CNNVD-202509-341 Information

CNNVD ID

CNNVD-202509-341

Related CVE

CVE-2025-9901

• CNNVD Published: 2025-09-03

Description (Chinese)

libsoup是GNOME项目的一款GNOME的HTTP客户端/服务器库。 libsoup存在安全漏洞，该漏洞源于SoupCache忽略HTTP Vary标头，可能导致敏感用户信息泄露。

Description (English)

Libsoup is the HTTP client/server library of the GNOME project. There is a security loophole in libsoup, which originates from SoupCache ’ s neglect of HTTP Vary header, which could lead to the disclosure of sensitive user information.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

gnutls

Published

2025-09-03

Last Modified

2026-02-24

References

https://access.redhat.com/security/cve/CVE-2025-9901 https://bugzilla.redhat.com/show_bug.cgi?id=2392790

Patch

https://wiki.gnome.org/Projects/libsoup