Critical Vulnerabilities in FreeRDP Addressed by SUSE Security Update

Critical Vulnerabilities in FreeRDP Addressed by SUSE Security Update

First seen 1 Apr 2026, 05:00 UTC Linuxsecurity 96% similarity 72.0

Article Content

Browse articles
ThreatCluster

SUSE has released a security update for FreeRDP, addressing six critical vulnerabilities. The issues include buffer overreads and out-of-bounds writes, which could lead to heap buffer overflows and arbitrary code execution. Specifically, CVE-2026-31806 and CVE-2026-31883 are particularly concerning due to their potential for remote exploitation. The vulnerabilities affect multiple architectures, including aarch64, ppc64le, s390x, x86_64, and i586. The update provides patch instructions for users to mitigate these risks. Users are advised to apply the patches using recommended installation methods like YaST or zypper. The vulnerabilities were disclosed in late February and early March 2026, with the update published on March 31, 2026. Immediate action is recommended to secure affected systems.

Key Points: • SUSE's FreeRDP update addresses six critical vulnerabilities. • CVE-2026-31806 and CVE-2026-31883 could allow remote code execution. • Users should apply patches immediately using YaST or zypper.

ThreatCluster AI

Timeline

2026-02-25
CVE-2026-26271 published
2026-02-25
CVE-2026-26955 published
2026-02-25
CVE-2026-26965 published
2026-03-13
CVE-2026-31806 published
2026-03-13
CVE-2026-31883 published
2026-03-13
CVE-2026-31885 published
2026-03-31
SUSE FreeRDP security update released

Community

Browse all →