Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:deb/debian/libsoup2.4@2.74.3-10.1
purl pkg:deb/debian/libsoup2.4@2.74.3-10.1
Next non-vulnerable version None.
Latest non-vulnerable version None.
Risk 3.4
Vulnerabilities affecting this package (4)
Vulnerability Summary Fixed by
VCID-7hhg-3u9v-nqfw
Aliases:
CVE-2025-4945
libsoup: Integer Overflow in Cookie Expiration Date Handling in libsoup There are no reported fixed by versions.
VCID-9uua-rxjd-fkf6
Aliases:
CVE-2025-4969
libsoup: Off-by-One Out-of-Bounds Read in find_boundary() in soup-multipart.c There are no reported fixed by versions.
VCID-rd74-1427-eybf
Aliases:
CVE-2025-4948
libsoup: Integer Underflow in soup_multipart_new_from_message() Leading to Denial of Service in libsoup There are no reported fixed by versions.
VCID-sabm-gujq-j3fb
Aliases:
CVE-2025-4476
libsoup: Null pointer dereference in libsoup may lead to Denial Of Service There are no reported fixed by versions.
Vulnerabilities fixed by this package (12)
Vulnerability Summary Aliases
VCID-24tr-cene-gfch libsoup: Double free on soup_message_headers_get_content_disposition() through "soup-message-headers.c" via "params" GHashTable value CVE-2025-32911
VCID-4m39-v7d7-1ba7 libsoup: Integer overflow in append_param_quoted CVE-2025-32050
VCID-6skx-v6sg-53gq libsoup: Heap buffer over-read in `skip_insignificant_space` when sniffing content CVE-2025-2784
VCID-athp-xk5g-jbhu libsoup: NULL Pointer Dereference on libsoup through function "sniff_mp4" in soup-content-sniffer.c CVE-2025-32909
VCID-f481-8mb7-dbed libsoup: Null pointer deference on libsoup via /auth/soup-auth-digest.c through "soup_auth_digest_authenticate" on client when server omits the "realm" parameter in an Unauthorized response with Digest authentication CVE-2025-32910
VCID-htuv-qv35-gycj libsoup: Memory leak on soup_header_parse_quality_list() via soup-headers.c CVE-2025-46420
VCID-k9bu-zasm-vfgr libsoup: NULL pointer dereference in client when server omits the "nonce" parameter in an Unauthorized response with Digest authentication CVE-2025-32912
VCID-ku6w-4wsv-qbe4 libsoup: Out of bounds reads in soup_headers_parse_request() CVE-2025-32906
VCID-yx68-81fu-ffar libsoup: OOB Read on libsoup through function "soup_multipart_new_from_message" in soup-multipart.c leads to crash or exit of process CVE-2025-32914
VCID-zhp7-2ks9-m7es libsoup: NULL pointer dereference in soup_message_headers_get_content_disposition when "filename" parameter is present, but has no value in Content-Disposition header CVE-2025-32913
VCID-zrmu-bwfg-e3hp libsoup: Heap buffer overflow in sniff_unknown() CVE-2025-32052
VCID-zsdd-pzyb-nbdf libsoup: Heap buffer overflows in sniff_feed_or_html() and skip_insignificant_space() CVE-2025-32053

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-16T13:31:45.100272+00:00 Debian Importer Fixing VCID-ku6w-4wsv-qbe4 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T13:30:53.966590+00:00 Debian Importer Fixing VCID-zsdd-pzyb-nbdf https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T13:25:09.261469+00:00 Debian Importer Affected by VCID-7hhg-3u9v-nqfw https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T12:53:48.080335+00:00 Debian Importer Fixing VCID-zhp7-2ks9-m7es https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T12:42:49.167186+00:00 Debian Importer Fixing VCID-htuv-qv35-gycj https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T11:55:17.426298+00:00 Debian Importer Fixing VCID-zrmu-bwfg-e3hp https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T11:47:18.585021+00:00 Debian Importer Fixing VCID-6skx-v6sg-53gq https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T10:49:50.843557+00:00 Debian Importer Fixing VCID-yx68-81fu-ffar https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T10:12:28.859373+00:00 Debian Importer Affected by VCID-rd74-1427-eybf https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T10:08:03.683207+00:00 Debian Importer Affected by VCID-sabm-gujq-j3fb https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T09:52:09.761577+00:00 Debian Importer Fixing VCID-24tr-cene-gfch https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T09:28:58.024195+00:00 Debian Importer Fixing VCID-athp-xk5g-jbhu https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T09:25:07.210318+00:00 Debian Importer Fixing VCID-k9bu-zasm-vfgr https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T09:22:55.541617+00:00 