Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2025-32049

Опубликовано: 03 апр. 2025
Источник: redhat
CVSS3: 7.5
EPSS Низкий

Описание

A flaw was found in libsoup. The SoupWebsocketConnection may accept a large WebSocket message, which may cause libsoup to allocate memory and lead to a denial of service (DoS).

Меры по смягчению последствий

No mitigation is currently available for this vulnerability.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 6libsoupOut of support scope
Red Hat Enterprise Linux 10libsoup3FixedRHSA-2025:812826.05.2025
Red Hat Enterprise Linux 7 Extended Lifecycle SupportlibsoupFixedRHSA-2025:917917.06.2025
Red Hat Enterprise Linux 8libsoupFixedRHSA-2025:813226.05.2025
Red Hat Enterprise Linux 8libsoupFixedRHSA-2025:813226.05.2025
Red Hat Enterprise Linux 8.2 Advanced Update SupportlibsoupFixedRHSA-2025:848004.06.2025
Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update SupportlibsoupFixedRHSA-2025:866309.06.2025
Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update SupportlibsoupFixedRHSA-2025:848204.06.2025
Red Hat Enterprise Linux 8.6 Telecommunications Update ServicelibsoupFixedRHSA-2025:848204.06.2025
Red Hat Enterprise Linux 8.6 Update Services for SAP SolutionslibsoupFixedRHSA-2025:848204.06.2025

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate
Дефект:
CWE-770
https://bugzilla.redhat.com/show_bug.cgi?id=2357066libsoup: Denial of Service attack to websocket server

EPSS

Процентиль: 42%
0.00196
Низкий

7.5 High

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2025-32049

CVSS3: 7.5
ubuntu
4 месяца назад

A flaw was found in libsoup. The SoupWebsocketConnection may accept a large WebSocket message, which may cause libsoup to allocate memory and lead to a denial of service (DoS).

nvd логотип

CVE-2025-32049

CVSS3: 7.5
nvd
4 месяца назад

A flaw was found in libsoup. The SoupWebsocketConnection may accept a large WebSocket message, which may cause libsoup to allocate memory and lead to a denial of service (DoS).

debian логотип

CVE-2025-32049

CVSS3: 7.5
debian
4 месяца назад

A flaw was found in libsoup. The SoupWebsocketConnection may accept a ...

github логотип

GHSA-fqvp-p5gx-qqhg

CVSS3: 7.5
github
4 месяца назад

A flaw was found in libsoup. The SoupWebsocketConnection may accept a large WebSocket message, which may cause libsoup to allocate memory and lead to a denial of service (DoS).

fstec логотип

BDU:2025-07139

CVSS3: 7.5
fstec
около 1 года назад

Уязвимость реализации протокола WebSocket библиотеки libsoup графического интерфейса GNOME, позволяющая нарушителю вызвать отказ в обслуживании

EPSS

Процентиль: 42%
0.00196
Низкий

7.5 High

CVSS3