Fluid Attacks Database

Description

A flaw was found in gnome-remote-desktop. Once gnome-remote-desktop listens for RDP connections, an unauthenticated attacker can exhaust system resources and repeatedly crash the process. There may be a resource leak after many attacks, which will also result in gnome-remote-desktop no longer being able to open files even after it is restarted via systemd.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package	Affected version	Patched versions
debian 11	gnome-remote-desktop	=0.1.9-5 \|\| =40.1-1 \|\| =40.1-2 \|\| =40.1-3 \|\| =40.1-4 \|\| =40.2-1 \|\| =41.0-1 \|\| =41.1-1 \|\| =41.1-2 \|\| =41.1-3 \|\| =41.2-1 \|\| =42.0-1 \|\| =42.0-2 \|\| =42.0-3 \|\| =42.0-4 \|\| =42.1.1-1 \|\| =42.1.1-2 \|\| =42.2-1 \|\| =42.3-1 \|\| =42.4-1 \|\| =42~beta-1 \|\| =42~rc-1 \|\| =43.0-1 \|\| =43.0-2 \|\| =43.1-1 \|\| =43.2-1 \|\| =43.3-1 \|\| =43.4-1 \|\| =43.4-2 \|\| =44.0-1 \|\| =44.1-1 \|\| =44.2-1 \|\| =44.2-2 \|\| =44.2-3 \|\| =44.2-4 \|\| =44.2-5 \|\| =44.2-6 \|\| =44.2-7 \|\| =44.2-8 \|\| =44~rc-1 \|\| =45.0-1 \|\| =45.1-1 \|\| =45.1-2 \|\| =45.1-3 \|\| =45~beta-1 \|\| =45~rc-1 \|\| =46.0-1 \|\| =46.0-2 \|\| =46.1-1 \|\| =46.1-2 \|\| =46.1-3 \|\| =46.2-1 \|\| =46.3-1 \|\| =46.3-2 \|\| =46.3-3 \|\| =46.3-4 \|\| =46.4-1 \|\| =47.0-1 \|\| =47.0-3 \|\| =47.2-1 \|\| =47.3-1 \|\| =47~beta-1 \|\| =47~rc-1 \|\| =48.0-1 \|\| =48.1-1 \|\| =48.1-2 \|\| =48.1-3 \|\| =48.1-4 \|\| =48.2-1 \|\| =48~alpha-1 \|\| =48~alpha-2 \|\| =49.0-1 \|\| =49.1-1 \|\| =49.1-2 \|\| =49.2-1 \|\| =49.2-2 \|\| =49.2-3 \|\| =50.1-1 \|\| =50.1-2 \|\| =50~beta-1	-
debian 12	gnome-remote-desktop	=43.3-1 \|\| =43.4-1 \|\| =43.4-2 \|\| =44.0-1 \|\| =44.1-1 \|\| =44.2-1 \|\| =44.2-2 \|\| =44.2-3 \|\| =44.2-4 \|\| =44.2-5 \|\| =44.2-6 \|\| =44.2-7 \|\| =44.2-8 \|\| =44~rc-1 \|\| =45.0-1 \|\| =45.1-1 \|\| =45.1-2 \|\| =45.1-3 \|\| =45~beta-1 \|\| =45~rc-1 \|\| =46.0-1 \|\| =46.0-2 \|\| =46.1-1 \|\| =46.1-2 \|\| =46.1-3 \|\| =46.2-1 \|\| =46.3-1 \|\| =46.3-2 \|\| =46.3-3 \|\| =46.3-4 \|\| =46.4-1 \|\| =47.0-1 \|\| =47.0-3 \|\| =47.2-1 \|\| =47.3-1 \|\| =47~beta-1 \|\| =47~rc-1 \|\| =48.0-1 \|\| =48.1-1 \|\| =48.1-2 \|\| =48.1-3 \|\| =48.1-4 \|\| =48.2-1 \|\| =48~alpha-1 \|\| =48~alpha-2 \|\| =49.0-1 \|\| =49.1-1 \|\| =49.1-2 \|\| =49.2-1 \|\| =49.2-2 \|\| =49.2-3 \|\| =50.1-1 \|\| =50.1-2 \|\| =50~beta-1	-
debian 13	gnome-remote-desktop	=48.1-4 \|\| =48.2-1 \|\| =49.0-1 \|\| =49.1-1 \|\| =49.1-2 \|\| =49.2-1 \|\| =49.2-2 \|\| =49.2-3 \|\| =50.1-1 \|\| =50.1-2 \|\| =50~beta-1	-
debian 14	gnome-remote-desktop	=48.1-4 \|\| =48.2-1 \|\| =49.0-1 \|\| =49.1-1 \|\| =49.1-2 \|\| =49.2-1 \|\| =49.2-2 \|\| =49.2-3 \|\| =50.1-1 \|\| =50.1-2 \|\| =50~beta-1	-
rpm rhel10	gnome-remote-desktop	<0:47.3-2.el10_0	0:47.3-2.el10_0
rpm rhel8	gnome-remote-desktop	<0:0.1.8-4.el8_10	0:0.1.8-4.el8_10
rpm rhel8.4	gnome-remote-desktop	<0:0.1.8-4.el8_4	0:0.1.8-4.el8_4
rpm rhel9	gnome-remote-desktop	<0:40.0-11.el9_6	0:40.0-11.el9_6
rpm rhel9.4	gnome-remote-desktop	<0:40.0-11.el9_4	0:40.0-11.el9_4

Aliases

1. CVE-2025-50242. NVD-2025-50243. OSV-DEBIAN-2025-50244. OSV-2025-50245. SECURITY-TRACKER-CVE-2025-5024

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.