[CLSA-2026:1778756991] libsoup: Fix of CVE-2026-2708
Type:
security
Severity:
Moderate
Release date:
2026-05-16 15:25:01 UTC
Description:
- CVE-2026-2708: reject duplicate Content-Length headers with different values to prevent HTTP request smuggling per RFC 9110 section 7.7
Updated packages:
  • libsoup-2.72.0-10.el9_2.3.tuxcare.els7.i686.rpm
    sha:4feba3cd3704d242d96d55fc3326eeca997d965b31ba3604d8eed12f75a2bcb1
  • libsoup-2.72.0-10.el9_2.3.tuxcare.els7.x86_64.rpm
    sha:7b942b55bb3f75ac7a8d4352e41f6dec599920ef050e2f50650c9c26e574c309
  • libsoup-devel-2.72.0-10.el9_2.3.tuxcare.els7.i686.rpm
    sha:9bafcdc9b48ede5467e49648000c2179594c6a5c32ccdf961c7fc39c0ff01ac0
  • libsoup-devel-2.72.0-10.el9_2.3.tuxcare.els7.x86_64.rpm
    sha:a8030a43563396eba4af73fdb113fe04f9630c12002c6234a8fac10eba746a50
  • libsoup-doc-2.72.0-10.el9_2.3.tuxcare.els7.noarch.rpm
    sha:199c5304e633de73a66ae1bdd30aafac4865c7d56f1f03349326b62375fc0780
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.