{
  "threat_severity" : "Moderate",
  "public_date" : "2026-03-13T17:36:57Z",
  "bugzilla" : {
    "description" : "freerdp: FreeRDP has a division-by-zero in ADPCM decoders when `nBlockAlign` is 0",
    "id" : "2447385",
    "url" : "https://bugzilla.redhat.com/show_bug.cgi?id=2447385"
  },
  "cvss3" : {
    "cvss3_base_score" : "6.5",
    "cvss3_scoring_vector" : "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
    "status" : "verified"
  },
  "cwe" : "CWE-369",
  "details" : [ "FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, division by zero in MS-ADPCM and IMA-ADPCM decoders when nBlockAlign is 0, leading to a crash. In libfreerdp/codec/dsp.c, both ADPCM decoders use size % block_size where block_size = context->common.format.nBlockAlign. The nBlockAlign value comes from the Server Audio Formats PDU on the RDPSND channel. The value 0 is not validated anywhere before reaching the decoder. When nBlockAlign = 0, the modulo operation causes a SIGFPE (floating point exception) crash. This vulnerability is fixed in 3.24.0.", "A division by zero flaw has been discovered in FreeRDP. This division by zero exists in the MS-ADPCM and IMA-ADPCM decoders when nBlockAlign is 0, leading to a crash. In libfreerdp/codec/dsp.c, both ADPCM decoders use size % block_size where block_size = context->common.format.nBlockAlign. The nBlockAlign value comes from the Server Audio Formats PDU on the RDPSND channel. The value 0 is not validated anywhere before reaching the decoder. When nBlockAlign = 0, the modulo operation causes a SIGFPE (floating point exception) crash." ],
  "affected_release" : [ {
    "product_name" : "Red Hat Enterprise Linux 10",
    "release_date" : "2026-05-11T00:00:00Z",
    "advisory" : "RHSA-2026:16014",
    "cpe" : "cpe:/o:redhat:enterprise_linux:10.1",
    "package" : "freerdp-2:3.10.3-5.el10_1.8"
  }, {
    "product_name" : "Red Hat Enterprise Linux 10",
    "release_date" : "2026-05-19T00:00:00Z",
    "advisory" : "RHSA-2026:19142",
    "cpe" : "cpe:/o:redhat:enterprise_linux:10.2",
    "package" : "freerdp-2:3.10.3-12.el10_2.5"
  }, {
    "product_name" : "Red Hat Enterprise Linux 10.0 Extended Update Support",
    "release_date" : "2026-05-26T00:00:00Z",
    "advisory" : "RHSA-2026:20605",
    "cpe" : "cpe:/o:redhat:enterprise_linux_eus:10.0",
    "package" : "freerdp-2:3.10.3-3.el10_0.7"
  }, {
    "product_name" : "Red Hat Enterprise Linux 7 Extended Lifecycle Support",
    "release_date" : "2026-05-26T00:00:00Z",
    "advisory" : "RHSA-2026:20546",
    "cpe" : "cpe:/o:redhat:rhel_els:7",
    "package" : "freerdp-0:2.1.1-5.el7_9.9"
  }, {
    "product_name" : "Red Hat Enterprise Linux 8",
    "release_date" : "2026-05-11T00:00:00Z",
    "advisory" : "RHSA-2026:16019",
    "cpe" : "cpe:/a:redhat:enterprise_linux:8",
    "package" : "freerdp-2:2.11.7-9.el8_10"
  }, {
    "product_name" : "Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support",
    "release_date" : "2026-05-20T00:00:00Z",
    "advisory" : "RHSA-2026:19811",
    "cpe" : "cpe:/a:redhat:rhel_aus:8.4",
    "package" : "freerdp-2:2.2.0-14.el8_4"
  }, {
    "product_name" : "Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On",
    "release_date" : "2026-05-20T00:00:00Z",
    "advisory" : "RHSA-2026:19811",
    "cpe" : "cpe:/a:redhat:rhel_eus_long_life:8.4",
    "package" : "freerdp-2:2.2.0-14.el8_4"
  }, {
    "product_name" : "Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support",
