PT-2025-16241 · Libsoup+11 · Libsoup+11

Published

2024-12-09

Updated

2025-11-24

CVE-2025-32913

CVSS v2.0

7.8

High

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions: libsoup (affected versions not specified)

Description: A flaw was found in libsoup, where the soup message headers get content disposition() function is vulnerable to a NULL pointer dereference. This flaw allows a malicious HTTP peer to crash a libsoup client or server that uses this function.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

NULL Pointer Dereference

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-476

Related Identifiers

ALSA-2025:4560

ALSA-2025:7436

ALSA-2025:8292

ALT-PU-2025-10633

ALT-PU-2025-10672

AZL-60389

AZL-60402

BDU:2025-06242

CESA-2025_4560

CESA-2025_8292

CVE-2025-32913

DLA-4140-1

INFSA-2025_4560

INFSA-2025_7436

INFSA-2025_8292

MGASA-2025-0261

OESA-2025-1460

OPENSUSE-SU-2025:15189-1

OPENSUSE-SU-2025_1504-1

OPENSUSE-SU-2025_1510-1

RHSA-2025:4439

RHSA-2025:4440

RHSA-2025:4508

RHSA-2025:4538

RHSA-2025:4560

RHSA-2025:4568

RHSA-2025:4609

RHSA-2025:4624

RHSA-2025:7436

RHSA-2025:8292

RHSA-2025:9179

RHSA-2025_4560

RHSA-2025_7436

RHSA-2025_8292

SUSE-SU-2025:01504-1

SUSE-SU-2025:01794-1

SUSE-SU-2025:01801-1

SUSE-SU-2025:01802-1

SUSE-SU-2025:01864-1

SUSE-SU-2025:1504-1

SUSE-SU-2025:1510-1

SUSE-SU-2025:20375-1

SUSE-SU-2025:20446-1

SUSE-SU-2025_01794-1

USN-7490-1

USN-7490-3

Affected Products

Alt Linux

Almalinux

Astra Linux

Centos

Debian

Linuxmint

Red Hat

Red Os

Rocky Linux

Suse

Ubuntu

Libsoup

PT-2025-16241 · Libsoup+11 · Libsoup+11

CVE-2025-32913

Weakness Enumeration

Related Identifiers

Affected Products

References · 172