CVE-2024-52532

Опубликовано: 11 нояб. 2024

Источник: nvd

CVSS3: 7.5

EPSS Низкий

Описание

GNOME libsoup before 3.6.1 has an infinite loop, and memory consumption. during the reading of certain patterns of WebSocket data from clients.

Ссылки

https://gitlab.gnome.org/GNOME/libsoup/-/issues/391
Issue Tracking
https://gitlab.gnome.org/GNOME/libsoup/-/merge_requests/410
Issue Tracking
https://gitlab.gnome.org/Teams/Releng/security/-/wikis/home
Vendor Advisory
https://lists.debian.org/debian-lts-announce/2024/12/msg00014.html

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:gnome:libsoup:*:*:*:*:*:*:*:*

Версия до 3.6.1 (исключая)

EPSS

Процентиль: 70%

0.00648

Низкий

7.5 High

CVSS3

Дефекты

CWE-835

Связанные уязвимости

CVE-2024-52532

CVSS3: 7.5

ubuntu

12 месяцев назад

GNOME libsoup before 3.6.1 has an infinite loop, and memory consumption. during the reading of certain patterns of WebSocket data from clients.

CVE-2024-52532

CVSS3: 7.5

redhat

12 месяцев назад

GNOME libsoup before 3.6.1 has an infinite loop, and memory consumption. during the reading of certain patterns of WebSocket data from clients.

CVE-2024-52532

CVSS3: 7.5

msrc

12 месяцев назад

GNOME libsoup before 3.6.1 has an infinite loop and memory consumption. during the reading of certain patterns of WebSocket data from clients.

CVE-2024-52532

CVSS3: 7.5

debian

12 месяцев назад

GNOME libsoup before 3.6.1 has an infinite loop, and memory consumptio ...

GHSA-f6qg-rg6j-cxgf

CVSS3: 7.5

github

12 месяцев назад

GNOME libsoup before 3.6.1 has an infinite loop, and memory consumption. during the reading of certain patterns of WebSocket data from clients.

EPSS

Процентиль: 70%

0.00648

Низкий

7.5 High

CVSS3

Дефекты

CWE-835