Skip to main content

Mondoo Vulnerability Intelligence

Curated by Mondoo Research, enhanced with AI

Resources

Search Vulnerabilities
Trending CVEs
Browse Ecosystems
Terminology
Blog

Open Source

cnquery
cnspec

Star us on GitHub!

Company

Mondoo Platform
About
Contact

© 2026 Mondoo, Inc.

Privacy Policy Terms of Service Imprint

Vulnerability Intelligence

openSUSE-SU-2026:20142-1 | Mondoo Vulnerability Intelligence

Vulnerability IntelligenceopenSUSE-SU-2026:20142-1

openSUSE-SU-2026:20142-1

UNKNOWN

Security update for libsoup

Published Jan 30, 2026

Modified 1 months ago

Fix available

Details

This update for libsoup fixes the following issues:

CVE-2025-11021: Fixed out-of-bounds read in Cookie Date Handling of libsoup HTTP Library (bsc#1250562).
CVE-2026-0719: Fixed stack-based buffer overflow in NTLM authentication can lead to arbitrary code execution (bsc#1256399).
CVE-2026-0716: Fixed improper bounds handling may allow out-of-bounds read (bsc#1256418).

Affected Packages

libsoup

openSUSE Leap 16.0

Fixed in:

3.6.5-160000.3.1

libsoup-3_0-0

openSUSE Leap 16.0

Fixed in:

3.6.5-160000.3.1

libsoup-devel

openSUSE Leap 16.0

Fixed in:

3.6.5-160000.3.1

libsoup-lang

openSUSE Leap 16.0

Fixed in:

3.6.5-160000.3.1

typelib-1_0-Soup-3_0

openSUSE Leap 16.0

Fixed in:

3.6.5-160000.3.1

References

https://bugzilla.suse.com/1250562

https://bugzilla.suse.com/1256399

https://bugzilla.suse.com/1256418

https://www.suse.com/security/cve/CVE-2025-11021

https://www.suse.com/security/cve/CVE-2026-0716

https://www.suse.com/security/cve/CVE-2026-0719

Upstream

CVE-2025-11021 CVE-2026-0716 CVE-2026-0719

Related

CVE-2025-11021 CVE-2026-0716 CVE-2026-0719

Ecosystems

openSUSE Leap 16.0

Timeline

PublishedJan 30, 2026

ModifiedJan 30, 2026