Описание
A flaw was found in libsoup. The implementation of HTTP range requests is vulnerable to a resource consumption attack. This flaw allows a malicious client to request the same range many times in a single HTTP request, causing the server to use large amounts of memory. This does not allow for a full denial of service.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | deferred | 2025-06-04 |
| esm-infra/bionic | deferred | 2025-06-04 |
| esm-infra/focal | deferred | 2025-06-04 |
| esm-infra/xenial | deferred | 2025-06-04 |
| focal | ignored | end of standard support, was needs-triage |
| jammy | deferred | 2025-06-04 |
| noble | deferred | 2025-06-04 |
| oracular | deferred | 2025-06-04 |
| plucky | deferred | 2025-06-04 |
| upstream | needed |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | deferred | 2025-06-04 |
| esm-apps/jammy | deferred | 2025-06-04 |
| esm-infra/focal | DNE | |
| focal | DNE | |
| jammy | deferred | 2025-06-04 |
| noble | deferred | 2025-06-04 |
| oracular | deferred | 2025-06-04 |
| plucky | deferred | 2025-06-04 |
| upstream | released | 3.6.4 |
Показывать по
EPSS
5.3 Medium
CVSS3
Связанные уязвимости
A flaw was found in libsoup. The implementation of HTTP range requests is vulnerable to a resource consumption attack. This flaw allows a malicious client to request the same range many times in a single HTTP request, causing the server to use large amounts of memory. This does not allow for a full denial of service.
A flaw was found in libsoup. The implementation of HTTP range requests is vulnerable to a resource consumption attack. This flaw allows a malicious client to request the same range many times in a single HTTP request, causing the server to use large amounts of memory. This does not allow for a full denial of service.
A flaw was found in libsoup. The implementation of HTTP range requests ...
A flaw was found in libsoup. The implementation of HTTP range requests is vulnerable to a resource consumption attack. This flaw allows a malicious client to request the same range many times in a single HTTP request, causing the server to use large amounts of memory.
Уязвимость библиотеки libsoup графического интерфейса GNOME, связанная с асимметричным потреблением ресурсов, позволяющая нарушителю вызвать отказ в обслуживании
EPSS
5.3 Medium
CVSS3