18 matches found
CBL Mariner 2.0 Security Update: libsoup (CVE-2025-32910)
The version of libsoup installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-32910 advisory. - A flaw was found in libsoup, where soupauthdigestauthenticate is vulnerable to a NULL pointer dereference...
Azure Linux 3.0 Security Update: libsoup (CVE-2025-32910)
The version of libsoup installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-32910 advisory. - A flaw was found in libsoup, where soupauthdigestauthenticate is vulnerable to a NULL pointer dereference...
CVE-2025-32910 affecting package libsoup for versions less than 3.0.4-7
CVE-2025-32910 affecting package libsoup for versions less than 3.0.4-7. A patched version of the package is available...
Huawei EulerOS: Security Advisory for libsoup (EulerOS-SA-2025-1707)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2025:01864-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLED15 / SLES15 Security Update : libsoup (SUSE-SU-2025:01504-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:01504-1 advisory. - CVE-2025-2784: Fixed heap buffer over-read in skipinsignificantspace when sniffing conten bsc1240750 -...
Important: Red Hat Security Advisory: mingw-freetype and spice-client-win security update
An update for mingw-freetype and spice-client-win is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available f...
Important: mingw-freetype security update
MinGW Windows Freetype library. Security Fixes: freetype: OOB write when attempting to parse font subglyph structures related to TrueType GX and variable font files CVE-2025-27363 libsoup: Integer overflow in appendparamquoted CVE-2025-32050 libsoup: Heap buffer overflow in sniffunknown...
AlmaLinux 8 : mingw-freetype (ALSA-2025:8292)
The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2025:8292 advisory. freetype: OOB write when attempting to parse font subglyph structures related to TrueType GX and variable font files CVE-2025-27363 libsoup: Integer...
RHEL 8 : mingw-freetype and spice-client-win (RHSA-2025:8292)
The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:8292 advisory. MinGW Windows Freetype library. Security Fixes: freetype: OOB write when attempting to parse font subglyph structures related to TrueType GX...
SUSE SLED15: libsoup-3_0-0 / libsoup-3_0-0-32bit / libsoup-devel / etc (SUSE-SU-2025:1504-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:1504-1 advisory. - CVE-2025-2784: Fixed heap buffer over-read in skipinsignificantspace when sniffing conten...
Fedora 41 : mingw-libsoup (2025-bd12d23d21)
The remote Fedora 41 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-bd12d23d21 advisory. Backport fixes for CVE-2025-32910, CVE-2025-32911, CVE-2025-32913 ---- Backport fixes for CVE-2025-32050 CVE-2025-32052 CVE-2025-32053 CVE-2025-3290...
Fedora: Security Advisory (FEDORA-2025-67e824b908)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2025-32910 affecting package libsoup for versions less than 3.4.4-3
CVE-2025-32910 affecting package libsoup for versions less than 3.4.4-3. A patched version of the package is available...
CVE-2025-32910
CVE-2025-32910 affects libsoup (libsoup3) with a NULL pointer dereference in soup_auth_digest_authenticate() when the server omits the realm parameter in a Digest auth flow. This can cause the libsoup client to crash. Affected versions include libsoup3 prior to 3.0.4-7 (per CBLMariner), and relat...
CVE-2025-32910 Libsoup: null pointer deference on libsoup via /auth/soup-auth-digest.c through "soup_auth_digest_authenticate" on client when server omits the "realm" parameter in an unauthorized response with digest authentication
A flaw was found in libsoup, where soupauthdigestauthenticate is vulnerable to a NULL pointer dereference. This issue may cause the libsoup client to crash...
CVE-2025-32910 Libsoup: null pointer deference on libsoup via /auth/soup-auth-digest.c through "soup_auth_digest_authenticate" on client when server omits the "realm" parameter in an unauthorized response with digest authentication
A flaw was found in libsoup, where soupauthdigestauthenticate is vulnerable to a NULL pointer dereference. This issue may cause the libsoup client to crash...
CVE-2025-32910
A flaw was found in libsoup, where soupauthdigestauthenticate is vulnerable to a NULL pointer dereference. This issue may cause the libsoup client to crash. Mitigation Currently, no mitigation is available for this vulnerability...