CLSA-2026:1769598900

[CLSA-2026:1769598900] libsoup: Fix of CVE-2025-14523

Type:

security

Severity:

Important

Release date:

2026-01-28 11:15:04 UTC

Description:

- CVE-2025-14523: reject duplicate Host headers to prevent request smuggling,
  cache poisoning, and host-based access control bypass attacks

Updated packages:

libsoup-2.62.2-2.0.5.el7.tuxcare.els3.i686.rpm
sha:f73cb5783554fcd97561961b580983faa8541d32568b32b42da807adf6ef43c9
libsoup-2.62.2-2.0.5.el7.tuxcare.els3.x86_64.rpm
sha:f65eecdbe8ec27bd537ef628b8329014c0815c7664db079dea61fe65e4ee751f
libsoup-devel-2.62.2-2.0.5.el7.tuxcare.els3.i686.rpm
sha:cf43fe918aebafbbce1fb5922a6947cd12de0b69fe26d3adaa7766a29c2a3e4b
libsoup-devel-2.62.2-2.0.5.el7.tuxcare.els3.x86_64.rpm
sha:189103e3489ea27d77aa3193336b41ae91dd20d2c66d1b616bd198521b49ea0a

Notes:

This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.