    "release_date" : "2026-05-13T00:00:00Z",
    "advisory" : "RHSA-2026:16814",
    "cpe" : "cpe:/a:redhat:rhel_aus:8.6",
    "package" : "freerdp-2:2.2.0-7.el8_6.8"
  }, {
    "product_name" : "Red Hat Enterprise Linux 8.6 Telecommunications Update Service",
    "release_date" : "2026-05-13T00:00:00Z",
    "advisory" : "RHSA-2026:16814",
    "cpe" : "cpe:/a:redhat:rhel_tus:8.6",
    "package" : "freerdp-2:2.2.0-7.el8_6.8"
  }, {
    "product_name" : "Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions",
    "release_date" : "2026-05-13T00:00:00Z",
    "advisory" : "RHSA-2026:16814",
    "cpe" : "cpe:/a:redhat:rhel_e4s:8.6",
    "package" : "freerdp-2:2.2.0-7.el8_6.8"
  }, {
    "product_name" : "Red Hat Enterprise Linux 8.8 Telecommunications Update Service",
    "release_date" : "2026-05-13T00:00:00Z",
    "advisory" : "RHSA-2026:16777",
    "cpe" : "cpe:/a:redhat:rhel_tus:8.8",
    "package" : "freerdp-2:2.2.0-12.el8_8.8"
  }, {
    "product_name" : "Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions",
    "release_date" : "2026-05-13T00:00:00Z",
    "advisory" : "RHSA-2026:16777",
    "cpe" : "cpe:/a:redhat:rhel_e4s:8.8",
    "package" : "freerdp-2:2.2.0-12.el8_8.8"
  }, {
    "product_name" : "Red Hat Enterprise Linux 9",
    "release_date" : "2026-05-13T00:00:00Z",
    "advisory" : "RHSA-2026:16482",
    "cpe" : "cpe:/a:redhat:enterprise_linux:9",
    "package" : "freerdp-2:2.11.7-1.el9_7.7"
  }, {
    "product_name" : "Red Hat Enterprise Linux 9",
    "release_date" : "2026-05-19T00:00:00Z",
    "advisory" : "RHSA-2026:19358",
    "cpe" : "cpe:/a:redhat:enterprise_linux:9",
    "package" : "freerdp-2:2.11.7-7.el9_8.3"
  }, {
    "product_name" : "Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions",
    "release_date" : "2026-05-12T00:00:00Z",
    "advisory" : "RHSA-2026:16485",
    "cpe" : "cpe:/a:redhat:rhel_e4s:9.0",
    "package" : "freerdp-2:2.4.1-3.el9_0.7"
  }, {
    "product_name" : "Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions",
    "release_date" : "2026-05-12T00:00:00Z",
    "advisory" : "RHSA-2026:16483",
    "cpe" : "cpe:/a:redhat:rhel_e4s:9.2",
    "package" : "freerdp-2:2.4.1-6.el9_2.9"
  }, {
    "product_name" : "Red Hat Enterprise Linux 9.4 Extended Update Support",
    "release_date" : "2026-05-13T00:00:00Z",
    "advisory" : "RHSA-2026:16866",
    "cpe" : "cpe:/a:redhat:rhel_eus:9.4",
    "package" : "freerdp-2:2.11.2-1.el9_4.8"
  }, {
    "product_name" : "Red Hat Enterprise Linux 9.6 Extended Update Support",
    "release_date" : "2026-05-13T00:00:00Z",
    "advisory" : "RHSA-2026:16865",
    "cpe" : "cpe:/a:redhat:rhel_eus:9.6",
    "package" : "freerdp-2:2.11.7-1.el9_6.10"
  } ],
  "package_state" : [ {
    "product_name" : "Red Hat Enterprise Linux 6",
    "fix_state" : "Affected",
    "package_name" : "freerdp",
    "cpe" : "cpe:/o:redhat:enterprise_linux:6"
  } ],
  "references" : [ "https://www.cve.org/CVERecord?id=CVE-2026-31884\nhttps://nvd.nist.gov/vuln/detail/CVE-2026-31884\nhttps://github.com/FreeRDP/FreeRDP/commit/03b48b3601d867afccac1cdc6081de7a275edce7\nhttps://github.com/FreeRDP/FreeRDP/commit/16df2300e1e3f5a51f68fb1626429e58b531b7c8\nhttps://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-jp7m-94ww-p56r" ],
  "name" : "CVE-2026-31884",
  "mitigation" : {
    "value" : "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
    "lang" : "en:us"
  },
  "csaw" : false
}