CNNVD-202601-1888 Information

CNNVD ID

CNNVD-202601-1888

Related CVE

CVE-2026-0716

• CNNVD Published: 2026-01-13

Description (Chinese)

libsoup是GNOME项目的一款GNOME的HTTP客户端/服务器库。 libsoup存在安全漏洞，该漏洞源于WebSocket帧处理不当，可能导致越界读取内存，造成内存泄露或崩溃。

Description (English)

Libsoup is the HTTP client/server library of the GNOME project. There is a security loophole in Libsoup, which stems from the inappropriate handling of the WebSocket frame, which could lead to cross-border access to memory, resulting in leakage or collapse of memory.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

GNOME

Published

2026-01-13

Last Modified

2026-02-24

References

https://access.redhat.com/security/cve/CVE-2026-0716 https://bugzilla.redhat.com/show_bug.cgi?id=2427896 https://gitlab.gnome.org/GNOME/libsoup/-/issues/476