CNNVD-202601-1473 Information

CNNVD ID

CNNVD-202601-1473

Related CVE

CVE-2026-0719

• CNNVD Published: 2026-01-08

Description (Chinese)

libsoup是GNOME项目的一款GNOME的HTTP客户端/服务器库。 libsoup存在安全漏洞，该漏洞源于NTLM认证模块中md4sum函数存在栈缓冲区溢出，可能导致执行任意代码。

Description (English)

Libsoup is the HTTP client/server library of the GNOME project. There is a security loophole in libsoup, which stems from the spilling of the md4sum function in the NTLM authentication module, which could lead to the implementation of any code.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

GNOME

Published

2026-01-08

Last Modified

2026-02-24

References

https://gitlab.gnome.org/GNOME/libsoup/-/issues/477 https://bugzilla.redhat.com/show_bug.cgi?id=2427906 https://access.redhat.com/security/cve/CVE-2026-0719