USN-4152-1: libsoup vulnerability
9 October 2019
libsoup could be made to crash if it received specially crafted network traffic.
Releases
Packages
- libsoup2.4 - HTTP client/server library for GNOME
Details
It was discovered that libsoup incorrectly handled parsing certain NTLM
messages. If a user or automated system were tricked into connecting to a
malicious server, a remote attacker could possibly use this issue to cause
a denial of service.
Update instructions
The problem can be corrected by updating your system to the following package versions:
Ubuntu 19.04
Ubuntu 18.04
In general, a standard system update will make all the necessary changes.