Debian Importer Fixing VCID-4m39-v7d7-1ba7 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T09:01:14.567180+00:00 Debian Importer Fixing VCID-f481-8mb7-dbed https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T09:00:56.243747+00:00 Debian Importer Affected by VCID-9uua-rxjd-fkf6 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-13T09:20:18.773024+00:00 Debian Importer Fixing VCID-ku6w-4wsv-qbe4 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T09:19:41.686449+00:00 Debian Importer Fixing VCID-zsdd-pzyb-nbdf https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T09:15:23.801753+00:00 Debian Importer Affected by VCID-7hhg-3u9v-nqfw https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T08:51:16.123298+00:00 Debian Importer Fixing VCID-zhp7-2ks9-m7es https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T08:42:58.671561+00:00 Debian Importer Fixing VCID-htuv-qv35-gycj https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T08:08:13.386401+00:00 Debian Importer Fixing VCID-zrmu-bwfg-e3hp https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T08:02:23.558336+00:00 Debian Importer Fixing VCID-6skx-v6sg-53gq https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T07:19:58.192280+00:00 Debian Importer Fixing VCID-yx68-81fu-ffar https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T06:51:45.417604+00:00 Debian Importer Affected by VCID-rd74-1427-eybf https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T06:48:22.626861+00:00 Debian Importer Affected by VCID-sabm-gujq-j3fb https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T06:35:59.160437+00:00 Debian Importer Fixing VCID-24tr-cene-gfch https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T18:19:23.135965+00:00 Debian Importer Fixing VCID-athp-xk5g-jbhu https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T18:17:09.838803+00:00 Debian Importer Fixing VCID-k9bu-zasm-vfgr https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T18:15:52.424299+00:00 Debian Importer Fixing VCID-4m39-v7d7-1ba7 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T18:02:54.692155+00:00 Debian Importer Fixing VCID-f481-8mb7-dbed https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T18:02:41.354834+00:00 Debian Importer Affected by VCID-9uua-rxjd-fkf6 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-08T20:12:00.089881+00:00 Debian Importer Fixing VCID-ku6w-4wsv-qbe4 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-08T20:11:38.140777+00:00 Debian Importer Fixing VCID-zsdd-pzyb-nbdf https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-08T20:08:52.635256+00:00 Debian Importer Affected by VCID-7hhg-3u9v-nqfw https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-08T19:53:31.603808+00:00 Debian Importer Fixing VCID-zhp7-2ks9-m7es https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-08T19:48:17.129287+00:00 Debian Importer Fixing VCID-htuv-qv35-gycj https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-08T19:25:15.272388+00:00 Debian Importer Fixing VCID-zrmu-bwfg-e3hp https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-08T19:21:16.424689+00:00 Debian Importer Fixing VCID-6skx-v6sg-53gq https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-08T18:52:27.089008+00:00 Debian Importer Fixing VCID-yx68-81fu-ffar https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-08T18:33:49.882997+00:00 Debian Importer Affected by VCID-rd74-1427-eybf https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-08T18:31:35.962229+00:00 Debian Importer Affected by VCID-sabm-gujq-j3fb https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-08T18:23:12.021048+00:00 Debian Importer Fixing VCID-24tr-cene-gfch https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-04T18:05:06.406717+00:00 Debian Importer Fixing VCID-athp-xk5g-jbhu https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-04T18:03:44.018352+00:00 Debian Importer Fixing VCID-k9bu-zasm-vfgr https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-04T18:02:50.055769+00:00 Debian Importer Fixing VCID-4m39-v7d7-1ba7 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-04T17:54:31.413578+00:00 Debian Importer Fixing VCID-f481-8mb7-dbed https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-04T17:54:22.282644+00:00 Debian Importer Affected by VCID-9uua-rxjd-fkf6 https://security-tracker.debian.org/tracker/data/json 38.1.0