[3.5] libsoup: Stack based buffer overflow with HTTP Chunked Encoding (CVE-2017-2885)| ID: oval:org.secpod.oval:def:1800406 | Date: (C)2018-03-28 (M)2023-12-20 |
| Class: PATCH | Family: unix |
An exploitable stack based buffer overflow vulnerability exists in the GNOME libsoup 2.58. A specially crafted HTTP request can cause a stack overflow resulting in remote code execution. An attacker can send a special HTTP request to the vulnerable server to trigger this vulnerability. Fixed In Version libsoup 2.59.90.1, libsoup 2.58.2, libsoup 2.56.1
| Platform: |
| Alpine Linux 3.5 |
