-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Sun, 25 May 2025 15:16:34 +0530 Source: xrdp Binary: xrdp xrdp-dbgsym Architecture: armel Version: 0.9.21.1-1+deb12u1 Distribution: bookworm Urgency: high Maintainer: arm Build Daemon (arm-ubc-01) Changed-By: Abhijith PA Description: xrdp - Remote Desktop Protocol (RDP) server Closes: 1051061 1053284 1076769 Changes: xrdp (0.9.21.1-1+deb12u1) bookworm; urgency=high . * Non-maintainer upload * Fix CVE-2023-40184: Improper handling of session establishment errors allows bypassing OS-level session restrictions. The `auth_start_session` function can return non-zero. PAM error which may result in session restrictions such as max concurrent sessions per user by PAM (ex ./etc/security/limits.conf) to be bypassed (Closes: #1051061) * Fix CVE-2023-42822: Access to the font glyphs in xrdp_painter.c is not bounds-checked. (Closes: #1053284) * Fix CVE-2024-39917: vulnerability that allows attackers to make an infinite number of login attempts. (Closes: #1076769) Checksums-Sha1: e4698ee3afba9412d1712ebb2339e96bb6d8f0ad 811148 xrdp-dbgsym_0.9.21.1-1+deb12u1_armel.deb 5594ea2d9bd715e057213c013dae6dae6938ee71 7806 xrdp_0.9.21.1-1+deb12u1_armel-buildd.buildinfo 420bf3395ca7b8347cb2d5ac4f6221edfdb4d288 434528 xrdp_0.9.21.1-1+deb12u1_armel.deb Checksums-Sha256: a1cc4398da2ca8818649e0add13a849f4a554c9b12fef7961d242311ecc92c19 811148 xrdp-dbgsym_0.9.21.1-1+deb12u1_armel.deb b50a87ba2454cb1cd3f821ea938c6f5872243527837d66ddf2e3082a451d85d9 7806 xrdp_0.9.21.1-1+deb12u1_armel-buildd.buildinfo 4ad397ad8078406bdce03cd990349ec040960daa59ac892a0a34803157bdf8c0 434528 xrdp_0.9.21.1-1+deb12u1_armel.deb Files: 4c94b67221b7a3dac46713abe413a127 811148 debug optional xrdp-dbgsym_0.9.21.1-1+deb12u1_armel.deb 6e6d8ac51010f21ffa65b80d769c3f14 7806 net optional xrdp_0.9.21.1-1+deb12u1_armel-buildd.buildinfo dd6d90582e44f3de333096c33d8aab56 434528 net optional xrdp_0.9.21.1-1+deb12u1_armel.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEq41qkgEcGaML+/CnCr/D/stJkDwFAmg7e9wACgkQCr/D/stJ kDwJZw//V6WIJ7NdxVpjQllxrK7crw7iUBrx2fuV/0egaT/jyT6PNuo+jMyKFcXZ D6XjHsEyQE8L3tTWCEXpnkVKmwem8/NN6njxiSsLs+RVUyan9hr4n2/7WrSa9YJw NYmO/qjIRnJNuvBbTfS786Rty+ctQHXaR70OM4hXLCg6x9yStvhCchxKV4+Sr5Kc xgfhfxcW63GBAyPPbn3zbK7y0Po4GMgpwJkCDUdF7QQYvvhV0caKYb+jQ379s61e RECBucelhjycPxV1leAAy6yOLEKyf+Lr9H3Tt7RmxgqBYrkvyhXJ9Q51iinpVcwf bOPdIbb2FM8IgPeIZxr4qMYK++ihLq0R38Lo2F/Fjak9O3yuGeWRWVmjuP0wI1yN Ap5neCbHpbpn+B7gKtHtG1nRqY1K4PMHF7GduyWZF7lm5iwsVHTuUNvXagX90uwT QozoLYleN5iJY24ChVJGE3uEha8xVr8Dvo7fviMiT3zF+cOnjiQbjYsmBYkA+wPT e1DlSv+Xo9We6npBZDCjB33J23y17oMotzbk7h9kfhV3Kfq3BpGHvAzYnvJHxGEW Za+Xehtikpo7PXRE2EmpVcnMQRbu0BW7Y6tSoOxUPOFaE2cAyAEOtYgUHwAb3MmM fgNpF/Rc6VavR9hAH65nK5NM2v24MMKxtWQ5rhLo2coPIPv4jio= =OY/H -----END PGP SIGNATURE-----