client-sdl-force-primary-monitor-in-windowed-mode.patch
client-sdl-only-draw-to-window-if-connected.patch
core-settings-handle-empty-OrderSupport-and-received.patch
crypto-certificate-Add-a-fallback-for-weak-RSA-keys.patch
rdpei-server-Fix-incorrect-PDU-length-read.patch
cmake-json-improve-json-detection.patch
client-sdl-fix-SDL-ttf-usage.patch
cache-glyph-fix-GLYPH_FRAGMENT_USE.patch
winpr-sysinfo-use-a-single-clock-to-provide-System-a.patch
fix-resources-remove-MimeType-from-desktop-file.patch
gcc-fix-server-side-connection-with-multiple-monitor.patch
CVE-2025-4478.patch
core-redirection-Ensure-stream-has-space-for-cert.patch
core-redirection-Ensure-stream-has-space-for-all-params.patch
client-desktop-fix-StartupWMClass-setting.patch
client-x11-fix-clipboard-issues.patch
client-sdl-lock-primary-while-used-CVE-2026-22851.patch
channels-audin-free-up-old-audio-formats-CVE-2026-22852.patch
channels-rdpear-add-checks-for-itemSize-CVE-2026-22853.patch
channels-drive-fix-constant-type-CVE-2026-22854.patch
# 3 fixes & logging improvements to prepare for CVE-2026-22855:
utils-smartcard-handle-output-buffer-too-small.patch
utils-smartcard-improve-trace-log.patch
utils-smartcard-better-logging-and-error-checks.patch
utils-smartcard-add-length-validity-checks-CVE-2026-22855.patch
channels-serial-explicitly-lock-serial-IrpThreads-CVE-2026-22856.patch
channels-serial-fix-use-after-free-CVE-2026-22857.patch
# bugfix and preparation for CVE-2026-22858:
crypto-base64-ensure-char-is-singend.patch
crypto-base64-do-proper-length-checks-CVE-2026-22858.patch
channels-urbdrc-check-interface-indices-before-use-CVE-2026-22859.patch
codec-planar-fix-decoder-length-checks-CVE-2026-23530.patch
codec-clear-fix-missing-length-checks-CVE-2026-23531.patch
gdi-gfx-properly-clamp-SurfaceToSurface-CVE-2026-23532.patch
codec-clear-fix-clear_resize_buffer-checks-CVE-2026-23533.patch
codec-clear-fix-off-by-one-length-check-CVE-2026-23534.patch
codec-color-add-freerdp_glyph_convert_ex-CVE-2026-23732.patch
gdi-graphics-Use-freerdp_glyph_convert_ex-CVE-2026-23732.patch
client-x11-fix-double-free-in-case-of-invalid-pointe-CVE-2026-23883.patch
cache-offscreen-invalidate-bitmap-before-free-CVE-2026-23884.patch
# fixes from 3.22:
core-info-fix-missing-NULL-check-CVE-2026-23948.patch
clang-warnings-fix-Wjump-misses-init-drdynvc_main.patch
channels-drdynvc-reset-channel_callback-before-close-CVE-2026-24491.patch
channels-drdynvc-check-pointer-before-reset.patch
channels-urbdrc-do-not-free-MsConfig-on-failure-CVE-2026-24675.patch
channels-audin-reset-audin-format-CVE-2026-24676.patch
# 4 patches to sync context for CVE-2026-24677
clang-warnings-fix-Wjump-misses-init-remdesk_main.patch
channels-rdpecam-improve-log-messages.patch
rdpecam-fix-camera-sample-grabbing.patch
channels-rpdecam-log-dropped-samples.patch
channels-rdpecam-ensure-sws-context-size-matches-CVE-2026-24677.patch
channels-rdpecam-ensure-all-streams-are-stopped-CVE-2026-24678.patch
channels-urbdrc-ensure-InterfaceNumber-is-within-ran-CVE-2026-24679.patch
client-sdl-reset-pointer-after-memory-release-CVE-2026-24680.patch
channels-urbdrc-cancel-all-usb-transfers-on-channel--CVE-2026-24681.patch
channels-audin-fix-audin_server_recv_formats-cleanup-CVE-2026-24682.patch
channels-ainput-lock-context-when-updating-listener-CVE-2026-24683.patch
channels-rdpsnd-terminate-thread-before-free-CVE-2026-24684.patch
channel-rdpsnd-only-clean-up-thread-before-free-CVE-2026-24684.patch
# fix for CVE-2026-24677 fix:
winpr-wlog-Add-specialized-text-log-functions.patch
warnings-Fix-format-string-errors-partial.patch
channels-rdpecam-add-value-range-checks.patch
channels-rdpecam-fix-PROPERTY_DESCRIPTION-parsing.patch
#
channels-rdpgfx-check-available-stream-length-CVE-2026-25941.patch
client-x11-fix-xf_rail_window_common-cleanup-CVE-2026-26986.patch
client-x11-stringfiy-functions-for-RAILS-CVE-2026-25942.patch
client-X11-fix-clipboard-update-CVE-2026-25997.patch
client-x11-lock-appWindow-CVE-2026-25952-CVE-2026-25953-CVE-2026-25954.patch
client-x11-fix-missing-includes.patch
client-x11-destroy-XImage-on-window-unmap-CVE-2026-25955.patch
client-x11-lock-cache-when-providing-data-CVE-2026-25959.patch
codec-color-fix-input-length-checks-CVE-2026-26271.patch
utils-smartcard-check-stream-length-on-padding-CVE-2026-27015.patch
codec-clear-fix-missing-destination-boundary-checks-CVE-2026-26955.patch
codec-clear-fix-destination-checks-CVE-2026-26955.patch
codec-planar-fix-missing-destination-bounds-checks-CVE-2026-26965.patch
