SB2026021385 - openEuler 20.03 LTS SP4 update for libsoup
Published: February 13, 2026
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 4 secuirty vulnerabilities.
1) Buffer access with incorrect length value (CVE-ID: CVE-2026-0716)
The vulnerability allows a remote attacker to compromise the affected system.
The vulnerability exists due to a boundary error in process_frame() function when handling WebSocket frames if a non-default configuration is used where the maximum incoming payload size is unset. A remote attacker can send specially crafted data to the application and execute arbitrary code on the system.
2) CRLF injection (CVE-ID: CVE-2026-1467)
The vulnerability allows a remote attacker to inject arbitrary data in server response.
The vulnerability exists due to insufficient validation of attacker-supplied data. A remote attacker can pass specially crafted HTTP request ta to the application containing CR-LF characters and modify application behavior.
3) Information disclosure (CVE-ID: CVE-2026-1539)
The vulnerability allows a remote attacker to gain access to potentially sensitive information.
The vulnerability exists due to library does not remove data from Proxy-Authorization header when following redirects. A remote attacker can gain access to sensitive information passed via the Proxy-Authorization header.
4) Stack-based buffer overflow (CVE-ID: CVE-2026-1761)
The vulnerability allows a remote attacker to execute arbitrary code on the target system.
The vulnerability exists due to a boundary error within the soup_filter_input_stream_read_until() function when parsing multipart/form-data response. A remote attacker can send specially crafted data to the application, trigger a stack-based buffer overflow and execute arbitrary code on the target system.
Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.
Remediation
Install update from vendor's website.