Red Hat Product Errata RHSA-2026:11332 - Security Advisory Issued: 2026-04-28 Updated: 2026-04-28 RHSA-2026:11332 - Security Advisory Overview Updated Packages Synopsis Important: freerdp security update Type/Severity Security Advisory: Important Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for freerdp is now available for Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. The xfreerdp client can connect to RDP servers such as Microsoft Windows machines, xrdp, and VirtualBox. Security Fix(es): FreeRDP: FreeRDP: Heap buffer overflow allows arbitrary code execution via crafted pixel data (CVE-2026-33984) FreeRDP: FreeRDP: Denial of Service via specially crafted Remote Desktop Protocol messages (CVE-2026-33983) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 Affected Products Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.0 ppc64le Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.0 x86_64 Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.0 aarch64 Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.0 s390x Fixes BZ - 2453219 - CVE-2026-33984 FreeRDP: FreeRDP: Heap buffer overflow allows arbitrary code execution via crafted pixel data BZ - 2453220 - CVE-2026-33983 FreeRDP: FreeRDP: Denial of Service via specially crafted Remote Desktop Protocol messages CVEs CVE-2026-33983 CVE-2026-33984 References https://access.redhat.com/security/updates/classification/#important Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.0 SRPM freerdp-2.4.1-3.el9_0.5.src.rpm SHA-256: 6118492e4f040fb094002f4943cad8b31adaa32a1c46f63b5bae4748b20f952a ppc64le freerdp-2.4.1-3.el9_0.5.ppc64le.rpm SHA-256: c4c120b1f5d82d4c4ac77b80af4590d035112f7c1e5e9c74bad5328926d6c836 freerdp-debuginfo-2.4.1-3.el9_0.5.ppc64le.rpm SHA-256: e466851c3e59a6bbea32c6d231dcdc59a13d1531ada5d5d7f948c0a5cfc72092 freerdp-debugsource-2.4.1-3.el9_0.5.ppc64le.rpm SHA-256: c994939704b2452484b0b2d560b18b22d48eec33d0d023edc59904cfb4e1bd60 freerdp-libs-2.4.1-3.el9_0.5.ppc64le.rpm SHA-256: ef20e813fb1e557c9414797bb4f11d6c4d8a51ca7ba3d2ab977ae97870984d23 freerdp-libs-debuginfo-2.4.1-3.el9_0.5.ppc64le.rpm SHA-256: 1f52e6c1a5cd067f90a4e8c3017e5ede38baa07426592c24b943a433351b1546 libwinpr-2.4.1-3.el9_0.5.ppc64le.rpm SHA-256: 795cf4df6aa8a9dcb2c7ab85da7cb78d791120df421c4fa3707cfa0bd2bbdbfa libwinpr-debuginfo-2.4.1-3.el9_0.5.ppc64le.rpm SHA-256: 6457bbbca9218c4cf87c548a402b00f9c248282f1c3a318ba46f76028be05618 Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.0 SRPM freerdp-2.4.1-3.el9_0.5.src.rpm SHA-256: 6118492e4f040fb094002f4943cad8b31adaa32a1c46f63b5bae4748b20f952a x86_64 freerdp-2.4.1-3.el9_0.5.x86_64.rpm SHA-256: 2362826c0722112511dd01d9557e0346793e48142147c13c74447cda7451291a freerdp-debuginfo-2.4.1-3.el9_0.5.i686.rpm SHA-256: f9152605c91b9d3e5874e351171e8be701eaf0315ca63db6f4fa7b67e03bdd3f freerdp-debuginfo-2.4.1-3.el9_0.5.x86_64.rpm SHA-256: 62b3fbeef77ada25ae45ce84416fa981e3dcee1c65c9f6dc932fac20d26d0097 freerdp-debugsource-2.4.1-3.el9_0.5.i686.rpm SHA-256: dbb84e77e33dc20dc1503563d07255742daaede39c567fe34b68964a49910f74 freerdp-debugsource-2.4.1-3.el9_0.5.x86_64.rpm SHA-256: 