usn-7643-1
Vulnerability from osv_ubuntu
Published
2025-07-17 12:30
Modified
2026-06-25 10:46
Summary
libsoup3, libsoup2.4 vulnerabilities
Details

Jan Różański discovered that libsoup incorrectly handled range headers in an HTTP request. An attacker could possibly use this issue to cause libsoup to consume excessive memory, resulting in a denial of service. (CVE-2025-32907)

Alon Zahavi discovered that libsoup incorrectly handled memory when parsing HTTP requests. An attacker could possibly use this issue to send a maliciously crafted HTTP request to the server, causing a denial of service or obtaining sensitive information. This issue only affected Ubuntu 25.04. (CVE-2025-32914)

It was discovered that libsoup incorrectly handled memory when parsing the expiration date of maliciously crafted cookies. An attacker could possibly use this issue to cause a denial of service. (CVE-2025-4945)

It was discovered that libsoup incorrectly handled integer calculations when parsing multipart data. An attacker could possibly use this issue to cause a denial of service. (CVE-2025-4948)

It was discovered that libsoup incorrectly handled buffer reading when locating boundaries in multipart forms. An attacker could possibly use this issue to cause a denial of service or obtain sensitive information. (CVE-2025-4969)


{
  "affected": [
    {
      "database_specific": {
        "cves_map": {
          "cves": [
            {
              "id": "CVE-2025-4945",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2025-4948",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2025-4969",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2025-32907",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            }
          ],
          "ecosystem": "Ubuntu:Pro:16.04:LTS"
        }
      },
      "ecosystem_specific": {
        "availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro",
        "binaries": [
          {
            "binary_name": "gir1.2-soup-2.4",
            "binary_version": "2.52.2-1ubuntu0.3+esm5"
          },
          {
            "binary_name": "libsoup-gnome2.4-1",
            "binary_version": "2.52.2-1ubuntu0.3+esm5"
          },
          {
            "binary_name": "libsoup2.4-1",
            "binary_version": "2.52.2-1ubuntu0.3+esm5"
          }
        ]
      },
      "package": {
        "ecosystem": "Ubuntu:Pro:16.04:LTS",
        "name": "libsoup2.4",
        "purl": "pkg:deb/ubuntu/libsoup2.4@2.52.2-1ubuntu0.3+esm5?arch=source\u0026distro=esm-infra/xenial"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "2.52.2-1ubuntu0.3+esm5"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ],
      "versions": [
        "2.50.0-2debian1",
        "2.52.1-1",
        "2.52.2-1",
        "2.52.2-1ubuntu0.1",
        "2.52.2-1ubuntu0.2",
        "2.52.2-1ubuntu0.3",
        "2.52.2-1ubuntu0.3+esm1",
        "2.52.2-1ubuntu0.3+esm2",
        "2.52.2-1ubuntu0.3+esm3",
        "2.52.2-1ubuntu0.3+esm4"
      ]
    },
    {
      "database_specific": {
        "cves_map": {
          "cves": [
            {
              "id": "CVE-2025-4945",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2025-4948",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2025-4969",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2025-32907",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            }
          ],
          "ecosystem": "Ubuntu:Pro:18.04:LTS"
        }
      },
      "ecosystem_specific": {
        "availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro",
        "binaries": [
          {
            "binary_name": "gir1.2-soup-2.4",
            "binary_version": "2.62.1-1ubuntu0.4+esm6"
          },
          {
            "binary_name": "libsoup-gnome2.4-1",
            "binary_version": "2.62.1-1ubuntu0.4+esm6"
          },
          {
            "binary_name": "libsoup2.4-1",
            "binary_version": "2.62.1-1ubuntu0.4+esm6"
          }
        ]
      },
      "package": {
        "ecosystem": "Ubuntu:Pro:18.04:LTS",
        "name": "libsoup2.4",
        "purl": "pkg:deb/ubuntu/libsoup2.4@2.62.1-1ubuntu0.4+esm6?arch=source\u0026distro=esm-infra/bionic"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "2.62.1-1ubuntu0.4+esm6"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ],
      "versions": [
        "2.60.1-1",
        "2.60.2-1",
        "2.60.2-2",
        "2.60.3-1",
        "2.61.90-1",
        "2.62.0-1",
        "2.62.1-1",
        "2.62.1-1ubuntu0.1",
        "2.62.1-1ubuntu0.3",
        "2.62.1-1ubuntu0.4",
        "2.62.1-1ubuntu0.4+esm1",
        "2.62.1-1ubuntu0.4+esm2",
        "2.62.1-1ubuntu0.4+esm3",
        "2.62.1-1ubuntu0.4+esm4",
        "2.62.1-1ubuntu0.4+esm5"
      ]
    },
    {
      "database_specific": {
        "cves_map": {
          "cves": [
            {
              "id": "CVE-2025-4945",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2025-4948",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2025-4969",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2025-32907",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            }
          ],
          "ecosystem": "Ubuntu:Pro:20.04:LTS"
        }
      },
      "ecosystem_specific": {
        "availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro",
        "binaries": [
          {
            "binary_name": "gir1.2-soup-2.4",
            "binary_version": "2.70.0-1ubuntu0.5+esm1"
          },
          {
            "binary_name": "libsoup-gnome2.4-1",
            "binary_version": "2.70.0-1ubuntu0.5+esm1"
          },
          {
            "binary_name": "libsoup2.4-1",
            "binary_version": "2.70.0-1ubuntu0.5+esm1"
          },
          {
            "binary_name": "libsoup2.4-tests",
            "binary_version": "2.70.0-1ubuntu0.5+esm1"
          }
        ]
      },
      "package": {
        "ecosystem": "Ubuntu:Pro:20.04:LTS",
        "name": "libsoup2.4",
        "purl": "pkg:deb/ubuntu/libsoup2.4@2.70.0-1ubuntu0.5+esm1?arch=source\u0026distro=esm-infra/focal"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "2.70.0-1ubuntu0.5+esm1"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ],
      "versions": [
        "2.68.2-0ubuntu1",
        "2.68.2-1",
        "2.68.2-2",
        "2.68.2-2build2",
        "2.69.90-1",
        "2.70.0-1",
        "2.70.0-1ubuntu0.1",
        "2.70.0-1ubuntu0.2",
        "2.70.0-1ubuntu0.3",
        "2.70.0-1ubuntu0.4",
        "2.70.0-1ubuntu0.5"
      ]
    },
    {
      "database_specific": {
        "cves_map": {
          "cves": [
            {
              "id": "CVE-2025-4945",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2025-4948",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2025-4969",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2025-32907",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            }
          ],
          "ecosystem": "Ubuntu:22.04:LTS"
        }
      },
      "ecosystem_specific": {
        "availability": "No subscription required",
        "binaries": [
          {
            "binary_name": "gir1.2-soup-2.4",
            "binary_version": "2.74.2-3ubuntu0.6"
          },
          {
            "binary_name": "libsoup-gnome2.4-1",
            "binary_version": "2.74.2-3ubuntu0.6"
          },
          {
            "binary_name": "libsoup2.4-1",
            "binary_version": "2.74.2-3ubuntu0.6"
          },
          {
            "binary_name": "libsoup2.4-common",
            "binary_version": "2.74.2-3ubuntu0.6"
          },
          {
            "binary_name": "libsoup2.4-tests",
            "binary_version": "2.74.2-3ubuntu0.6"
          }
        ]
      },
      "package": {
        "ecosystem": "Ubuntu:22.04:LTS",
        "name": "libsoup2.4",
        "purl": "pkg:deb/ubuntu/libsoup2.4@2.74.2-3ubuntu0.6?arch=source\u0026distro=jammy"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "2.74.2-3ubuntu0.6"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ],
