libsoup2.4 2.74.3-6ubuntu1.1 source package in Ubuntu
Changelog
libsoup2.4 (2.74.3-6ubuntu1.1) noble-security; urgency=medium
* SECURITY UPDATE: Request smuggling
- debian/patches/CVE-2024-52530.patch: Strictly don't allow NUL
bytes in headers
- CVE-2024-52530
* SECURITY UPDATE: Buffer overflow
- debian/patches/CVE-2024-52531-1.patch: Be more robust against
invalid input when parsing params
- debian/patches/CVE-2024-52531-2.patch: Add test for passing
invalid UTF-8 to soup_header_parse_semi_param_list()
- CVE-2024-52531
* SECURITY UPDATE: Denial of service
- debian/patches/CVE-2024-52532-1.patch: process the frame as soon
as data is read
- debian/patches/CVE-2024-52532-2.patch: disconnect error copy
after the test ends
- CVE-2024-52532
-- Bruce Cable <email address hidden> Tue, 19 Nov 2024 09:24:43 +1100
Upload details
- Uploaded by:
- Bruce Cable
- Uploaded to:
- Noble
- Original maintainer:
- Ubuntu Developers
- Architectures:
- any all
- Section:
- oldlibs
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| libsoup2.4_2.74.3.orig.tar.xz | 1.4 MiB | e4b77c41cfc4c8c5a035fcdc320c7bc6cfb75ef7c5a034153df1413fa1d92f13 |
| libsoup2.4_2.74.3-6ubuntu1.1.debian.tar.xz | 30.0 KiB | ff0961c7cffd4db5ef7618c31c9885e2d64355047dfd521d0ab02bc45ee3fd33 |
| libsoup2.4_2.74.3-6ubuntu1.1.dsc | 3.1 KiB | 143fa9f668a26633fbc17e3a216e6a621b898e56aeec8c1a0c2931670384e6c8 |
Available diffs
Binary packages built by this source
- gir1.2-soup-2.4: GObject introspection data for the libsoup HTTP library
This package contains introspection data for the libsoup HTTP library.
.
libsoup uses the Glib main loop and is designed to work well with GTK+
applications. This enables GNOME applications to access HTTP servers
on the network in a completely asynchronous fashion, very similar to
the GTK+ programming model (a synchronous operation mode is also
supported for those who want it).
.
It can be used by packages using the GIRepository format to generate
dynamic bindings.
- libsoup-2.4-1: HTTP library implementation in C -- Shared library
It was originally part of a SOAP (Simple Object Access Protocol)
implementation called Soup, but the SOAP and non-SOAP parts have now been
split into separate packages.
.
libsoup uses the Glib main loop and is designed to work well with GTK+
applications. This enables GNOME applications to access HTTP servers
on the network in a completely asynchronous fashion, very similar to
the GTK+ programming model (a synchronous operation mode is also
supported for those who want it).
.
Features:
* Both asynchronous (GMainLoop and callback-based) and synchronous APIs
* Automatically caches connections
* SSL Support using GnuTLS
* Proxy support, including authentication and SSL tunneling
* Client support for Digest, NTLM, and Basic authentication
* Server support for Digest and Basic authentication
* Basic client-side SOAP and XML-RPC support
.
This package contains the shared library.
- libsoup-2.4-1-dbgsym: debug symbols for libsoup-2.4-1
- libsoup-gnome-2.4-1: HTTP library implementation in C -- GNOME support library
It was originally part of a SOAP (Simple Object Access Protocol)
implementation called Soup, but the SOAP and non-SOAP parts have now been
split into separate packages.
.
libsoup uses the Glib main loop and is designed to work well with GTK+
applications. This enables GNOME applications to access HTTP servers
on the network in a completely asynchronous fashion, very similar to
the GTK+ programming model (a synchronous operation mode is also
supported for those who want it).
.
The GNOME support library is used for features which are important to
GNOME apps, but which require GNOME-specific libraries that non-GNOME
apps may not want to add dependencies on.
.
