Releases: FreeRDP/FreeRDP
3.5.1
This release eliminates a bunch of issues detected during oss-fuzz runs.
The test coverage was increased and detected issues eliminates, so an update
is highly recommended.
Noteworthy changes:
2.11.7
Noteworthy changes:
- Backported oss-fuzz fixes
2.11.6
CVE:
CVE-2024-32041 [Low[ OutOfBound Read in zgfx_decompress_segment
CVE-2024-32039 [Moderate] Integer overflow & OutOfBound Write in clear_decompress_residual_data
CVE-2024-32040 [Low] integer underflow in nsc_rle_decode
CVE-2024-32458 [Low] OutOfBound Read in planar_skip_plane_rle
CVE-2024-32459 [Low] OutOfBound Read in ncrush_decompress
CVE-2024-32460 [Low] OutOfBound Read in interleaved_decompress
Noteworthy changes:
- Backported #10077
For a complete and detailed change log since the last release run:
git log 2.11.6...2.11.5
3.5.0
This release focus is on squashing bugs.
The improved test coverage and ci builds revealed a number of previously
unnoticed issues we have addressed and we also got a report from
Evgeny Legerov of Kaspersky Lab identifying a number of out of bound reads
in decoder components and one very nasty out of bound write.
CVE:
CVE-2024-32041 [Low] OutOfBound Read in zgfx_decompress_segment
CVE-2024-32039 [Moderate] Integer overflow & OutOfBound Write in clear_decompress_residual_data
CVE-2024-32040 [Low] integer underflow in nsc_rle_decode
CVE-2024-32458 [Low] OutOfBound Read in planar_skip_plane_rle
CVE-2024-32459 [Low] OutOfBound Read in ncrush_decompress
CVE-2024-32460 [Low] OutOfBound Read in interleaved_decompress
Noteworthy changes:
- location channel support #9981, #9984, #10065
- bugfixes for report from Evgeny Legerov of Kaspersky Lab #10077
- fuzzer tests from Evgeny Legerov of Kaspersky Lab #10078
- bugfixes for coverty scanner #10066, #10068, #10069, #10070, #10075
- clipboard and generic locking fixes #10076
- split autoreconnect support from enabling it #10063
- various nightly and workflow fixes #10064, #10058, #10062
- always set wm-class to app_id #10051
- refactored and simplified CMake #10046, #10047
- fix relative mouse event sending #10010
- improve and unify check for APIs used (POSIX, win32, mac, ...) #9995
- fix termination for gateway connections #9985
- fix drivestoredirect RDP file setting, ignore invalid #9989
- drop IPP support #10038
For a complete and detailed change log since the last release run:
git log 3.5.0...3.4.0
3.4.0
This release concentrates on improving test coverage and ci builds.
Some usability issues and inconvenient API functions were fixed on the way.
New features have been introduced (stub for location channel)
Noteworthy changes:
- fix a bug in RAIL mode not activating window focus (#9973)
- improve logging (#9969, #9943)
- OpenSSL <= 1.1.1 build fixes (#9897)
- improved help (#9899, #9905)
- improved MINGW support (#9914, #9915, #9919, #9964, #9965, #9920)
- fix right control ungrab for xfreerdp (#9960)
- fix RPATH option settings (#9963)
- fix SDL client screen updates (#9962, #9954)
- fix issues with childSession under windows (#9961, #9956, #9922)
- fix xfreerdp crash with +auth-only (#9947)
- fix windows printer channel (#9934)
- add support to enforce gateway policy (#9942)
- improve big endian support (#9927)
- ignore empty proxy environment variables (#9929)
- improve quoting support for command line (#9912)
For a complete and detailed change log since the last release run:
git log 3.4.0...3.3.0
3.3.0
This release concentrates on code cleanup and overall quality improvements.
Some usability issues and inconvenient API functions were fixed on the way.
New features have been introduced (better image clipboard) but that stays
deactivated by default as we´re in a stable series.