47bede89428218b45968f8fff22cff253fa0ba3acb45f150b8fa23f0410ac7a3 freerdp-libs-2.4.1-3.el9_0.5.i686.rpm SHA-256: c66cff1b52f3836c2cf07e079f36701f4c6d737f6c06cba0aded6f8ac5edbf35 freerdp-libs-2.4.1-3.el9_0.5.x86_64.rpm SHA-256: af54cbbbe6ecc2bd156e77786f55ca32a6b34ba0cf2d258c950507ad90feee0e freerdp-libs-debuginfo-2.4.1-3.el9_0.5.i686.rpm SHA-256: 43256fdef899740c07b265a02d1c2ef6bdf190acb1d5c851f5fbd8a0a4eded11 freerdp-libs-debuginfo-2.4.1-3.el9_0.5.x86_64.rpm SHA-256: e5770a4a1441ab43b0cdae2dc6f8a3b54742c2564c8e7d1448627ef359c9db18 libwinpr-2.4.1-3.el9_0.5.i686.rpm SHA-256: 8e491b6ef0bc6bae4e81e57f074f88445d93b64be94260f6b3c8a9c5f606898d libwinpr-2.4.1-3.el9_0.5.x86_64.rpm SHA-256: 7d27d4f55570dba5ab0487b041b00f4cbfe43a694659f718de69287df0fcc135 libwinpr-debuginfo-2.4.1-3.el9_0.5.i686.rpm SHA-256: 4bfa6917d55631e8247e2ea08bbc347aaadb165ec23295551d2c182aae44d16f libwinpr-debuginfo-2.4.1-3.el9_0.5.x86_64.rpm SHA-256: 14692becdc4f51c0d043599e42387a511fdb75ae5d121ba89945b2bf971b28d0 Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.0 SRPM freerdp-2.4.1-3.el9_0.5.src.rpm SHA-256: 6118492e4f040fb094002f4943cad8b31adaa32a1c46f63b5bae4748b20f952a aarch64 freerdp-2.4.1-3.el9_0.5.aarch64.rpm SHA-256: b2c646bf8f8b09bcd988fbcefaadb6bf3392f771e32c4ed9e7f96d4ba7777e58 freerdp-debuginfo-2.4.1-3.el9_0.5.aarch64.rpm SHA-256: 6c1c43c563ea6cde0e62c137d6d1e06cfb15a8409c7c9643a7d5e20c87b4f158 freerdp-debugsource-2.4.1-3.el9_0.5.aarch64.rpm SHA-256: 6ee13f16f7435d4e793874873a2985c424f3b5e99899ca3e4784c48412364996 freerdp-libs-2.4.1-3.el9_0.5.aarch64.rpm SHA-256: 14031d0e83798f7fa5d67781f83784c3f8e75db3e3c523d18d7a82d5e668d760 freerdp-libs-debuginfo-2.4.1-3.el9_0.5.aarch64.rpm SHA-256: 4be63c2a0b907911d65246d9726ef8f0516b3781c142e2843e1107c9d2364277 libwinpr-2.4.1-3.el9_0.5.aarch64.rpm SHA-256: 234db1d5399ab3c68d1f7e179356340a3eca4bb4c0b32502141a7e8a0532bdec libwinpr-debuginfo-2.4.1-3.el9_0.5.aarch64.rpm SHA-256: 5f9c474de406b55a19199c6a4e5daa08982bc8d1565c88fd975de6ec4858e7dd Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.0 SRPM freerdp-2.4.1-3.el9_0.5.src.rpm SHA-256: 6118492e4f040fb094002f4943cad8b31adaa32a1c46f63b5bae4748b20f952a s390x freerdp-2.4.1-3.el9_0.5.s390x.rpm SHA-256: 43248de2ffa3c643d47a5f62a58cb7279e3b2f45109673832333b2adcf300fc1 freerdp-debuginfo-2.4.1-3.el9_0.5.s390x.rpm SHA-256: af462e67e0db37d6f5dd51cd3966101e46070821651540569a18e71ad4fa6628 freerdp-debugsource-2.4.1-3.el9_0.5.s390x.rpm SHA-256: 66b06d9a3a1aa2e53936d80496f6ecb8eff6e3c3a2f7f51e2431eabcd0e06830 freerdp-libs-2.4.1-3.el9_0.5.s390x.rpm SHA-256: 8b193a4d917ced54d5fd2c1488a3e53e63ed7478210bdd2e483c4561b65a38ec freerdp-libs-debuginfo-2.4.1-3.el9_0.5.s390x.rpm SHA-256: 9c9c616a079173abc368df8a1c29f349feb6b29a0d582f1f49dd559752154a21 libwinpr-2.4.1-3.el9_0.5.s390x.rpm SHA-256: c34cecf464b7ddff07b70baf3a4c52a00632de212edfa5f7fea290a53cda9247 libwinpr-debuginfo-2.4.1-3.el9_0.5.s390x.rpm SHA-256: 9546012a9a9b2ff5d87cba2545e9dfa5ef15f3abea028908897d10cedd3bb743 The Red Hat security contact is secalert@redhat.com . More contact details at https://access.redhat.com/security/team/contact/ .