ALSA-2026:13978

[ALSA-2026:13978] Moderate: libsoup security update

Type:

security

Severity:

moderate

Release date:

2026-05-06

Description:

The libsoup packages provide an HTTP client and server library for GNOME.  

Security Fix(es):  

  * libsoup: libsoup: Information disclosure via cleartext transmission of cookies during HTTPS tunnel establishment (CVE-2026-5119)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	libsoup-devel-2.72.0-12.el9_7.6.aarch64.rpm	366b7acbd911ccd54e2e405609cc84d5191c036156627adf127c217b1418ba67
aarch64	libsoup-2.72.0-12.el9_7.6.aarch64.rpm	38f41318b161d5cb0eaf199bbc38c74eceec9ef0440fe5671880d9c5a9d62d87
i686	libsoup-devel-2.72.0-12.el9_7.6.i686.rpm	3b33050a93102fd7545a1dd56e7e7d29eebfccbc07f3ebabf0e897eee9fcc413
i686	libsoup-2.72.0-12.el9_7.6.i686.rpm	e01b04c39c552e2e8e0827abe1acd277f193e57f04d6a02be7655de2625a7e8a
ppc64le	libsoup-2.72.0-12.el9_7.6.ppc64le.rpm	8d08216f4231fbff9f82ca2c36be6486ea0e8afef136813a028efc66d4c13232
ppc64le	libsoup-devel-2.72.0-12.el9_7.6.ppc64le.rpm	e017dbc572ab8fe48ac51c1f696970c900c8e87f5b2dd67dcceef02ec7ca719f
s390x	libsoup-devel-2.72.0-12.el9_7.6.s390x.rpm	78fd49f75fe1f0f0cddf7d27e34a5f28e5c22e48134770b816882e0efea3837c
s390x	libsoup-2.72.0-12.el9_7.6.s390x.rpm	8c7ab531df4cfa4dbf85d1f02ceb5d1ab89f61358beefa40c1f4ce00e706cc1d
x86_64	libsoup-devel-2.72.0-12.el9_7.6.x86_64.rpm	7296ff4d2e175a0e6d48ca2bfa1a33b53ce02e6bee2315a7d10bd2d620afcddc
x86_64	libsoup-2.72.0-12.el9_7.6.x86_64.rpm	ea98827e6bcdadf471015e85f3310e5caf328b8659b80352611f339baba435eb

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.