[SECURITY] [DSA 6123-1] xrdp security update

Fri, 06 Feb 2026 22:30:31 -0800 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian Security Advisory DSA-6123-1                   [email protected]
https://www.debian.org/security/                     Salvatore Bonaccorso
February 07, 2026                     https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package        : xrdp
CVE ID         : CVE-2025-68670
Debian Bug     : 1126537

Denis Skvortsov discovered that xrdp, a Remote Desktop Protocol (RDP)
server, was susceptible to an unauthenticated stack-based buffer
overflow vulnerability, which may result in remote execution of
arbitrary code.

For the oldstable distribution (bookworm), this problem has been fixed
in version 0.9.21.1-1+deb12u2.

For the stable distribution (trixie), this problem has been fixed in
version 0.10.1-3.1+deb13u1.

We recommend that you upgrade your xrdp packages.

For the detailed security status of xrdp please refer to its security
tracker page at:
https://security-tracker.debian.org/tracker/xrdp

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: [email protected]
-----BEGIN PGP SIGNATURE-----
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=pdPD
-----END PGP SIGNATURE-----

Reply via email to