CVE-2026-0716

Опубликовано: 13 янв. 2026

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS3: 4.8

Описание

A flaw was found in libsoup’s WebSocket frame processing when handling incoming messages. If a non-default configuration is used where the maximum incoming payload size is unset, the library may read memory outside the intended bounds. This can cause unintended memory exposure or a crash. Applications using libsoup’s WebSocket support with this configuration may be impacted.

Релиз	Статус	Примечание
devel	deferred	2026-03-11
esm-infra/bionic	deferred	2026-03-11
esm-infra/focal	deferred	2026-03-11
esm-infra/xenial	deferred	2026-03-11
jammy	deferred	2026-03-11
noble	deferred	2026-03-11
plucky	ignored	end of life, was deferred [2026-03-11]
questing	deferred	2026-03-11
upstream	needs-triage

Показывать по

Релиз	Статус	Примечание
devel	deferred	2026-03-11
esm-apps/jammy	deferred	2026-03-11
jammy	deferred	2026-03-11
noble	deferred	2026-03-11
plucky	ignored	end of life, was deferred [2026-03-11]
questing	deferred	2026-03-11
upstream	needs-triage

Показывать по

Ссылки на источники

https://www.cve.org/CVERecord?id=CVE-2026-0716

EPSS

Процентиль: 17%

0.00055

Низкий

4.8 Medium

CVSS3

Связанные уязвимости

CVE-2026-0716

CVSS3: 4.8

redhat

3 месяца назад

CVE-2026-0716

CVSS3: 4.8

nvd

2 месяца назад

CVE-2026-0716

CVSS3: 4.8

msrc

2 месяца назад

Libsoup: out-of-bounds read in libsoup websocket frame processing

CVE-2026-0716

CVSS3: 4.8

debian

2 месяца назад

A flaw was found in libsoup\u2019s WebSocket frame processing when han ...

SUSE-SU-2026:0894-1

suse-cvrf

16 дней назад

Security update for libsoup

EPSS

Процентиль: 17%

0.00055

Низкий

4.8 Medium

CVSS3

CVE-2026-0716

Описание

Пакет libsoup2.4

Пакет libsoup3

Ссылки на источники

Связанные уязвимости