Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

oracle-oval логотип

ELSA-2026-2410

Опубликовано: 10 фев. 2026
Источник: oracle-oval
Платформа: Oracle Linux 10

Описание

ELSA-2026-2410: libsoup3 security update (IMPORTANT)

[3.6.5-10]

  • Add patch for CVE-2026-1761

[3.6.5-9]

  • Fix CVE-2026-0719

[3.6.5-8]

  • Fix CVE-2025-14523

[3.6.5-7]

  • Add patch for CVE-2025-12105

[3.6.5-6]

  • Fix integer overflow in date/time parsing

[3.6.5-5]

  • Bump revision number

[3.6.5-4]

  • Fix several CVEs

Обновленные пакеты

Oracle Linux 10

Oracle Linux aarch64

libsoup3

3.6.5-3.el10_1.10

libsoup3-devel

3.6.5-3.el10_1.10

libsoup3-doc

3.6.5-3.el10_1.10

Oracle Linux x86_64

libsoup3

3.6.5-3.el10_1.10

libsoup3-devel

3.6.5-3.el10_1.10

libsoup3-doc

3.6.5-3.el10_1.10

Связанные CVE

CVE-2026-1761

Ссылки на источники

Связанные уязвимости

ubuntu логотип

CVE-2026-1761

CVSS3: 8.6
ubuntu
около 2 месяцев назад

A flaw was found in libsoup. This stack-based buffer overflow vulnerability occurs during the parsing of multipart HTTP responses due to an incorrect length calculation. A remote attacker can exploit this by sending a specially crafted multipart HTTP response, which can lead to memory corruption. This issue may result in application crashes or arbitrary code execution in applications that process untrusted server responses, and it does not require authentication or user interaction.

redhat логотип

CVE-2026-1761

CVSS3: 8.6
redhat
около 2 месяцев назад

A flaw was found in libsoup. This stack-based buffer overflow vulnerability occurs during the parsing of multipart HTTP responses due to an incorrect length calculation. A remote attacker can exploit this by sending a specially crafted multipart HTTP response, which can lead to memory corruption. This issue may result in application crashes or arbitrary code execution in applications that process untrusted server responses, and it does not require authentication or user interaction.

nvd логотип

CVE-2026-1761

CVSS3: 8.6
nvd
около 2 месяцев назад

A flaw was found in libsoup. This stack-based buffer overflow vulnerability occurs during the parsing of multipart HTTP responses due to an incorrect length calculation. A remote attacker can exploit this by sending a specially crafted multipart HTTP response, which can lead to memory corruption. This issue may result in application crashes or arbitrary code execution in applications that process untrusted server responses, and it does not require authentication or user interaction.

debian логотип

CVE-2026-1761

CVSS3: 8.6
debian
около 2 месяцев назад

A flaw was found in libsoup. This stack-based buffer overflow vulnerab ...

suse-cvrf логотип

openSUSE-SU-2026:20283-1

suse-cvrf
30 дней назад

Security update for libsoup2