Bug#520039: libsoup: CVE-2009-0585 integer overflow vulnerability
Michael Gilbert
michael.s.gilbert at gmail.com
Mon Mar 16 23:56:40 UTC 2009
package: libsoup
severity: grave
tags: security
it has been found that libsoup is vulnerable to an integer overflow
attack, see CVE-2009-0585 [1]. details are:
Integer overflow in the soup_base64_encode function in soup-misc.c in
libsoup 2.x.x before 2.2.x, and 2.x before 2.24, allows
context-dependent attackers to execute arbitrary code via a long
string that is converted to a base64 representation.
since this allows remote attackers to execute arbitrary code, it
should be treated with high urgency.
this was just fixed in ubuntu, so it may be possible to adopt their
patch [2].
if you fix these vulnerabilities, please make sure to include the CVE
id in your changelog. please contact the security team to coordinate
a fix for stable and/or if you have any questions.
regards,
mike
[1] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0585
[2] http://www.ubuntu.com/usn/USN-737-1
More information about the pkg-gnome-maintainers
mailing list