From 7b942d144ed627db2a38bcbebb7a8210eb9023d0 Mon Sep 17 00:00:00 2001
From: Salvatore Bonaccorso <carnil@debian.org>
Date: Wed, 24 Apr 2024 09:08:55 +0200
Subject: Add CVE-2024-32658/FreeRDP

---
 data/CVE/list | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/data/CVE/list b/data/CVE/list
index a0a6e00648..7e1cbc2476 100644
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -42,7 +42,10 @@ CVE-2024-32660 (FreeRDP is a free implementation of the Remote Desktop Protocol.
 CVE-2024-32659 (FreeRDP is a free implementation of the Remote Desktop Protocol. FreeR ...)
 	TODO: check
 CVE-2024-32658 (FreeRDP is a free implementation of the Remote Desktop Protocol. FreeR ...)
-	TODO: check
+	- freerdp3 <unfixed>
+	- freerdp2 <unfixed>
+	NOTE: https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-vpv3-m3m9-4c2v
+	NOTE: Fixed by: https://github.com/FreeRDP/FreeRDP/commit/1a755d898ddc028cc818d0dd9d49d5acff4c44bf (3.5.1)
 CVE-2024-32482 (The Tillitis TKey signer device application is an ed25519 signing tool ...)
 	TODO: check
 CVE-2024-32258 (The network server of fceux 2.7.0 has a path traversal vulnerability,  ...)
-- 
cgit v1.2.3