ASA-2019-00486 – Das U-Boot: Unbounded memcpy when parsing a UDP packet due to integer underflow

There is an unbounded memcpy when parsing a UDP packet due to a net_process_received_packet() integer underflow during an *udp_packet_handler call.

ASA-2019-00064 – rdesktop: Integer underflow that leads to a heap-based buffer overflow in function seamless_process()

rdesktop versions up to and including v1.8.3 contain an integer underflow that leads to a heap-based buffer overflow in function seamless_process() and results in a memory corruption and probably even a remote code execution.

ASA-2019-00063 – rdesktop: Integer underflow that leads to a heap-based buffer overflow in function rdpsnddbg_process()

rdesktop versions up to and including v1.8.3 contain an integer underflow that leads to a heap-based buffer overflow in function rdpsnddbg_process() and results in a memory corruption and probably even a remote code execution.

ASA-2019-00062 – rdesktop: Integer underflow that leads to a heap-based buffer overflow in function lspci_process()

rdesktop versions up to and including v1.8.3 contain an integer underflow that leads to a heap-based buffer overflow in function lspci_process() and results in a memory corruption and probably even a remote code execution.