PT-2025-50606 · Gnome+3 · Libsoup+3

Published

2025-12-11

·

Updated

2026-05-15

·

CVE-2025-14523

CVSS v2.0

8.5

High

VectorAV:N/AC:L/Au:N/C:P/I:C/A:N
Name of the Vulnerable Software and Affected Versions libsoup versions 2.4 and 3.x Description A flaw in libsoup’s HTTP header handling allows multiple Host: headers in a request, with the server processing the last occurrence. This discrepancy between how front proxies and the backend server handle the Host: header can lead to virtual host confusion. This can enable request-smuggling style attacks, cache poisoning, or bypassing host-based access controls when an attacker provides duplicate Host: headers. The vulnerability arises from a host-parsing discrepancy where the first value is honored by proxies, while the backend uses the last value. Recommendations Update libsoup to a newer version that addresses this issue.

Fix

HTTP Request/Response Smuggling

Weakness Enumeration

CWE-444

Related Identifiers

ALSA-2026:0421
ALSA-2026:0422
ALSA-2026:0423
AZL-72292
AZL-72302
BDU:2026-03568
CVE-2025-14523
OESA-2026-1323
OESA-2026-1324
OESA-2026-1325
OESA-2026-1326
OESA-2026-2337
OESA-2026-2338
OESA-2026-2339
OPENSUSE-SU-2026:10023-1
OPENSUSE-SU-2026:10024-1
OPENSUSE-SU-2026:20354-1
OPENSUSE-SU-2026:20384-1
RHSA-2026:0421
RHSA-2026:0422
RHSA-2026:0423
RHSA-2026:0836
RHSA-2026:0867
RHSA-2026:0868
RHSA-2026:0905
RHSA-2026:0906
RHSA-2026:0907
RHSA-2026:0908
RHSA-2026:0909
RHSA-2026:0911
RHSA-2026:0925
RHSA-2026:1509
RHSA-2026:1569
RHSA-2026:1570
RHSA-2026:1571
RHSA-2026:1572
SUSE-SU-2026:0123-1
SUSE-SU-2026:0151-1
SUSE-SU-2026:0211-1
SUSE-SU-2026:0253-1
SUSE-SU-2026:0257-1
SUSE-SU-2026:0258-1
SUSE-SU-2026:20053-1
SUSE-SU-2026:20360-1
SUSE-SU-2026:20752-1
SUSE-SU-2026:20902-1

Affected Products

Debian
Red Os
Rocky Linux
Libsoup