ELSA-2024-9559

ULN >
Oracle Linux Errata repository >
ELSA-2024-9559

ELSA-2024-9559 - libsoup security update

Type:	SECURITY
Impact:	IMPORTANT
Release Date:	2024-11-18

Description

[2.72.0-8.el9_5.2]
- Backport upstream patch for CVE-2024-52532 - infinite loop while reading websocket data
- Resolves: RHEL-67068

[2.72.0-8.el9_5.1]
- Backport upstream patch for CVE-2024-52530 - HTTP request smuggling via stripping null bytes from the ends of header names
- Resolves: RHEL-67080

Related CVEs

CVE-2024-52530

CVE-2024-52532

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 9 (aarch64)	libsoup-2.72.0-8.el9_5.2.src.rpm	6437de77faeb731be139420abaa8b25fae3fa20b708152a4488c1f7f8fddeb1a	-	ol9_aarch64_appstream
	libsoup-2.72.0-8.el9_5.2.aarch64.rpm	0e639821d71c0a7c5a150b25ef2f21e56096128d63e64aa2c5e05ff80731ec53	-	ol9_aarch64_appstream
	libsoup-devel-2.72.0-8.el9_5.2.aarch64.rpm	6e47db6e008babaddd47fc41380521eb12a6ac734165b01f66360cb8b8f9ba0f	-	ol9_aarch64_appstream

Oracle Linux 9 (x86_64)	libsoup-2.72.0-8.el9_5.2.src.rpm	6437de77faeb731be139420abaa8b25fae3fa20b708152a4488c1f7f8fddeb1a	-	ol9_x86_64_appstream
	libsoup-2.72.0-8.el9_5.2.i686.rpm	7d033088a3b6e00ccaccaab5c25322178f74f639e7bf459c1fc469fcb14d0b9e	-	ol9_x86_64_appstream
	libsoup-2.72.0-8.el9_5.2.x86_64.rpm	ff0a220d2f57ee7e1e79d8478dce34cb618844cad3646c96f3aff32adc487ac7	-	ol9_x86_64_appstream
	libsoup-devel-2.72.0-8.el9_5.2.i686.rpm	4b0c7c9bbdcd31df449863460638c08f0a336a57553a4c511eb3d97bd6449502	-	ol9_x86_64_appstream
	libsoup-devel-2.72.0-8.el9_5.2.x86_64.rpm	e4f36a86b9bcd75e608672b2404e7c7203766fb8241a53c05e25daf1c26f7ebc	-	ol9_x86_64_appstream

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691