- Vulnerability/
- USN-4152-1
USN-4152-1: libsoup vulnerability
First published: Wed Oct 09 2019(Updated: )
It was discovered that libsoup incorrectly handled parsing certain NTLM messages. If a user or automated system were tricked into connecting to a malicious server, a remote attacker could possibly use this issue to cause a denial of service.
| Affected Software | Affected Version | How to fix |
|---|---|---|
| All of | ||
| ubuntu/libsoup2.4-1 | <2.66.1-1ubuntu0.1 | 2.66.1-1ubuntu0.1 |
| Ubuntu Linux | =19.04 | |
| All of | ||
| ubuntu/libsoup2.4-1 | <2.62.1-1ubuntu0.4 | 2.62.1-1ubuntu0.4 |
| Ubuntu Linux | =18.04 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this libsoup vulnerability?
The vulnerability ID for this libsoup vulnerability is CVE-2019-17266.
What is the affected software for this vulnerability?
The affected software for this vulnerability is libsoup2.4-1.
What is the severity of CVE-2019-17266?
The severity of CVE-2019-17266 is not specified in the provided information.
How can this vulnerability be exploited?
This vulnerability can be exploited by tricking a user or automated system into connecting to a malicious server.
How can I fix the libsoup vulnerability?
To fix the libsoup vulnerability, update the libsoup2.4-1 package to version 2.66.1-1ubuntu0.1 (for Ubuntu 19.04) or version 2.62.1-1ubuntu0.4 (for Ubuntu 18.04).
- agent/type
- agent/severity
- agent/references
- agent/last-modified-date
- agent/first-publish-date
- agent/softwarecombine
- agent/event
- agent/description
- agent/title
- agent/trending
- agent/source
- agent/tags
- collector/usn
- source/Ubuntu
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- package-manager/ubuntu
- vendor/ubuntu
- canonical/ubuntu linux
- version/ubuntu linux/19.04
- version/ubuntu linux/18.04