Red Hat Product Errata RHSA-2026:16019 - Security Advisory Issued: 2026-05-11 Updated: 2026-05-11 RHSA-2026:16019 - Security Advisory Overview Updated Packages Synopsis Moderate: freerdp security update Type/Severity Security Advisory: Moderate Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for freerdp is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. The xfreerdp client can connect to RDP servers such as Microsoft Windows machines, xrdp, and VirtualBox. Security Fix(es): freerdp: FreeRDP: Denial of service due to use-after-free vulnerability (CVE-2026-25952) freerdp: FreeRDP: Denial of Service via double free vulnerability during disconnect (CVE-2026-26986) freerdp: FreeRDP: Denial of Service via endless blocking loop in Stream_EnsureCapacity (CVE-2026-27951) freerdp: FreeRDP has a heap-buffer-overflow in bitmap_cache_put via OOB cacheId (CVE-2026-29775) freerdp: FreeRDP has an out-of-bounds read in ADPCM decoders due to missing predictor/step_index bounds checks (CVE-2026-31885) freerdp: FreeRDP has a division-by-zero in ADPCM decoders when `nBlockAlign` is 0 (CVE-2026-31884) freerdp: FreeRDP: Denial of Service via crafted audio data in RDP (CVE-2026-31883) FreeRDP: FreeRDP: Information disclosure via heap memory out of bounds read (CVE-2026-33985) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 Affected Products Red Hat Enterprise Linux for x86_64 8 x86_64 Red Hat Enterprise Linux for IBM z Systems 8 s390x Red Hat Enterprise Linux for Power, little endian 8 ppc64le Red Hat Enterprise Linux for ARM 64 8 aarch64 Red Hat CodeReady Linux Builder for x86_64 8 x86_64 Red Hat CodeReady Linux Builder for Power, little endian 8 ppc64le Red Hat CodeReady Linux Builder for ARM 64 8 aarch64 Red Hat CodeReady Linux Builder for IBM z Systems 8 s390x Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 8.10 x86_64 Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 8.10 aarch64 Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 8.10 ppc64le Red Hat Enterprise Linux for IBM z Systems - Extended Life Cycle 8.10 s390x Fixes BZ - 2442768 - CVE-2026-25952 freerdp: FreeRDP: Denial of service due to use-after-free vulnerability BZ - 2442782 - CVE-2026-26986 freerdp: FreeRDP: Denial of Service via double free vulnerability during disconnect BZ - 2442783 - CVE-2026-27951 freerdp: FreeRDP: Denial of Service via endless blocking loop in Stream_EnsureCapacity BZ - 2447379 - CVE-2026-29775 freerdp: FreeRDP has a heap-buffer-overflow in bitmap_cache_put via OOB cacheId BZ - 2447383 - CVE-2026-31885 freerdp: FreeRDP has an out-of-bounds read in ADPCM decoders due to missing predictor/step_index bounds checks BZ - 2447385 - CVE-2026-31884 freerdp: FreeRDP has a division-by-zero in ADPCM decoders when `nBlockAlign` is 0 BZ - 2447386 - CVE-2026-31883 freerdp: FreeRDP: Denial of Service via crafted audio data in RDP BZ - 2453217 - CVE-2026-33985 FreeRDP: FreeRDP: Information disclosure via heap memory out of bounds read CVEs CVE-2026-25952 CVE-2026-26986 CVE-2026-27951 CVE-2026-29775 CVE-2026-31883 