Issued:: 2025-01-29
Updated:: 2025-01-29

RHSA-2025:0791 - Security Advisory

Overview
Updated Packages

Synopsis

Important: libsoup security update

Type/Severity

Security Advisory: Important

Red Hat Lightspeed patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for libsoup is now available for Red Hat Enterprise Linux 9.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

The libsoup packages provide an HTTP client and server library for GNOME.

Security Fix(es):

libsoup: buffer overflow via UTF-8 conversion in soup_header_parse_param_list_strict (CVE-2024-52531)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

Red Hat Enterprise Linux for x86_64 9 x86_64
Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.6 x86_64
Red Hat Enterprise Linux Server - AUS 9.6 x86_64
Red Hat Enterprise Linux for IBM z Systems 9 s390x
Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.6 s390x
Red Hat Enterprise Linux for Power, little endian 9 ppc64le
Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.6 ppc64le
Red Hat Enterprise Linux for ARM 64 9 aarch64
Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.6 aarch64
Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.6 ppc64le
Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.6 x86_64
Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.6 aarch64
Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.6 s390x

Fixes

BZ - 2325277 - CVE-2024-52531 libsoup: buffer overflow via UTF-8 conversion in soup_header_parse_param_list_strict

CVEs

CVE-2024-52531

References

https://access.redhat.com/security/updates/classification/#important

Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Enterprise Linux for x86_64 9

SRPM
libsoup-2.72.0-8.el9_5.3.src.rpm	SHA-256: 044020df6b70256fbaebdcd97a35281e0dab3989542d8894336886be988a1b03
x86_64
libsoup-2.72.0-8.el9_5.3.i686.rpm	SHA-256: ceadcf83432f53cdbd94b197cd0a294b91e2ccb304918d59292d508e6d08eb8d
libsoup-2.72.0-8.el9_5.3.x86_64.rpm	SHA-256: d37d29a930819c4513c49251de5ecf8b0649f6a07956491e88ac2621ad1fcd89
libsoup-debuginfo-2.72.0-8.el9_5.3.i686.rpm	SHA-256: 6ed292642fd746c676d30efaa1f3f42debf11881c7f095a48aab7616286351a5
libsoup-debuginfo-2.72.0-8.el9_5.3.x86_64.rpm	SHA-256: f94c5833318a85b3b7fa8c1eda021bba61e9ecda3eb182b05afb80487e92f936
libsoup-debugsource-2.72.0-8.el9_5.3.i686.rpm	SHA-256: cf9946c349aa26733552525df062fa6e5c9e33e442de41d1c666a8e8955c7613
libsoup-debugsource-2.72.0-8.el9_5.3.x86_64.rpm	SHA-256: 971b93b206d0926b2deefe5173fe1f5bace12ac19f000986e5a47e2107062d15
libsoup-devel-2.72.0-8.el9_5.3.i686.rpm	SHA-256: 8270fcdc151ba6199490f77181cfd9022be318cec608c2782e98c38dc9ba4a16
libsoup-devel-2.72.0-8.el9_5.3.x86_64.rpm	SHA-256: cf502872d2bdd023227113e78488cd5aeb39268227240d997e328689bf70aea2

Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.6

SRPM
libsoup-2.72.0-8.el9_5.3.src.rpm	SHA-256: 044020df6b70256fbaebdcd97a35281e0dab3989542d8894336886be988a1b03
x86_64
libsoup-2.72.0-8.el9_5.3.i686.rpm	SHA-256: ceadcf83432f53cdbd94b197cd0a294b91e2ccb304918d59292d508e6d08eb8d
libsoup-2.72.0-8.el9_5.3.x86_64.rpm	SHA-256: d37d29a930819c4513c49251de5ecf8b0649f6a07956491e88ac2621ad1fcd89
libsoup-debuginfo-2.72.0-8.el9_5.3.i686.rpm	SHA-256: 6ed292642fd746c676d30efaa1f3f42debf11881c7f095a48aab7616286351a5
libsoup-debuginfo-2.72.0-8.el9_5.3.x86_64.rpm	SHA-256: f94c5833318a85b3b7fa8c1eda021bba61e9ecda3eb182b05afb80487e92f936
libsoup-debugsource-2.72.0-8.el9_5.3.i686.rpm	SHA-256: cf9946c349aa26733552525df062fa6e5c9e33e442de41d1c666a8e8955c7613
libsoup-debugsource-2.72.0-8.el9_5.3.x86_64.rpm	SHA-256: 971b93b206d0926b2deefe5173fe1f5bace12ac19f000986e5a47e2107062d15
libsoup-devel-2.72.0-8.el9_5.3.i686.rpm	SHA-256: 8270fcdc151ba6199490f77181cfd9022be318cec608c2782e98c38dc9ba4a16
libsoup-devel-2.72.0-8.el9_5.3.x86_64.rpm	SHA-256: cf502872d2bdd023227113e78488cd5aeb39268227240d997e328689bf70aea2

