Release Info

Advisory: CLSA-2026:1769687040

OS: CentOS 7 ELS

Public date: 2026-01-29 11:44:02.081975

Project: libsoup

Version: 2.62.2-2.0.5.el7.tuxcare.els3

Errata link: https://errata.tuxcare.com/els_os/centos7els/CLSA-2026-1769687040.html

Changelog

- CVE-2025-14523: reject duplicate Host headers to prevent request smuggling, cache poisoning, and host-based access control bypass attacks

Update

Update command: yum update libsoup*

Packages list

libsoup-2.62.2-2.0.5.el7.tuxcare.els3.i686.rpm libsoup-2.62.2-2.0.5.el7.tuxcare.els3.x86_64.rpm libsoup-devel-2.62.2-2.0.5.el7.tuxcare.els3.i686.rpm libsoup-devel-2.62.2-2.0.5.el7.tuxcare.els3.x86_64.rpm

CVEs

CVE-2025-14523