CLSA-2026-1776855452
See a problem?- Import Source
- https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.6esu/CLSA-2026-1776855452.json
- JSON Data
- https://api.osv.dev/v1/vulns/CLSA-2026-1776855452
- Upstream
- Published
- 2026-04-22T10:57:36Z
- Modified
- 2026-06-01T00:32:49.450573199Z
- Summary
- libsoup: Fix of 2 CVEs
- Details
-
- CVE-2026-1801: use CRLF as line boundary when parsing chunked encoding data to prevent HTTP request smuggling via lone LF
- CVE-2026-2443: reject Range header ends exceeding content length to prevent out-of-bounds read in byte range handling
- References
Affected packages
TuxCare:AlmaLinux:9.6 / libsoup
Package
- Name
- libsoup
- Purl
- pkg:rpm/tuxcare/libsoup?distro=almalinux-9.6
TuxCare:AlmaLinux:9.6 / libsoup-devel
Package
- Name
- libsoup-devel
- Purl
- pkg:rpm/tuxcare/libsoup-devel?distro=almalinux-9.6