Red Hat Product Errata RHSA-2025:0949 - Security Advisory
Issued:
2025-02-04
Updated:
2025-02-04

RHSA-2025:0949 - Security Advisory

Synopsis

Important: libsoup security update

Type/Severity

Security Advisory: Important

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for libsoup is now available for Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions, and Red Hat Enterprise Linux 8.6 Telecommunications Update Service.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

The libsoup packages provide an HTTP client and server library for GNOME.

Security Fix(es):

  • libsoup: buffer overflow via UTF-8 conversion in soup_header_parse_param_list_strict (CVE-2024-52531)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

  • Red Hat Enterprise Linux for x86_64 - Extended Update Support Extension 8.6 x86_64
  • Red Hat Enterprise Linux Server - AUS 8.6 x86_64
  • Red Hat Enterprise Linux Server - TUS 8.6 x86_64
  • Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.6 ppc64le
  • Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.6 x86_64

Fixes

  • BZ - 2325277 - CVE-2024-52531 libsoup: buffer overflow via UTF-8 conversion in soup_header_parse_param_list_strict

Red Hat Enterprise Linux for x86_64 - Extended Update Support Extension 8.6

SRPM
libsoup-2.62.3-2.el8_6.2.src.rpm SHA-256: 4d429ec1c0912b92f1f3ff4cf4fe4343c4f560038c315643561857fca3851ef8
x86_64
libsoup-2.62.3-2.el8_6.2.i686.rpm SHA-256: 03acae7d8586e98e985f4a0b3589d5393a0adef352cdc6f60cd1826841026bd8
libsoup-2.62.3-2.el8_6.2.x86_64.rpm SHA-256: 9b8dd846651e2aff1d8944ec658be4cd7221932700f864f89e2eaed4b58cc93e
libsoup-debuginfo-2.62.3-2.el8_6.2.i686.rpm SHA-256: 22d6ac2a285a06638b76c9384b6cbdff62dacbd51445df20cee7142255792572
libsoup-debuginfo-2.62.3-2.el8_6.2.i686.rpm SHA-256: 22d6ac2a285a06638b76c9384b6cbdff62dacbd51445df20cee7142255792572
libsoup-debuginfo-2.62.3-2.el8_6.2.x86_64.rpm SHA-256: d8e67de12993bc20bffa184be26aea6149383acd50b20a409f34e42ff3dfc638
libsoup-debuginfo-2.62.3-2.el8_6.2.x86_64.rpm SHA-256: d8e67de12993bc20bffa184be26aea6149383acd50b20a409f34e42ff3dfc638
libsoup-debugsource-2.62.3-2.el8_6.2.i686.rpm SHA-256: 2a4721137c8a891d74ad95de804219883935e94f075438d287a6b2ced0e784f5
libsoup-debugsource-2.62.3-2.el8_6.2.i686.rpm SHA-256: 2a4721137c8a891d74ad95de804219883935e94f075438d287a6b2ced0e784f5
libsoup-debugsource-2.62.3-2.el8_6.2.x86_64.rpm SHA-256: 391a12341f9dc93851eb680146e462aa4ac7f8c53bd1f89533e1f348b2fd1cc3
libsoup-debugsource-2.62.3-2.el8_6.2.x86_64.rpm SHA-256: 391a12341f9dc93851eb680146e462aa4ac7f8c53bd1f89533e1f348b2fd1cc3
libsoup-devel-2.62.3-2.el8_6.2.i686.rpm SHA-256: 6031bcc01dbe741887aa4347211b053f9379ea610dc1f8239b67cf36337df2d9
libsoup-devel-2.62.3-2.el8_6.2.x86_64.rpm SHA-256: 12297fd767530eb23a77c8d442ce5500f6dc980ba6624c7ebdb4187ff6d6ff1c

