CNNVD-202601-4744 Information

CNNVD ID

CNNVD-202601-4744

Related CVE

CVE-2026-1539

• CNNVD Published: 2026-01-28

Description (Chinese)

libsoup是GNOME项目的一款GNOME的HTTP客户端/服务器库。 libsoup存在安全漏洞，该漏洞源于处理HTTP重定向时未移除Proxy-Authorization标头，可能导致代理凭据泄露。

Description (English)

Libsoup is the HTTP client/server library of the GNOME project. There is a security loophole in libsoup, which stems from the failure to remove Proxy-Authorization markers during the re-direction of HTTP, which could lead to the disclosure of proxy documents.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

GNOME

Published

2026-01-28

Last Modified

2026-02-24

References

https://access.redhat.com/security/cve/CVE-2026-1539

Patch

https://gitlab.gnome.org/GNOME/libsoup