FreeRDP, an open-source RDP client, contains multiple security vulnerabilities: CVE-2026-25952 (use-after-free leading to denial of service), CVE-2026-26986 (double free during disconnect causing denial of service), CVE-2026-27951 (endless blocking loop causing denial of service), CVE-2026-29775 (heap-buffer-overflow via out-of-bounds cacheId), CVE-2026-31885 (out-of-bounds read in ADPCM decoders due to missing bounds checks), CVE-2026-31884 (division-by-zero in ADPCM decoders when nBlockAlign is zero), CVE-2026-31883 (denial of service via crafted audio data), and CVE-2026-33985 (information disclosure via heap memory out-of-bounds read). These vulnerabilities impact Red Hat Enterprise Linux 9 and related variants across multiple architectures. Red Hat has released updated freerdp packages to remediate these issues as detailed in advisory RHSA-2026:19358.

The vulnerabilities collectively allow an attacker to cause denial of service conditions through memory corruption and logic errors in FreeRDP, potentially disrupting remote desktop sessions. One vulnerability also allows information disclosure via out-of-bounds heap reads. No known exploits in the wild have been reported. The impact is rated moderate by Red Hat, reflecting the potential for service disruption and limited information leakage.

Red Hat has released updated freerdp packages for affected Red Hat Enterprise Linux 9 versions and related builds. Users should apply these official updates promptly to remediate the vulnerabilities. Detailed update instructions are available in the Red Hat advisory RHSA-2026:19358 at https://access.redhat.com/errata/RHSA-2026:19358. No additional mitigation steps are indicated by the vendor advisory.