[ubuntu/jammy-security] libsoup2.4 2.74.2-3ubuntu0.7 (Accepted)

Shafayat Hossain Majumder shafayat.majumder at canonical.com
Thu Jul 9 13:22:17 UTC 2026


libsoup2.4 (2.74.2-3ubuntu0.7) jammy-security; urgency=medium

  * SECURITY UPDATE: Integer underflow leading to buffer overread.
    - debian/patches/CVE-2026-2369.patch: Handle potential underflow in
      libsoup/soup-content-sniffer.c.
    - CVE-2026-2369
  * SECURITY UPDATE: Cleartext transmission of sensitive information.
    - debian/patches/CVE-2026-5119.patch: Do not send cookies to a HTTP
      proxy for a HTTPS request in libsoup/soup-cookie-jar.c, tests/proxy-
      test.c.
    - CVE-2026-5119

Date: 2026-07-08 02:00:13.101583+00:00
Changed-By: Shafayat Hossain Majumder <shafayat.majumder at canonical.com>
https://launchpad.net/ubuntu/+source/libsoup2.4/2.74.2-3ubuntu0.7
-------------- next part --------------
Sorry, changesfile not available.


More information about the jammy-changes mailing list