Red Hat Enterprise Linux Server - AUS 9.6

SRPM
libsoup-2.72.0-8.el9_5.3.src.rpm	SHA-256: 044020df6b70256fbaebdcd97a35281e0dab3989542d8894336886be988a1b03
x86_64
libsoup-2.72.0-8.el9_5.3.i686.rpm	SHA-256: ceadcf83432f53cdbd94b197cd0a294b91e2ccb304918d59292d508e6d08eb8d
libsoup-2.72.0-8.el9_5.3.x86_64.rpm	SHA-256: d37d29a930819c4513c49251de5ecf8b0649f6a07956491e88ac2621ad1fcd89
libsoup-debuginfo-2.72.0-8.el9_5.3.i686.rpm	SHA-256: 6ed292642fd746c676d30efaa1f3f42debf11881c7f095a48aab7616286351a5
libsoup-debuginfo-2.72.0-8.el9_5.3.x86_64.rpm	SHA-256: f94c5833318a85b3b7fa8c1eda021bba61e9ecda3eb182b05afb80487e92f936
libsoup-debugsource-2.72.0-8.el9_5.3.i686.rpm	SHA-256: cf9946c349aa26733552525df062fa6e5c9e33e442de41d1c666a8e8955c7613
libsoup-debugsource-2.72.0-8.el9_5.3.x86_64.rpm	SHA-256: 971b93b206d0926b2deefe5173fe1f5bace12ac19f000986e5a47e2107062d15
libsoup-devel-2.72.0-8.el9_5.3.i686.rpm	SHA-256: 8270fcdc151ba6199490f77181cfd9022be318cec608c2782e98c38dc9ba4a16
libsoup-devel-2.72.0-8.el9_5.3.x86_64.rpm	SHA-256: cf502872d2bdd023227113e78488cd5aeb39268227240d997e328689bf70aea2

Red Hat Enterprise Linux for IBM z Systems 9

SRPM
libsoup-2.72.0-8.el9_5.3.src.rpm	SHA-256: 044020df6b70256fbaebdcd97a35281e0dab3989542d8894336886be988a1b03
s390x
libsoup-2.72.0-8.el9_5.3.s390x.rpm	SHA-256: 212aaad603266df91e94b5202444116998af65bc10612d119099e462fd592f90
libsoup-debuginfo-2.72.0-8.el9_5.3.s390x.rpm	SHA-256: d0f919758712427729a7772823abcbf6e87d8c508b0a33501fa5b95feda60b16
libsoup-debugsource-2.72.0-8.el9_5.3.s390x.rpm	SHA-256: f37d5013c906a33724cc4677834cc5144d118e513afb01940b45b28597af2267
libsoup-devel-2.72.0-8.el9_5.3.s390x.rpm	SHA-256: 3be96f40b3658489b11c998147e6a7d5908e47b57ae55daeeecce710f2440c72

Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.6

SRPM
libsoup-2.72.0-8.el9_5.3.src.rpm	SHA-256: 044020df6b70256fbaebdcd97a35281e0dab3989542d8894336886be988a1b03
s390x
libsoup-2.72.0-8.el9_5.3.s390x.rpm	SHA-256: 212aaad603266df91e94b5202444116998af65bc10612d119099e462fd592f90
libsoup-debuginfo-2.72.0-8.el9_5.3.s390x.rpm	SHA-256: d0f919758712427729a7772823abcbf6e87d8c508b0a33501fa5b95feda60b16
libsoup-debugsource-2.72.0-8.el9_5.3.s390x.rpm	SHA-256: f37d5013c906a33724cc4677834cc5144d118e513afb01940b45b28597af2267
libsoup-devel-2.72.0-8.el9_5.3.s390x.rpm	SHA-256: 3be96f40b3658489b11c998147e6a7d5908e47b57ae55daeeecce710f2440c72

