CVE-2025-32914

CVSS v3.1

7.4

High

Vector

AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H

Name of the Vulnerable Software and Affected Versions: libsoup (affected versions not specified)

Description: A flaw was found in libsoup, where the soup multipart new from message() function is vulnerable to an out-of-bounds read. This flaw allows a malicious HTTP client to induce the libsoup server to read out of bounds.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Out of bounds Read

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-125

Related Identifiers

ALSA-2025:7505

ALSA-2025:8126

ALSA-2025:8132

AZL-60378

AZL-60422

BDU:2025-04551

CESA-2025_8132

CVE-2025-32914

DLA-4140-1

INFSA-2025_8126

INFSA-2025_8132

MGASA-2025-0261

OESA-2025-1485

OPENSUSE-SU-2025:15015-1

OPENSUSE-SU-2025:15044-1

OPENSUSE-SU-2025_1503-1

OPENSUSE-SU-2025_1504-1

OPENSUSE-SU-2025_1509-1

OPENSUSE-SU-2025_1510-1

RHSA-2025:7505

RHSA-2025:8126

RHSA-2025:8132

RHSA-2025:8139

RHSA-2025:8140

RHSA-2025:8252

RHSA-2025:8480

RHSA-2025:8481

RHSA-2025:8482

RHSA-2025:8663

RHSA-2025:9179

RHSA-2025_8126

RHSA-2025_8132

SUSE-SU-2025:01503-1

SUSE-SU-2025:01504-1

SUSE-SU-2025:1503-1

SUSE-SU-2025:1504-1

SUSE-SU-2025:1509-1

SUSE-SU-2025:1510-1

SUSE-SU-2025:1518-1

SUSE-SU-2025:1519-1

SUSE-SU-2025:20375-1

SUSE-SU-2025:20446-1

USN-7490-1

USN-7490-3

USN-7643-1

Affected Products

Almalinux

Astra Linux

Centos

Debian

Linuxmint

Red Hat

Red Os

Rocky Linux

Suse

Ubuntu

Libsoup

CVE-2025-32914

Weakness Enumeration

Related Identifiers

Affected Products

References · 168