CVE-2011-2524
Publication date 21 July 2011
Last updated 24 July 2024
Ubuntu priority
Directory traversal vulnerability in soup-uri.c in SoupServer in libsoup before 2.35.4 allows remote attackers to read arbitrary files via a %2e%2e (encoded dot dot) in a URI.
Status
Package | Ubuntu Release | Status |
---|---|---|
libsoup | 11.04 natty | Not in release |
10.10 maverick | Not in release | |
10.04 LTS lucid | Not in release | |
8.04 LTS hardy | Ignored end of life | |
libsoup2.4 | 11.04 natty |
Fixed 2.34.0-0ubuntu1.1
|
10.10 maverick |
Fixed 2.31.92-0ubuntu1.1
|
|
10.04 LTS lucid |
Fixed 2.30.2-0ubuntu0.2
|
|
8.04 LTS hardy | Ignored end of life |
Notes
References
Related Ubuntu Security Notices (USN)
- USN-1181-1
- libsoup vulnerability
- 28 July 2011