CNNVD-202601-4745 Information

CNNVD ID

CNNVD-202601-4745

Related CVE

CVE-2026-1536

• CNNVD Published: 2026-01-28

Description (Chinese)

libsoup是GNOME项目的一款GNOME的HTTP客户端/服务器库。 libsoup存在注入漏洞，该漏洞源于Content-Disposition标头输入控制不当，可能导致HTTP标头注入或HTTP响应拆分。

Description (English)

Libsoup is the HTTP client/server library of the GNOME project. Libsoup has an injection loophole, which stems from inadequate input controls at the Content-Disposition marker, which may lead to HTTP header injection or HTTP response splitting.

Hazard Level

High

Vulnerability Type

注入

Affected Vendor

GNOME

Published

2026-01-28

Last Modified

2026-02-24

References

https://access.redhat.com/security/cve/CVE-2026-1536 https://bugzilla.redhat.com/show_bug.cgi?id=2433834