CVE-2024-52532

Name
CVE-2024-52532
Description
GNOME libsoup before 3.6.1 has an infinite loop, and memory consumption. during the reading of certain patterns of WebSocket data from clients.
NVD Severity
medium
Other trackers
Mailing lists
Exploits
Forges
GitHub (code, issues), Aports (code, issues)

References

Type URI
https://gitlab.gnome.org/Teams/Releng/security/-/wikis/home
https://gitlab.gnome.org/GNOME/libsoup/-/issues/391
https://gitlab.gnome.org/GNOME/libsoup/-/merge_requests/410

Match rules

CPE URI Source package Min version Max version
n/a == n/a == n/a
cpe:2.3:a:gnome:libsoup:*:*:*:*:*:*:*:* libsoup >= 0 < 3.6.1

Vulnerable and fixed packages

Source package Branch Version Maintainer Status
libsoup edge-community 2.74.3-r2 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
libsoup 3.20-community 2.74.3-r2 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable