CLSA-2025-1753124055

See a problem?
Import Source
https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/rhel7els/CLSA-2025-1753124055.json
JSON Data
https://api.osv.dev/v1/vulns/CLSA-2025-1753124055
Upstream
Published
2025-07-21T18:54:20Z
Modified
2026-06-01T00:33:27.492926148Z
Summary
libsoup: Fix of 7 CVEs
Details
  • CVE-2025-32050: fix overflow in appendparamquoted()
  • CVE-2025-32052: fix heap buffer overflow in soupcontentsniffer_sniff()
  • CVE-2025-32053: fix heap buffer overflow in snifffeedor_html()
  • CVE-2025-32907: soup-message-headers: correct merge of ranges
  • CVE-2025-46420: fix leak in soupheaderparsequalitylist()
  • CVE-2025-46421: strip authentication credentails on cross-origin redirect
  • CVE-2025-2784: fix heap buffer over-read when sniffing content via the skipinsightwhitespace() function
References

Affected packages

TuxCare:RHEL:7 / libsoup

Package

Name
libsoup
Purl
pkg:rpm/tuxcare/libsoup?distro=rhel-7

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.62.2-2.0.1.el7.tuxcare.els5

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/rhel7els/CLSA-2025-1753124055.json"

TuxCare:RHEL:7 / libsoup-devel

Package

Name
libsoup-devel
Purl
pkg:rpm/tuxcare/libsoup-devel?distro=rhel-7

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.62.2-2.0.1.el7.tuxcare.els5

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/rhel7els/CLSA-2025-1753124055.json"