      "versions": [
        "2.72.0-3ubuntu3",
        "2.74.1-1",
        "2.74.2-2",
        "2.74.2-3",
        "2.74.2-3ubuntu0.1",
        "2.74.2-3ubuntu0.2",
        "2.74.2-3ubuntu0.3",
        "2.74.2-3ubuntu0.4",
        "2.74.2-3ubuntu0.5"
      ]
    },
    {
      "database_specific": {
        "cves_map": {
          "cves": [
            {
              "id": "CVE-2025-4945",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2025-4948",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2025-4969",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2025-32907",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            }
          ],
          "ecosystem": "Ubuntu:Pro:22.04:LTS"
        }
      },
      "ecosystem_specific": {
        "availability": "Available with Ubuntu Pro: https://ubuntu.com/pro",
        "binaries": [
          {
            "binary_name": "gir1.2-soup-3.0",
            "binary_version": "3.0.7-0ubuntu1+esm5"
          },
          {
            "binary_name": "libsoup-3.0-0",
            "binary_version": "3.0.7-0ubuntu1+esm5"
          },
          {
            "binary_name": "libsoup-3.0-common",
            "binary_version": "3.0.7-0ubuntu1+esm5"
          },
          {
            "binary_name": "libsoup-3.0-tests",
            "binary_version": "3.0.7-0ubuntu1+esm5"
          }
        ]
      },
      "package": {
        "ecosystem": "Ubuntu:Pro:22.04:LTS",
        "name": "libsoup3",
        "purl": "pkg:deb/ubuntu/libsoup3@3.0.7-0ubuntu1+esm5?arch=source\u0026distro=esm-apps/jammy"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "3.0.7-0ubuntu1+esm5"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ],
      "versions": [
        "3.0.4-2",
        "3.0.4-3",
        "3.0.5-1",
        "3.0.7-0ubuntu1",
        "3.0.7-0ubuntu1+esm1",
        "3.0.7-0ubuntu1+esm2",
        "3.0.7-0ubuntu1+esm3",
        "3.0.7-0ubuntu1+esm4"
      ]
    },
    {
      "database_specific": {
        "cves_map": {
          "cves": [
            {
              "id": "CVE-2025-4945",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2025-4948",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2025-4969",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2025-32907",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            }
          ],
          "ecosystem": "Ubuntu:24.04:LTS"
        }
      },
      "ecosystem_specific": {
        "availability": "No subscription required",
        "binaries": [
          {
            "binary_name": "gir1.2-soup-2.4",
            "binary_version": "2.74.3-6ubuntu1.6"
          },
          {
            "binary_name": "libsoup-2.4-1",
            "binary_version": "2.74.3-6ubuntu1.6"
          },
          {
            "binary_name": "libsoup-gnome-2.4-1",
            "binary_version": "2.74.3-6ubuntu1.6"
          },
          {
            "binary_name": "libsoup2.4-common",
            "binary_version": "2.74.3-6ubuntu1.6"
          },
          {
            "binary_name": "libsoup2.4-tests",
            "binary_version": "2.74.3-6ubuntu1.6"
          }
        ]
      },
      "package": {
        "ecosystem": "Ubuntu:24.04:LTS",
        "name": "libsoup2.4",
        "purl": "pkg:deb/ubuntu/libsoup2.4@2.74.3-6ubuntu1.6?arch=source\u0026distro=noble"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "2.74.3-6ubuntu1.6"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ],
      "versions": [
        "2.74.3-1",
        "2.74.3-2",
        "2.74.3-3",
        "2.74.3-6",
        "2.74.3-6build1",
        "2.74.3-6ubuntu1",
        "2.74.3-6ubuntu1.1",
        "2.74.3-6ubuntu1.2",
        "2.74.3-6ubuntu1.3",
        "2.74.3-6ubuntu1.4",
        "2.74.3-6ubuntu1.5"
      ]
    },
    {
      "database_specific": {
        "cves_map": {
          "cves": [
            {
