INFSA-2025:0838: libsoup security update
Information about definition
Identificator: INFSA-2025:0838
Type: security
Release date: 2025-03-05 16:58:55 UTC
Information about package
The libsoup packages provide an HTTP client and server library for GNOME.
Vulnerabilities description
- CVE-2024-52531
GNOME libsoup before 3.6.1 allows a buffer overflow in applications that perform conversion to UTF-8 in soup_header_parse_param_list_strict. Input received over the network cannot trigger this.
Severity level
| CVE | Score CVSS 2.0 | Score CVSS 3.x | Score CVSS 4.0 |
|---|---|---|---|
|
NIST — CVE-2024-52531
|
no information | 9.0 | no information |
Updated packages