gnome-remote-desktop-0.1.8-4.el8_10

エラータID: AXSA:2025-10476:01

Release date: 
Tuesday, July 15, 2025 - 16:23
Subject: 
gnome-remote-desktop-0.1.8-4.el8_10
Affected Channels: 
Asianux Server 8 for x86_64
Severity: 
Moderate
Description: 

GNOME Remote Desktop is a remote desktop and screen sharing service for the GNOME desktop environment.

Security Fix(es):

* gnome-remote-desktop: Uncontrolled Resource Consumption due to Malformed RDP PDUs (CVE-2025-5024)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

CVE-2025-5024
A flaw was found in gnome-remote-desktop. Once gnome-remote-desktop listens for RDP connections, an unauthenticated attacker can exhaust system resources and repeatedly crash the process. There may be a resource leak after many attacks, which will also result in gnome-remote-desktop no longer being able to open files even after it is restarted via systemd.

Solution: 

Update packages.

CVEs: 
CVE-2025-5024
A flaw was found in gnome-remote-desktop. Once gnome-remote-desktop listens for RDP connections, an unauthenticated attacker can exhaust system resources and repeatedly crash the process. There may be a resource leak after many attacks, which will also result in gnome-remote-desktop no longer being able to open files even after it is restarted via systemd.
Additional Info: 

N/A

Download: 

SRPMS
  1. gnome-remote-desktop-0.1.8-4.el8_10.src.rpm
    MD5: cfa934b0364f2e88f32f5f51800041a2
    SHA-256: 83f49edeb7feb683244ce73fbfc1c265c69de7ee88f886591762dbff35c30f33
    Size: 60.19 kB

Asianux Server 8 for x86_64
  1. gnome-remote-desktop-0.1.8-4.el8_10.x86_64.rpm
    MD5: 57107d00ac3d48c56df97bad5cc99bc4
    SHA-256: 66e6d621831a09265b95066bbd39e2518f4ed53c21bc68df05db937587c08cf3
    Size: 70.32 kB