[ubuntu/oracular-updates] libsoup3 3.6.0-2ubuntu0.2 (Accepted)
Ubuntu Archive Robot
ubuntu-archive-robot at lists.canonical.com
Thu Apr 10 21:58:43 UTC 2025
libsoup3 (3.6.0-2ubuntu0.2) oracular-security; urgency=medium
* SECURITY UPDATE: out-of-bounds read
- debian/patches/CVE-2025-2784-1.patch: Fix potential overflow
- debian/patches/CVE-2025-2784-2.patch: Add better coverage of
skip_insignificant_space()
- CVE-2025-2784
* SECURITY UPDATE: out-of-bounds read
- debian/patches/CVE-2025-32050.patch: Fix using int instead of
size_t for strcspn return
- CVE-2025-32050
* SECURITY UPDATE: null pointer dereference
- debian/patches/CVE-2025-32051-1.patch: Fix possible NULL deref in
soup_uri_decode_data_uri
- debian/patches/CVE-2025-32051-2.patch: Handle URIs with a path
starting with //
- CVE-2025-32051
* SECURITY UPDATE: out-of-bounds read
- debian/patches/CVE-2025-32052.patch: Fix heap buffer overflow in
soup_content_sniffer_sniff
- CVE-2025-32052
* SECURITY UPDATE: out-of-bounds read
- debian/patches/CVE-2025-32053.patch: Fix heap buffer overflow in
sniff_feed_or_html()
- CVE-2025-32053
Date: 2025-04-10 16:23:18.552211+00:00
Changed-By: Fabian Toepfer <fabian.toepfer at canonical.com>
Signed-By: Ubuntu Archive Robot <ubuntu-archive-robot at lists.canonical.com>
https://launchpad.net/ubuntu/+source/libsoup3/3.6.0-2ubuntu0.2
-------------- next part --------------
Sorry, changesfile not available.
More information about the oracular-changes
mailing list