-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sun, 25 May 2025 15:16:34 +0530
Source: xrdp
Binary: xrdp xrdp-dbgsym
Architecture: armhf
Version: 0.9.21.1-1+deb12u1
Distribution: bookworm
Urgency: high
Maintainer: arm Build Daemon (arm-conova-04) <buildd_arm64-arm-conova-04@buildd.debian.org>
Changed-By: Abhijith PA <abhijith@debian.org>
Description:
 xrdp       - Remote Desktop Protocol (RDP) server
Closes: 1051061 1053284 1076769
Changes:
 xrdp (0.9.21.1-1+deb12u1) bookworm; urgency=high
 .
   * Non-maintainer upload
   * Fix CVE-2023-40184: Improper handling of session establishment
     errors allows bypassing OS-level session restrictions. The
     `auth_start_session` function can return non-zero. PAM error
     which may result in session restrictions such as max concurrent
     sessions per user by PAM (ex ./etc/security/limits.conf) to be
     bypassed (Closes: #1051061)
   * Fix CVE-2023-42822: Access to the font glyphs in xrdp_painter.c
     is not bounds-checked. (Closes: #1053284)
   * Fix CVE-2024-39917:  vulnerability that allows attackers to make
     an infinite number of login attempts. (Closes: #1076769)
Checksums-Sha1:
 e4b66917cee8a84716509245c245f5fb5d2f66aa 832184 xrdp-dbgsym_0.9.21.1-1+deb12u1_armhf.deb
 c51057e8049d60687520f16092ff2649dac98e69 7808 xrdp_0.9.21.1-1+deb12u1_armhf-buildd.buildinfo
 13936a093e080b3031f05bf344cbfc10264c477d 439932 xrdp_0.9.21.1-1+deb12u1_armhf.deb
Checksums-Sha256:
 5f07c4b79e6c5f71ed60a31192d01c40f5d435ad1aecc15dab6a4a78fefaa917 832184 xrdp-dbgsym_0.9.21.1-1+deb12u1_armhf.deb
 8a3a6abf4381fcecaec6c311d536cdfdb9c2967e7250a95942c72090178a6f29 7808 xrdp_0.9.21.1-1+deb12u1_armhf-buildd.buildinfo
 0b038b06d68c6cafc1fd2b2cf9d7ef69660d921085a1bdbbcbfd314a5c82a578 439932 xrdp_0.9.21.1-1+deb12u1_armhf.deb
Files:
 14c3004cd6f0daec94f94bac605e1118 832184 debug optional xrdp-dbgsym_0.9.21.1-1+deb12u1_armhf.deb
 403e95b28939b5b64d13bb62949415e1 7808 net optional xrdp_0.9.21.1-1+deb12u1_armhf-buildd.buildinfo
 071a5b37f96f6b75437ab3c06802f88a 439932 net optional xrdp_0.9.21.1-1+deb12u1_armhf.deb

-----BEGIN PGP SIGNATURE-----
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=iHSQ
-----END PGP SIGNATURE-----