Oval Definition:oval:org.mitre.oval:def:13600
Revision Date:2014-06-23Version:19
Title:DSA-1748-1 libsoup -- integer overflow
Description:It was discovered that libsoup, an HTTP library implementation in C, handles large strings insecurely via its Base64 encoding functions. This could possibly lead to the execution of arbitrary code. For the oldstable distribution, this problem has been fixed in version 2.2.98-2+etch1. The stable distribution is not affected by this issue. The testing distribution and the unstable distribution are not affected by this issue. We recommend that you upgrade your libsoup packages.
Family:unixClass:patch
Status:ACCEPTEDReference(s):CVE-2009-0585
DSA-1748-1
Platform(s):Debian GNU/Linux 4.0
Product(s):libsoup
Definition Synopsis
  • Debian GNU/Linux 4.0 is installed.
  • AND Architecture section
  • Architecture independent section
  • Installed architecture is all
  • AND libsoup2.2-doc DPKG is earlier than 2.2.98-2+etch1
  • OR Architecture depended section
  • Supported architectures section
  • Installed architecture is s390
  • OR Installed architecture is amd64
  • OR Installed architecture is sparc
  • OR Installed architecture is powerpc
  • OR Installed architecture is i386
  • OR Installed architecture is mips
  • OR Installed architecture is ia64
  • OR Installed architecture is alpha
  • OR Installed architecture is mipsel
  • OR Installed architecture is arm
  • AND Packages section
  • libsoup2.2-8 DPKG is earlier than 2.2.98-2+etch1
  • OR libsoup2.2-dev DPKG is earlier than 2.2.98-2+etch1
    • BACK