Количество 30
Количество 30
GHSA-fjfx-vwp2-gqr8
A flaw was found in the cookie date handling logic of the libsoup HTTP library, widely used by GNOME and other applications for web communication. When processing cookies with specially crafted expiration dates, the library may perform an out-of-bounds memory read. This flaw could result in unintended disclosure of memory contents, potentially exposing sensitive information from the process using libsoup.
ELSA-2025-18183
ELSA-2025-18183: libsoup3 security update (IMPORTANT)
SUSE-SU-2025:03026-1
Security update for libsoup
SUSE-SU-2025:02277-1
Security update for libsoup2
SUSE-SU-2025:02276-1
Security update for libsoup
RLSA-2025:19720
Low: libsoup3 security update
GHSA-mwcf-jv2p-mmpx
A flaw was found in the cookie parsing logic of the libsoup HTTP library, used in GNOME applications and other software. The vulnerability arises when processing the expiration date of cookies, where a specially crafted value can trigger an integer overflow. This may result in undefined behavior, allowing an attacker to bypass cookie expiration logic, causing persistent or unintended cookie behavior. The issue stems from improper validation of large integer inputs during date arithmetic operations within the cookie parsing routines.
ELSA-2025-19720
ELSA-2025-19720: libsoup3 security update (LOW)
BDU:2025-10260
Уязвимость библиотеки libsoup графического интерфейса GNOME, позволяющая нарушителю выполнить произвольный код
ROS-20250821-04
Множественные уязвимости libsoup
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
| GHSA-fjfx-vwp2-gqr8 A flaw was found in the cookie date handling logic of the libsoup HTTP library, widely used by GNOME and other applications for web communication. When processing cookies with specially crafted expiration dates, the library may perform an out-of-bounds memory read. This flaw could result in unintended disclosure of memory contents, potentially exposing sensitive information from the process using libsoup. | CVSS3: 7.5 | 0% Низкий | 3 месяца назад |
| ELSA-2025-18183 ELSA-2025-18183: libsoup3 security update (IMPORTANT) | 2 месяца назад | ||
 | SUSE-SU-2025:03026-1 Security update for libsoup | 0% Низкий | 4 месяца назад | |
| SUSE-SU-2025:02277-1 Security update for libsoup2 | 0% Низкий | 6 месяцев назад | |
| SUSE-SU-2025:02276-1 Security update for libsoup | 0% Низкий | 6 месяцев назад | |
 | RLSA-2025:19720 Low: libsoup3 security update | 0% Низкий | около 2 месяцев назад | |
| GHSA-mwcf-jv2p-mmpx A flaw was found in the cookie parsing logic of the libsoup HTTP library, used in GNOME applications and other software. The vulnerability arises when processing the expiration date of cookies, where a specially crafted value can trigger an integer overflow. This may result in undefined behavior, allowing an attacker to bypass cookie expiration logic, causing persistent or unintended cookie behavior. The issue stems from improper validation of large integer inputs during date arithmetic operations within the cookie parsing routines. | CVSS3: 3.7 | 0% Низкий | 7 месяцев назад |
| ELSA-2025-19720 ELSA-2025-19720: libsoup3 security update (LOW) | около 2 месяцев назад | ||
 | BDU:2025-10260 Уязвимость библиотеки libsoup графического интерфейса GNOME, позволяющая нарушителю выполнить произвольный код | CVSS3: 3.7 | 0% Низкий | 7 месяцев назад |
 | ROS-20250821-04 Множественные уязвимости libsoup | CVSS3: 7.5 | 4 месяца назад |
Уязвимостей на страницу