Red Hat Product Errata RHSA-2026:19358 - Security Advisory Issued: 2026-05-19 Updated: 2026-05-19 RHSA-2026:19358 - Security Advisory Overview Updated Packages Synopsis Moderate: freerdp security update Type/Severity Security Advisory: Moderate Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for freerdp is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. The xfreerdp client can connect to RDP servers such as Microsoft Windows machines, xrdp, and VirtualBox. Security Fix(es): freerdp: FreeRDP: Denial of service due to use-after-free vulnerability (CVE-2026-25952) freerdp: FreeRDP: Denial of Service via double free vulnerability during disconnect (CVE-2026-26986) freerdp: FreeRDP: Denial of Service via endless blocking loop in Stream_EnsureCapacity (CVE-2026-27951) freerdp: FreeRDP has a heap-buffer-overflow in bitmap_cache_put via OOB cacheId (CVE-2026-29775) freerdp: FreeRDP has an out-of-bounds read in ADPCM decoders due to missing predictor/step_index bounds checks (CVE-2026-31885) freerdp: FreeRDP has a division-by-zero in ADPCM decoders when `nBlockAlign` is 0 (CVE-2026-31884) freerdp: FreeRDP: Denial of Service via crafted audio data in RDP (CVE-2026-31883) FreeRDP: FreeRDP: Information disclosure via heap memory out of bounds read (CVE-2026-33985) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 Affected Products Red Hat Enterprise Linux for x86_64 9 x86_64 Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.8 x86_64 Red Hat Enterprise Linux for IBM z Systems 9 s390x Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.8 s390x Red Hat Enterprise Linux for Power, little endian 9 ppc64le Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.8 ppc64le Red Hat Enterprise Linux for ARM 64 9 aarch64 Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.8 aarch64 Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.8 ppc64le Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.8 x86_64 Red Hat CodeReady Linux Builder for x86_64 9 x86_64 Red Hat CodeReady Linux Builder for Power, little endian 9 ppc64le Red Hat CodeReady Linux Builder for ARM 64 9 aarch64 Red Hat CodeReady Linux Builder for IBM z Systems 9 s390x Red Hat CodeReady Linux Builder for x86_64 - Extended Update Support 9.8 x86_64 Red Hat CodeReady Linux Builder for Power, little endian - Extended Update Support 9.8 ppc64le Red Hat CodeReady Linux Builder for IBM z Systems - Extended Update Support 9.8 s390x Red Hat CodeReady Linux Builder for ARM 64 - Extended Update Support 9.8 aarch64 Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.8 aarch64 Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.8 s390x Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 9.8 x86_64 Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 9.8 aarch64 Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 9.8 ppc64le Red Hat Enterprise Linux for IBM z Systems - Extended Life Cycle 9.8 s390x Fixes BZ - 2442768 - CVE-2026-25952 freerdp: FreeRDP: Denial of service due to use-after-free