Red Hat Enterprise Linux for Power, little endian 9

SRPM
libsoup-2.72.0-8.el9_5.3.src.rpm	SHA-256: 044020df6b70256fbaebdcd97a35281e0dab3989542d8894336886be988a1b03
ppc64le
libsoup-2.72.0-8.el9_5.3.ppc64le.rpm	SHA-256: 28ab636157eea1b6522b518ae32ceacb6a90cb193ca9a2f41e83dec49e3952f5
libsoup-debuginfo-2.72.0-8.el9_5.3.ppc64le.rpm	SHA-256: df618f12e0db299ff67dda349542fed5306e560ce660abecf256a9d074256787
libsoup-debugsource-2.72.0-8.el9_5.3.ppc64le.rpm	SHA-256: e84198721298c6deeda5c6a6906e2984cd031ca3192fcb10fbcf3130e2009355
libsoup-devel-2.72.0-8.el9_5.3.ppc64le.rpm	SHA-256: c4f22a521e69722af1a5a7da0ea772b434d48d5bcd1ca55d6ae079b1c9b9943f

Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.6

SRPM
libsoup-2.72.0-8.el9_5.3.src.rpm	SHA-256: 044020df6b70256fbaebdcd97a35281e0dab3989542d8894336886be988a1b03
ppc64le
libsoup-2.72.0-8.el9_5.3.ppc64le.rpm	SHA-256: 28ab636157eea1b6522b518ae32ceacb6a90cb193ca9a2f41e83dec49e3952f5
libsoup-debuginfo-2.72.0-8.el9_5.3.ppc64le.rpm	SHA-256: df618f12e0db299ff67dda349542fed5306e560ce660abecf256a9d074256787
libsoup-debugsource-2.72.0-8.el9_5.3.ppc64le.rpm	SHA-256: e84198721298c6deeda5c6a6906e2984cd031ca3192fcb10fbcf3130e2009355
libsoup-devel-2.72.0-8.el9_5.3.ppc64le.rpm	SHA-256: c4f22a521e69722af1a5a7da0ea772b434d48d5bcd1ca55d6ae079b1c9b9943f

Red Hat Enterprise Linux for ARM 64 9

SRPM
libsoup-2.72.0-8.el9_5.3.src.rpm	SHA-256: 044020df6b70256fbaebdcd97a35281e0dab3989542d8894336886be988a1b03
aarch64
libsoup-2.72.0-8.el9_5.3.aarch64.rpm	SHA-256: e5e514b6e9410c9396cb6c78cc6c96408307b53f35dda655d9ed790369cf5f1f
libsoup-debuginfo-2.72.0-8.el9_5.3.aarch64.rpm	SHA-256: b43a22623c49c04f21c3929ab3d9c779822efd39df7b7fe4644c6f2fe73e9ce7
libsoup-debugsource-2.72.0-8.el9_5.3.aarch64.rpm	SHA-256: d9e9cf56500f2495f1dba488cca9a52d4ab8835bc55bf4ae400955019a43986a
libsoup-devel-2.72.0-8.el9_5.3.aarch64.rpm	SHA-256: 183724d1368b66b589b7debd7e0b8d01f42a5b1194ced190196897ead55d9c92

Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.6

SRPM
libsoup-2.72.0-8.el9_5.3.src.rpm	SHA-256: 044020df6b70256fbaebdcd97a35281e0dab3989542d8894336886be988a1b03
aarch64
libsoup-2.72.0-8.el9_5.3.aarch64.rpm	SHA-256: e5e514b6e9410c9396cb6c78cc6c96408307b53f35dda655d9ed790369cf5f1f
libsoup-debuginfo-2.72.0-8.el9_5.3.aarch64.rpm	SHA-256: b43a22623c49c04f21c3929ab3d9c779822efd39df7b7fe4644c6f2fe73e9ce7
libsoup-debugsource-2.72.0-8.el9_5.3.aarch64.rpm	SHA-256: d9e9cf56500f2495f1dba488cca9a52d4ab8835bc55bf4ae400955019a43986a
libsoup-devel-2.72.0-8.el9_5.3.aarch64.rpm	SHA-256: 183724d1368b66b589b7debd7e0b8d01f42a5b1194ced190196897ead55d9c92

