========================================================================== Ubuntu Security Notice USN-4152-1 October 09, 2019
libsoup2.4 vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 19.04 - Ubuntu 18.04 LTS Summary: libsoup could be made to crash if it received specially crafted network traffic. Software Description: - libsoup2.4: HTTP client/server library for GNOME Details: It was discovered that libsoup incorrectly handled parsing certain NTLM messages. If a user or automated system were tricked into connecting to a malicious server, a remote attacker could possibly use this issue to cause a denial of service. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 19.04: libsoup2.4-1 2.66.1-1ubuntu0.1 Ubuntu 18.04 LTS: libsoup2.4-1 2.62.1-1ubuntu0.4 In general, a standard system update will make all the necessary changes. References: https://usn.ubuntu.com/4152-1 CVE-2019-17266 Package Information: https://launchpad.net/ubuntu/+source/libsoup2.4/2.66.1-1ubuntu0.1 https://launchpad.net/ubuntu/+source/libsoup2.4/2.62.1-1ubuntu0.4
signature.asc
Description: OpenPGP digital signature
-- ubuntu-security-announce mailing list [email protected] Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-security-announce
