CVE-2025-4478

Publication date 16 May 2025

Last updated 8 July 2025

Ubuntu priority

Cvss 3 Severity Score

A flaw was found in the FreeRDP used by Anaconda's remote install feature, where a crafted RDP packet could trigger a segmentation fault. This issue causes the service to crash and remain defunct, resulting in a denial of service. It occurs pre-boot and is likely due to a NULL pointer dereference. Rebooting is required to recover the system.

Read the notes from the security team

Status

Show unmaintained releases

Package	Ubuntu Release	Status
freerdp	25.04 plucky	Not in release
	24.10 oracular	Not in release
	24.04 LTS noble	Not in release
	22.04 LTS jammy	Not in release
	18.04 LTS bionic	Not affected
	16.04 LTS xenial	Not affected
freerdp2	25.04 plucky	Not affected
	24.10 oracular	Not affected
	24.04 LTS noble	Not affected
	22.04 LTS jammy	Not affected
	20.04 LTS focal	Not affected
	18.04 LTS bionic	Not affected
freerdp3	25.04 plucky	Fixed 3.14.0+dfsg-1ubuntu1.1
	24.10 oracular	Ignored end of life
	24.04 LTS noble	Fixed 3.5.1+dfsg1-0ubuntu1.1
	22.04 LTS jammy	Not in release

Notes

mdeslaur

Introduced in 3.0.0-beta1 by: https://github.com/FreeRDP/FreeRDP/commit/cf2daeb01d3325a9de97348047caf4b8974f2b76

Patch details

For informational purposes only. We recommend not to cherry-pick updates. How can I get the fixes?

Package	Patch details
freerdp3	Upstream: a4bb702

Severity score breakdown

Parameter	Value
Base score	7.1 · High
Attack vector	Network
Attack complexity	Low
Privileges required	None
User interaction	Required
Scope	Unchanged
Confidentiality	None
Integrity impact	Low
Availability impact	High
Vector	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:H