Red Hat Enterprise Linux Server - AUS 8.6

SRPM
libsoup-2.62.3-2.el8_6.2.src.rpm SHA-256: 4d429ec1c0912b92f1f3ff4cf4fe4343c4f560038c315643561857fca3851ef8
x86_64
libsoup-2.62.3-2.el8_6.2.i686.rpm SHA-256: 03acae7d8586e98e985f4a0b3589d5393a0adef352cdc6f60cd1826841026bd8
libsoup-2.62.3-2.el8_6.2.x86_64.rpm SHA-256: 9b8dd846651e2aff1d8944ec658be4cd7221932700f864f89e2eaed4b58cc93e
libsoup-debuginfo-2.62.3-2.el8_6.2.i686.rpm SHA-256: 22d6ac2a285a06638b76c9384b6cbdff62dacbd51445df20cee7142255792572
libsoup-debuginfo-2.62.3-2.el8_6.2.i686.rpm SHA-256: 22d6ac2a285a06638b76c9384b6cbdff62dacbd51445df20cee7142255792572
libsoup-debuginfo-2.62.3-2.el8_6.2.x86_64.rpm SHA-256: d8e67de12993bc20bffa184be26aea6149383acd50b20a409f34e42ff3dfc638
libsoup-debuginfo-2.62.3-2.el8_6.2.x86_64.rpm SHA-256: d8e67de12993bc20bffa184be26aea6149383acd50b20a409f34e42ff3dfc638
libsoup-debugsource-2.62.3-2.el8_6.2.i686.rpm SHA-256: 2a4721137c8a891d74ad95de804219883935e94f075438d287a6b2ced0e784f5
libsoup-debugsource-2.62.3-2.el8_6.2.i686.rpm SHA-256: 2a4721137c8a891d74ad95de804219883935e94f075438d287a6b2ced0e784f5
libsoup-debugsource-2.62.3-2.el8_6.2.x86_64.rpm SHA-256: 391a12341f9dc93851eb680146e462aa4ac7f8c53bd1f89533e1f348b2fd1cc3
libsoup-debugsource-2.62.3-2.el8_6.2.x86_64.rpm SHA-256: 391a12341f9dc93851eb680146e462aa4ac7f8c53bd1f89533e1f348b2fd1cc3
libsoup-devel-2.62.3-2.el8_6.2.i686.rpm SHA-256: 6031bcc01dbe741887aa4347211b053f9379ea610dc1f8239b67cf36337df2d9
libsoup-devel-2.62.3-2.el8_6.2.x86_64.rpm SHA-256: 12297fd767530eb23a77c8d442ce5500f6dc980ba6624c7ebdb4187ff6d6ff1c

Red Hat Enterprise Linux Server - TUS 8.6

SRPM
libsoup-2.62.3-2.el8_6.2.src.rpm SHA-256: 4d429ec1c0912b92f1f3ff4cf4fe4343c4f560038c315643561857fca3851ef8
x86_64
libsoup-2.62.3-2.el8_6.2.i686.rpm SHA-256: 03acae7d8586e98e985f4a0b3589d5393a0adef352cdc6f60cd1826841026bd8
libsoup-2.62.3-2.el8_6.2.x86_64.rpm SHA-256: 9b8dd846651e2aff1d8944ec658be4cd7221932700f864f89e2eaed4b58cc93e
libsoup-debuginfo-2.62.3-2.el8_6.2.i686.rpm SHA-256: 22d6ac2a285a06638b76c9384b6cbdff62dacbd51445df20cee7142255792572
libsoup-debuginfo-2.62.3-2.el8_6.2.i686.rpm SHA-256: 22d6ac2a285a06638b76c9384b6cbdff62dacbd51445df20cee7142255792572
libsoup-debuginfo-2.62.3-2.el8_6.2.x86_64.rpm SHA-256: d8e67de12993bc20bffa184be26aea6149383acd50b20a409f34e42ff3dfc638
libsoup-debuginfo-2.62.3-2.el8_6.2.x86_64.rpm SHA-256: d8e67de12993bc20bffa184be26aea6149383acd50b20a409f34e42ff3dfc638
libsoup-debugsource-2.62.3-2.el8_6.2.i686.rpm SHA-256: 2a4721137c8a891d74ad95de804219883935e94f075438d287a6b2ced0e784f5
libsoup-debugsource-2.62.3-2.el8_6.2.i686.rpm SHA-256: 2a4721137c8a891d74ad95de804219883935e94f075438d287a6b2ced0e784f5
libsoup-debugsource-2.62.3-2.el8_6.2.x86_64.rpm SHA-256: 391a12341f9dc93851eb680146e462aa4ac7f8c53bd1f89533e1f348b2fd1cc3
libsoup-debugsource-2.62.3-2.el8_6.2.x86_64.rpm SHA-256: 391a12341f9dc93851eb680146e462aa4ac7f8c53bd1f89533e1f348b2fd1cc3
libsoup-devel-2.62.3-2.el8_6.2.i686.rpm SHA-256: 6031bcc01dbe741887aa4347211b053f9379ea610dc1f8239b67cf36337df2d9
libsoup-devel-2.62.3-2.el8_6.2.x86_64.rpm SHA-256: 12297fd767530eb23a77c8d442ce5500f6dc980ba6624c7ebdb4187ff6d6ff1c

