| Package | gsoap |
|---|---|
| Version | 2.8.35-4+deb9u3 (stretch) |
| Related CVEs | CVE-2020-13574 CVE-2020-13575 CVE-2020-13576 CVE-2020-13577 CVE-2020-13578 |
Multiple vulnerabilities have been fixed in the gSOAP toolkit for developing Web services.
CVE-2020-13574
WS-Security plugin denial-of-service
CVE-2020-13575
WS-Addressing plugin denial-of-service
CVE-2020-13576
WS-Addressing plugin code execution
CVE-2020-13577
WS-Security plugin denial-of-service
CVE-2020-13578
WS-Security plugin denial-of-service
For Debian 9 stretch, these problems have been fixed in version 2.8.35-4+deb9u3.
We recommend that you upgrade your gsoap packages.
Further information about Extended LTS security advisories can be found in the dedicated section of our website.