CVE-2009-0585

Published: Mar 14, 2009

Modified: Aug 7, 2024

PUBLISHED

Description

Integer overflow in the soup_base64_encode function in soup-misc.c in libsoup 2.x.x before 2.2.x, and 2.x before 2.24, allows context-dependent attackers to execute arbitrary code via a long string that is converted to a base64 representation.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

RHSA-2009:0344

vendor-advisory

x_refsource_REDHAT

oval:org.mitre.oval:def:9599

vdb-entry

signature

x_refsource_OVAL

http://support.avaya.com/elmodocs2/security/ASA-2009-088.htm

x_refsource_CONFIRM

MDVSA-2009:081

vendor-advisory

x_refsource_MANDRIVA

[oss-security] 20090312 [oCERT-2008-015] glib and glib-predecessor heap overflows

mailing-list

x_refsource_MLIST

34100

vdb-entry

x_refsource_BID

35065

third-party-advisory

x_refsource_SECUNIA

libsoup-soupmisc-bo(49273)

vdb-entry

x_refsource_XF

34310

third-party-advisory

x_refsource_SECUNIA

20090312 [oCERT-2008-015] glib and glib-predecessor heap overflows

mailing-list

x_refsource_BUGTRAQ

DSA-1748

vendor-advisory

x_refsource_DEBIAN

SUSE-SR:2009:010

vendor-advisory

x_refsource_SUSE

34401

third-party-advisory

x_refsource_SECUNIA

http://ocert.org/patches/2008-015/libsoup-CVE-2009-0585.diff

x_refsource_MISC

USN-737-1

vendor-advisory

x_refsource_UBUNTU

34337

third-party-advisory

x_refsource_SECUNIA

http://www.ocert.org/advisories/ocert-2008-015.html

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2009-0585

Description

Affected Products

References