[Git][security-tracker-team/security-tracker][master] Add CVE-2026-1467/libsoup
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Tue Jan 27 22:11:43 GMT 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
b525851a by Salvatore Bonaccorso at 2026-01-27T23:11:13+01:00
Add CVE-2026-1467/libsoup
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -229,7 +229,10 @@ CVE-2026-1472 (An out-of-band SQL injection vulnerability (OOB SQLi) has been de
CVE-2026-1470 (n8n contains a critical Remote Code Execution (RCE) vulnerability in i ...)
NOT-FOR-US: n8n
CVE-2026-1467 (A flaw was found in libsoup, an HTTP client library. This vulnerabilit ...)
- TODO: check
+ - libsoup3 <unfixed>
+ - libsoup2.4 <removed>
+ NOTE: https://gitlab.gnome.org/GNOME/libsoup/-/issues/488
+ NOTE: https://gitlab.gnome.org/GNOME/libsoup/-/commit/167ef0c6817658c1a089c75c462482209e207db4
CVE-2026-1465 (Improper Restriction of Operations within the Bounds of a Memory Buffe ...)
NOT-FOR-US: anyrtcIO-Community anyRTC-RTMP-OpenSource
CVE-2026-1464 (Integer Overflow or Wraparound vulnerability in MuntashirAkon AppManag ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b525851a07500ced78a1f3cb3f5c47f46c2f5b00
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b525851a07500ced78a1f3cb3f5c47f46c2f5b00
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260127/3d31db65/attachment.htm>
More information about the debian-security-tracker-commits
mailing list