CVE-2025-8197

Rejected reason: Maintainers have included reasons at https://gitlab.gnome.org/GNOME/libsoup/-/issues/465

CVSS

No CVSS.

References

No reference.

Configurations

No configuration.

History

14 Aug 2025, 03:15

Type	Values Removed	Values Added
References	~~{'url': 'https://access.redhat.com/security/cve/CVE-2025-8197', 'name': 'https://access.redhat.com/security/cve/CVE-2025-8197', 'tags': [], 'refsource': ''}~~ ~~{'url': 'https://bugzilla.redhat.com/show_bug.cgi?id=2383525', 'name': 'RHBZ#2383525', 'tags': [], 'refsource': ''}~~
CWE	~~CWE-787~~
Summary	A global buffer overflow vulnerability was found in the soup_header_name_to_string function in Libsoup. The `soup_header_name_to_string` function does not validate the `name` parameter passed in, and directly accesses `soup_header_name_strings[name]`. The value of `name` is controllable, when `name` exceeds the index range of `soup_headr_name_string`, it will cause an out-of-bounds access.	Rejected reason: Maintainers have included reasons at https://gitlab.gnome.org/GNOME/libsoup/-/issues/465
CVSS	v2 : ~~unknown~~ v3 : ~~5.5~~	v2 : unknown v3 : unknown

25 Jul 2025, 20:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-07-25 20:15

Updated : 2025-08-14 03:15

NVD link : CVE-2025-8197

Mitre link : CVE-2025-8197

JSON object : View

Products Affected

No product.

CWE

No CWE.