#VU109931 Buffer Over-read in libsoup - CVE-2025-32050


Vulnerability identifier: #VU109931

Vulnerability risk: Medium

CVSSv4.0: 1.2 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2025-32050

CWE-ID: CWE-126

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
libsoup
Universal components / Libraries / Libraries used by multiple products

Vendor: Gnome Development Team

Description
The vulnerability allows a remote attacker to gain access to sensitive information.

The vulnerability exists due to a boundary error within the append_param_quoted() function when handling server HTTP response. A remote attacker can trick the victim into visiting a specially crafted website and read parts of the heap memory.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

libsoup: 3.6.0

External links
https://bugzilla.redhat.com/show_bug.cgi?id=2357067

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.


Latest bulletins with this vulnerability


SUSE update for libsoup
SUSE update for libsoup2
Anolis OS update for libsoup
SUSE update for libsoup
SUSE update for libsoup
SUSE update for libsoup
SUSE update for libsoup2
SUSE update for libsoup
SUSE update for libsoup2
Red Hat Enterprise Linux 8 update for mingw-freetype and spice-client-win