Remote Desktop Connection for Linux Vulnerability Exposes Servers

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

7.4

Remote Desktop Connection for Linux Vulnerability Exposes Servers

RHSA-2026:3975

Summary

Multiple security issues were found in the Remote Desktop Connection for Linux (FreeRDP) client and server software. These vulnerabilities allow an attacker to potentially execute arbitrary code on a system or extract sensitive information. Users of FreeRDP are advised to update to the latest version to prevent exploitation.

What to do

Update redhat freerdp to version 2:2.11.7-1.el9_6.2.
Update redhat freerdp-debuginfo to version 2:2.11.7-1.el9_6.2.
Update redhat freerdp-debugsource to version 2:2.11.7-1.el9_6.2.
Update redhat freerdp-devel to version 2:2.11.7-1.el9_6.2.
Update redhat freerdp-libs to version 2:2.11.7-1.el9_6.2.
Update redhat freerdp-libs-debuginfo to version 2:2.11.7-1.el9_6.2.
Update redhat libwinpr to version 2:2.11.7-1.el9_6.2.
Update redhat libwinpr-debuginfo to version 2:2.11.7-1.el9_6.2.
Update redhat libwinpr-devel to version 2:2.11.7-1.el9_6.2.

Affected software

Vendor	Product	Affected versions	Fix available
redhat	freerdp	<= 2:2.11.7-1.el9_6.2	2:2.11.7-1.el9_6.2
redhat	freerdp-debuginfo	<= 2:2.11.7-1.el9_6.2	2:2.11.7-1.el9_6.2
redhat	freerdp-debugsource	<= 2:2.11.7-1.el9_6.2	2:2.11.7-1.el9_6.2
redhat	freerdp-devel	<= 2:2.11.7-1.el9_6.2	2:2.11.7-1.el9_6.2
redhat	freerdp-libs	<= 2:2.11.7-1.el9_6.2	2:2.11.7-1.el9_6.2
redhat	freerdp-libs-debuginfo	<= 2:2.11.7-1.el9_6.2	2:2.11.7-1.el9_6.2
redhat	libwinpr	<= 2:2.11.7-1.el9_6.2	2:2.11.7-1.el9_6.2
redhat	libwinpr-debuginfo	<= 2:2.11.7-1.el9_6.2	2:2.11.7-1.el9_6.2
redhat	libwinpr-devel	<= 2:2.11.7-1.el9_6.2	2:2.11.7-1.el9_6.2
redhat	freerdp	<= 2:2.11.7-1.el9_6.2	2:2.11.7-1.el9_6.2
redhat	freerdp-debuginfo	<= 2:2.11.7-1.el9_6.2	2:2.11.7-1.el9_6.2
redhat	freerdp-debugsource	<= 2:2.11.7-1.el9_6.2	2:2.11.7-1.el9_6.2
redhat	freerdp-devel	<= 2:2.11.7-1.el9_6.2	2:2.11.7-1.el9_6.2
redhat	freerdp-libs	<= 2:2.11.7-1.el9_6.2	2:2.11.7-1.el9_6.2
redhat	freerdp-libs-debuginfo	<= 2:2.11.7-1.el9_6.2	2:2.11.7-1.el9_6.2
redhat	libwinpr	<= 2:2.11.7-1.el9_6.2	2:2.11.7-1.el9_6.2
redhat	libwinpr-debuginfo	<= 2:2.11.7-1.el9_6.2	2:2.11.7-1.el9_6.2
redhat	libwinpr-devel	<= 2:2.11.7-1.el9_6.2	2:2.11.7-1.el9_6.2

Original title

Red Hat Security Advisory: freerdp security update

osv CVSS3.1 7.4

https://access.redhat.com/errata/RHSA-2026:3975 Vendor Advisory
https://access.redhat.com/security/updates/classification/#important Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=2429645 Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=2429649 Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=2429653 Third Party Advisory
https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_3975.j... Vendor Advisory
https://access.redhat.com/security/cve/CVE-2026-22855 Third Party Advisory
https://www.cve.org/CVERecord?id=CVE-2026-22855 Vendor Advisory
https://nvd.nist.gov/vuln/detail/CVE-2026-22855 Vendor Advisory
https://github.com/FreeRDP/FreeRDP/releases/tag/3.20.1 Third Party Advisory
https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-rwp3-g84r-6mx9 Third Party Advisory
https://access.redhat.com/security/cve/CVE-2026-22858 Third Party Advisory
https://www.cve.org/CVERecord?id=CVE-2026-22858 Vendor Advisory
https://nvd.nist.gov/vuln/detail/CVE-2026-22858 Vendor Advisory
https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-qmqf-m84q-x896 Third Party Advisory
https://access.redhat.com/security/cve/CVE-2026-22859 Third Party Advisory
https://www.cve.org/CVERecord?id=CVE-2026-22859 Vendor Advisory
https://nvd.nist.gov/vuln/detail/CVE-2026-22859 Vendor Advisory
https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-56f5-76qv-2r36 Third Party Advisory

Published: 10 Mar 2026 · Updated: 13 Mar 2026 · First seen: 10 Mar 2026