[Forgot Password]
Login  Register Subscribe

23631

 
 

115038

 
 

96174

 
 

909

 
 

78077

 
 

109

Paid content will be excluded from the download.


Download | Alert*
OVAL

DSA-1748-1 libsoup -- integer overflow

ID: oval:org.secpod.oval:def:600350Date: (C)2011-05-13   (M)2017-10-04
Class: PATCHFamily: unix




It was discovered that libsoup, an HTTP library implementation in C, handles large strings insecurely via its Base64 encoding functions. This could possibly lead to the execution of arbitrary code. For the oldstable distribution , this problem has been fixed in version 2.2.98-2+etch1. The stable distribution is not affected by this issue. The testing distribution and the unstable distribution are not affected by this issue. We recommend that you upgrade your libsoup packages.

Platform:
Debian 4.0
Product:
libsoup
Reference:
DSA-1748-1
CVE-2009-0585
CVE    1
CVE-2009-0585

© 2013 SecPod Technologies