ELSA-2024-9573

ULN >
Oracle Linux Errata repository >
ELSA-2024-9573

ELSA-2024-9573 - libsoup security update

Type:	SECURITY
Impact:	IMPORTANT
Release Date:	2024-11-13

Description

[2.62.3-6]
- Backport upstream patch for CVE-2024-52530 - HTTP request smuggling via stripping null bytes from the ends of header names
- Backport upstream patch for CVE-2024-52530 - infinite loop while reading websocket data
- Resolves: RHEL-67076
- Resolves: RHEL-67067

Related CVEs

CVE-2024-52530

CVE-2024-52532

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 8 (aarch64)	libsoup-2.62.3-6.el8_10.src.rpm	8905e03dc8046b0e3f5fcdb1c912e7c382f59bd8c9997db21c484f28c6cae2a0	-	ol8_aarch64_appstream
	libsoup-2.62.3-6.el8_10.src.rpm	8905e03dc8046b0e3f5fcdb1c912e7c382f59bd8c9997db21c484f28c6cae2a0	-	ol8_aarch64_baseos_latest
	libsoup-2.62.3-6.el8_10.src.rpm	8905e03dc8046b0e3f5fcdb1c912e7c382f59bd8c9997db21c484f28c6cae2a0	-	ol8_aarch64_u10_baseos_patch
	libsoup-2.62.3-6.el8_10.aarch64.rpm	961478fc8d1e4989dbdd7c978140d975e3f52dda787b7345679853314cfa7a65	-	ol8_aarch64_baseos_latest
	libsoup-2.62.3-6.el8_10.aarch64.rpm	961478fc8d1e4989dbdd7c978140d975e3f52dda787b7345679853314cfa7a65	-	ol8_aarch64_u10_baseos_patch
	libsoup-devel-2.62.3-6.el8_10.aarch64.rpm	ef0cf1945c4633538eb3a80908964faf7a302b4efbd691cfa861818a3fb97b34	-	ol8_aarch64_appstream

Oracle Linux 8 (x86_64)	libsoup-2.62.3-6.el8_10.src.rpm	8905e03dc8046b0e3f5fcdb1c912e7c382f59bd8c9997db21c484f28c6cae2a0	-	ol8_x86_64_appstream
	libsoup-2.62.3-6.el8_10.src.rpm	8905e03dc8046b0e3f5fcdb1c912e7c382f59bd8c9997db21c484f28c6cae2a0	-	ol8_x86_64_baseos_latest
	libsoup-2.62.3-6.el8_10.src.rpm	8905e03dc8046b0e3f5fcdb1c912e7c382f59bd8c9997db21c484f28c6cae2a0	-	ol8_x86_64_u10_baseos_patch
	libsoup-2.62.3-6.el8_10.i686.rpm	65dfae5319db77c113759791585766efea66ae09bc2e4352b5fff4cb850727a7	-	ol8_x86_64_baseos_latest
	libsoup-2.62.3-6.el8_10.i686.rpm	65dfae5319db77c113759791585766efea66ae09bc2e4352b5fff4cb850727a7	-	ol8_x86_64_u10_baseos_patch
	libsoup-2.62.3-6.el8_10.x86_64.rpm	6e39ce639e2891874bb554c13c9444dda1475f34127cb8044c27b033b898318b	-	exadata_dbserver_23.1.21.0.0_x86_64_base
	libsoup-2.62.3-6.el8_10.x86_64.rpm	6e39ce639e2891874bb554c13c9444dda1475f34127cb8044c27b033b898318b	-	exadata_dbserver_23.1.22.0.0_x86_64_base
	libsoup-2.62.3-6.el8_10.x86_64.rpm	6e39ce639e2891874bb554c13c9444dda1475f34127cb8044c27b033b898318b	-	exadata_dbserver_24.1.7.0.0_x86_64_base
	libsoup-2.62.3-6.el8_10.x86_64.rpm	6e39ce639e2891874bb554c13c9444dda1475f34127cb8044c27b033b898318b	-	exadata_dbserver_24.1.8.0.0_x86_64_base
	libsoup-2.62.3-6.el8_10.x86_64.rpm	6e39ce639e2891874bb554c13c9444dda1475f34127cb8044c27b033b898318b	-	exadata_dbserver_25.1.0.0.0_x86_64_base
	libsoup-2.62.3-6.el8_10.x86_64.rpm	6e39ce639e2891874bb554c13c9444dda1475f34127cb8044c27b033b898318b	-	exadata_dbserver_25.1.1.0.0_x86_64_base
	libsoup-2.62.3-6.el8_10.x86_64.rpm	6e39ce639e2891874bb554c13c9444dda1475f34127cb8044c27b033b898318b	-	ol8_x86_64_baseos_latest
	libsoup-2.62.3-6.el8_10.x86_64.rpm	6e39ce639e2891874bb554c13c9444dda1475f34127cb8044c27b033b898318b	-	ol8_x86_64_u10_baseos_patch
	libsoup-devel-2.62.3-6.el8_10.i686.rpm	84c2548688633ff5a1be87095c4b2cac8282ccc8dc09d756c11b79d8e697ed78	-	ol8_x86_64_appstream
	libsoup-devel-2.62.3-6.el8_10.x86_64.rpm	c759eb33bb62e9727953e91c81589d659b7e923f683cbfe2efb6f9671bb309f6	-	ol8_x86_64_appstream

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691