From 0332cad015fdf7fac7e5c6863484f18a554e0fcf Mon Sep 17 00:00:00 2001 From: akallabeth Date: Tue, 21 Apr 2020 10:23:04 +0200 Subject: [PATCH] Fixed oob read in update_recv properly use update_type_to_string to print update type. Thanks to hac425 CVE-2020-11019 --- libfreerdp/core/update.c | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/libfreerdp/core/update.c b/libfreerdp/core/update.c index 47e2a949e..aac58819f 100644 --- a/libfreerdp/core/update.c +++ b/libfreerdp/core/update.c @@ -774,7 +774,7 @@ BOOL update_recv(rdpUpdate* update, wStream* s) } Stream_Read_UINT16(s, updateType); /* updateType (2 bytes) */ - WLog_Print(update->log, WLOG_TRACE, "%s Update Data PDU", UPDATE_TYPE_STRINGS[updateType]); + WLog_Print(update->log, WLOG_TRACE, "%s Update Data PDU", update_type_to_string(updateType)); if (!update_begin_paint(update)) goto fail;