SB20250529124 - SUSE update for libsoup
Published: May 29, 2025
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 11 secuirty vulnerabilities.
1) Inconsistent interpretation of HTTP requests (CVE-ID: CVE-2024-52530)
The vulnerability allows a remote attacker to perform HTTP request smuggling attacks.
The vulnerability exists due to improper validation of HTTP requests. A remote attacker can send a specially crafted HTTP request to the server and smuggle arbitrary HTTP headers.
Successful exploitation of vulnerability may allow an attacker to poison HTTP cache and perform phishing attacks.
2) Buffer overflow (CVE-ID: CVE-2024-52531)
The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to a boundary error when performing conversion to UTF-8. A remote attacker can trigger memory corruption and crash the application.
3) Infinite loop (CVE-ID: CVE-2024-52532)
The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to infinite loop when reading WebSocket data. A remote attacker can trick the victim into visiting a specially crafted website, consume all available system resources and cause denial of service conditions.
4) Buffer Over-read (CVE-ID: CVE-2025-2784)
The vulnerability allows a remote attacker to gain access to sensitive information.
The vulnerability exists due to a boundary error within the skip_insignificant_whitespace() function when reading server HTTP response. A remote attacker can trick the victim into visiting a specially crafted website and read 1 byte out of bounds.
5) Buffer Over-read (CVE-ID: CVE-2025-32050)
The vulnerability allows a remote attacker to gain access to sensitive information.The vulnerability exists due to a boundary error within the append_param_quoted() function when handling server HTTP response. A remote attacker can trick the victim into visiting a specially crafted website and read parts of the heap memory.
6) Buffer Over-read (CVE-ID: CVE-2025-32052)
The vulnerability allows a remote attacker to gain access to sensitive information.The vulnerability exists due to a boundary error within the sniff_unknown() function when handling server HTTP response. A remote attacker can trick the victim into visiting a specially crafted website and read parts of the heap memory.
7) Buffer Over-read (CVE-ID: CVE-2025-32053)
The vulnerability allows a remote attacker to gain access to sensitive information.
The vulnerability exists due to a boundary error within the sniff_feed_or_html() and skip_insignificant_space() functions when parsing server HTTP response. A remote attacker can trick the victim into visiting a specially crafted website and read parts of the heap memory.
8) Resource exhaustion (CVE-ID: CVE-2025-32907)
The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to application does not properly control consumption of internal resources when handling HTTP requests. A remote attacker can trigger resource exhaustion and perform a denial of service (DoS) attack.
9) Out-of-bounds read (CVE-ID: CVE-2025-32914)
The vulnerability allows a remote attacker to gain access to potentially sensitive information.
The vulnerability exists due to a boundary condition within the soup_multipart_new_from_message() function. A remote attacker can trick the victim into visiting a specially crafted website, trigger an out-of-bounds read error and read contents of memory on the system.
10) Memory leak (CVE-ID: CVE-2025-46420)
The vulnerability allows a remote attacker to perform DoS attack on the target system.
The vulnerability exists due memory leak within the soup_header_parse_quality_list() function. A remote attacker can force the application to leak memory and perform denial of service attack.
11) Information disclosure (CVE-ID: CVE-2025-46421)
The vulnerability allows a remote attacker to gain access to potentially sensitive information.
The vulnerability exists due to libsoup includes authorization headers into requests when handling HTTP redirects. A remote attacker can gain access to credentials intended for a different website.
Remediation
Install update from vendor's website.