vulnerability BZ - 2442782 - CVE-2026-26986 freerdp: FreeRDP: Denial of Service via double free vulnerability during disconnect BZ - 2442783 - CVE-2026-27951 freerdp: FreeRDP: Denial of Service via endless blocking loop in Stream_EnsureCapacity BZ - 2447379 - CVE-2026-29775 freerdp: FreeRDP has a heap-buffer-overflow in bitmap_cache_put via OOB cacheId BZ - 2447383 - CVE-2026-31885 freerdp: FreeRDP has an out-of-bounds read in ADPCM decoders due to missing predictor/step_index bounds checks BZ - 2447385 - CVE-2026-31884 freerdp: FreeRDP has a division-by-zero in ADPCM decoders when `nBlockAlign` is 0 BZ - 2447386 - CVE-2026-31883 freerdp: FreeRDP: Denial of Service via crafted audio data in RDP BZ - 2453217 - CVE-2026-33985 FreeRDP: FreeRDP: Information disclosure via heap memory out of bounds read CVEs CVE-2026-25952 CVE-2026-26986 CVE-2026-27951 CVE-2026-29775 CVE-2026-31883 CVE-2026-31884 CVE-2026-31885 CVE-2026-33985 References https://access.redhat.com/security/updates/classification/#moderate Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux for x86_64 9 SRPM freerdp-2.11.7-7.el9_8.3.src.rpm SHA-256: f6e30b7a6f96e42e3d96119bdb0b54a135b18754b4fad682a1b9203679a4b528 x86_64 freerdp-2.11.7-7.el9_8.3.x86_64.rpm SHA-256: 6685ff35e14daa9757e6f1d50f0ba0dd8364775e6bb8fbb84fe365cfd9fa62c9 freerdp-debuginfo-2.11.7-7.el9_8.3.i686.rpm SHA-256: cffc715b59406b4d07ed9fd790c6f8acf7e4afb48af9c084e76a6803da821e50 freerdp-debuginfo-2.11.7-7.el9_8.3.x86_64.rpm SHA-256: d0fdbcf3cb1d95decafa413dedc917852f1e23e7de05b6f36a2af9dae6e78181 freerdp-debugsource-2.11.7-7.el9_8.3.i686.rpm SHA-256: d8c039a44fdc7f55f41d30307186318f5a938e0aacaff978169c3fbbad49199b freerdp-debugsource-2.11.7-7.el9_8.3.x86_64.rpm SHA-256: 0d2a7ac837be7f4df02a36fe596e12da65f53a4692cca0d751a561190c4160c4 freerdp-libs-2.11.7-7.el9_8.3.i686.rpm SHA-256: 8d4056091f03cdb9f65956f6fd60acf9a873a0d66a411e291ef0dd0701adc72d freerdp-libs-2.11.7-7.el9_8.3.x86_64.rpm SHA-256: c2ac9ff2dcf98ab629b5752ff03b57c25375cd554de3c5647af5f95b80aff8b2 freerdp-libs-debuginfo-2.11.7-7.el9_8.3.i686.rpm SHA-256: cd39e811c160aae6afced8963a8ccd021140e0b8b2e3f7612f8643cb782c9f41 freerdp-libs-debuginfo-2.11.7-7.el9_8.3.x86_64.rpm SHA-256: 65564ecbb227d0b77149d7b8948031edd56904e583d528f52b9bc10f8818c327 libwinpr-2.11.7-7.el9_8.3.i686.rpm SHA-256: 69cefb1aa60cf783735d805e43bb3c90466f52c87c4f46765518578dca9a4dd1 libwinpr-2.11.7-7.el9_8.3.x86_64.rpm SHA-256: efda5e0a63c92c272c1029fa8f9004b37620e757d0c0cf7e382c66cf4426b888 libwinpr-debuginfo-2.11.7-7.el9_8.3.i686.rpm SHA-256: 8c0cb212897fe4df717035ba534d19514e7bb60804e3a9dbd83cc3425965d4d0 libwinpr-debuginfo-2.11.7-7.el9_8.3.x86_64.rpm SHA-256: 9319836f4bb783bc6068bf09d617a1142278121c53a3d5382c376ed3fa562128 Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.8 SRPM freerdp-2.11.7-7.el9_8.3.src.rpm SHA-256: f6e30b7a6f96e42e3d96119bdb0b54a135b18754b4fad682a1b9203679a4b528 x86_64 freerdp-2.11.7-7.el9_8.3.x86_64.rpm SHA-256: 6685ff35e14daa9757e6f1d50f0ba0dd8364775e6bb8fbb84fe365cfd9fa62c9 