Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: c71bbf87 by Salvatore Bonaccorso at 2026-02-20T08:21:29+01:00 Add CVE-2026-2708/libsoup - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -1,3 +1,8 @@ +CVE-2026-2708 [libsoup: HTTP/1 request smuggling primitives accepted (CL.CL and TE+CL) in soup_headers_parse()] + - libsoup3 <unfixed> + - libsoup2.4 <removed> + NOTE: https://gitlab.gnome.org/GNOME/libsoup/-/issues/500 + NOTE: Fixed by: https://gitlab.gnome.org/GNOME/libsoup/-/commit/e032d3e9b0a27d10597398023532dd8f9b6654cf CVE-2026-2817 (Use of insecure directory in Spring Data Geode snapshot import extract ...) NOT-FOR-US: Spring Data Geode CVE-2026-2744 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c71bbf87527df79c34305d2e347a99faf8c39d87 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c71bbf87527df79c34305d2e347a99faf8c39d87 You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list [email protected] https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
