Astra Linux – Vulnerability in libsoup3, libsoup2.4

A vulnerability was discovered in the libsoup package. This flaw arises from its failure to correctly verify the termination of multipart HTTP messages. This could allow a remote attacker to send a specially crafted multipart HTTP body, causing the libsoup-consuming server to read beyond its...

Medium: libsoup

Issue Overview: A denial-of-service vulnerability has been identified in the libsoup HTTP client library. This flaw can be triggered when a libsoup client receives a 401 Unauthorized HTTP response containing a specifically crafted domain parameter within the WWW-Authenticate header. Processing th...

SUSE CVE-2025-4969

A vulnerability was found in the libsoup package. This flaw stems from its failure to correctly verify the termination of multipart HTTP messages. This can allow a remote attacker to send a specially crafted multipart HTTP body, causing the libsoup-consuming server to read beyond its allocated...

AZL-61945 CVE-2025-4969 affecting package libsoup for versions less than 3.0.4-9

A vulnerability was found in the libsoup package. This flaw stems from its failure to correctly verify the termination of multipart HTTP messages. This can allow a remote attacker to send a specially crafted multipart HTTP body, causing the libsoup-consuming server to read beyond its allocated...

libsoup 缓冲区错误漏洞

libsoup is a GNOME HTTP client/server library from the GNOME Project. A buffer error vulnerability exists in libsoup that stems from not properly validating multipart HTTP message termination, which could lead to out-of-bounds reads...