stable

xrdp-0.9.1-5.fc25

FEDORA-2017-8fffbae8af created by bojan 7 years ago for Fedora 25

WARNING: Please note that this update comes with a slightly different syntax of sesman.ini file, so if you edited this file by hand, you may need to look at the .rpmnew file and merge any required changes by hand.

This release also creates three files in /etc/xrdp directory if they don't already exist or are empty:

  • rsakeys.ini
  • cert.pem
  • key.pem

Also note that in Fedora, the only backend that will really work is still Xvnc for now.

New features

  • New xorgxrdp backend using existing Xorg with additional modules
  • Improvements to X11rdp backend
  • Support for IPv6 (disabled by default)
  • Initial support for RemoteFX Codec (disabled by default)
  • Support for TLS security layer (preferred over RDP layer if supported by the client)
  • Support for disabling deprecated SSLv3 protocol and for selecting custom cipher suites in xrdp.ini
  • Support for bidirectional fastpath (enabled in both directions by default)
  • Support clients that don't support drawing orders, such as MS RDP client for Android, ChromeRDP (disabled by default)
  • More configurable login screen
  • Support for new virtual channels:
    • rdpdr: device redirection
    • rdpsnd: audio output
    • cliprdr: clipboard
    • xrdpvr: xrdp video redirection channel (can be used along with NeutrinoRDP client)
  • Support for disabling virtual channels globally or by session type
  • Allow to specify the path for backends (Xorg, X11rdp, Xvnc)
  • Added files for systemd support
  • Multi-monitor support
  • xrdp-chansrv stroes logs in ${XDG_DATA_HOME}/xrdp now

Security fixes

  • User's password could be recovered from the Xvnc password file
  • X11 authentication was not used

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2017-8fffbae8af

This update has been submitted for testing by bojan.

7 years ago
User Icon itamarjp commented & provided feedback 7 years ago
karma

thank you.

BZ#1404972 CVE-2013-1430 xrdp: Cleartext password shown in file after logging into xrdp session [epel-all]
BZ#1404971 CVE-2013-1430 xrdp: Cleartext password shown in file after logging into xrdp session [fedora-all]

bojan edited this update.

New build(s):

  • xrdp-0.9.1-3.fc25

Removed build(s):

  • xrdp-0.9.1-2.fc25
7 years ago

This update has been pushed to testing.

7 years ago

bojan edited this update.

New build(s):

  • xrdp-0.9.1-4.fc25

Removed build(s):

  • xrdp-0.9.1-3.fc25
7 years ago

This update has been submitted for testing by bojan.

7 years ago

This update has been pushed to testing.

7 years ago

bojan edited this update.

New build(s):

  • xrdp-0.9.1-5.fc25

Removed build(s):

  • xrdp-0.9.1-4.fc25
7 years ago

This update has been submitted for testing by bojan.

7 years ago

This update has been pushed to testing.

7 years ago
User Icon fredlima commented & provided feedback 7 years ago
karma

seems fine

BZ#1404972 CVE-2013-1430 xrdp: Cleartext password shown in file after logging into xrdp session [epel-all]
BZ#1404971 CVE-2013-1430 xrdp: Cleartext password shown in file after logging into xrdp session [fedora-all]
User Icon itamarjp commented & provided feedback 7 years ago
karma

thank you

BZ#1404972 CVE-2013-1430 xrdp: Cleartext password shown in file after logging into xrdp session [epel-all]
BZ#1404971 CVE-2013-1430 xrdp: Cleartext password shown in file after logging into xrdp session [fedora-all]
User Icon greysonsilva commented & provided feedback 7 years ago
karma

+1

BZ#1404972 CVE-2013-1430 xrdp: Cleartext password shown in file after logging into xrdp session [epel-all]
BZ#1404971 CVE-2013-1430 xrdp: Cleartext password shown in file after logging into xrdp session [fedora-all]

This update has been submitted for stable by bodhi.

7 years ago

This update has been pushed to stable.

7 years ago

Please login to add feedback.

Metadata
Type
security
Karma
3
Signed
Content Type
RPM
Test Gating
Autopush Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
disabled
Dates
submitted
7 years ago
in testing
7 years ago
in stable
7 years ago
modified
7 years ago
BZ#1404971 CVE-2013-1430 xrdp: Cleartext password shown in file after logging into xrdp session [fedora-all]
0
3
BZ#1404972 CVE-2013-1430 xrdp: Cleartext password shown in file after logging into xrdp session [epel-all]
0
3

Automated Test Results