Nirox

**Name of the Vulnerable Software and Affected Versions** libsoup (affected versions not specified) **Description** An unsigned to signed conversion error exists in the `soup body input stream read chunked()` function. A remote attacker can exploit this by sending a malicious HTTP request when libsoup is used behind a non-libsoup proxy server or as a proxy in front of a non-libsoup backend server. This can lead to HTTP request smuggling, allowing the attacker to bypass security controls, poison web caches, or gain unauthorized access. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.