Описание
Security update for libsoup
This update for libsoup fixes the following issues:
Security issue fixed:
- CVE-2018-12910: Fix crash when handling empty hostnames (bsc#1100097).
This update was imported from the SUSE:SLE-15:Update update project.
Список пакетов
openSUSE Leap 15.0
libsoup-2_4-1-2.62.2-lp150.2.3.1
libsoup-2_4-1-32bit-2.62.2-lp150.2.3.1
libsoup-devel-2.62.2-lp150.2.3.1
libsoup-devel-32bit-2.62.2-lp150.2.3.1
libsoup-lang-2.62.2-lp150.2.3.1
typelib-1_0-Soup-2_4-2.62.2-lp150.2.3.1
Ссылки
- E-Mail link for openSUSE-SU-2019:1310-1
- SUSE Security Ratings
- SUSE Bug 1100097
- SUSE CVE CVE-2018-12910 page
Описание
The get_cookies function in soup-cookie-jar.c in libsoup 2.63.2 allows attackers to have unspecified impact via an empty hostname.
Затронутые продукты
openSUSE Leap 15.0:libsoup-2_4-1-2.62.2-lp150.2.3.1
openSUSE Leap 15.0:libsoup-2_4-1-32bit-2.62.2-lp150.2.3.1
openSUSE Leap 15.0:libsoup-devel-2.62.2-lp150.2.3.1
openSUSE Leap 15.0:libsoup-devel-32bit-2.62.2-lp150.2.3.1
Ссылки
- CVE-2018-12910
- SUSE Bug 1100097