We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.
Please see our statement on Data Privacy.
GNOME libsoup before 3.6.1 allows a buffer overflow in applications that perform conversion to UTF-8 in soup_header_parse_param_list_strict. There is a plausible way to reach this remotely via soup_message_headers_get_content_type (e.g., an application may want to retrieve the content type of a request or response).
Reserved 2024-11-11 | Published 2024-11-11 | Updated 2025-04-14 | Assigner mitregitlab.gnome.org/Teams/Releng/security/-/wikis/home
gitlab.gnome.org/GNOME/libsoup/-/merge_requests/407
gitlab.gnome.org/GNOME/libsoup/-/merge_requests/407
offsec.almond.consulting/...-example-with-gnome-libsoup.html
Support options