Skip to content

Refresh stable-2.0 base: rebase WSLg patches from FreeRDP 2.4.0 onto current upstream stable-2.0 (2.11.8-dev + CVE-2026-24684)#8

Draft
benhillis wants to merge 531 commits into
workingfrom
user/benhill/freerdp-stable-2.0-refresh
Draft

Refresh stable-2.0 base: rebase WSLg patches from FreeRDP 2.4.0 onto current upstream stable-2.0 (2.11.8-dev + CVE-2026-24684)#8
benhillis wants to merge 531 commits into
workingfrom
user/benhill/freerdp-stable-2.0-refresh

Microsoft mandatory file

0eb5f28
Select commit
Loading
Failed to load commit list.
GitHub Advanced Security / CodeQL failed May 19, 2026 in 2s

5 new alerts including 5 high severity security vulnerabilities

New alerts in code changed by this pull request

Security Alerts:

  • 5 high

Alerts not introduced by this pull request might have been detected because the code changes were too large.

See annotations below for details.

View all branch alerts.

Annotations

Check failure on line 692 in libfreerdp/core/connection.c

See this annotation in the file changed.

Code scanning / CodeQL

Use of a broken or risky cryptographic algorithm High

This file makes use of a broken or weak cryptographic algorithm (specified by
invocation of macro WINPR_CIPHER_DES_EDE3_CBC
).
This file makes use of a broken or weak cryptographic algorithm (specified by
invocation of macro WINPR_CIPHER_DES_EDE3_CBC
).
This file makes use of a broken or weak cryptographic algorithm (specified by
call to winpr_RC4_New
).
This file makes use of a broken or weak cryptographic algorithm (specified by
call to winpr_RC4_New
).
This file makes use of a broken or weak cryptographic algorithm (specified by
invocation of macro WINPR_CIPHER_DES_EDE3_CBC
).
This file makes use of a broken or weak cryptographic algorithm (specified by
invocation of macro WINPR_CIPHER_DES_EDE3_CBC
).
This file makes use of a broken or weak cryptographic algorithm (specified by
call to winpr_RC4_New
).
This file makes use of a broken or weak cryptographic algorithm (specified by
call to winpr_RC4_New
).

Check failure on line 1877 in libfreerdp/core/rdp.c

See this annotation in the file changed.

Code scanning / CodeQL

Use of a broken or risky cryptographic algorithm High

This file makes use of a broken or weak cryptographic algorithm (specified by
call to rdp_free_rc4_decrypt_keys
).
This file makes use of a broken or weak cryptographic algorithm (specified by
call to winpr_RC4_New
).
This file makes use of a broken or weak cryptographic algorithm (specified by
call to rdp_free_rc4_encrypt_keys
).
This file makes use of a broken or weak cryptographic algorithm (specified by
call to winpr_RC4_New
).
This file makes use of a broken or weak cryptographic algorithm (specified by
call to rdp_free_rc4_decrypt_keys
).
This file makes use of a broken or weak cryptographic algorithm (specified by
call to rdp_free_rc4_encrypt_keys
).
This file makes use of a broken or weak cryptographic algorithm (specified by
call to rdp_free_rc4_decrypt_keys
).
This file makes use of a broken or weak cryptographic algorithm (specified by
call to rdp_free_rc4_encrypt_keys
).

Check failure on line 699 in libfreerdp/core/security.c

See this annotation in the file changed.

Code scanning / CodeQL

Use of a broken or risky cryptographic algorithm High

This file makes use of a broken or weak cryptographic algorithm (specified by
call to winpr_RC4_New
).
This file makes use of a broken or weak cryptographic algorithm (specified by call to winpr_RC4_New).
This file makes use of a broken or weak cryptographic algorithm (specified by call to winpr_RC4_New).

Check failure on line 493 in winpr/libwinpr/sspi/NTLM/ntlm_compute.c

See this annotation in the file changed.

Code scanning / CodeQL

Use of a broken or risky cryptographic algorithm High

This file makes use of a broken or weak cryptographic algorithm (specified by
call to winpr_RC4_New
).
This file makes use of a broken or weak cryptographic algorithm (specified by
call to winpr_RC4_New
).
This file makes use of a broken or weak cryptographic algorithm (specified by
call to winpr_RC4_New
).
This file makes use of a broken or weak cryptographic algorithm (specified by
call to winpr_RC4_New
).
This file makes use of a broken or weak cryptographic algorithm (specified by
call to winpr_RC4_New
).

Check failure on line 113 in winpr/libwinpr/utils/unwind/debug.c

See this annotation in the file changed.

Code scanning / CodeQL

Suspicious add with sizeof High

Suspicious sizeof offset in a pointer arithmetic expression. The type of the pointer is
char **
.