CVE-2025-32913
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2025-32913
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-32913.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2025-32913
- Related
- Published
- 2025-04-14T14:15:24Z
- Modified
- 2025-05-05T04:52:36.765713Z
- Downstream
- Summary
- [none]
- Details
-
A flaw was found in libsoup, where the soupmessageheadersgetcontent_disposition() function is vulnerable to a NULL pointer dereference. This flaw allows a malicious HTTP peer to crash a libsoup client or server that uses this function.
- References
Affected packages
Debian:11 / libsoup2.4
Package
- Name
- libsoup2.4
- Purl
- pkg:deb/debian/libsoup2.4?arch=source
Debian:12 / libsoup2.4
Package
- Name
- libsoup2.4
- Purl
- pkg:deb/debian/libsoup2.4?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Debian:13 / libsoup2.4
Package
- Name
- libsoup2.4
- Purl
- pkg:deb/debian/libsoup2.4?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Debian:12 / libsoup3
Package
- Name
- libsoup3
- Purl
- pkg:deb/debian/libsoup3?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Debian:13 / libsoup3
Package
- Name
- libsoup3
- Purl
- pkg:deb/debian/libsoup3?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed3.6.4-1