Vulnerability - CVE-2025-32052

Name

CVE-2025-32052

Source

NVD ( link)Debian ( link)

Description

A flaw was found in libsoup. A vulnerability in the sniff_unknown() function may lead to heap buffer over-read.

CWEs

CWE-126

Published Date

Apr 3, 2025

Updated Date

Jun 17, 2026

Workaround

Advisories

Analysis#

Affected Component

Analysis

Vulnerability Ratings#

6.5

CVSSv31

NaN

other

Others affected components#

Name

Project

Project Version

Version

Status

libsoup

buildroot

2025.02.x

2.74.3

Patched

libsoup

buildroot

master

2.74.3

Patched

libsoup3

openwrt

master

3.7.1-r2

Not Affected

libsoup3

openwrt

openwrt-25.12

3.6.5-r1

Not Affected

libsoup

yocto

kirkstone

3.0.7

Patched

libsoup-2.4

yocto

kirkstone

2.74.2

Patched

libsoup

yocto

master

3.6.6

Not Affected

Resolved with patches#

libsoup (buildroot:2025.02.x)

Title

Author

Resolve

Fix heap buffer overflow in soup_content_sniffer_sniff

Patrick Griffis <pgriffis@igalia.com>

CVE-2025-32052

libsoup (buildroot:master)

Title

Author

Resolve

Fix heap buffer overflow in soup_content_sniffer_sniff

Patrick Griffis <pgriffis@igalia.com>

CVE-2025-32052

libsoup (yocto:kirkstone)

Title

Author

Resolve

Fix heap buffer overflow in soup_content_sniffer_sniff

Patrick Griffis <pgriffis@igalia.com>

CVE-2025-32052

libsoup-2.4 (yocto:kirkstone)

Title

Author

Resolve

Fix heap buffer overflow in soup_content_sniffer_sniff

Patrick Griffis <pgriffis@igalia.com>

CVE-2025-32052

libsoup-2.4 (yocto:scarthgap)

Title

Author

Resolve

Fix heap buffer overflow in soup_content_sniffer_sniff

Patrick Griffis <pgriffis@igalia.com>

CVE-2025-32052