Threat Intelligence Database

A flaw was found in libsoup. When handling cookies, libsoup clients mistakenly allow cookies to be set for public suffix domains if the domain contains at least two components and includes an uppercase character. This bypasses public suffix protections and could allow a malicious website to set cookies for domains it does not own, potentially leading to integrity issues such as session fixation.

A security vulnerability (CVE-2025-11021) has been identified in libsoup3, an HTTP library used in Red Hat Enterprise Linux 10. The issue is an out-of-bounds read in the cookie date handling functionality of the libsoup HTTP library. Red Hat has issued an important security update to address this vulnerability in multiple Red Hat Enterprise Linux 10 variants and related products. The update fixes the out-of-bounds read flaw to prevent potential security issues related to improper memory access.

A low severity integer overflow vulnerability (CVE-2025-4945) was identified in libsoup3, an HTTP library used by GNOME applications for asynchronous HTTP access. The flaw occurs in the handling of cookie expiration dates. Red Hat has issued a security update for libsoup3 in Red Hat Enterprise Linux 10 to address this issue.

Two security vulnerabilities have been identified in libsoup3, an HTTP library used by GNOME applications. The issues include an integer overflow and an out-of-bounds read in cookie expiration date handling. These vulnerabilities could potentially affect applications relying on libsoup3 for HTTP communication. Red Hat has released security updates addressing these flaws for Red Hat Enterprise Linux 10 and related products.

A heap use-after-free vulnerability (CWE-416) exists in libsoup3 during HTTP/2 read completion message queue handling. This vulnerability affects libsoup, an HTTP library used in GNOME applications for asynchronous HTTP communication. Red Hat has issued a security advisory with an update for Red Hat Enterprise Linux 10.0 Extended Update Support to address this issue. The severity is rated as moderate. No known exploits in the wild have been reported. Users of affected Red Hat Enterprise Linux 10.0 Extended Update Support versions should apply the provided update to mitigate the vulnerability.

Multiple security vulnerabilities have been identified in libsoup3, an HTTP library used in GNOME applications for asynchronous HTTP access. These include heap buffer over-reads, out-of-bounds reads, denial of service via HTTP/2, NULL pointer dereference in Digest authentication handling, and information disclosure through improper Authorization header forwarding. Red Hat has issued an important security update addressing these issues in Red Hat Enterprise Linux 10 and related products.

Libsoup is an HTTP library implementation in C. It was originally part of a SOAP (Simple Object Access Protocol) implementation called Soup, but the SOAP and non-SOAP parts have now been split into separate packages. libsoup uses the Glib main loop and is designed to work well with GTK applications. This enables GNOME applications to access HTTP servers on the network in a completely asynchronous fashion, very similar to the Gtk+ programming model (a synchronous operation mode is also supported for those who want it), but the SOAP parts were removed long ago. Security Fix(es): * libsoup: Stack-Based Buffer Overflow in libsoup Multipart Response Parsingmultipart HTTP response (CVE-2026-1761) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Libsoup is an HTTP library implementation in C. It was originally part of a SOAP (Simple Object Access Protocol) implementation called Soup, but the SOAP and non-SOAP parts have now been split into separate packages. libsoup uses the Glib main loop and is designed to work well with GTK applications. This enables GNOME applications to access HTTP servers on the network in a completely asynchronous fashion, very similar to the Gtk+ programming model (a synchronous operation mode is also supported for those who want it), but the SOAP parts were removed long ago. Security Fix(es): * libsoup: Signed to Unsigned Conversion Error Leading to Stack-Based Buffer Overflow in libsoup NTLM Authentication (CVE-2026-0719) * libsoup: Stack-Based Buffer Overflow in libsoup Multipart Response Parsingmultipart HTTP response (CVE-2026-1761) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Libsoup is an HTTP library implementation in C. It was originally part of a SOAP (Simple Object Access Protocol) implementation called Soup, but the SOAP and non-SOAP parts have now been split into separate packages. libsoup uses the Glib main loop and is designed to work well with GTK applications. This enables GNOME applications to access HTTP servers on the network in a completely asynchronous fashion, very similar to the Gtk+ programming model (a synchronous operation mode is also supported for those who want it), but the SOAP parts were removed long ago. Security Fix(es): * libsoup: Signed to Unsigned Conversion Error Leading to Stack-Based Buffer Overflow in libsoup NTLM Authentication (CVE-2026-0719) * libsoup: Stack-Based Buffer Overflow in libsoup Multipart Response Parsingmultipart HTTP response (CVE-2026-1761) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.