Release date:
2026-04-22 10:45:34 UTC
Description:
- CVE-2026-1801: use CRLF as line boundary when parsing chunked encoding data
to prevent HTTP request smuggling via lone LF
- CVE-2026-2443: reject Range header ends exceeding content length to prevent
out-of-bounds read in byte range handling
Updated packages:
-
libsoup-2.72.0-10.el9_2.3.tuxcare.els5.i686.rpm
sha:56d8be68e559fa44467f8171ffb59243a52230839440b8938acd1f763837814c
-
libsoup-2.72.0-10.el9_2.3.tuxcare.els5.x86_64.rpm
sha:f439d5b062ccee63ab76a331c56877b8187054dbb3f3f663c274c52e01766389
-
libsoup-devel-2.72.0-10.el9_2.3.tuxcare.els5.i686.rpm
sha:17b12c077efd7bf8ef66fb3095fd63eef7719f061bf84be9f0fe297be2695ed8
-
libsoup-devel-2.72.0-10.el9_2.3.tuxcare.els5.x86_64.rpm
sha:692930b19cbbef7e7a9f1a0c25f307fe419348c453c6d97d35c57922245b66d6
-
libsoup-doc-2.72.0-10.el9_2.3.tuxcare.els5.noarch.rpm
sha:9bffd2d28990f98b2fd146fda467f18b1dbaa80bc87fc6c45e3c22dc57987862
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
