Neutrinolabs - Xrdp - CRITICAL - CVE-2025-68670. The xrdp open source RDP server is prone to an unauthenticated stack-based buffer overflow vulnerability. This issue arises due to inadequate bounds checking when handling user domain information during connection initialization. An attacker could exploit this weakness to execute arbitrary code on the affected system by manipulating the stack buffer and altering the return address, potentially steering the execution flow. While the risk is mitigated if the xrdp binary is compiled with stack canary protection, this should not be solely relied upon in production environments. Users are recommended to upgrade to xrdp version 0.10.5 or higher to obtain a security patch. For detailed information, refer to the official advisories and release notes.