CVE-2026-31884 CVE-2026-31885 CVE-2026-33985 References https://access.redhat.com/security/updates/classification/#moderate Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux for x86_64 8 SRPM freerdp-2.11.7-9.el8_10.src.rpm SHA-256: f87bbe1db66026544fcc7e105db0e6cc2efc28aa73219eff37c1c066180b58a4 x86_64 freerdp-2.11.7-9.el8_10.x86_64.rpm SHA-256: 11a0426dbd4af7f72f9e82918019cb4c02a5135e51a1a6a0495caf7cfcfb73aa freerdp-debuginfo-2.11.7-9.el8_10.i686.rpm SHA-256: a807eaccd55b92ffad729f46437523c36b0044ccd3f2e457537a64beb48e7d2b freerdp-debuginfo-2.11.7-9.el8_10.x86_64.rpm SHA-256: 102967ed4d6db5de810a7d4e8bd29ccc5c4beaa537d4b061b1b72f846cc70026 freerdp-debugsource-2.11.7-9.el8_10.i686.rpm SHA-256: df66aaed828b4d082662e5bab61d763b923c0edae18a4f05fd5fe937bd988c1e freerdp-debugsource-2.11.7-9.el8_10.x86_64.rpm SHA-256: 84b76260047fe772082519c9d7c98778d7a4aea6cad0a4e7e173a908e170649e freerdp-libs-2.11.7-9.el8_10.i686.rpm SHA-256: c0f0b2b6086ee9ed4dbdbd264b9f27df631dec275a2c19fc445474286dae5c16 freerdp-libs-2.11.7-9.el8_10.x86_64.rpm SHA-256: 9b85ee56da393897579b87ab3c94fa7ce3e8e690a66bed083d11168f7cd57681 freerdp-libs-debuginfo-2.11.7-9.el8_10.i686.rpm SHA-256: 80405c4e614f753b663f2b195ca7e74a8cac6d6a26945c84a703577daa0388d8 freerdp-libs-debuginfo-2.11.7-9.el8_10.x86_64.rpm SHA-256: d0fe4c7229d0e0949f6c9e465f26f33cd053c9d61cda175890901a4172e6e084 libwinpr-2.11.7-9.el8_10.i686.rpm SHA-256: dd105a7c97ee18fc3154deb87c28ae004fe2256e87baf1644d836a65759f6c51 libwinpr-2.11.7-9.el8_10.x86_64.rpm SHA-256: 3d4b8d50d79784b6e8477478a8619237c9442805eeaca10e0855eafcb410ce73 libwinpr-debuginfo-2.11.7-9.el8_10.i686.rpm SHA-256: b3ccb7c308f69d1cde5055065c081d434a868e1157be399ab38f283ad7b113c7 libwinpr-debuginfo-2.11.7-9.el8_10.x86_64.rpm SHA-256: 4d0150b5bd44f424462f59c5c713facf9cc523ba8e784b8cafff67c7aaa0c4dc libwinpr-devel-2.11.7-9.el8_10.i686.rpm SHA-256: b1bdd9bc8522454592d48e076dcb217c9a0145ae69d3589eb226ccecc3ffb838 libwinpr-devel-2.11.7-9.el8_10.x86_64.rpm SHA-256: 9530cf494c3bfc57c22017934b6354fbfc9b111fc36c210f40af9f1c96f38eb2 Red Hat Enterprise Linux for IBM z Systems 8 SRPM freerdp-2.11.7-9.el8_10.src.rpm SHA-256: f87bbe1db66026544fcc7e105db0e6cc2efc28aa73219eff37c1c066180b58a4 s390x freerdp-2.11.7-9.el8_10.s390x.rpm SHA-256: e6c32a285b9a32a295a037717381f5e517cba4e4ab63ba63ed78eaeaa4d11ed4 freerdp-debuginfo-2.11.7-9.el8_10.s390x.rpm SHA-256: bd9e390908d9773a96c7d42aab11a7fd7ffbff9158e195648fbf595cc65bcaec freerdp-debugsource-2.11.7-9.el8_10.s390x.rpm SHA-256: ec946fed55052a747c20655d1ef0b8e2ff8869229e7988ebea6fcefc1b64e218 freerdp-libs-2.11.7-9.el8_10.s390x.rpm SHA-256: 61a6df54a3284d1a5455a5f7e5b85c23c29be2059ce6a03cf89ea9af0ba6f9a5 freerdp-libs-debuginfo-2.11.7-9.el8_10.s390x.rpm SHA-256: ed63cd4bd8b5aea17f1552f7bad7d87f946bab85e82dada6794bc0542995c3da libwinpr-2.11.7-9.el8_10.s390x.rpm SHA-256: 290b622409651347f1a83a6236c24c7ed0dc490c2c2627fdd04bd6551397d066 libwinpr-debuginfo-2.11.7-9.el8_10.s390x.rpm SHA-256: c5d740ff9a4115e66fadb65c0c26a959dd8b15c59b6f2c50c11d89451f016f6c libwinpr-devel-2.11.7-9.el8_10.s390x.rpm