CBL Mariner 2.0 Security Update: libsoup (CVE-2025-32914)

The version of libsoup installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-32914 advisory. - A flaw was found in libsoup, where the soupmultipartnewfrommessage function is vulnerable to an out-...

libsoup: Double free on soup_message_headers_get_content_disposition() through "soup-message-headers.c" via "params" GHashTable value

A use-after-free type vulnerability was found in libsoup, in the soupmessageheadersgetcontentdisposition function. This flaw allows a malicious HTTP client to cause memory corruption in the libsoup server...

AZL-60489 CVE-2025-32911 affecting package libsoup for versions less than 3.4.4-3

A use-after-free type vulnerability was found in libsoup, in the soupmessageheadersgetcontentdisposition function. This flaw allows a malicious HTTP client to cause memory corruption in the libsoup server...

CVE-2025-32914

A flaw was found in libsoup, where the soupmultipartnewfrommessage function is vulnerable to an out-of-bounds read. This flaw allows a malicious HTTP client to induce the libsoup server to read out of bounds...

F5 Networks BIG-IP : TMM vulnerability (K14693346)

The version of F5 Networks BIG-IP installed on the remote host is prior to 14.1.3.1 / 16.0.1.1. It is, therefore, affected by a vulnerability as referenced in the K14693346 advisory. - On BIG-IP version 16.0.0-16.0.1 and 14.1.2.4-14.1.3, cooperation between malicious HTTP client code and a...

CVE-2018-18820

A buffer overflow was discovered in the URL-authentication backend of the Icecast before 2.4.4. If the backend is enabled, then any malicious HTTP client can send a request for that specific resource including a crafted header, leading to denial of service and potentially remote code execution...