freerdp-debuginfo-2.11.7-7.el9_8.3.i686.rpm SHA-256: cffc715b59406b4d07ed9fd790c6f8acf7e4afb48af9c084e76a6803da821e50 freerdp-debuginfo-2.11.7-7.el9_8.3.x86_64.rpm SHA-256: d0fdbcf3cb1d95decafa413dedc917852f1e23e7de05b6f36a2af9dae6e78181 freerdp-debugsource-2.11.7-7.el9_8.3.i686.rpm SHA-256: d8c039a44fdc7f55f41d30307186318f5a938e0aacaff978169c3fbbad49199b freerdp-debugsource-2.11.7-7.el9_8.3.x86_64.rpm SHA-256: 0d2a7ac837be7f4df02a36fe596e12da65f53a4692cca0d751a561190c4160c4 freerdp-libs-2.11.7-7.el9_8.3.i686.rpm SHA-256: 8d4056091f03cdb9f65956f6fd60acf9a873a0d66a411e291ef0dd0701adc72d freerdp-libs-2.11.7-7.el9_8.3.x86_64.rpm SHA-256: c2ac9ff2dcf98ab629b5752ff03b57c25375cd554de3c5647af5f95b80aff8b2 freerdp-libs-debuginfo-2.11.7-7.el9_8.3.i686.rpm SHA-256: cd39e811c160aae6afced8963a8ccd021140e0b8b2e3f7612f8643cb782c9f41 freerdp-libs-debuginfo-2.11.7-7.el9_8.3.x86_64.rpm SHA-256: 65564ecbb227d0b77149d7b8948031edd56904e583d528f52b9bc10f8818c327 libwinpr-2.11.7-7.el9_8.3.i686.rpm SHA-256: 69cefb1aa60cf783735d805e43bb3c90466f52c87c4f46765518578dca9a4dd1 libwinpr-2.11.7-7.el9_8.3.x86_64.rpm SHA-256: efda5e0a63c92c272c1029fa8f9004b37620e757d0c0cf7e382c66cf4426b888 libwinpr-debuginfo-2.11.7-7.el9_8.3.i686.rpm SHA-256: 8c0cb212897fe4df717035ba534d19514e7bb60804e3a9dbd83cc3425965d4d0 libwinpr-debuginfo-2.11.7-7.el9_8.3.x86_64.rpm SHA-256: 9319836f4bb783bc6068bf09d617a1142278121c53a3d5382c376ed3fa562128 Red Hat Enterprise Linux for IBM z Systems 9 SRPM freerdp-2.11.7-7.el9_8.3.src.rpm SHA-256: f6e30b7a6f96e42e3d96119bdb0b54a135b18754b4fad682a1b9203679a4b528 s390x freerdp-2.11.7-7.el9_8.3.s390x.rpm SHA-256: 9b87b434f11aa348090a1b69e87dd73d1617fe74108eea3e55f95019ab863708 freerdp-debuginfo-2.11.7-7.el9_8.3.s390x.rpm SHA-256: d68ba39b58080b0b8b18679d322e2dfa70f7671c3018e788bf5ac557e05eeed0 freerdp-debugsource-2.11.7-7.el9_8.3.s390x.rpm SHA-256: fe1ca2979c72b829ffbb49e9ce61bf9b50eb9f5350bda27093980953c8713d97 freerdp-libs-2.11.7-7.el9_8.3.s390x.rpm SHA-256: 5826d005129bf3abf19b51b63999c60c0b1ca438bc268bbbdb8c0340ea33abf9 freerdp-libs-debuginfo-2.11.7-7.el9_8.3.s390x.rpm SHA-256: a7c5a2f68de377945cc5f5814202b5f1624b4bd0537d16f4c94fec2c6c469b5b libwinpr-2.11.7-7.el9_8.3.s390x.rpm SHA-256: 6c9ac7a126b2cf3c1175b641db69c8bc90158d781403674cc3016b86d656b035 libwinpr-debuginfo-2.11.7-7.el9_8.3.s390x.rpm SHA-256: a9c7bc435b1330cf3223e4e6ad3cc0fe6a1029ee385c396134760c4a63bcbb0f Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.8 SRPM freerdp-2.11.7-7.el9_8.3.src.rpm SHA-256: f6e30b7a6f96e42e3d96119bdb0b54a135b18754b4fad682a1b9203679a4b528 s390x freerdp-2.11.7-7.el9_8.3.s390x.rpm SHA-256: 9b87b434f11aa348090a1b69e87dd73d1617fe74108eea3e55f95019ab863708 freerdp-debuginfo-2.11.7-7.el9_8.3.s390x.rpm SHA-256: d68ba39b58080b0b8b18679d322e2dfa70f7671c3018e788bf5ac557e05eeed0 freerdp-debugsource-2.11.7-7.el9_8.3.s390x.rpm SHA-256: fe1ca2979c72b829ffbb49e9ce61bf9b50eb9f5350bda27093980953c8713d97 freerdp-libs-2.11.7-7.el9_8.3.s390x.rpm SHA-256: 5826d005129bf3abf19