UbuntuUpdates.org

Package "libgsasl-dev"

Name: libgsasl-dev

Description:

Development files for the GNU SASL library
Latest version: 2.2.2-2ubuntu1.1
Release: questing (25.10)
Level: updates
Repository: main
Head package: gsasl
Homepage: https://www.gnu.org/software/gsasl/

Links

All versions of this package
Bug fixes

List of files in package
Repository home page

Download "libgsasl-dev"

32-bit deb package
64-bit deb package
APT INSTALL

Other versions of "libgsasl-dev" in Questing

Repository Area Version
base main 2.2.2-2ubuntu1
security main 2.2.2-2ubuntu1.1

Changelog

Version: 2.2.2-2ubuntu1.1 2026-06-01 20:07:34 UTC

  gsasl (2.2.2-2ubuntu1.1) questing-security; urgency=medium

  * SECURITY UPDATE: NULL pointer dereference in DIGEST-MD5 parser
    - debian/patches/CVE-2026-48829.patch: Fix NULL pointer dereference in
      DIGEST-MD5 parser in lib/digest-md5/getsubopt.c.
    - CVE-2026-48829

 -- Marc Deslauriers <email address hidden> Wed, 27 May 2026 12:40:52 -0400
CVE-2026-48829 In GNU SASL before 2.2.3, DIGEST-MD5 has a NULL pointer dereference affecting both clients and servers, via a known token with no accompanying = char


About   -   Send Feedback to @ubuntu_updates