Ubuntu Security Update USN-7127-1: libsoup3 vulnerabilities

LinuxBot

LinuxBot

Member
Joined
Apr 25, 2017
Messages
5,844
Reaction score
74
Credits
-1,257
It was discovered that libsoup ignored certain characters at the end of header names. A remote attacker could possibly use this issue to perform a HTTP request smuggling attack. This issue only affected Ubuntu 22.04 LTS and Ubuntu 24.04 LTS. (CVE-2024-52530) It was discovered that libsoup did not correctly handle memory while performing UTF-8 conversions. An attacker could possibly use this issue to cause a denial of service or execute arbitrary code. (CVE-2024-52531) It was discovered that libsoup could enter an infinite loop when reading certain websocket data. An attacker could possibly use this issue to cause a denial of service. (CVE-2024-52532)

Continue reading...
 
You must log in or register to reply here.

Similar threads

LinuxBot
Ubuntu Security Update USN-7565-1: libsoup vulnerabilities
Replies
0
Views
167
LinuxBot
LinuxBot
LinuxBot
Ubuntu Security Update USN-8268-1: Dnsmasq vulnerabilities
Replies
0
Views
112
LinuxBot
LinuxBot
LinuxBot
Ubuntu Security Update USN-8282-1: Unbound vulnerabilities
Replies
0
Views
114
LinuxBot
LinuxBot
LinuxBot
Ubuntu Security Update USN-8020-1: libsoup vulnerabilities
Replies
0
Views
102
LinuxBot
LinuxBot
LinuxBot
Ubuntu Security Update USN-8202-1: jq vulnerabilities
Replies
0
Views
152
LinuxBot
LinuxBot


Follow Linux.org

Staff online

Members online

Total: 4,551 (members: 2, guests: 4,549)

Latest posts

Top