Integer overflow in the soup_base64_encode function in soup-misc.c in libsoup 2.x.x before 2.2.x, and 2.x before 2.24, allows context-dependent attackers to execute arbitrary code via a long string that is converted to a base64 representation.
CVSS 2.0
Severity: HIGH
Problem Type: CWE-189,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| joe_shaw | libsoup | 2.23.1 |
| joe_shaw | libsoup | 2.23.91 |
| joe_shaw | libsoup | 2.1 |
| joe_shaw | libsoup | 2.23.6 |
| joe_shaw | libsoup | 2.23.92 |