Your submission was sent successfully! Close

CVE-2009-0585

Published: 14 March 2009

Integer overflow in the soup_base64_encode function in soup-misc.c in libsoup 2.x.x before 2.2.x, and 2.x before 2.24, allows context-dependent attackers to execute arbitrary code via a long string that is converted to a base64 representation.

Priority

Medium

Status

Package Release Status
libsoup
Launchpad, Ubuntu, Debian
dapper
Released (2.2.93-0ubuntu1.2)
gutsy
Released (2.2.100-1ubuntu0.1)
hardy Not vulnerable
(code not present)
intrepid Not vulnerable
(code not present)
upstream Needs triage

libsoup2.4
Launchpad, Ubuntu, Debian
dapper Does not exist

gutsy Does not exist

hardy Not vulnerable
(code not present)
intrepid Not vulnerable
(code not present)
upstream Needs triage