[El-errata] ELSA-2025-21657 Important: Oracle Linux 7 libsoup security update
Errata Announcements for Oracle Linux
el-errata at oss.oracle.com
Thu Dec 11 06:38:18 UTC 2025
Oracle Linux Security Advisory ELSA-2025-21657
http://linux.oracle.com/errata/ELSA-2025-21657.html
The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:
x86_64:
libsoup-2.62.2-2.0.7.el7.i686.rpm
libsoup-2.62.2-2.0.7.el7.x86_64.rpm
libsoup-devel-2.62.2-2.0.7.el7.i686.rpm
libsoup-devel-2.62.2-2.0.7.el7.x86_64.rpm
SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/libsoup-2.62.2-2.0.7.el7.src.rpm
Related CVEs:
CVE-2025-2784
CVE-2025-4945
CVE-2025-4948
CVE-2025-11021
CVE-2025-32049
CVE-2025-32906
CVE-2025-32911
CVE-2025-32913
CVE-2025-32914
Description of changes:
[2.62.2-2.0.7]
- Backport patch for CVE-2025-4945 and CVE-2025-11021 [Orabug: 38664275]
[2.62.2-2.0.5]
- Fixes CVE-2025-2784 CVE-2025-4948 CVE-2025-32049 [Orabug: 38085184]
- CVE-2025-32906 CVE-2025-32911 CVE-2025-32913 CVE-2025-32914
[2.62.2-2.0.3]
- Fixed CVE-2024-52531 buffer overflow via UTF-8 conversion in
- soup_header_parse_param_list_strict [Orabug: 37557504]
More information about the El-errata
mailing list