-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sun, 25 May 2025 15:16:34 +0530
Source: xrdp
Binary: xrdp xrdp-dbgsym
Architecture: mipsel
Version: 0.9.21.1-1+deb12u1
Distribution: bookworm
Urgency: high
Maintainer: mipsel Build Daemon (mipsel-osuosl-05) <buildd_mips64el-mipsel-osuosl-05@buildd.debian.org>
Changed-By: Abhijith PA <abhijith@debian.org>
Description:
 xrdp       - Remote Desktop Protocol (RDP) server
Closes: 1051061 1053284 1076769
Changes:
 xrdp (0.9.21.1-1+deb12u1) bookworm; urgency=high
 .
   * Non-maintainer upload
   * Fix CVE-2023-40184: Improper handling of session establishment
     errors allows bypassing OS-level session restrictions. The
     `auth_start_session` function can return non-zero. PAM error
     which may result in session restrictions such as max concurrent
     sessions per user by PAM (ex ./etc/security/limits.conf) to be
     bypassed (Closes: #1051061)
   * Fix CVE-2023-42822: Access to the font glyphs in xrdp_painter.c
     is not bounds-checked. (Closes: #1053284)
   * Fix CVE-2024-39917:  vulnerability that allows attackers to make
     an infinite number of login attempts. (Closes: #1076769)
Checksums-Sha1:
 78f34a01d32d96882b5705b00a525feb9621d407 860368 xrdp-dbgsym_0.9.21.1-1+deb12u1_mipsel.deb
 abe36d14866a5b37e5649495d67537550cc5df11 7746 xrdp_0.9.21.1-1+deb12u1_mipsel-buildd.buildinfo
 df08803d52a1622be670b544f1e44c688a00170d 486100 xrdp_0.9.21.1-1+deb12u1_mipsel.deb
Checksums-Sha256:
 1101a0e68331d80df7df2af91e69a141e090e1969615bb22e4d1eea6e2e14493 860368 xrdp-dbgsym_0.9.21.1-1+deb12u1_mipsel.deb
 f405c1f910fc75a77efb330c13a839f2ce13d0a558fc0dabb83896a58fba512f 7746 xrdp_0.9.21.1-1+deb12u1_mipsel-buildd.buildinfo
 3da9f7cb994d11d567d51e5c1f3bc81d318c207c6bc7b048cc57a5f8c10719e5 486100 xrdp_0.9.21.1-1+deb12u1_mipsel.deb
Files:
 96cd647d0f8a555a37995ce98103d20e 860368 debug optional xrdp-dbgsym_0.9.21.1-1+deb12u1_mipsel.deb
 5e956766589aa9c8b3cb69a499bc29df 7746 net optional xrdp_0.9.21.1-1+deb12u1_mipsel-buildd.buildinfo
 35bbae4ea5c067ef4cacda466c5fd134 486100 net optional xrdp_0.9.21.1-1+deb12u1_mipsel.deb

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEEYLhEzFkGpb3yYRVHmlVdU6AM9BUFAmhEUIoACgkQmlVdU6AM
9BXv2Q/+NhJaNtowktSceiCYjk9dTlX1zIjYD+nmO2EL/24UW5m9U9JSixCIPpCF
5LkpJ5bSzecafsQTGrtckZquDVSPMiCL0j7hm5jiPkNVH8DUkwwetMQ8GwW3uyA+
GlcgE51FyXjLb2nyl8vJKoxMPhznTROkgC1iwGoruAVsl8Rigm8IEK4DhhZFVn3L
miOfnz1F9GKxcZX+s28bzMv3y2e1e9qeRb9X1MR8jQSNLB6QmxUHBeLzIO75DL53
ny/Y6p01DtZ12dzqU0WUhtKxtCVE6CG48Qy0kHY7m+erhbwb7Hu1Am6nI1Z3NeQu
MtEgbRqpjB/NSZ2lXjrAM/Got4CiIDpBRV7tCW5ieAAKCWbH+vgKOGxCkBxk8BN7
/548GvXcxr1XAl4ZiqDChytOpnUaOwRk6QaAEQNr12zgeKyheYCfOKv5GoszMFsy
rQDi9JrCT6Jz8Sw5KFeyY4hno4tLl/vTDCrQ6Pkm/dPb9VkHdCvRHtQzIHxWkh8h
BVu6semt3AxeXE11jA2enDfwYACHx1thaIqH7nix8usIjICP9noVmQNDOKEJhlKj
aI5u7OPl1Oow+imqpyPeb6KQ7JpV+lECRB7p+bcrxbvup1CkKhMZ3lqNOYxQ7HLe
M4bBtAnyWwBpuC0NsuS5eD8CJiMy+5e12U+DOCfpMzT/T2uMzbQ=
=cRHS
-----END PGP SIGNATURE-----