Check the new CMake options:
- PLUGIN_ABS_PATHS_DEFAULT disables loading of external channels from all
but a specified absolute plugin directory defined by FREERDP_PLUGIN_PATH - WINPR_UTILS_IMAGE_PNG enables PNG support with libpng in winpr image/clipboard
- WITH_LODEPNG enables PNG support with lodepng library in winpr image/clipboard
- WINPR_UTILS_IMAGE_WEBP enables WEBP support in winpr image/clipboard
- WINPR_UTILS_IMAGE_JPEG enables JPEG support in winpr image/clipboard
- USE_EXECINFO enables or disables backtrace support with execinfo
- WITH_WEBVIEW now defaults to OFF on windows, apple and android (not implemented)
Noteworthy changes:
- Improved image clipboard (xfreerdp, wlfreerdp) (#9873, #9826)
- Improved SDL client (#9875, #9887, #9883, #9878, #9792)
- Allow plugin loader to only use absolute paths (#9809)
- Improved TLS channel binding (#9838)
- Add GCC/clang attribute malloc wrapper WINPR_ATTR_MALLOC (#9863)
- Major clang-tidy code cleanups and bugfixes (#9799, #9834)
- Provide some defaults for wObject functions (#9799)
- Fix a bug in shadow with GFX breaking mstsc (#9818)
- Improved manpages and help (#9813, #9804)
- Blocking mode via transport IO interface (#9793)
For a complete and detailed change log since the last release run:
git log 3.3.0...3.2.0
3.2.0
This release mostly addresses issues reported since the last release.
Fixing some usablity and build issues as well as adding API functions
that are needed from external projects
Noteworthy changes:
- Fix proxy module load check (#9777)
- Improve kerberos error logging (#9771)
- Improve mac client keyboard handling (#9767)
- Add option to run client dynamic channel synchronous (#9764)
- Move huge struct to heap (#9763)
- Improved failure logging of license module (#9759)
- Improve server side gfx logging (#9757)
- Print shadow server help with printf instead of WLog (#9756)
- Fix SDL client timer initialization (#9754)
- Fix server peer message parsing (#9751)
- Enable NEON instructions if __ARM_NEON is defined (#9748)
- Add new proxy config file option TlsSecLevel (#9741)
- Improve android and mac os build scripts (#9735)
- Do not disable wayland support on BSD (#9730)
- Fix issues with assistance file parsing (#9727, #9728)
- Keyboard handling fixes for wayland client (#9725)
- Fix relative pkg-config file paths (#9720)
- Add new transport IO callback GetPublicKey (#9719)
- Fix wayland client scaling (#9715)
For a complete and detailed change log since the last release run:
git log 3.2.0...3.1.0
2.11.5
3.1.0
A new 3.1.0 minor release for the new 3.0.0 series.
This contains bugfixes, adds (better) support for libressl and mbedtls and
brings a bunch of improvements for the SDL client.
This comes with a price though, we now (optionally) require SDL_image if you
want to build the sdl-client
Since there are multiple new features, some new files (man pages) and new
optional dependencies we´ve directly incremented the minor version.
New CMake options:
- SDL_USE_COMPILED_RESOURCES (default ON) builds fonts and images into SDL
client. Set to OFF to install these resources as files. (was already part of
3.0.0, but worth mentioning here) - WITH_SDL_IMAGE_DIALOGS (default OFF) Show some nice icons for SDL client
connection dialogs. Requires SDL_image for build. - WITH_BINARY_VERSIONING (default OFF) Similar as for libraries the binaries,
manpages and resource locations created by FreeRDP project are postfixed
with the API version. Recommended if packagers want to install the package
alongside FreeRDP 2 without conflicts. - RDTK_FORCE_STATIC_BUILD (default OFF) Build and link RDTK statically into
shadow server. Recommended for packagers as this library is not really used
outside of FreeRDP-shadow. - UWAC_FORCE_STATIC_BUILD (default OFF) Build and link UWAC statically into
wlfreerdp. Recommended for packagers as this library is not really used
outside of wlfreerdp.
Noteworthy changes:
- Fix a nasty bug with relative mouse movement (#9677)
- LibreSSL support enhancements (#9691, #9670)
- mbedTLS support enhancements (#9662)
- Improve building on mac OS (#9641)
- New and improved manpages (#9690, #9650)
- Unify CMake common options, add (optional) binary versioning and allow
building rdtk and uwac as static dependencies (#9695) - SDL client improvements (#9693, #9657, #9659, #9683, #9680, #9657, #9664,
#9656)
For a complete and detailed change log since the last release run:
git log 3.1.0...3.0.0