3 matches found
CLSA-2026-1778836031 libsoup: Fix of CVE-2026-2708
CVE-2026-2708: reject duplicate Content-Length headers with different values to prevent HTTP request smuggling per RFC 9110 section 7.7...
CLSA-2026-1771519029 libsoup: Fix of 2 CVEs
CVE-2026-1761: fix stack-based buffer overflow in multipart HTTP response parsing caused by incorrect length calculation in soupfilterinputstreamreaduntil - CVE-2026-0719: fix stack-based buffer overflow in NTLM authentication caused by integer overflow in md4sum with excessively long passwords...
CLSA-2026-1769598900 libsoup: Fix of CVE-2025-14523
CVE-2025-14523: reject duplicate Host headers to prevent request smuggling, cache poisoning, and host-based access control bypass attacks...