Features:
* Both asynchronous (GMainLoop and callback-based) and synchronous APIs
* Automatically caches connections
* SSL Support using GnuTLS
* Proxy support, including authentication and SSL tunneling
* Client support for Digest, NTLM, and Basic authentication
* Server support for Digest and Basic authentication
* Basic client-side SOAP and XML-RPC support
.
This package contains the GNOME support shared library.
- libsoup-gnome-2.4-1-dbgsym: debug symbols for libsoup-gnome-2.4-1
- libsoup-gnome2.4-dev: HTTP library implementation in C -- GNOME support development files
It was originally part of a SOAP (Simple Object Access Protocol)
implementation called Soup, but the SOAP and non-SOAP parts have now been
split into separate packages.
.
libsoup uses the Glib main loop and is designed to work well with GTK+
applications. This enables GNOME applications to access HTTP servers
on the network in a completely asynchronous fashion, very similar to
the Gtk+ programming model (a synchronous operation mode is also
supported for those who want it).
.
The GNOME support library is used for features which are important to
GNOME apps, but which require GNOME-specific libraries that non-GNOME
apps may not want to add dependencies on.
.
Features:
* Both asynchronous (GMainLoop and callback-based) and synchronous APIs
* Automatically caches connections
* SSL Support using GnuTLS
* Proxy support, including authentication and SSL tunneling
* Client support for Digest, NTLM, and Basic authentication
* Server support for Digest and Basic authentication
* Basic client-side SOAP and XML-RPC support
.
This package contains the development files for the GNOME support.
- libsoup2.4-common: HTTP library implementation in C -- Common files
It was originally part of a SOAP (Simple Object Access Protocol)
implementation called Soup, but the SOAP and non-SOAP parts have now been
split into separate packages.
.
This package contains architecture-independent files such as translations.
- libsoup2.4-dev: HTTP library implementation in C -- Development files
It was originally part of a SOAP (Simple Object Access Protocol)
implementation called Soup, but the SOAP and non-SOAP parts have now been
split into separate packages.
.
libsoup uses the Glib main loop and is designed to work well with GTK+
applications. This enables GNOME applications to access HTTP servers
on the network in a completely asynchronous fashion, very similar to
the GTK+ programming model (a synchronous operation mode is also
supported for those who want it).
.
Features:
* Both asynchronous (GMainLoop and callback-based) and synchronous APIs
* Automatically caches connections
* SSL Support using GnuTLS
* Proxy support, including authentication and SSL tunneling
* Client support for Digest, NTLM, and Basic authentication
* Server support for Digest and Basic authentication
* Basic client-side SOAP and XML-RPC support
.
This package contains the development files.
- libsoup2.4-doc: HTTP library implementation in C -- API Reference
It was originally part of a SOAP (Simple Object Access Protocol)
implementation called Soup, but the SOAP and non-SOAP parts have now been
split into separate packages.
.
libsoup uses the Glib main loop and is designed to work well with GTK+
applications. This enables GNOME applications to access HTTP servers
on the network in a completely asynchronous fashion, very similar to
the GTK+ programming model (a synchronous operation mode is also
supported for those who want it).
.
Features:
* Both asynchronous (GMainLoop and callback-based) and synchronous APIs
* Automatically caches connections
* SSL Support using GnuTLS
* Proxy support, including authentication and SSL tunneling
* Client support for Digest, NTLM, and Basic authentication
* Server support for Digest and Basic authentication
* Basic client-side SOAP and XML-RPC support
.
This package contains the documentation.
- libsoup2.4-tests: HTTP library implementation in C -- installed tests
libsoup uses the Glib main loop and is designed to work well with GTK+
applications. This enables GNOME applications to access HTTP servers
on the network in a completely asynchronous fashion, very similar to
the GTK+ programming model (a synchronous operation mode is also
supported for those who want it).
.
This package contains automated tests, mostly for use via autopkgtest.
They can most easily be invoked via the gnome-desktop-testing- runner
tool in the gnome-desktop-testing package.
- libsoup2.4-tests-dbgsym: debug symbols for libsoup2.4-tests