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.6

SRPM
libsoup-2.62.3-2.el8_6.2.src.rpm SHA-256: 4d429ec1c0912b92f1f3ff4cf4fe4343c4f560038c315643561857fca3851ef8
ppc64le
libsoup-2.62.3-2.el8_6.2.ppc64le.rpm SHA-256: 2f071e6f4e2682e386a3239809bb4ab2edf67a4d9417b26f67307eca05504277
libsoup-debuginfo-2.62.3-2.el8_6.2.ppc64le.rpm SHA-256: 6738291fb7ffa9bc5e8ce6b20d725a809c2077c81abc2c2dbce99c56169de180
libsoup-debuginfo-2.62.3-2.el8_6.2.ppc64le.rpm SHA-256: 6738291fb7ffa9bc5e8ce6b20d725a809c2077c81abc2c2dbce99c56169de180
libsoup-debugsource-2.62.3-2.el8_6.2.ppc64le.rpm SHA-256: 5d33cbd0b1cbc9da4279833c54b31d450c8a794d06cf8744b0b86a8c6f348dd5
libsoup-debugsource-2.62.3-2.el8_6.2.ppc64le.rpm SHA-256: 5d33cbd0b1cbc9da4279833c54b31d450c8a794d06cf8744b0b86a8c6f348dd5
libsoup-devel-2.62.3-2.el8_6.2.ppc64le.rpm SHA-256: d2f826bb8f3b49573ef5fe63f2518c5b52a1db9699231c974a920e47c5c6ca3e

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.6

SRPM
libsoup-2.62.3-2.el8_6.2.src.rpm SHA-256: 4d429ec1c0912b92f1f3ff4cf4fe4343c4f560038c315643561857fca3851ef8
x86_64
libsoup-2.62.3-2.el8_6.2.i686.rpm SHA-256: 03acae7d8586e98e985f4a0b3589d5393a0adef352cdc6f60cd1826841026bd8
libsoup-2.62.3-2.el8_6.2.x86_64.rpm SHA-256: 9b8dd846651e2aff1d8944ec658be4cd7221932700f864f89e2eaed4b58cc93e
libsoup-debuginfo-2.62.3-2.el8_6.2.i686.rpm SHA-256: 22d6ac2a285a06638b76c9384b6cbdff62dacbd51445df20cee7142255792572
libsoup-debuginfo-2.62.3-2.el8_6.2.i686.rpm SHA-256: 22d6ac2a285a06638b76c9384b6cbdff62dacbd51445df20cee7142255792572
libsoup-debuginfo-2.62.3-2.el8_6.2.x86_64.rpm SHA-256: d8e67de12993bc20bffa184be26aea6149383acd50b20a409f34e42ff3dfc638
libsoup-debuginfo-2.62.3-2.el8_6.2.x86_64.rpm SHA-256: d8e67de12993bc20bffa184be26aea6149383acd50b20a409f34e42ff3dfc638
libsoup-debugsource-2.62.3-2.el8_6.2.i686.rpm SHA-256: 2a4721137c8a891d74ad95de804219883935e94f075438d287a6b2ced0e784f5
libsoup-debugsource-2.62.3-2.el8_6.2.i686.rpm SHA-256: 2a4721137c8a891d74ad95de804219883935e94f075438d287a6b2ced0e784f5
libsoup-debugsource-2.62.3-2.el8_6.2.x86_64.rpm SHA-256: 391a12341f9dc93851eb680146e462aa4ac7f8c53bd1f89533e1f348b2fd1cc3
libsoup-debugsource-2.62.3-2.el8_6.2.x86_64.rpm SHA-256: 391a12341f9dc93851eb680146e462aa4ac7f8c53bd1f89533e1f348b2fd1cc3
libsoup-devel-2.62.3-2.el8_6.2.i686.rpm SHA-256: 6031bcc01dbe741887aa4347211b053f9379ea610dc1f8239b67cf36337df2d9
libsoup-devel-2.62.3-2.el8_6.2.x86_64.rpm SHA-256: 12297fd767530eb23a77c8d442ce5500f6dc980ba6624c7ebdb4187ff6d6ff1c

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.