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.6

SRPM
libsoup-2.72.0-8.el9_5.3.src.rpm	SHA-256: 044020df6b70256fbaebdcd97a35281e0dab3989542d8894336886be988a1b03
ppc64le
libsoup-2.72.0-8.el9_5.3.ppc64le.rpm	SHA-256: 28ab636157eea1b6522b518ae32ceacb6a90cb193ca9a2f41e83dec49e3952f5
libsoup-debuginfo-2.72.0-8.el9_5.3.ppc64le.rpm	SHA-256: df618f12e0db299ff67dda349542fed5306e560ce660abecf256a9d074256787
libsoup-debugsource-2.72.0-8.el9_5.3.ppc64le.rpm	SHA-256: e84198721298c6deeda5c6a6906e2984cd031ca3192fcb10fbcf3130e2009355
libsoup-devel-2.72.0-8.el9_5.3.ppc64le.rpm	SHA-256: c4f22a521e69722af1a5a7da0ea772b434d48d5bcd1ca55d6ae079b1c9b9943f

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.6

SRPM
libsoup-2.72.0-8.el9_5.3.src.rpm	SHA-256: 044020df6b70256fbaebdcd97a35281e0dab3989542d8894336886be988a1b03
x86_64
libsoup-2.72.0-8.el9_5.3.i686.rpm	SHA-256: ceadcf83432f53cdbd94b197cd0a294b91e2ccb304918d59292d508e6d08eb8d
libsoup-2.72.0-8.el9_5.3.x86_64.rpm	SHA-256: d37d29a930819c4513c49251de5ecf8b0649f6a07956491e88ac2621ad1fcd89
libsoup-debuginfo-2.72.0-8.el9_5.3.i686.rpm	SHA-256: 6ed292642fd746c676d30efaa1f3f42debf11881c7f095a48aab7616286351a5
libsoup-debuginfo-2.72.0-8.el9_5.3.x86_64.rpm	SHA-256: f94c5833318a85b3b7fa8c1eda021bba61e9ecda3eb182b05afb80487e92f936
libsoup-debugsource-2.72.0-8.el9_5.3.i686.rpm	SHA-256: cf9946c349aa26733552525df062fa6e5c9e33e442de41d1c666a8e8955c7613
libsoup-debugsource-2.72.0-8.el9_5.3.x86_64.rpm	SHA-256: 971b93b206d0926b2deefe5173fe1f5bace12ac19f000986e5a47e2107062d15
libsoup-devel-2.72.0-8.el9_5.3.i686.rpm	SHA-256: 8270fcdc151ba6199490f77181cfd9022be318cec608c2782e98c38dc9ba4a16
libsoup-devel-2.72.0-8.el9_5.3.x86_64.rpm	SHA-256: cf502872d2bdd023227113e78488cd5aeb39268227240d997e328689bf70aea2

Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.6

SRPM
libsoup-2.72.0-8.el9_5.3.src.rpm	SHA-256: 044020df6b70256fbaebdcd97a35281e0dab3989542d8894336886be988a1b03
aarch64
libsoup-2.72.0-8.el9_5.3.aarch64.rpm	SHA-256: e5e514b6e9410c9396cb6c78cc6c96408307b53f35dda655d9ed790369cf5f1f
libsoup-debuginfo-2.72.0-8.el9_5.3.aarch64.rpm	SHA-256: b43a22623c49c04f21c3929ab3d9c779822efd39df7b7fe4644c6f2fe73e9ce7
libsoup-debugsource-2.72.0-8.el9_5.3.aarch64.rpm	SHA-256: d9e9cf56500f2495f1dba488cca9a52d4ab8835bc55bf4ae400955019a43986a
libsoup-devel-2.72.0-8.el9_5.3.aarch64.rpm	SHA-256: 183724d1368b66b589b7debd7e0b8d01f42a5b1194ced190196897ead55d9c92

Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.6

SRPM
libsoup-2.72.0-8.el9_5.3.src.rpm	SHA-256: 044020df6b70256fbaebdcd97a35281e0dab3989542d8894336886be988a1b03
s390x
libsoup-2.72.0-8.el9_5.3.s390x.rpm	SHA-256: 212aaad603266df91e94b5202444116998af65bc10612d119099e462fd592f90
libsoup-debuginfo-2.72.0-8.el9_5.3.s390x.rpm	SHA-256: d0f919758712427729a7772823abcbf6e87d8c508b0a33501fa5b95feda60b16
libsoup-debugsource-2.72.0-8.el9_5.3.s390x.rpm	SHA-256: f37d5013c906a33724cc4677834cc5144d118e513afb01940b45b28597af2267
libsoup-devel-2.72.0-8.el9_5.3.s390x.rpm	SHA-256: 3be96f40b3658489b11c998147e6a7d5908e47b57ae55daeeecce710f2440c72

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

Runtimes

Integration and Automation