Alerts This Week
Warning Icon 1 876
Alerts This Week
Warning Icon 1 876

Debian: DLA-3745-1 Critical: gSOAP DoS and Code Execution Risks

debian lts
Calendar Grey February 29, 2024
Dist Debian Esm H88
Recent security threats linked to the gSOAP toolkit could result in serious service disruptions and heightened risks. Urgent updates for Debian systems are essential
Multiple vulnerabilities have been fixed in the gSOAP toolkit for developing Web services
Topics%20covered

Topics Covered

security advisory denial of service software update code execution debian critical severity gsoap

Summary

CVE-2020-13574

WS-Security plugin denial-of-service

CVE-2020-13575

WS-Addressing plugin denial-of-service

CVE-2020-13576

WS-Addressing plugin code execution

CVE-2020-13577

WS-Security plugin denial-of-service

CVE-2020-13578

WS-Security plugin denial-of-service

For Debian 10 buster, these problems have been fixed in version
2.8.75-1+deb10u1.

We recommend that you upgrade your gsoap packages.

For the detailed security status of gsoap please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/source-package/gsoap

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS


Severity
critical
Lowest
Low
Medium
High
Critical

Package: gsoap
Version: 2.8.75-1+deb10u1
CVE ID: CVE-2020-13574 CVE-2020-13575 CVE-2020-13576 CVE-2020-13577
Debian Bug: 983596

Topics%20covered

Topics Covered

security advisory denial of service software update code execution debian critical severity gsoap

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here