Lucene search
K
GnomeLibsoup

25 matches found

CVE
CVE
added 2026/03/12 1:53 p.m.617 views

CVE-2026-3099

Affects Libsoup’s server-side Digest authentication in SoupAuthDomainDigest. The vulnerability arises from failure to properly track issued nonces and increment nonce-count (nc), enabling a remote attacker to capture a single valid authentication header and replay it to bypass authentication and ...

7.3CVSS5.8AI score0.00355EPSS
CVE
CVE
added 2018/07/05 6:0 p.m.318 views

CVE-2018-12910

CVE-2018-12910 affects libsoup’s soup-cookie-jar.c get_cookies with an empty hostname, allowing unspecified impact per multiple advisories. The issue is described as a denial of service risk (and related out-of-bounds read concerns in some entries) in libsoup 2.63.2 and earlier. Public disclosure...

9.8CVSS8.7AI score0.04188EPSS
CVE
CVE
added 2018/04/24 7:0 p.m.297 views

CVE-2017-2885

CVE-2017-2885 affects GNOME libsoup 2.58, with a stack-based buffer overflow in HTTP processing that can be triggered by a crafted request, potentially allowing remote code execution. Connected advisories confirm upstream Libsoup vulnerability and provide patches across distributions (e.g., Red H...

9.8CVSS9.7AI score0.24337EPSS
CVE
CVE
added 2026/03/30 5:35 a.m.233 views

CVE-2026-5119

CVE-2026-5119 concerns libsoup. The flaw: when establishing HTTPS tunnels through a configured HTTP proxy, sensitive session cookies are transmitted in cleartext inside the initial HTTP CONNECT request. A network-positioned attacker or a malicious HTTP proxy can intercept these cookies, enabling ...

8.2CVSS5.9AI score0.00254EPSS
CVE
CVE
added 2019/10/06 9:48 p.m.207 views

CVE-2019-17266

CVE-2019-17266 affects Libsoup (versions 2.65.1–2.68.1) with a heap-based buffer over-read caused by an insufficient length check in soup_ntlm_parse_challenge() before a memcpy. This could enable a remote attacker to trigger a denial of service; CVSS3/10 scores indicate high to critical impact on...

9.8CVSS9.3AI score0.02784EPSS
CVE
CVE
added 2025/04/03 1:40 a.m.203 views

CVE-2025-2784

CVE-2025-2784 affects the libsoup library (GNOME HTTP client/server). A heap buffer over-read/over-run vulnerability is reported in the content sniffing path, notably in skip_insignificant_space (and related sniffing functions), allowing an out-of-bounds read on crafted responses. Connected advis...

7CVSS7AI score0.00786EPSS
CVE
CVE
added 2024/11/11 12:0 a.m.182 views

CVE-2024-52531

Summary (CVE-2024-52531 in libsoup): GNOME libsoup versions before 3.6.1 are affected. The issue is a buffer overflow in applications that perform UTF-8 conversion in soup_header_parse_param_list_strict, with a plausible remote trigger via soup_message_headers_get_content_type. This can lead to m...

8.4CVSS7.6AI score0.00679EPSS
CVE
CVE
added 2024/11/11 12:0 a.m.171 views

CVE-2024-52532

CVE-2024-52532 affects GNOME libsoup; versions before 3.6.1 have an infinite loop when processing certain WebSocket data, causing memory exhaustion and potential denial of service. Multiple connected advisories corroborate the issue and indicate upgrading to libsoup 3.6.1 or newer as remediation....

7.5CVSS7AI score0.00933EPSS
CVE
CVE
added 2018/06/04 2:0 p.m.170 views

CVE-2018-11713

CVE-2018-11713 concerns WebKitGTK's WebKit Libsoup network backend. WebCore/SocketStreamHandleImplSoup.cpp could fail to use system proxy settings for WebSocket connections in WebKitGTK+ builds prior to 2.20.0 or when libsoup 2.62.0 is not present. This could allow a crafted web page to deanonymi...

6.5CVSS7AI score0.01586EPSS
CVE
CVE
added 2024/11/11 12:0 a.m.141 views

CVE-2024-52530

CVE-2024-52530 affects GNOME libsoup (libsoup) prior to 3.6.0, where HTTP header parsing ignores trailing null characters in header names, causing a potential HTTP request smuggling vulnerability via a header like Transfer-Encoding\0: chunked. Connected documents confirm the issue across multiple...

7.5CVSS6.9AI score0.00793EPSS
CVE
CVE
added 2011/08/31 11:0 p.m.113 views

CVE-2011-2524

Summary of CVE-2011-2524 (libsoup) : A directory traversal vulnerability exists in SoupServer’s soup-uri.c in libsoup prior to 2.35.4, allowing remote attackers to read arbitrary files via a %2e%2e in the URI. The issue affects libsoup across multiple advisories and distributions (e.g., MiracleLi...

5CVSS9AI score0.01925EPSS
CVE
CVE
added 2026/03/17 9:44 a.m.104 views

CVE-2026-3632

CVE-2026-3632 affects the libsoup library used to send network requests. The root cause is improper hostname validation which allows special characters to be injected into HTTP headers, enabling HTTP smuggling and, in some cases, Server-Side Request Forgery (SSRF) . The incident is contextualized...

