红帽产品勘误 RHSA-2026:22323 - Security Advisory
发布:
2026-06-01
已更新:
2026-06-01

RHSA-2026:22323 - Security Advisory

概述

Moderate: libsoup security update

类型/严重性

Security Advisory: Moderate

Red Hat Insights 补丁分析

识别并修复受此公告影响的系统。

查看受影响的系统

标题

An update for libsoup is now available for Red Hat Enterprise Linux 9.4 Update Services for SAP Solutions.

Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

描述

The libsoup packages provide an HTTP client and server library for GNOME.

Security Fix(es):

  • libsoup: libsoup: Information disclosure via cleartext transmission of cookies during HTTPS tunnel establishment (CVE-2026-5119)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

解决方案

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

受影响的产品

  • Red Hat Enterprise Linux Server - AUS 9.4 x86_64
  • Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.4 ppc64le
  • Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.4 x86_64
  • Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.4 aarch64
  • Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.4 s390x
  • Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 9.4 x86_64
  • Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 9.4 aarch64
  • Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 9.4 ppc64le
  • Red Hat Enterprise Linux for IBM z Systems - Extended Life Cycle 9.4 s390x

修复

  • BZ - 2452932 - CVE-2026-5119 libsoup: libsoup: Information disclosure via cleartext transmission of cookies during HTTPS tunnel establishment

Red Hat Enterprise Linux Server - AUS 9.4

SRPM
libsoup-2.72.0-8.el9_4.10.src.rpm SHA-256: 90c8bd358f868ff6ddcdfafa4c1dcf8f24ec712a89ab419cdbf619e4b2541454
x86_64
libsoup-2.72.0-8.el9_4.10.i686.rpm SHA-256: 70229eab359c46eccf35a26d0e7088af31b990759d3fe9507e70a39f60d4d313
libsoup-2.72.0-8.el9_4.10.x86_64.rpm SHA-256: b83e44bdb7d03a808342675543fc97056a6f52469c47ceea5aa89b157a1cdced
libsoup-debuginfo-2.72.0-8.el9_4.10.i686.rpm SHA-256: 5239697780f9bd7604e55668a7e41026abdb86f2bf6f13f9503a282e933a232c
libsoup-debuginfo-2.72.0-8.el9_4.10.x86_64.rpm SHA-256: 211443d172371d20828adeea1456dc1dfec15982a17212885416126a082f2c15
libsoup-debugsource-2.72.0-8.el9_4.10.i686.rpm SHA-256: cd63dfa755d63e0d6672e4cfc260f1098f5dfd801db8e42c84600083bebfe664
libsoup-debugsource-2.72.0-8.el9_4.10.x86_64.rpm SHA-256: e22e4d58f8413fca9b5ee9de958b016ce8a520ad3d1f65360a34423512dc003f
libsoup-devel-2.72.0-8.el9_4.10.i686.rpm SHA-256: a709fe32086bc6285975fc922cd30f22f8502d4436c470c2442642d1f5f5c738
libsoup-devel-2.72.0-8.el9_4.10.x86_64.rpm SHA-256: 0e64ee23f0222f886f8b7e209d7d200e9fa1ccfc906cb9e5be8ee158562648e8

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.4

SRPM
libsoup-2.72.0-8.el9_4.10.src.rpm SHA-256: 90c8bd358f868ff6ddcdfafa4c1dcf8f24ec712a89ab419cdbf619e4b2541454
ppc64le
libsoup-2.72.0-8.el9_4.10.ppc64le.rpm SHA-256: 200ac3d9bccd8755e5a064b8c493212eb2c78c50aff4c2ff89c049aaf3aa96ca
libsoup-debuginfo-2.72.0-8.el9_4.10.ppc64le.rpm SHA-256: 281fe54e3ae952a28f593320a2e066e9387725f83144e0ea4566d85ee4e020f0
libsoup-debugsource-2.72.0-8.el9_4.10.ppc64le.rpm SHA-256: bb57ec3d4a0159b7d734d7082b1e47a75c289d83b965b449ed0bb7774991ab92
libsoup-devel-2.72.0-8.el9_4.10.ppc64le.rpm SHA-256: 020871b2bed1f9e2f13d10e101dd96e06421cb20e169d1f8bd6859cfb63e8464

