NIXPKGS-2026-0022 published on 17 Jan 2026 CVE-2026-22853 updated 5 days, 5 hours ago by @LeSuisse Activity log Created automatic suggestion 5 days, 17 hours ago @LeSuisse accepted as draft 5 days, 5 hours ago @LeSuisse published on GitHub 5 days, 5 hours ago FreeRDP has a heap-buffer-overflow in ndr_read_uint8Array FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, RDPEAR’s NDR array reader does not perform bounds checking on the on‑wire element count and can write past the heap buffer allocated from hints, causing a heap buffer overflow in ndr_read_uint8Array. This vulnerability is fixed in 3.20.1. Affected products FreeRDP ==< 3.20.1 Matching in nixpkgs pkgs.freerdp Remote Desktop Protocol Client nixos-unstable 3.17.2 nixpkgs-unstable 3.17.2 nixos-unstable-small 3.17.2 nixos-25.05 3.15.0 nixos-25.05-small 3.15.0 nixpkgs-25.05-darwin 3.15.0 Package maintainers: 1 @peterhoeg Peter Hoeg <peter@hoeg.com>
CVE-2026-22853 updated 5 days, 5 hours ago by @LeSuisse Activity log Created automatic suggestion 5 days, 17 hours ago @LeSuisse accepted as draft 5 days, 5 hours ago @LeSuisse published on GitHub 5 days, 5 hours ago FreeRDP has a heap-buffer-overflow in ndr_read_uint8Array FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, RDPEAR’s NDR array reader does not perform bounds checking on the on‑wire element count and can write past the heap buffer allocated from hints, causing a heap buffer overflow in ndr_read_uint8Array. This vulnerability is fixed in 3.20.1. Affected products FreeRDP ==< 3.20.1 Matching in nixpkgs pkgs.freerdp Remote Desktop Protocol Client nixos-unstable 3.17.2 nixpkgs-unstable 3.17.2 nixos-unstable-small 3.17.2 nixos-25.05 3.15.0 nixos-25.05-small 3.15.0 nixpkgs-25.05-darwin 3.15.0 Package maintainers: 1 @peterhoeg Peter Hoeg <peter@hoeg.com>
pkgs.freerdp Remote Desktop Protocol Client nixos-unstable 3.17.2 nixpkgs-unstable 3.17.2 nixos-unstable-small 3.17.2 nixos-25.05 3.15.0 nixos-25.05-small 3.15.0 nixpkgs-25.05-darwin 3.15.0