[Git][security-tracker-team/security-tracker][master] Add Debian bug references for CVE-2025-32052 and CVE-2025-32053 in libsoup2.4

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sun Apr 6 14:33:50 BST 2025 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
673660b5 by Salvatore Bonaccorso at 2025-04-06T15:33:12+02:00
Add Debian bug references for CVE-2025-32052 and CVE-2025-32053 in libsoup2.4

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -676,7 +676,7 @@ CVE-2025-32054 (In JetBrains IntelliJ IDEA before 2024.3, 2024.2.4 source code c
 	- intellij-idea <itp> (bug #747616)
 CVE-2025-32052 (A flaw was found in libsoup. A vulnerability in the sniff_unknown() fu ...)
 	- libsoup3 3.6.1-1
-	- libsoup2.4 <unfixed>
+	- libsoup2.4 <unfixed> (bug #1102214)
 	NOTE: https://gitlab.gnome.org/GNOME/libsoup/-/issues/425
 	NOTE: Fixed by: https://gitlab.gnome.org/GNOME/libsoup/-/commit/f182429e5b1fc034050510da20c93256c4fa9652 (3.6.1)
 CVE-2025-32051 (A flaw was found in libsoup. The libsoup soup_uri_decode_data_uri() fu ...)
@@ -972,7 +972,7 @@ CVE-2025-2784 (A flaw was found in libsoup. The package is vulnerable to a heap
 	NOTE: https://gitlab.gnome.org/GNOME/libsoup/-/commit/242a10fbb12dbdc12d254bd8fc8669a0ac055304 (3.6.5)
 CVE-2025-32053 (A flaw was found in libsoup. A vulnerability in sniff_feed_or_html() a ...)
 	- libsoup3 3.6.1-1
-	- libsoup2.4 <unfixed>
+	- libsoup2.4 <unfixed> (bug #1102215)
 	NOTE: https://gitlab.gnome.org/GNOME/libsoup/-/issues/426
 	NOTE: Fixed by: https://gitlab.gnome.org/GNOME/libsoup/-/commit/eaed42ca8d40cd9ab63764e3d63641180505f40a (3.6.1)
 	NOTE: Fix for CVE-2025-32053 potentially introduces CVE-2025-2784



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/673660b58bf55d58b5057f2596abd2ef45071c6c

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/673660b58bf55d58b5057f2596abd2ef45071c6c
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250406/ab2abc32/attachment.htm>

More information about the debian-security-tracker-commits mailing list