{"affected":[{"ecosystem_specific":{"binaries":[{"freerdp-devel":"2.1.2-12.32.1","libfreerdp2":"2.1.2-12.32.1","libwinpr2":"2.1.2-12.32.1","winpr2-devel":"2.1.2-12.32.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Software Development Kit 12 SP5","name":"freerdp","purl":"pkg:rpm/suse/freerdp&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP5"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"2.1.2-12.32.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"freerdp":"2.1.2-12.32.1","freerdp-proxy":"2.1.2-12.32.1","freerdp-server":"2.1.2-12.32.1","libfreerdp2":"2.1.2-12.32.1","libwinpr2":"2.1.2-12.32.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Workstation Extension 12 SP5","name":"freerdp","purl":"pkg:rpm/suse/freerdp&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012%20SP5"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"2.1.2-12.32.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for freerdp fixes the following issues:\n  \n- CVE-2022-39318: Fixed division by zero in urbdrc (bsc#1205563).\n- CVE-2022-39319: Fixed missing input buffer length check in urbdrc (bsc#1205564).\n","id":"SUSE-SU-2022:4293-1","modified":"2022-11-29T15:01:10Z","published":"2022-11-29T15:01:10Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2022/suse-su-20224293-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1205563"},{"type":"REPORT","url":"https://bugzilla.suse.com/1205564"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-39318"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-39319"}],"related":["CVE-2022-39318","CVE-2022-39319"],"summary":"Security update for freerdp","upstream":["CVE-2022-39318","CVE-2022-39319"]}