CVE-2025-32049

High CVSS: 7.5

A flaw was found in libsoup. The SoupWebsocketConnection may accept a large WebSocket message, which may cause libsoup to allocate memory and lead to a denial of service (DoS).

Vendor

Product

CWE

CWE-770

Yayın Tarihi

2025-04-03 14:15:43

Güncelleme

2025-11-18 09:15:50

Source Identifier

secalert@redhat.com

KEV Date Added

Kategoriler

CWE-770 HIGH 2025

Referanslar

https://access.redhat.com/errata/RHSA-2025:21657 https://access.redhat.com/errata/RHSA-2025:8126 https://access.redhat.com/errata/RHSA-2025:8128 https://access.redhat.com/errata/RHSA-2025:8132 https://access.redhat.com/errata/RHSA-2025:8139 https://access.redhat.com/errata/RHSA-2025:8140 https://access.redhat.com/errata/RHSA-2025:8252 https://access.redhat.com/errata/RHSA-2025:8480 https://access.redhat.com/errata/RHSA-2025:8481 https://access.redhat.com/errata/RHSA-2025:8482 https://access.redhat.com/errata/RHSA-2025:8663 https://access.redhat.com/errata/RHSA-2025:9179 https://access.redhat.com/security/cve/CVE-2025-32049 https://bugzilla.redhat.com/show_bug.cgi?id=2357066