Lucene search
K

7 matches found

OSV
OSV
added 2025/11/21 6:13 p.m.5 views

RLSA-2025:20959 Important: libsoup security update

The libsoup packages provide an HTTP client and server library for GNOME. Security Fixes: libsoup: Integer Overflow in Cookie Expiration Date Handling in libsoup CVE-2025-4945 libsoup: Out-of-Bounds Read in Cookie Date Handling of libsoup HTTP Library CVE-2025-11021 For more details about the...

7.5CVSS6.1AI score0.00594EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2025/11/19 5:38 p.m.9 views

libsoup: Integer Overflow in Cookie Expiration Date Handling in libsoup

A flaw was found in the cookie parsing logic of the libsoup HTTP library, used in GNOME applications and other software. The vulnerability arises when processing the expiration date of cookies, where a specially crafted value can trigger an integer overflow. This may result in undefined behavior,...

3.7CVSS5.9AI score0.00538EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/11/17 12:0 a.m.6 views

Alibaba Cloud Linux 3 : 0176: libsoup (ALINUX3-SA-2025:0176)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2025:0176 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2025-11021: A flaw was found in the...

7.5CVSS6.5AI score0.00594EPSS
Exploits0References3
IBM Security Bulletins
IBM Security Bulletins
added 2025/10/01 3:31 p.m.10 views

Security Bulletin: IBM App Connect Enterprise Certified Container UBI updates

Summary IBM App Connect Enterprise Certified Container ACEcc is built on the Red Hat Universal Base Images. ACEcc operator versions 12.0.16 LTS and 12.16.0 contain fixes to the listed CVEs found in the base images. This bulletin provides patch information to address the reported vulnerabilities...

8CVSS7.3AI score0.02303EPSS
Exploits3Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/08/07 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2025-4945

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in the cookie parsing logic of the libsoup HTTP library, used in GNOME applications and other software. The vulnerability arises when processin...

3.7CVSS6AI score0.00538EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/07 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2025-4035

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in libsoup. When handling cookies, libsoup clients mistakenly allow cookies to be set for public suffix domains if the domain contains at least...

4.3CVSS5.8AI score0.00348EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/05/19 12:0 a.m.4 views

PT-2025-22041

Name of the Vulnerable Software and Affected Versions: libsoup affected versions not specified Description: A flaw was found in the cookie parsing logic of the libsoup HTTP library, which is used in GNOME applications and other software. The issue arises when processing the expiration date of...

3.7CVSS7AI score0.00538EPSS
Exploits0References113
Rows per page
Query Builder