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.4

SRPM
libsoup-2.72.0-8.el9_4.10.src.rpm SHA-256: 90c8bd358f868ff6ddcdfafa4c1dcf8f24ec712a89ab419cdbf619e4b2541454
x86_64
libsoup-2.72.0-8.el9_4.10.i686.rpm SHA-256: 70229eab359c46eccf35a26d0e7088af31b990759d3fe9507e70a39f60d4d313
libsoup-2.72.0-8.el9_4.10.x86_64.rpm SHA-256: b83e44bdb7d03a808342675543fc97056a6f52469c47ceea5aa89b157a1cdced
libsoup-debuginfo-2.72.0-8.el9_4.10.i686.rpm SHA-256: 5239697780f9bd7604e55668a7e41026abdb86f2bf6f13f9503a282e933a232c
libsoup-debuginfo-2.72.0-8.el9_4.10.x86_64.rpm SHA-256: 211443d172371d20828adeea1456dc1dfec15982a17212885416126a082f2c15
libsoup-debugsource-2.72.0-8.el9_4.10.i686.rpm SHA-256: cd63dfa755d63e0d6672e4cfc260f1098f5dfd801db8e42c84600083bebfe664
libsoup-debugsource-2.72.0-8.el9_4.10.x86_64.rpm SHA-256: e22e4d58f8413fca9b5ee9de958b016ce8a520ad3d1f65360a34423512dc003f
libsoup-devel-2.72.0-8.el9_4.10.i686.rpm SHA-256: a709fe32086bc6285975fc922cd30f22f8502d4436c470c2442642d1f5f5c738
libsoup-devel-2.72.0-8.el9_4.10.x86_64.rpm SHA-256: 0e64ee23f0222f886f8b7e209d7d200e9fa1ccfc906cb9e5be8ee158562648e8

Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.4

SRPM
libsoup-2.72.0-8.el9_4.10.src.rpm SHA-256: 90c8bd358f868ff6ddcdfafa4c1dcf8f24ec712a89ab419cdbf619e4b2541454
aarch64
libsoup-2.72.0-8.el9_4.10.aarch64.rpm SHA-256: cf0c8d43ae1137de4b461c040b12740eededc103acd790610983397e0e7bf075
libsoup-debuginfo-2.72.0-8.el9_4.10.aarch64.rpm SHA-256: c8219eff097348a11470c5a85b25f61b19c56ef7071d19dc6616e229b8577f3a
libsoup-debugsource-2.72.0-8.el9_4.10.aarch64.rpm SHA-256: 36193cf047078cb66f6210d123892efc54c18bdfd1b690b9e58421462b86f82c
libsoup-devel-2.72.0-8.el9_4.10.aarch64.rpm SHA-256: de06f1dcf922a0f16f41dbe8ea6722595fe9d47fdc8689810dc13fe930f40ab6

Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.4

SRPM
libsoup-2.72.0-8.el9_4.10.src.rpm SHA-256: 90c8bd358f868ff6ddcdfafa4c1dcf8f24ec712a89ab419cdbf619e4b2541454
s390x
libsoup-2.72.0-8.el9_4.10.s390x.rpm SHA-256: 4adf21fb4638aa17ed0319933f6b71722b95cfd147c790008d033ba50189bf71
libsoup-debuginfo-2.72.0-8.el9_4.10.s390x.rpm SHA-256: 3c6cdb562a00611d4101f85f33454b094e42a212e64b636118c9109132dcedb2
libsoup-debugsource-2.72.0-8.el9_4.10.s390x.rpm SHA-256: 45240f7474cdb40488e6673316319a97ee9b22ed7f3e81fec65064ceaa49b195
libsoup-devel-2.72.0-8.el9_4.10.s390x.rpm SHA-256: 8bc2647402583cb8dbf4ff075e8fe1c848aa02b075d95658bcd1d6afa75c4e91

Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 9.4

SRPM
libsoup-2.72.0-8.el9_4.10.src.rpm SHA-256: 90c8bd358f868ff6ddcdfafa4c1dcf8f24ec712a89ab419cdbf619e4b2541454
x86_64
libsoup-2.72.0-8.el9_4.10.i686.rpm SHA-256: 70229eab359c46eccf35a26d0e7088af31b990759d3fe9507e70a39f60d4d313
libsoup-2.72.0-8.el9_4.10.x86_64.rpm SHA-256: b83e44bdb7d03a808342675543fc97056a6f52469c47ceea5aa89b157a1cdced
libsoup-debuginfo-2.72.0-8.el9_4.10.i686.rpm SHA-256: 5239697780f9bd7604e55668a7e41026abdb86f2bf6f13f9503a282e933a232c
libsoup-debuginfo-2.72.0-8.el9_4.10.x86_64.rpm SHA-256: 211443d172371d20828adeea1456dc1dfec15982a17212885416126a082f2c15
libsoup-debugsource-2.72.0-8.el9_4.10.i686.rpm SHA-256: cd63dfa755d63e0d6672e4cfc260f1098f5dfd801db8e42c84600083bebfe664
libsoup-debugsource-2.72.0-8.el9_4.10.x86_64.rpm SHA-256: e22e4d58f8413fca9b5ee9de958b016ce8a520ad3d1f65360a34423512dc003f
libsoup-devel-2.72.0-8.el9_4.10.i686.rpm SHA-256: a709fe32086bc6285975fc922cd30f22f8502d4436c470c2442642d1f5f5c738
libsoup-devel-2.72.0-8.el9_4.10.x86_64.rpm SHA-256: 0e64ee23f0222f886f8b7e209d7d200e9fa1ccfc906cb9e5be8ee158562648e8

Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 9.4

SRPM
libsoup-2.72.0-8.el9_4.10.src.rpm SHA-256: 90c8bd358f868ff6ddcdfafa4c1dcf8f24ec712a89ab419cdbf619e4b2541454
aarch64
libsoup-2.72.0-8.el9_4.10.aarch64.rpm SHA-256: cf0c8d43ae1137de4b461c040b12740eededc103acd790610983397e0e7bf075
libsoup-debuginfo-2.72.0-8.el9_4.10.aarch64.rpm SHA-256: c8219eff097348a11470c5a85b25f61b19c56ef7071d19dc6616e229b8577f3a
libsoup-debugsource-2.72.0-8.el9_4.10.aarch64.rpm SHA-256: 36193cf047078cb66f6210d123892efc54c18bdfd1b690b9e58421462b86f82c
libsoup-devel-2.72.0-8.el9_4.10.aarch64.rpm SHA-256: de06f1dcf922a0f16f41dbe8ea6722595fe9d47fdc8689810dc13fe930f40ab6

Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 9.4

SRPM
libsoup-2.72.0-8.el9_4.10.src.rpm SHA-256: 90c8bd358f868ff6ddcdfafa4c1dcf8f24ec712a89ab419cdbf619e4b2541454
ppc64le
libsoup-2.72.0-8.el9_4.10.ppc64le.rpm SHA-256: 200ac3d9bccd8755e5a064b8c493212eb2c78c50aff4c2ff89c049aaf3aa96ca
libsoup-debuginfo-2.72.0-8.el9_4.10.ppc64le.rpm SHA-256: 281fe54e3ae952a28f593320a2e066e9387725f83144e0ea4566d85ee4e020f0
libsoup-debugsource-2.72.0-8.el9_4.10.ppc64le.rpm SHA-256: bb57ec3d4a0159b7d734d7082b1e47a75c289d83b965b449ed0bb7774991ab92
libsoup-devel-2.72.0-8.el9_4.10.ppc64le.rpm SHA-256: 020871b2bed1f9e2f13d10e101dd96e06421cb20e169d1f8bd6859cfb63e8464

Red Hat Enterprise Linux for IBM z Systems - Extended Life Cycle 9.4

SRPM
libsoup-2.72.0-8.el9_4.10.src.rpm SHA-256: 90c8bd358f868ff6ddcdfafa4c1dcf8f24ec712a89ab419cdbf619e4b2541454
s390x
libsoup-2.72.0-8.el9_4.10.s390x.rpm SHA-256: 4adf21fb4638aa17ed0319933f6b71722b95cfd147c790008d033ba50189bf71
libsoup-debuginfo-2.72.0-8.el9_4.10.s390x.rpm SHA-256: 3c6cdb562a00611d4101f85f33454b094e42a212e64b636118c9109132dcedb2
libsoup-debugsource-2.72.0-8.el9_4.10.s390x.rpm SHA-256: 45240f7474cdb40488e6673316319a97ee9b22ed7f3e81fec65064ceaa49b195
libsoup-devel-2.72.0-8.el9_4.10.s390x.rpm SHA-256: 8bc2647402583cb8dbf4ff075e8fe1c848aa02b075d95658bcd1d6afa75c4e91

Red Hat 安全团队联络方式为 secalert@redhat.com。 更多联络细节请参考 https://access.redhat.com/security/team/contact/