[ALSA-2026:0421] Important: libsoup security update
Type:
security
Severity:
important
Release date:
2026-01-16
Description:
The libsoup packages provide an HTTP client and server library for GNOME. Security Fix(es): * libsoup: libsoup: Duplicate Host Header Handling Causes Host-Parsing Discrepancy (First- vs Last-Value Wins) (CVE-2025-14523) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
References:
Updated packages listed below:
Architecture Package Checksum
aarch64 libsoup-devel-2.62.3-11.el8_10.aarch64.rpm d94fc4bc3d91ef110c22906dbc08bc6221586d67dd01ac874722a476341b79f4
aarch64 libsoup-2.62.3-11.el8_10.aarch64.rpm e29886feb42224395c2b83fd482a7b39675ad7d2bfb5c431e7fb107e3d168a57
i686 libsoup-2.62.3-11.el8_10.i686.rpm 3528adcbb93c441dac48f32fd29d4041bfb3c388f71d3a9590b1a940a5e3b5d2
i686 libsoup-devel-2.62.3-11.el8_10.i686.rpm f5710942a2febfdbe8b9afdd4d4069f0f654fe4fa1739c609369a22996e2fb2a
ppc64le libsoup-devel-2.62.3-11.el8_10.ppc64le.rpm 40336aa22a51e47e31cb3bffe118c1b29524e5991605e4e5ef9643afaf30b3ec
ppc64le libsoup-2.62.3-11.el8_10.ppc64le.rpm ebdea09698ef2f56737597cc81bee472c090791cb75cec3603cc4d4122b17fac
s390x libsoup-2.62.3-11.el8_10.s390x.rpm 05669a4c0c4a81570e4e95f14a5a84a4e20947c1c3faf83789206b0e9c69600a
s390x libsoup-devel-2.62.3-11.el8_10.s390x.rpm 4215fa1daaf78511d9da0fcfa02123267e89d31575f02dd83588418171934d1f
x86_64 libsoup-devel-2.62.3-11.el8_10.x86_64.rpm 3c7f4984034ac26ae16cf95f1a1ffeb09da19bbfd93e83914b47ecd078fd676d
x86_64 libsoup-2.62.3-11.el8_10.x86_64.rpm c53bb064465d7a9b888e88d33852c4eca1eed7015144bdc92f7d2cb2dcf98559
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.