Security Advisory

CVE-2025-4969

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-05-21 01:44:13

Last updated 2026-05-06 13:32:27

Assigner redhat

State PUBLISHED

Description

A vulnerability was found in the libsoup package. This flaw stems from its failure to correctly verify the termination of multipart HTTP messages. This can allow a remote attacker to send a specially crafted multipart HTTP body, causing the libsoup-consuming server to read beyond its allocated memory boundaries (out-of-bounds read).

← Browse all CVEs View on cve.org ↗