Red Hat Security Advisory: libsoup3 security update
Multiple security vulnerabilities have been identified in libsoup3, an HTTP library used in GNOME applications. These include denial of service (DoS) issues affecting websocket servers and servers handling overlapping Range header requests, a cookie domain validation bypass via uppercase characters, and an integer underflow leading to DoS. Red Hat has issued an important security advisory with updates for Red Hat Enterprise Linux 10 to address these issues.
AI Analysis
Technical Summary
Libsoup3, a C-based HTTP library designed for asynchronous network communication in GTK and GNOME applications, contains several vulnerabilities: CVE-2025-32049 allows denial of service attacks on websocket servers; CVE-2025-32907 causes denial of service when clients request many overlapping ranges via the Range header; CVE-2025-4035 enables cookie domain validation bypass through uppercase characters; and CVE-2025-4948 involves an integer underflow in soup_multipart_new_from_message() leading to denial of service. Red Hat has released security updates for Red Hat Enterprise Linux 10 and related variants to fix these issues.
Potential Impact
The vulnerabilities can lead to denial of service conditions on servers using libsoup3, potentially disrupting network services and applications relying on this library. The cookie domain validation bypass could allow improper cookie acceptance, possibly affecting security policies related to cookie handling. No known exploits in the wild have been reported at this time.
Mitigation Recommendations
Red Hat has released updated packages for libsoup3 as part of Red Hat Enterprise Linux 10 and its extended update support versions. Users should apply these official security updates promptly to remediate the vulnerabilities. For detailed update instructions, refer to the Red Hat advisory at https://access.redhat.com/articles/11258. Patch status is confirmed as fixed in the updated packages provided by Red Hat.
Red Hat Security Advisory: libsoup3 security update
Description
Multiple security vulnerabilities have been identified in libsoup3, an HTTP library used in GNOME applications. These include denial of service (DoS) issues affecting websocket servers and servers handling overlapping Range header requests, a cookie domain validation bypass via uppercase characters, and an integer underflow leading to DoS. Red Hat has issued an important security advisory with updates for Red Hat Enterprise Linux 10 to address these issues.
Affected software
Run on your own infrastructure? Check whether these packages are installed with threat-finder — our free open-source scanner.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
Libsoup3, a C-based HTTP library designed for asynchronous network communication in GTK and GNOME applications, contains several vulnerabilities: CVE-2025-32049 allows denial of service attacks on websocket servers; CVE-2025-32907 causes denial of service when clients request many overlapping ranges via the Range header; CVE-2025-4035 enables cookie domain validation bypass through uppercase characters; and CVE-2025-4948 involves an integer underflow in soup_multipart_new_from_message() leading to denial of service. Red Hat has released security updates for Red Hat Enterprise Linux 10 and related variants to fix these issues.
Potential Impact
The vulnerabilities can lead to denial of service conditions on servers using libsoup3, potentially disrupting network services and applications relying on this library. The cookie domain validation bypass could allow improper cookie acceptance, possibly affecting security policies related to cookie handling. No known exploits in the wild have been reported at this time.
Mitigation Recommendations
Red Hat has released updated packages for libsoup3 as part of Red Hat Enterprise Linux 10 and its extended update support versions. Users should apply these official security updates promptly to remediate the vulnerabilities. For detailed update instructions, refer to the Red Hat advisory at https://access.redhat.com/articles/11258. Patch status is confirmed as fixed in the updated packages provided by Red Hat.
Technical Details
- Gcve Source
- db.gcve.eu
- Csaf Category
- csaf_security_advisory
- Csaf Version
- 2.0
- Publisher
- Red Hat Product Security
- Advisory Id
- RHSA-2025:8128
- Cve Count
- 4
- Additional Cves
- ["CVE-2025-4948","CVE-2025-32049","CVE-2025-32907"]
- Cvss Version
- null
Threat ID: 6a3e8062cef61ccff9701e5a
Added to database: 06/26/2026, 13:36:34 UTC
Last enriched: 06/26/2026, 13:44:37 UTC
Last updated: 06/26/2026, 13:48:26 UTC
Views: 3
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.