CVE-2026-26271

Description

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, a buffer overread in `freerdp_image_copy_from_icon_data()` (libfreerdp/codec/color.c) can be triggered by crafted RDP Window Icon (TS_ICON_INFO) data. The bug is reachable over the network when a client processes icon data from an RDP server (or from a man-in-the-middle). Version 3.23.0 fixes the issue.

How to fix CVE-2026-26271

To remediate CVE-2026-26271, upgrade the affected package to a fixed version below.

• —no fix listed
• —upgrade to 3.15.0+dfsg-2.1+deb13u1 or later

Is CVE-2026-26271 being exploited?

Low — EPSS is 0.1%, meaning exploitation activity has not been observed at scale.

Affected packages (2)

• from 0
• from 0, < 3.15.0+dfsg-2.1+deb13u1

CVSS scores

References (1)

• ADVISORYsecurity-tracker.debian.org/tracker/CVE-2026-26271