Multiple Heap Buffer Overflow Vulnerabilities in FreeRDP Affecting SUSE and openSUSE

Multiple Heap Buffer Overflow Vulnerabilities in FreeRDP Affecting SUSE and openSUSE

First seen 11 Feb 2026, 11:49 UTC Linuxsecurity 88% similarity 34.5

Article Content

Browse articles
ThreatCluster

Recent updates for FreeRDP address multiple heap buffer overflow vulnerabilities identified as CVE-2026-22852, CVE-2026-22854, CVE-2026-22856, and CVE-2026-22859. These vulnerabilities can be exploited by malicious RDP servers to cause heap overflows and use-after-free conditions, impacting users of SUSE and openSUSE systems. The vulnerabilities were published on January 14, 2026, and have been addressed in security updates released on February 10, 2026.

ThreatCluster AI

Timeline

2025-05-16
CVE-2025-4478 published
2026-01-14
CVE-2026-22852, 22854, 22856, 22859 published
2026-01-14
CVE-2026-22859 published
2026-01-14
CVE-2026-22858 published
2026-01-14
CVE-2026-22854 published
2026-01-14
CVE-2026-22853 published
2026-01-14
CVE-2026-22857 published
2026-01-14
CVE-2026-22851 published
2026-01-14
CVE-2026-22856 published
2026-01-14
CVE-2026-22855 published

Community

Browse all →