5.5CVSS5.8AI score0.00207EPSS
CVE
CVE
added 2026/03/17 11:14 a.m.69 views

CVE-2026-4271

The CVE-2026-4271 entry describes a Use-After-Free in libsoup’s HTTP/2 server implementation. A remote attacker can send specially crafted HTTP/2 requests that trigger authentication failures, leading the application to access freed memory and potentially crash or become unstable (DoS). Connected...

7.5CVSS5.8AI score0.00829EPSS
CVE
CVE
added 2012/08/20 6:0 p.m.54 views

CVE-2012-2132

CVE-2012-2132 affects libsoup 2.32.2 and earlier. The flaw: libsoup does not validate certificates or clear the trust flag when the ssl-ca-file is missing, allowing a remote attacker to bypass authentication by using an SSL connection. Publicly documented impact is a certificate/trust bypass rath...

5CVSS7AI score0.01553EPSS
CVE
CVE
added 2026/02/13 11:58 a.m.54 views

CVE-2026-2443

CVE-2026-2443 affects the libsoup HTTP library used in GNOME-based systems. The issue arises when processing crafted HTTP Range headers, where the library may incorrectly validate requested byte ranges, potentially allowing an out-of-bounds read via the embedded SoupServer component. The root cau...

5.3CVSS5.6AI score0.0043EPSS
CVE
CVE
added 2026/01/28 3:15 p.m.52 views

CVE-2026-1536

CVE-2026-1536 refers to a flaw in the libsoup HTTP library where an attacker able to control the Content-Disposition header input can inject CRLF sequences. This results in arbitrary HTTP header injection or HTTP response splitting without authentication. The connected IBM ACE bulletin documents ...

5.8CVSS5.9AI score0.00298EPSS
CVE
CVE
added 2026/02/03 8:12 p.m.47 views

CVE-2026-1801

CVE-2026-1801 affects libsoup. The vulnerability stems from non-RFC-compliant parsing in soup_filter_input_stream_read_line(), allowing malformed chunk headers (for example, lone LF instead of CRLF) to enable HTTP Request Smuggling. A remote attacker can trigger this without authentication by sen...

6.5CVSS5.5AI score0.00376EPSS
CVE
CVE
added 2026/04/23 9:51 p.m.41 views

CVE-2026-2708

CVE-2026-2708 affects the Libsoup HTTP/1 parser. The soup_message_headers_append_common() function unconditionally appends header values without validating for duplicate or conflicting Content-Length fields, enabling HTTP request smuggling via multiple Content-Length headers with differing values...

5.3CVSS5.7AI score0.00321EPSS
CVE
CVE
added 2026/06/22 1:55 p.m.37 views

CVE-2026-12549

The CVE-2026-12549 entry concerns GNOME Libsoup (soupserver). A regression after the fix for CVE-2026-2443 replaced specific overflow checks with a general signed comparison. When a client issues a Range request with a suffix length exceeding the content size, the resulting negative start value i...

4.8CVSS5.9AI score0.00325EPSS
CVE
CVE
added 2026/01/28 3:15 p.m.36 views

CVE-2026-1539

The connected IBM ACE bulletin confirms CVE-2026-1539 is a libsoup HTTP library issue: during HTTP redirects, the library removes the Authorization header but may fail to remove Proxy-Authorization when redirecting to a different host, potentially leaking proxy credentials to third-party servers....

5.8CVSS5.8AI score0.00237EPSS
CVE
CVE
added 2026/01/27 9:17 a.m.32 views

CVE-2026-1467

Libsoup contains a CRLF injection vulnerability (CVE-2026-1467) in which URL-decoded input used to form the Host header can be manipulated when an HTTP proxy is configured. A remote attacker can craft a URL with CRLF sequences to inject extra HTTP headers or request bodies, potentially affecting ...

5.8CVSS5.8AI score0.00312EPSS
CVE
CVE
added 2026/03/26 7:31 p.m.28 views

CVE-2026-2436

CVE-2026-2436 : A use-after-free in libsoup’s SoupServer can be triggered by a TLS handshake timing issue. Specifically, soup_server_disconnect() may free connection objects prematurely; if the TLS handshake completes after the object is freed, a dangling pointer access can crash the server, caus...

8.2CVSS5.7AI score0.00447EPSS
CVE
CVE
added 2026/03/17 9:44 a.m.27 views

CVE-2026-3634

Concrete details found: CVE-2026-3634 affects the libsoup library. The vulnerability arises in soup_message_headers_set_content_type(), where improper input sanitization allows an attacker-controlled Content-Type value to inject CRLF sequences, enabling arbitrary header-value injections and HTTP ...

6.5CVSS5.8AI score0.00184EPSS
CVE
CVE
added 2026/03/19 2:20 p.m.25 views

CVE-2026-2369

A vulnerability CVE-2026-2369 exists in libsoup where an integer underflow occurs when processing content with a zero-length resource, causing a buffer overread. Connected sources indicate this affects libsoup versions older than 3.4.4-14, with a patched release available (3.4.4-14). Potential im...

9.1CVSS5.9AI score0.0042EPSS
CVE
CVE
added 2026/03/17 9:44 a.m.25 views

CVE-2026-3633

Summary: CVE-2026-3633 affects libsoup and enables CRLF/header/http request injection by an attacker who can control the method parameter in soup_message_new(). The flaw arises from inadequate escaping of the method value during request line construction, potentially allowing arbitrary headers or...

6.5CVSS5.9AI score0.00223EPSS