Release of FreeRDP 2.0, a free implementation of the RDP protocol

After seven years of development took place project release FreeRDP 2.0, which offers a free implementation of the remote desktop access protocol RDP (Remote Desktop Protocol), developed on the basis of specifications Microsoft. The project provides a library for integrating RDP support into third-party applications and a client that can be used to remotely connect to a Windows desktop. Project Code spreads licensed under Apache 2.0.

The last stable release of the project was formed in January 2013, and testing of the 2.0 branch began in 2007. In order not to further delay development, the following releases will be developed within the framework of
rolling model, which implies the annual formation of a significant release after the stabilization of the master branch and the periodic publication of corrective updates. Major releases will be supported for two years - one year of bug fixes and another year of bug fixes only.

All changes:

• Added the ability to work as a transit RDP proxy;
• Added support for MS-RA 2 (Remote Assistance Protocol);
• Redesigned code related to smart card support. Added previously missing functionality and enhanced input validation;
• Added "/cert" option, which consolidates the functionality previously provided by disparate options for processing certificates (cert-ignore, cert-deny, cert-name, cert-tofu);
• Discontinued delivery of a DirectFB-based client that was left unmaintained;
• Font smoothing is enabled by default;
• Added support for the Flatpack self-contained package system;
• For Wayland-based systems, a smart scaling mode is implemented using libcairo;
• Introduced an API for scaling images during programmatic rendering;
• The implementation of the RAIL (Remote Applications Integrated Locally) component, which allows organizing remote access to individual windows and notification indicators, has been updated to specification 28.0;
• During operation, the determination of the server's support for translation in the H.264 format is provided;
• Added "mask=" option to "/gfx" and "/gfx-h264" commands »;
• Reformatted source texts;
• Added "/timeout" option to set the timeout for waiting for TCP ACK packets;
• Fixed vulnerabilities CVE-2020-11521, CVE-2020-11522, CVE-2020-11523, CVE-2020-11524, CVE-2020-11525, CVE-2020-11526, including there are problems leading to writing to a memory area outside the allocated buffer when processing data coming from outside. In addition, 9 more vulnerabilities without CVE were fixed, mainly caused reading from memory areas outside the allocated buffer.

Source: opennet.ru