Primary

Context

libsoup NULL Pointer Dereference Vulnerability in Content-Disposition Header Handling

Vulnerability

Patched

A NULL pointer dereference vulnerability has been identified in libsoup, specifically in the 'soup_message_headers_get_content_disposition()' function. This vulnerability exists in libsoup versions prior to 3.6.2. When the 'filename' parameter is present but lacks a value in the Content-Disposition header, it can lead to a crash of the libsoup client or server utilizing this function. The issue allows a malicious HTTP peer to cause the crash.

Impact

Exploitation of this vulnerability leads to a crash of the libsoup client or server, causing a denial-of-service condition.

Remediation

Users can apply the available update for libsoup. Instructions for applying this update can be found on the Red Hat Customer Portal.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

7.3

impact

2.5

exploitability

7.4

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

7.3

impact

2.5

exploitability

7.4

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

libsoup NULL Pointer Dereference Vulnerability in Content-Disposition Header Handling

Vulnerability

Impact

Remediation

Affected Products

libsoup

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating