Aleksandar Nikolic of Cisco Talos discovered a stack-based buffer overflow vulnerability in libsoup2.4, a HTTP library implementation in C. A remote attacker can take advantage of this flaw by sending a specially crafted HTTP request to cause an application using the libsoup2.4 library to crash (denial of service), or potentially execute arbitrary code.
CVE: (none) => CVE-2017-2885
I Forgot to see that there was already a bug reported on this. By about an hour. *** This bug has been marked as a duplicate of bug 21487 ***
Status: NEW => RESOLVEDResolution: (none) => DUPLICATE