Описание
GNOME libsoup before 3.6.1 allows a buffer overflow in applications that perform conversion to UTF-8 in soup_header_parse_param_list_strict. There is a plausible way to reach this remotely via soup_message_headers_get_content_type (e.g., an application may want to retrieve the content type of a request or response).
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 2.74.3-8ubuntu1 |
| esm-infra/bionic | released | 2.62.1-1ubuntu0.4+esm1 |
| esm-infra/focal | not-affected | 2.70.0-1ubuntu0.1 |
| esm-infra/xenial | released | 2.52.2-1ubuntu0.3+esm4 |
| focal | released | 2.70.0-1ubuntu0.1 |
| jammy | released | 2.74.2-3ubuntu0.1 |
| noble | released | 2.74.3-6ubuntu1.1 |
| oracular | released | 2.74.3-7ubuntu0.1 |
| plucky | released | 2.74.3-8ubuntu1 |
| upstream | needed |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 3.6.0-4 |
| esm-apps/jammy | released | 3.0.7-0ubuntu1+esm1 |
| esm-infra/focal | DNE | |
| focal | DNE | |
| jammy | needed | |
| noble | released | 3.4.4-5ubuntu0.1 |
| oracular | released | 3.6.0-2ubuntu0.1 |
| plucky | not-affected | 3.6.0-4 |
| upstream | released | 3.6.0 |
Показывать по
Ссылки на источники
EPSS
6.5 Medium
CVSS3
Связанные уязвимости
GNOME libsoup before 3.6.1 allows a buffer overflow in applications that perform conversion to UTF-8 in soup_header_parse_param_list_strict. There is a plausible way to reach this remotely via soup_message_headers_get_content_type (e.g., an application may want to retrieve the content type of a request or response).
GNOME libsoup before 3.6.1 allows a buffer overflow in applications that perform conversion to UTF-8 in soup_header_parse_param_list_strict. There is a plausible way to reach this remotely via soup_message_headers_get_content_type (e.g., an application may want to retrieve the content type of a request or response).
GNOME libsoup before 3.6.1 allows a buffer overflow in applications th ...
EPSS
6.5 Medium
CVSS3