Debian/libsoup3 — 50 CVEs · VulnScope

pkg:Debian/libsoup3

50 total CVEsCRITICAL2HIGH17MEDIUM28LOW1

✅ Check your installed version

All known vulnerabilities

CRITICAL9.1CVE-2026-2369A flaw was found in libsoup.
from 0
CRITICAL9.0CVE-2025-32911A use-after-free type vulnerability was found in libsoup, in the soup_message_headers_get_content_disposition() function.
from 0, < 3.2.3-0+deb12u1
HIGH8.6A flaw was found in libsoup.
from 0
HIGH8.6A flaw was identified in the NTLM authentication handling of the libsoup HTTP library, used by GNOME and other applications for network com…
from 0
HIGH8.2A flaw was found in libsoup.
from 0
HIGH8.2A flaw was found in libsoup's SoupServer.
from 0
HIGH8.2A flaw in libsoup’s HTTP header handling allows multiple Host: headers in a request and returns the last occurrence for server-side process…
from 0
HIGH7.5A flaw was found in libsoup, a library for handling HTTP requests.
from 0
HIGH7.5A flaw was found in the asynchronous message queue handling of the libsoup library, widely used by GNOME and WebKit-based applications to m…
from 0
HIGH7.5A flaw was found in the cookie date handling logic of the libsoup HTTP library, widely used by GNOME and other applications for web communi…
from 0
HIGH7.5A flaw was found in the soup_multipart_new_from_message() function of the libsoup HTTP library, which is commonly used by GNOME and other a…
from 0
HIGH7.5A flaw was found in libsoup, where the soup_message_headers_get_content_disposition() function is vulnerable to a NULL pointer dereference.
from 0
HIGH7.5A flaw was found in libsoup.
from 0
HIGH7.5A flaw was found in libsoup, where the soup_headers_parse_request() function may be vulnerable to an out-of-bound read.
from 0, < 3.2.3-0+deb12u1
HIGH7.5A flaw was found in libsoup.
from 0
HIGH7.5GNOME libsoup before 3.6.1 has an infinite loop, and memory consumption.
from 0, < 3.2.3-0+deb12u1
HIGH7.5libsoup2.4 - security update
from 0, < 3.2.3-0+deb12u1
HIGH7.4A flaw was found in libsoup, where the soup_multipart_new_from_message() function is vulnerable to an out-of-bounds read.
from 0
HIGH7.3A flaw was found in Libsoup.
from 0
MEDIUM6.8A flaw was found in libsoup.
from 0, < 3.2.3-0+deb12u1
MEDIUM6.5A flaw was found in libsoup.
from 0
MEDIUM6.5A flaw was found in libsoup.
from 0
MEDIUM6.5A flaw was found in libsoup, an HTTP client/server library.
from 0
MEDIUM6.5A vulnerability was found in the libsoup package.
from 0
MEDIUM6.5A flaw was found in libsoup.
from 0, < 3.2.3-0+deb12u1
MEDIUM6.5A flaw was found in libsoup, where SoupAuthDigest is vulnerable to a NULL pointer dereference.
from 0, < 3.2.3-0+deb12u1
MEDIUM6.5A flaw was found in libsoup, where soup_auth_digest_authenticate() is vulnerable to a NULL pointer dereference.
from 0, < 3.2.3-0+deb12u1
MEDIUM6.5A flaw was found in libsoup.
from 0, < 3.2.3-0+deb12u1
MEDIUM6.5A flaw was found in libsoup.
from 0, < 3.2.3-0+deb12u1
MEDIUM6.5libsoup2.4 - security update
from 0, < 3.2.3-0+deb12u1
MEDIUM6.5GNOME libsoup before 3.6.1 allows a buffer overflow in applications that perform conversion to UTF-8 in soup_header_parse_param_list_strict.
from 0, < 3.2.3-0+deb12u1
MEDIUM5.9A flaw was found in libsoup’s caching mechanism, SoupCache, where the HTTP Vary header is ignored when evaluating cached responses.
from 0
MEDIUM5.9A flaw was found in libsoup.
from 0, < 3.2.3-0+deb12u1
MEDIUM5.9A flaw was found in libsoup.
from 0, < 3.2.3-0+deb12u1
MEDIUM5.8A flaw was found in the libsoup HTTP library that can cause proxy authentication credentials to be sent to unintended destinations.
from 0
MEDIUM5.5A flaw was found in libsoup, a library used by applications to send network requests.
from 0
MEDIUM5.3A request smuggling vulnerability exists in libsoup's HTTP/1 header parsing logic.
from 0
MEDIUM5.3A flaw was identified in libsoup, a widely used HTTP library in GNOME-based systems.
from 0
MEDIUM5.3A flaw was found in SoupServer.
from 0
MEDIUM5.3A flaw was found in libsoup.
from 0
MEDIUM5.3A flaw was found in libsoup, an HTTP client library.
from 0
MEDIUM5.3A flaw was found in libsoup.
from 0, < 3.2.3-0+deb12u1
MEDIUM5.3A flaw was found in libsoup.
from 0
MEDIUM4.8A flaw was found in libsoup.
from 0
MEDIUM4.8A flaw was found in libsoup’s WebSocket frame processing when handling incoming messages.
from 0
MEDIUM4.3libsoup2.4 - security update
from 0
MEDIUM4.3A flaw was found in libsoup.
from 0
LOW3.7A flaw was found in the cookie parsing logic of the libsoup HTTP library, used in GNOME applications and other software.
from 0
—Rejected reason: Maintainers have included reasons at https://gitlab.gnome.org/GNOME/libsoup/-/issues/465
from 0
—Rejected reason: Upon investigtion upstream maintainers discovered this was not a real issue.
from 0