[Git][security-tracker-team/security-tracker][master] Update information on two libsoup3 issues

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sun Feb 15 08:24:29 GMT 2026 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
e1319a21 by Salvatore Bonaccorso at 2026-02-15T09:23:50+01:00
Update information on two libsoup3 issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -730,6 +730,8 @@ CVE-2026-2443 (A flaw was identified in libsoup, a widely used HTTP library in G
 	- libsoup2.4 <removed>
 	NOTE: https://gitlab.gnome.org/GNOME/libsoup/-/issues/487
 	NOTE: https://gitlab.gnome.org/GNOME/libsoup/-/merge_requests/508
+	NOTE: Fixed by: https://gitlab.gnome.org/GNOME/libsoup/-/commit/b9964993a32b2fa734a6b5ba2d465c2c14e22de17 (3.6.6)
+	NOTE: Followup: https://gitlab.gnome.org/GNOME/libsoup/-/commit/b00665d626255868ff4b6a30534f46e742478e232 (3.6.6)
 CVE-2026-2026 (A vulnerability has been identified where weak file permissions in the ...)
 	NOT-FOR-US: Tenable
 CVE-2026-26269 (Vim is an open source, command line text editor. Prior to 9.1.2148, a  ...)
@@ -1612,6 +1614,7 @@ CVE-2026-2369
 	NOTE: Introduced with: https://gitlab.gnome.org/GNOME/libsoup/-/commit/a5b86bfc9405e01f12a975ae6898b1ce6a870e11
 	NOTE: Introduced with: https://gitlab.gnome.org/GNOME/libsoup/-/commit/f182429e5b1fc034050510da20c93256c4fa9652 (3.6.1)
 	NOTE: Fixed by: https://gitlab.gnome.org/GNOME/libsoup/-/commit/b91bbd7d7888c85b17a8b33173caa806dff51681
+	NOTE: Fixed by: https://gitlab.gnome.org/GNOME/libsoup/-/commit/af4bde990270b825b7d110a495cc65de9e2ec32f (3.6.6)
 CVE-2026-2366
 	- keycloak <itp> (bug #1088287)
 CVE-2026-2361 (PostgreSQL Anonymizer contains a vulnerability that allows a user to g ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e1319a216b252dcbe0204b2de401af9b23ac9118

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e1319a216b252dcbe0204b2de401af9b23ac9118
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260215/3a523611/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list