SHA-256: 6f2b48779d3d8ab5203e879367d8e76f8b9c8e362e91268f7e67f594df2af9c3 Red Hat Enterprise Linux for Power, little endian 8 SRPM freerdp-2.11.7-9.el8_10.src.rpm SHA-256: f87bbe1db66026544fcc7e105db0e6cc2efc28aa73219eff37c1c066180b58a4 ppc64le freerdp-2.11.7-9.el8_10.ppc64le.rpm SHA-256: 42c6e0de9d052b45aa53380cfa772b93771a313a6fa6a51baab1f60fe564e0c3 freerdp-debuginfo-2.11.7-9.el8_10.ppc64le.rpm SHA-256: 29e2f82f237ff133b6700e99d9c8ce450d070f8722834063e3652efb7e9a0093 freerdp-debugsource-2.11.7-9.el8_10.ppc64le.rpm SHA-256: ac73d43c74f539422940efc3c1ea083ae6ec2ed4281f3cc35deeef82912a8025 freerdp-libs-2.11.7-9.el8_10.ppc64le.rpm SHA-256: fe05103969a209fd73a6a9d868f33029f89ec364b798734d09a40e54a8685e60 freerdp-libs-debuginfo-2.11.7-9.el8_10.ppc64le.rpm SHA-256: 79a6ae91a78d9877ec2a75991571a120566025f9d9fbfcca61ae86c0f3e92499 libwinpr-2.11.7-9.el8_10.ppc64le.rpm SHA-256: 212a7a677a85f7c1985066039eb6b9d67da5829bbf46a09c52d3d16655e9b913 libwinpr-debuginfo-2.11.7-9.el8_10.ppc64le.rpm SHA-256: 9fc1e088eba4fb87100ed4d881882a328afbdf28de2726313ab187a24ca033f9 libwinpr-devel-2.11.7-9.el8_10.ppc64le.rpm SHA-256: 2be5e84505cf8bd4a5d32cffe49a161e71cef8b9c56af3a7720736609ce56621 Red Hat Enterprise Linux for ARM 64 8 SRPM freerdp-2.11.7-9.el8_10.src.rpm SHA-256: f87bbe1db66026544fcc7e105db0e6cc2efc28aa73219eff37c1c066180b58a4 aarch64 freerdp-2.11.7-9.el8_10.aarch64.rpm SHA-256: 5db58f1527cddd754def91ff4ca5f5f74068e2d82121f25954bd60edad4ac42f freerdp-debuginfo-2.11.7-9.el8_10.aarch64.rpm SHA-256: 1c2088d86ac27028fba80757542bfd2e2b24ea5b3a9924623e5419ba6240431b freerdp-debugsource-2.11.7-9.el8_10.aarch64.rpm SHA-256: 4b702d021cbae322fa75cf90db179bddb8adf133c425d8cdec9407a0254705b1 freerdp-libs-2.11.7-9.el8_10.aarch64.rpm SHA-256: 3e102f3c665c1787aa5c88ec6778f6bfbf17946f0cb9087053921a0a35d5ecbe freerdp-libs-debuginfo-2.11.7-9.el8_10.aarch64.rpm SHA-256: 8112f1de5963e144f76e4e749970399d3e8628ada27ed343a573a872fdcf3de5 libwinpr-2.11.7-9.el8_10.aarch64.rpm SHA-256: bcbea40b3aeca46eafa8c4c78726a4f02bad0ca9626ebad70bc7e7f27befbef1 libwinpr-debuginfo-2.11.7-9.el8_10.aarch64.rpm SHA-256: 6d0c9a377fbc01f75a87672b09cd4e8819db950534ca0a75d2ae49d4b4cca143 libwinpr-devel-2.11.7-9.el8_10.aarch64.rpm SHA-256: 3256e07b86e0fe9386e7ab39123773b6b19fadcd63931cbd27f7feb05e79c62e Red Hat CodeReady Linux Builder for x86_64 8 SRPM x86_64 freerdp-debuginfo-2.11.7-9.el8_10.i686.rpm SHA-256: a807eaccd55b92ffad729f46437523c36b0044ccd3f2e457537a64beb48e7d2b freerdp-debuginfo-2.11.7-9.el8_10.x86_64.rpm SHA-256: 102967ed4d6db5de810a7d4e8bd29ccc5c4beaa537d4b061b1b72f846cc70026 freerdp-debugsource-2.11.7-9.el8_10.i686.rpm SHA-256: df66aaed828b4d082662e5bab61d763b923c0edae18a4f05fd5fe937bd988c1e freerdp-debugsource-2.11.7-9.el8_10.x86_64.rpm SHA-256: 84b76260047fe772082519c9d7c98778d7a4aea6cad0a4e7e173a908e170649e freerdp-devel-2.11.7-9.el8_10.i686.rpm SHA-256: 9097a1d04d5ff3426ac589331aa178c0085f232c4649a774368de28446ce20df freerdp-devel-2.11.7-9.el8_10.x86_64.rpm SHA-256: 7f5b8745c522809bc8383faee1cf9a84a48014b9d24505e6062da832722a1