Changqing Li 95d7312e40 libsoup-2.4: fix CVE-2025-32911 ...

CVE-2025-32911:
A use-after-free type vulnerability was found in libsoup, in the
soup_message_headers_get_content_disposition() function. This flaw
allows a malicious HTTP client to cause memory corruption in the libsoup
server.

Backport patches to fix it

[1] https://nvd.nist.gov/vuln/detail/CVE-2025-32911
[2] https://gitlab.gnome.org/GNOME/libsoup/-/issues/433

(From OE-Core rev: 75f1c57a5171859d1bfc58d69b3923d017b14303)

Signed-off-by: Changqing Li <changqing.li@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>

2025-05-14 08:33:40 -07:00

..

libsoup-2.4

libsoup-2.4: fix CVE-2025-32911

2025-05-14 08:33:40 -07:00

libsoup_3.6.4.bb

libsoup: upgrade 3.6.1 -> 3.6.4

2025-02-05 12:49:55 +00:00

libsoup-2.4_2.74.3.bb

libsoup-2.4: fix CVE-2025-32911

2025-05-14 08:33:40 -07:00