CVE-2009-0585
CVE-2009-0585
Integer overflow in the soup_base64_encode function in soup-misc.c in libsoup 2.x.x before 2.2.x, and 2.x before 2.24, allows context-dependent attackers to execute arbitrary code via a long string that is converted to a base64 representation.
Affected products
n/a · n/aWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://lists.opensuse.org/opensuse-security-announce/2009-05/msg00000.htmlhttp://ocert.org/patches/2008-015/libsoup-CVE-2009-0585.diffhttp://openwall.com/lists/oss-security/2009/03/12/2http://secunia.com/advisories/34310http://secunia.com/advisories/34337http://secunia.com/advisories/34401http://secunia.com/advisories/35065https://exchange.xforce.ibmcloud.com/vulnerabilities/49273https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9599http://support.avaya.com/elmodocs2/security/ASA-2009-088.htmhttp://www.debian.org/security/2009/dsa-1748http://www.mandriva.com/security/advisories?name=MDVSA-2009:081