CNNVD-202602-253 Information

CNNVD ID

CNNVD-202602-253

Related CVE

CVE-2026-1801

• CNNVD Published: 2026-02-03

Description (Chinese)

libsoup是GNOME项目的一款GNOME的HTTP客户端/服务器库。 libsoup存在环境问题漏洞，该漏洞源于soup_filter_input_stream_read_line逻辑中非RFC兼容的解析接受格式错误的块标头，可能导致HTTP请求夹带攻击和信息泄露。

Description (English)

Libsoup is the HTTP client/server library of the GNOME project. Libsoup has an environmental loophole, which originates from soup filter input stream read line ’ s logic-compatible RFC-compatible flask header, which could lead to HTTP requesting a band of attacks and information leaks.

Hazard Level

High

Vulnerability Type

环境问题

Affected Vendor

GNOME

Published

2026-02-03

Last Modified

2026-02-24

References

https://access.redhat.com/security/cve/CVE-2026-1801 https://bugzilla.redhat.com/show_bug.cgi?id=2436315