rpm SHA-256: 0ac6f31a488650edc29d4baa0b12247d7940f37a441412c94bd8b7f2887cbe5e
x86_64
freerdp-2.4.1-6.el9_2.2.x86_64.rpm SHA-256: 0d3723d717a49dc96efa9788396c331c79a8ccd84d45404ac807ad536e7df707
freerdp-debuginfo-2.4.1-6.el9_2.2.i686.rpm SHA-256: d9c776e70189af9ea2ff7fac3bbdbf1acbb2c8f86338d754a1035e8b4294c603
freerdp-debuginfo-2.4.1-6.el9_2.2.x86_64.rpm SHA-256: 36ebcf2f471bcf83374ce66547e7cc25d1470df4828ce3bfd9f4d8f74363403d
freerdp-debugsource-2.4.1-6.el9_2.2.i686.rpm SHA-256: f468cc26111c16ce722200596746d4f436a61b1ec0efb9e82f01deafeed6c980
freerdp-debugsource-2.4.1-6.el9_2.2.x86_64.rpm SHA-256: 48eaa44889875803216f60649f677a79cb0468d8d1bff353fe3af1b91af32f2f
freerdp-libs-2.4.1-6.el9_2.2.i686.rpm SHA-256: 65766a2ee83631e8921b6f5bb13e577e192db57dd2a6cbeaf242290306df604f
freerdp-libs-2.4.1-6.el9_2.2.x86_64.rpm SHA-256: 42a2cb73afdd1a1e9e1ec2e04031f79a794826485929faa5e91514b6f47bad43
freerdp-libs-debuginfo-2.4.1-6.el9_2.2.i686.rpm SHA-256: 4bd38b05d6324e9f5889338d00b605f552f929b83f0868379135dd5a1aaab129
freerdp-libs-debuginfo-2.4.1-6.el9_2.2.x86_64.rpm SHA-256: 0368df1cc709550d6566c1c9f9456745f956ffcd72e04bf1d4220ccd56e90bff
libwinpr-2.4.1-6.el9_2.2.i686.rpm SHA-256: b8b5d80a0e8f35d0b7436bf20e69fb0706851bfaff88bbb08a2f801d2891edf7
libwinpr-2.4.1-6.el9_2.2.x86_64.rpm SHA-256: be9455588eccb5cb6698b05fee31eb5937acf047b3f307d4923270c23b8607a9
libwinpr-debuginfo-2.4.1-6.el9_2.2.i686.rpm SHA-256: a91275e9c1b11401f82af2fa3b33370823ac5dc492650217d1b9b35e37569a0e
libwinpr-debuginfo-2.4.1-6.el9_2.2.x86_64.rpm SHA-256: 2c0319184002a1cebd645217d5c5b3509a3dc94e31fe45dec5b3697b2872137d

Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 9.2

SRPM
freerdp-2.4.1-6.el9_2.2.src.rpm SHA-256: 0ac6f31a488650edc29d4baa0b12247d7940f37a441412c94bd8b7f2887cbe5e
aarch64
freerdp-2.4.1-6.el9_2.2.aarch64.rpm SHA-256: 22a06efe4a870c052d4b2eef883f2c2648f0520d07cd98337af2e879a600a137
freerdp-debuginfo-2.4.1-6.el9_2.2.aarch64.rpm SHA-256: 99d215f29a83d870b64a50595adb8778a4d06641cc6b77560173192a6e60a66d
freerdp-debugsource-2.4.1-6.el9_2.2.aarch64.rpm SHA-256: 4abe730d518360bfe86635beecd3cc16d9ced0331fda48b90815ee4a5bdc697c
freerdp-libs-2.4.1-6.el9_2.2.aarch64.rpm SHA-256: cc1c7f8d8836a33573f5cffeb28b0d94a73a6a9e627a4001fe7a5e7cde1b4386
freerdp-libs-debuginfo-2.4.1-6.el9_2.2.aarch64.rpm SHA-256: 8896fdc6d0ec8c86c50af5c4c09b2eb2ef1e67527b29dafa29fedc24d10563b3
libwinpr-2.4.1-6.el9_2.2.aarch64.rpm SHA-256: a4c0befe21dcd5e7f91cd6b71a61d765e74bd91ff100fe0298983677f16168d2
libwinpr-debuginfo-2.4.1-6.el9_2.2.aarch64.rpm SHA-256: b6abcae21ce4a4a511e559cc65f87d14bc071ad701c83fc73769b5b88ea362aa

Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 9.2

SRPM
freerdp-2.4.1-6.el9_2.2.src.rpm SHA-256: 0ac6f31a488650edc29d4baa0b12247d7940f37a441412c94bd8b7f2887cbe5e
ppc64le
freerdp-2.4.1-6.el9_2.2.ppc64le.rpm SHA-256: 31c2be09d85d73e63b4048ffc11511de7fe30532ebdfb1d524ac969fc16a709a
freerdp-debuginfo-2.4.1-6.el9_2.2.ppc64le.rpm SHA-256: de7603ebc31af78fa13423547645c8fc735062f08c353cc5f611d21899af4310
freerdp-debugsource-2.4.1-6.el9_2.2.ppc64le.rpm SHA-256: 1d4a1310145f110cadf72dd9ad44554a0ed372e186cae09fb9321d21ccb6b0fd
freerdp-libs-2.4.1-6.el9_2.2.ppc64le.rpm SHA-256: d814fb326979ab141228582f4cabbcae33556b4200ad3c2e422e64da9562a11e
freerdp-libs-debuginfo-2.4.1-6.el9_2.2.ppc64le.rpm SHA-256: cb90ee9d6a421c0a4af58f2cfe7a2196f95dbfb51dd4f3b99ed0b99616c964cd
libwinpr-2.4.1-6.el9_2.2.ppc64le.rpm SHA-256: d41398411c55ddbbf6449bfd49ca63036890b409239458199b9ca780d6c1adc8
libwinpr-debuginfo-2.4.1-6.el9_2.2.ppc64le.rpm SHA-256: c1e84ba35bf6649559396f8c79a6ecd32a62720123c1f90ea6cb3073de508c2a

Red Hat Enterprise Linux for IBM z Systems - Extended Life Cycle 9.2

SRPM
freerdp-2.4.1-6.el9_2.2.src.rpm SHA-256: 0ac6f31a488650edc29d4baa0b12247d7940f37a441412c94bd8b7f2887cbe5e
s390x
freerdp-2.4.1-6.el9_2.2.s390x.rpm SHA-256: 5f964b6350674cca60fd780e0df42d25e3f214902fd033a74cb029169514c093
freerdp-debuginfo-2.4.1-6.el9_2.2.s390x.rpm SHA-256: f6a47e077475ad4582e73eee4b08175a7cfb332a3bb3b07f4f41e89833827437
freerdp-debugsource-2.4.1-6.el9_2.2.s390x.rpm SHA-256: 88a5ddf9fced9da0b72e4938632a4de063b044a4dbc8a2226d432ad47bb428c6
freerdp-libs-2.4.1-6.el9_2.2.s390x.rpm SHA-256: 80055b9d7973d70dfdee5c5de41bbab2cc14b64393572b2553b37fc14f6e2ab1
freerdp-libs-debuginfo-2.4.1-6.el9_2.2.s390x.rpm SHA-256: 40725dc1883b57879975945cb950ac13ddca5e3e359ec84454e6ff0fe6ddfff9
libwinpr-2.4.1-6.el9_2.2.s390x.rpm SHA-256: 23ac07f5173ad8920cedbd5c719fd69a349d6f5a4c4508fcf398d4de09375d01
libwinpr-debuginfo-2.4.1-6.el9_2.2.s390x.rpm SHA-256: e6ebd6e38a8e816e2a9cf5e7acbbf51417be90d70b651e6e605e8ed8f52b9cb9

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.