Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [day] [month] [year] [list]
Date: Thu, 28 Jul 2011 12:31:28 -0600
From: Vincent Danen <>
Subject: CVE-2011-2524: libsoup's SoupServer directory traversal flaw

Hello everyone.  Just a heads up to advise about a directory traversal
flaw in libsoup's SoupServer.  This flaw could allow any service linked
to libsoup and using SoupServer to have a remote user traverse the local
file system and expose unintended files.


Vincent Danen / Red Hat Security Response Team 

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Powered by Openwall GNU/*/Linux - Powered by OpenVZ