Bug 2435961 (CVE-2026-1761) - CVE-2026-1761 libsoup: Stack-Based Buffer Overflow in libsoup Multipart Response Parsingmultipart HTTP response
Summary: CVE-2026-1761 libsoup: Stack-Based Buffer Overflow in libsoup Multipart Respo...
Keywords:
Status: NEW
Alias: CVE-2026-1761
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
high
high
Target Milestone: ---
Assignee: Product Security DevOps Team
QA Contact:
URL:
Whiteboard:
Depends On: 2435962 2435963 2435964
Blocks:
TreeView+ depends on / blocked
 
Reported: 2026-02-02 13:02 UTC by OSIDB Bzimport
Modified: 2026-02-12 09:09 UTC (History)
0 users

Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments (Terms of Use)


Links
System ID Private Priority Status Summary Last Updated
Red Hat Product Errata RHSA-2026:1948 0 None None None 2026-02-04 19:14:22 UTC
Red Hat Product Errata RHSA-2026:2005 0 None None None 2026-02-05 03:30:15 UTC
Red Hat Product Errata RHSA-2026:2006 0 None None None 2026-02-05 03:32:38 UTC
Red Hat Product Errata RHSA-2026:2007 0 None None None 2026-02-05 04:05:38 UTC
Red Hat Product Errata RHSA-2026:2008 0 None None None 2026-02-05 03:43:42 UTC
Red Hat Product Errata RHSA-2026:2049 0 None None None 2026-02-05 10:02:32 UTC
Red Hat Product Errata RHSA-2026:2182 0 None None None 2026-02-05 19:23:37 UTC
Red Hat Product Errata RHSA-2026:2214 0 None None None 2026-02-09 02:12:03 UTC
Red Hat Product Errata RHSA-2026:2215 0 None None None 2026-02-09 02:28:05 UTC
Red Hat Product Errata RHSA-2026:2216 0 None None None 2026-02-09 02:49:17 UTC
Red Hat Product Errata RHSA-2026:2396 0 None None None 2026-02-10 08:42:23 UTC
Red Hat Product Errata RHSA-2026:2402 0 None None None 2026-02-10 09:07:17 UTC
Red Hat Product Errata RHSA-2026:2410 0 None None None 2026-02-10 11:16:24 UTC
Red Hat Product Errata RHSA-2026:2512 0 None None None 2026-02-11 07:41:09 UTC
Red Hat Product Errata RHSA-2026:2513 0 None None None 2026-02-11 07:49:29 UTC
Red Hat Product Errata RHSA-2026:2514 0 None None None 2026-02-11 08:04:07 UTC
Red Hat Product Errata RHSA-2026:2528 0 None None None 2026-02-11 10:32:49 UTC
Red Hat Product Errata RHSA-2026:2529 0 None None None 2026-02-11 10:31:12 UTC
Red Hat Product Errata RHSA-2026:2628 0 None None None 2026-02-12 09:09:18 UTC

Description OSIDB Bzimport 2026-02-02 13:02:48 UTC 
Stack-based buffer overflow vulnerability in libsoup’s multipart/form-data response parsing logic. The flaw exists in the soup_filter_input_stream_read_until() function, where an incorrect length calculation may cause more data to be copied than the size of the caller-provided buffer. When a specially crafted multipart HTTP response is processed, libsoup can write past the end of a stack buffer, resulting in memory corruption. This issue can be triggered remotely without authentication or user interaction, potentially leading to application crashes or arbitrary code execution in applications that parse untrusted server responses.
Comment 2 errata-xmlrpc 2026-02-04 19:14:21 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions
  Red Hat Enterprise Linux 8.8 Telecommunications Update Service

Via RHSA-2026:1948 https://access.redhat.com/errata/RHSA-2026:1948
Comment 3 errata-xmlrpc 2026-02-05 03:30:14 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions

Via RHSA-2026:2005 https://access.redhat.com/errata/RHSA-2026:2005
Comment 4 errata-xmlrpc 2026-02-05 03:32:37 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 10.0 Extended Update Support

Via RHSA-2026:2006 https://access.redhat.com/errata/RHSA-2026:2006
Comment 5 errata-xmlrpc 2026-02-05 03:43:41 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions

Via RHSA-2026:2008 https://access.redhat.com/errata/RHSA-2026:2008
Comment 6 errata-xmlrpc 2026-02-05 04:05:37 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9.4 Extended Update Support

Via RHSA-2026:2007 https://access.redhat.com/errata/RHSA-2026:2007
Comment 7 errata-xmlrpc 2026-02-05 10:02:31 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9.6 Extended Update Support

Via RHSA-2026:2049 https://access.redhat.com/errata/RHSA-2026:2049
Comment 8 errata-xmlrpc 2026-02-05 19:23:36 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 10

Via RHSA-2026:2182 https://access.redhat.com/errata/RHSA-2026:2182
Comment 9 errata-xmlrpc 2026-02-09 02:12:02 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8

Via RHSA-2026:2214 https://access.redhat.com/errata/RHSA-2026:2214
Comment 10 errata-xmlrpc 2026-02-09 02:28:03 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8

Via RHSA-2026:2215 https://access.redhat.com/errata/RHSA-2026:2215
Comment 11 errata-xmlrpc 2026-02-09 02:49:16 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9

Via RHSA-2026:2216 https://access.redhat.com/errata/RHSA-2026:2216
Comment 12 errata-xmlrpc 2026-02-10 08:42:22 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8.2 Advanced Update Support

Via RHSA-2026:2396 https://access.redhat.com/errata/RHSA-2026:2396
Comment 13 errata-xmlrpc 2026-02-10 09:07:14 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support
  Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On

Via RHSA-2026:2402 https://access.redhat.com/errata/RHSA-2026:2402
Comment 14 errata-xmlrpc 2026-02-10 11:16:23 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 10

Via RHSA-2026:2410 https://access.redhat.com/errata/RHSA-2026:2410
Comment 15 errata-xmlrpc 2026-02-11 07:41:08 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support
  Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions
  Red Hat Enterprise Linux 8.6 Telecommunications Update Service

Via RHSA-2026:2512 https://access.redhat.com/errata/RHSA-2026:2512
Comment 16 errata-xmlrpc 2026-02-11 07:49:28 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8.2 Advanced Update Support

Via RHSA-2026:2513 https://access.redhat.com/errata/RHSA-2026:2513
Comment 17 errata-xmlrpc 2026-02-11 08:04:06 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support
  Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On

Via RHSA-2026:2514 https://access.redhat.com/errata/RHSA-2026:2514
Comment 18 errata-xmlrpc 2026-02-11 10:31:10 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support
  Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions
  Red Hat Enterprise Linux 8.6 Telecommunications Update Service

Via RHSA-2026:2529 https://access.redhat.com/errata/RHSA-2026:2529
Comment 19 errata-xmlrpc 2026-02-11 10:32:48 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions
  Red Hat Enterprise Linux 8.8 Telecommunications Update Service

Via RHSA-2026:2528 https://access.redhat.com/errata/RHSA-2026:2528
Comment 20 errata-xmlrpc 2026-02-12 09:09:17 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 7 Extended Lifecycle Support

Via RHSA-2026:2628 https://access.redhat.com/errata/RHSA-2026:2628
Note You need to log in before you can comment on or make changes to this bug.