Bug 2491776 (CVE-2026-55767)
| Summary: | CVE-2026-55767 guzzlehttp/guzzle: Guzzle: Cookie injection and session fixation due to improper domain validation | ||
|---|---|---|---|
| Product: | [Other] Security Response | Reporter: | OSIDB Bzimport <bzimport> |
| Component: | vulnerability | Assignee: | Product Security <prodsec-ir-bot> |
| Status: | NEW --- | QA Contact: | |
| Severity: | high | Docs Contact: | |
| Priority: | high | ||
| Version: | unspecified | Keywords: | Security |
| Target Milestone: | --- | ||
| Target Release: | --- | ||
| Hardware: | All | ||
| OS: | Linux | ||
| Whiteboard: | |||
| Fixed In Version: | Doc Type: | --- | |
| Doc Text: |
A flaw was found in Guzzle, an extensible PHP HTTP client. The CookieJar component incorrectly accepted cookies with dot-only or whitespace-padded domain attributes. This vulnerability allows an attacker-controlled origin, when an application requests it with a shared cookie jar, to set a cookie that Guzzle may later send to unrelated hosts using the same jar. This could lead to cookie injection or session fixation against downstream services, potentially compromising user sessions or injecting malicious data.
|
Story Points: | --- |
| Clone Of: | Environment: | ||
| Last Closed: | Type: | --- | |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
| Embargoed: | |||
| Bug Depends On: | 2491786, 2491787, 2491790, 2491792 | ||
| Bug Blocks: | |||
|
Description
OSIDB Bzimport
2026-06-23 16:01:57 UTC
|