[ubuntu/noble-updates] libsoup3 3.4.4-5ubuntu0.2 (Accepted)
Ubuntu Archive Robot
ubuntu-archive-robot at lists.canonical.com
Thu Apr 10 21:58:41 UTC 2025
libsoup3 (3.4.4-5ubuntu0.2) noble-security; urgency=medium
* SECURITY UPDATE: out-of-bounds read
- debian/patches/CVE-2025-2784-1.patch: Fix potential overflow
- debian/patches/CVE-2025-2784-2.patch: Add better coverage of
skip_insignificant_space()
- CVE-2025-2784
* SECURITY UPDATE: out-of-bounds read
- debian/patches/CVE-2025-32050.patch: Fix using int instead of
size_t for strcspn return
- CVE-2025-32050
* SECURITY UPDATE: null pointer dereference
- debian/patches/CVE-2025-32051-1.patch: Fix possible NULL deref in
soup_uri_decode_data_uri
- debian/patches/CVE-2025-32051-2.patch: Handle URIs with a path
starting with //
- CVE-2025-32051
* SECURITY UPDATE: out-of-bounds read
- debian/patches/CVE-2025-32052.patch: Fix heap buffer overflow in
soup_content_sniffer_sniff
- CVE-2025-32052
* SECURITY UPDATE: out-of-bounds read
- debian/patches/CVE-2025-32053.patch: Fix heap buffer overflow in
sniff_feed_or_html()
- CVE-2025-32053
Date: 2025-04-10 16:23:33.744844+00:00
Changed-By: Fabian Toepfer <fabian.toepfer at canonical.com>
Signed-By: Ubuntu Archive Robot <ubuntu-archive-robot at lists.canonical.com>
https://launchpad.net/ubuntu/+source/libsoup3/3.4.4-5ubuntu0.2
-------------- next part --------------
Sorry, changesfile not available.
More information about the noble-changes
mailing list