libsoup-2.72.0-16.el9_8.1
エラータID: AXSA:2026-1210:11
リリース日:
2026/07/07 Tuesday - 18:07
題名:
libsoup-2.72.0-16.el9_8.1
影響のあるチャネル:
MIRACLE LINUX 9 for x86_64
Severity:
Moderate
Description:
以下項目について対処しました。
[Security Fix]
- libsoup には、保護すべき情報を暗号化せずに送信している問題が
あるため、リモートの攻撃者により、情報の漏洩を可能とする脆弱性が
存在します。(CVE-2026-5119)
解決策:
パッケージをアップデートしてください。
CVE:
CVE-2026-5119
A flaw was found in libsoup. When establishing HTTPS tunnels through a configured HTTP proxy, sensitive session cookies are transmitted in cleartext within the initial HTTP CONNECT request. A network-positioned attacker or a malicious HTTP proxy can intercept these cookies, leading to potential session hijacking or user impersonation.
A flaw was found in libsoup. When establishing HTTPS tunnels through a configured HTTP proxy, sensitive session cookies are transmitted in cleartext within the initial HTTP CONNECT request. A network-positioned attacker or a malicious HTTP proxy can intercept these cookies, leading to potential session hijacking or user impersonation.
追加情報:
N/A
ダウンロード:
SRPMS
- libsoup-2.72.0-16.el9_8.1.src.rpm
MD5: 81f58317441db9e10d99ffe78f5e53c3
SHA-256: 024040629cd7850af06dc45679fdd3c412ff70c37a0975a854b3275952279eb4
Size: 1.46 MB
Asianux Server 9 for x86_64
- libsoup-2.72.0-16.el9_8.1.i686.rpm
MD5: 8d71451bb26945bfd2e2451c5290e23a
SHA-256: 7c771ff7ce5da1d4b3f4048ed44d2714ce612c6654ea64b56a858dadc435a33b
Size: 426.85 kB - libsoup-2.72.0-16.el9_8.1.x86_64.rpm
MD5: 58b0a78c8b25d4f9bb80cc818cc2d5bd
SHA-256: 8719f9cd14cddab4ddc73eac88b2bd14bb58bca820b486f7a13a5275b75f475a
Size: 406.50 kB - libsoup-devel-2.72.0-16.el9_8.1.i686.rpm
MD5: 9894d63159e6595cd5fa8218d3b01475
SHA-256: 2eb861c3ce685e1f5500792166f6a0e17a02dedf611f73e2f98a8accdd5619d2
Size: 180.48 kB - libsoup-devel-2.72.0-16.el9_8.1.x86_64.rpm
MD5: d0a726eaef4a3578018f18f0c59a9a48
SHA-256: 86a16d6e729ff51f5251edab80974b3dda3c26b2ab9a01d3ed6bd65bebb6defe
Size: 180.46 kB