              "id": "CVE-2025-4945",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2025-4948",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2025-4969",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2025-32907",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            }
          ],
          "ecosystem": "Ubuntu:24.04:LTS"
        }
      },
      "ecosystem_specific": {
        "availability": "No subscription required",
        "binaries": [
          {
            "binary_name": "gir1.2-soup-3.0",
            "binary_version": "3.4.4-5ubuntu0.5"
          },
          {
            "binary_name": "libsoup-3.0-0",
            "binary_version": "3.4.4-5ubuntu0.5"
          },
          {
            "binary_name": "libsoup-3.0-common",
            "binary_version": "3.4.4-5ubuntu0.5"
          },
          {
            "binary_name": "libsoup-3.0-tests",
            "binary_version": "3.4.4-5ubuntu0.5"
          }
        ]
      },
      "package": {
        "ecosystem": "Ubuntu:24.04:LTS",
        "name": "libsoup3",
        "purl": "pkg:deb/ubuntu/libsoup3@3.4.4-5ubuntu0.5?arch=source\u0026distro=noble"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "3.4.4-5ubuntu0.5"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ],
      "versions": [
        "3.4.2-4",
        "3.4.4-1",
        "3.4.4-2",
        "3.4.4-4",
        "3.4.4-5",
        "3.4.4-5build1",
        "3.4.4-5build2",
        "3.4.4-5ubuntu0.1",
        "3.4.4-5ubuntu0.2",
        "3.4.4-5ubuntu0.3",
        "3.4.4-5ubuntu0.4"
      ]
    }
  ],
  "aliases": [],
  "details": "Jan R\u00f3\u017ca\u0144ski discovered that libsoup incorrectly handled range headers in\nan HTTP request. An attacker could possibly use this issue to cause libsoup\nto consume excessive memory, resulting in a denial of service.\n(CVE-2025-32907)\n\nAlon Zahavi discovered that libsoup incorrectly handled memory when parsing\nHTTP requests. An attacker could possibly use this issue to send a\nmaliciously crafted HTTP request to the server, causing a denial of service\nor obtaining sensitive information. This issue only affected Ubuntu 25.04.\n(CVE-2025-32914)\n\nIt was discovered that libsoup incorrectly handled memory when parsing\nthe expiration date of maliciously crafted cookies. An attacker could\npossibly use this issue to cause a denial of service. (CVE-2025-4945)\n\nIt was discovered that libsoup incorrectly handled integer calculations\nwhen parsing multipart data. An attacker could possibly use this issue to\ncause a denial of service. (CVE-2025-4948)\n\nIt was discovered that libsoup incorrectly handled buffer reading when\nlocating boundaries in multipart forms. An attacker could possibly use this\nissue to cause a denial of service or obtain sensitive information.\n(CVE-2025-4969)",
  "id": "USN-7643-1",
  "modified": "2026-06-25T10:46:53Z",
  "published": "2025-07-17T12:30:05Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://ubuntu.com/security/notices/USN-7643-1"
    },
    {
      "type": "REPORT",
      "url": "https://ubuntu.com/security/CVE-2025-4945"
    },
    {
      "type": "REPORT",
      "url": "https://ubuntu.com/security/CVE-2025-4948"
    },
    {
      "type": "REPORT",
      "url": "https://ubuntu.com/security/CVE-2025-4969"
    },
    {
      "type": "REPORT",
      "url": "https://ubuntu.com/security/CVE-2025-32907"
    },
    {
      "type": "REPORT",
      "url": "https://ubuntu.com/security/CVE-2025-32914"
    }
  ],
  "related": [],
  "schema_version": "1.7.0",
  "summary": "libsoup3, libsoup2.4 vulnerabilities",
  "upstream": [
    "UBUNTU-CVE-2025-4945",
    "UBUNTU-CVE-2025-4948",
    "UBUNTU-CVE-2025-4969",
    "UBUNTU-CVE-2025-32907",
    "UBUNTU-CVE-2025-32914"
  ]
}



Log in or create an account to share your comment.




Tags
Taxonomy of the tags.


Loading…

Loading…

Loading…

Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.

Sightings

Author Source Type Date Other

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Loading…

Detection rules are retrieved from Rulezet.

Loading…

Loading…