Vulnerability CVE-2023-40184: Information

Description

xrdp is an open source remote desktop protocol (RDP) server. In versions prior to 0.9.23 improper handling of session establishment errors allows bypassing OS-level session restrictions. The `auth_start_session` function can return non-zero (1) value on, e.g., PAM error which may result in in session restrictions such as max concurrent sessions per user by PAM (ex ./etc/security/limits.conf) to be bypassed. Users (administrators) don't use restrictions by PAM are not affected. This issue has been addressed in release version 0.9.23. Users are advised to upgrade. There are no known workarounds for this issue.

Severity: MEDIUM (6.5) Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Published: Aug. 30, 2023
Modified: Sept. 16, 2023
Error type identifier: CWE-755

Fixed packages

Package name
Branch
Fixed in version
Version from repository
Errata ID
Task #
State
xrdpsisyphus0.9.23-alt10.9.24-alt1ALT-PU-2023-5794-2330049Fixed
xrdpsisyphus_e2k0.9.23-alt10.9.24-alt1ALT-PU-2023-5834-1-Fixed
xrdpsisyphus_mipsel0.9.23-alt10.9.24-alt1ALT-PU-2023-5922-1-Fixed
xrdpsisyphus_riscv640.9.23-alt10.9.24-alt1ALT-PU-2023-5892-1-Fixed
xrdpp100.9.23-alt10.9.24-alt1ALT-PU-2023-5797-2330053Fixed
xrdpp10_e2k0.9.23-alt10.9.23.1-alt1ALT-PU-2023-5869-1-Fixed
xrdpp90.9.23-alt10.9.23.1-alt1ALT-PU-2023-5872-2330056Fixed
xrdpc10f10.9.23-alt10.9.23.1-alt1ALT-PU-2023-5796-2330054Fixed
xrdpc9f20.9.23-alt10.9.23.1-alt1ALT-PU-2023-5795-2330055Fixed

References to Advisories, Solutions, and Tools

    1. Configuration 1

      cpe:2.3:a:neutrinolabs:xrdp:*:*:*:*:*:*:*:*
      End excliding
      0.9.23