Release date:
2026-04-22 10:57:36 UTC
Description:
- CVE-2026-1801: use CRLF as line boundary when parsing chunked encoding data
to prevent HTTP request smuggling via lone LF
- CVE-2026-2443: reject Range header ends exceeding content length to prevent
out-of-bounds read in byte range handling
Updated packages:
-
libsoup-2.72.0-10.el9_6.3.tuxcare.els5.i686.rpm
sha:207b163b88a66fd60fa0b8aaf9ccbf73f61586041aa54ab973c89154b14512b9
-
libsoup-2.72.0-10.el9_6.3.tuxcare.els5.x86_64.rpm
sha:6b86502223e1dc9064545c85a3616b288fde8099126966d78007fe711f565c12
-
libsoup-devel-2.72.0-10.el9_6.3.tuxcare.els5.i686.rpm
sha:b8d3cc106feaa7ba69c15a2f7ecab25ebfd9dbe0a60fbbacf963769c25a56dc3
-
libsoup-devel-2.72.0-10.el9_6.3.tuxcare.els5.x86_64.rpm
sha:a3bd283e730208625c3daee4155d023358d98f06ce2488056208bc94af850a54
-
libsoup-doc-2.72.0-10.el9_6.3.tuxcare.els5.noarch.rpm
sha:adef51868c919fde4a1173c57893b74eda4d25af7102b54f5f6763fa37049a19
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
