Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:deb/debian/libsoup2.4@2.72.0-2%2Bdeb11u2?distro=trixie
purl pkg:deb/debian/libsoup2.4@2.72.0-2%2Bdeb11u2?distro=trixie
Vulnerabilities affecting this package (0)
Vulnerability Summary Fixed by
This package is not known to be affected by vulnerabilities.
Vulnerabilities fixed by this package (11)
Vulnerability Summary Aliases
VCID-24tr-cene-gfch libsoup: Double free on soup_message_headers_get_content_disposition() through "soup-message-headers.c" via "params" GHashTable value CVE-2025-32911
VCID-4m39-v7d7-1ba7 libsoup: Integer overflow in append_param_quoted CVE-2025-32050
VCID-6skx-v6sg-53gq libsoup: Heap buffer over-read in `skip_insignificant_space` when sniffing content CVE-2025-2784
VCID-athp-xk5g-jbhu libsoup: NULL Pointer Dereference on libsoup through function "sniff_mp4" in soup-content-sniffer.c CVE-2025-32909
VCID-f481-8mb7-dbed libsoup: Null pointer deference on libsoup via /auth/soup-auth-digest.c through "soup_auth_digest_authenticate" on client when server omits the "realm" parameter in an Unauthorized response with Digest authentication CVE-2025-32910
VCID-k9bu-zasm-vfgr libsoup: NULL pointer dereference in client when server omits the "nonce" parameter in an Unauthorized response with Digest authentication CVE-2025-32912
VCID-ku6w-4wsv-qbe4 libsoup: Out of bounds reads in soup_headers_parse_request() CVE-2025-32906
VCID-yx68-81fu-ffar libsoup: OOB Read on libsoup through function "soup_multipart_new_from_message" in soup-multipart.c leads to crash or exit of process CVE-2025-32914
VCID-zhp7-2ks9-m7es libsoup: NULL pointer dereference in soup_message_headers_get_content_disposition when "filename" parameter is present, but has no value in Content-Disposition header CVE-2025-32913
VCID-zrmu-bwfg-e3hp libsoup: Heap buffer overflow in sniff_unknown() CVE-2025-32052
VCID-zsdd-pzyb-nbdf libsoup: Heap buffer overflows in sniff_feed_or_html() and skip_insignificant_space() CVE-2025-32053

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-03T07:29:38.226546+00:00 Debian Importer Fixing VCID-yx68-81fu-ffar https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:38.174775+00:00 Debian Importer Fixing VCID-zhp7-2ks9-m7es https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:38.130748+00:00 Debian Importer Fixing VCID-k9bu-zasm-vfgr https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:38.088427+00:00 Debian Importer Fixing VCID-24tr-cene-gfch https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:38.044736+00:00 Debian Importer Fixing VCID-f481-8mb7-dbed https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:38.000982+00:00 Debian Importer Fixing VCID-athp-xk5g-jbhu https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:37.910954+00:00 Debian Importer Fixing VCID-ku6w-4wsv-qbe4 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:37.857041+00:00 Debian Importer Fixing VCID-zsdd-pzyb-nbdf https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:37.802101+00:00 Debian Importer Fixing VCID-zrmu-bwfg-e3hp https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:37.713768+00:00 Debian Importer Fixing VCID-4m39-v7d7-1ba7 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:37.647431+00:00 Debian Importer Fixing VCID-6skx-v6sg-53gq https://security-tracker.debian.org/tracker/data/json 38.1.0