Описание
GNOME libsoup before 3.6.1 allows a buffer overflow in applications that perform conversion to UTF-8 in soup_header_parse_param_list_strict. There is a plausible way to reach this remotely via soup_message_headers_get_content_type (e.g., an application may want to retrieve the content type of a request or response).
A flaw was found in the libsoup library. Decoding specially crafted UTF-8 input data with the soup_header_parse_param_list_strict function can cause a heap-based buffer overflow, potentially resulting in code execution and denial of service to applications linked to the library.
Отчет
Further investigation found that this issue can be exploited remotely, increasing the possibility of exploitation and the severity of this vulnerability. Only applications that decode UTF-8 input data with the soup_header_parse_param_list_strict function are vulnerable to this issue. Furthermore, exploitation of this vulnerability highly depends on the application code, the heap layout and functionalities exposed to an attacker. For this reason, this flaw has been rated with an Important severity.
Меры по смягчению последствий
Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 10 | libsoup3 | Affected | ||
| Red Hat Enterprise Linux 6 | libsoup | Out of support scope | ||
| Red Hat Enterprise Linux 7 Extended Lifecycle Support | libsoup | Fixed | RHSA-2025:1047 | 05.02.2025 |
| Red Hat Enterprise Linux 8 | libsoup | Fixed | RHSA-2025:0838 | 30.01.2025 |
| Red Hat Enterprise Linux 8 | libsoup | Fixed | RHSA-2025:0838 | 30.01.2025 |
| Red Hat Enterprise Linux 8.2 Advanced Update Support | libsoup | Fixed | RHSA-2025:0903 | 03.02.2025 |
| Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support | libsoup | Fixed | RHSA-2025:0889 | 03.02.2025 |
| Red Hat Enterprise Linux 8.4 Telecommunications Update Service | libsoup | Fixed | RHSA-2025:0889 | 03.02.2025 |
| Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions | libsoup | Fixed | RHSA-2025:0889 | 03.02.2025 |
| Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support | libsoup | Fixed | RHSA-2025:0949 | 04.02.2025 |
Показывать по
Дополнительная информация
Статус:
EPSS
9 Critical
CVSS3
Связанные уязвимости
GNOME libsoup before 3.6.1 allows a buffer overflow in applications that perform conversion to UTF-8 in soup_header_parse_param_list_strict. There is a plausible way to reach this remotely via soup_message_headers_get_content_type (e.g., an application may want to retrieve the content type of a request or response).
GNOME libsoup before 3.6.1 allows a buffer overflow in applications that perform conversion to UTF-8 in soup_header_parse_param_list_strict. There is a plausible way to reach this remotely via soup_message_headers_get_content_type (e.g., an application may want to retrieve the content type of a request or response).
GNOME libsoup before 3.6.1 allows a buffer overflow in applications th ...
EPSS
9 Critical
CVSS3