UbuntuUpdates.org

Package "libsoup2.4"

Name: libsoup2.4

Description:

This package is just an umbrella for a group of other packages, it has no description.
Description samples from packages in group:

  • GObject introspection data for the libsoup HTTP library
  • HTTP library implementation in C -- Shared library
  • HTTP library implementation in C -- GNOME support library
  • HTTP library implementation in C -- GNOME support development files
Latest version: 2.74.3-10ubuntu0.2
Release: plucky (25.04)
Level: updates
Repository: main

Links

All versions of this package
Bug fixes

List of files in package
Repository home page

Other versions of "libsoup2.4" in Plucky

Repository Area Version
base main 2.74.3-10
base universe 2.74.3-10
security main 2.74.3-10ubuntu0.2
security universe 2.74.3-10ubuntu0.2
updates universe 2.74.3-10ubuntu0.2

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 2.74.3-10ubuntu0.2 2025-05-07 00:08:51 UTC

  libsoup2.4 (2.74.3-10ubuntu0.2) plucky-security; urgency=medium

  * SECURITY REGRESSION: Incomplete fix for CVE-2025-32912 (LP: #2110056)
    - debian/patches/CVE-2025-32912-fix1.patch: Replace g_hash_table_contains
      with g_hash_table_lookup in ./libsoup/soup-auth-digest.c.
    - CVE-2025-32912

 -- Hlib Korzhynskyy <email address hidden> Tue, 06 May 2025 14:32:17 -0230
2110056 Incomplete fix for CVE-2025-32912
CVE-2025-32912 A flaw was found in libsoup, where SoupAuthDigest is vulnerable to a NULL pointer dereference. The HTTP server may cause the libsoup client to crash.


About   -   Send Feedback to @ubuntu_updates