libsoup2.4 2.70.0-1ubuntu0.2 source package in Ubuntu
Changelog
libsoup2.4 (2.70.0-1ubuntu0.2) focal-security; urgency=medium
* SECURITY UPDATE: out-of-bounds read
- debian/patches/CVE-2025-2784-1.patch: Fix potential overflow
- debian/patches/CVE-2025-2784-2.patch: Add better coverage of
skip_insignificant_space()
- CVE-2025-2784
* SECURITY UPDATE: out-of-bounds read
- debian/patches/CVE-2025-32050.patch: Fix using int instead of
size_t for strcspn return
- CVE-2025-32050
* SECURITY UPDATE: out-of-bounds read
- debian/patches/CVE-2025-32052.patch: Fix heap buffer overflow in
soup_content_sniffer_sniff
- CVE-2025-32052
* SECURITY UPDATE: out-of-bounds read
- debian/patches/CVE-2025-32053.patch: Fix heap buffer overflow in
sniff_feed_or_html()
- CVE-2025-32053
-- Fabian Toepfer <email address hidden> Wed, 09 Apr 2025 19:09:25 +0200
Upload details
- Uploaded by:
- Fabian Toepfer
- Uploaded to:
- Focal
- Original maintainer:
- Ubuntu Developers
- Architectures:
- any all
- Section:
- devel
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| libsoup2.4_2.70.0.orig.tar.xz | 1.4 MiB | 54b020f74aefa438918d8e53cff62e2b1e59efe2de53e06b19a4b07b1f4d5342 |
| libsoup2.4_2.70.0-1ubuntu0.2.debian.tar.xz | 29.3 KiB | 0f335fd9bdee942016376f51a5fbda5e0fbcf81a893907296819ea33398ce4c0 |
| libsoup2.4_2.70.0-1ubuntu0.2.dsc | 3.3 KiB | e09af3b0ccaa92fbcb602da061d6e79a0cefd0f1237348e86cda1fc8bcc81246 |
Available diffs
Binary packages built by this source
- gir1.2-soup-2.4: GObject introspection data for the libsoup HTTP library
This package contains introspection data for the libsoup HTTP library.
.
libsoup uses the Glib main loop and is designed to work well with GTK+
applications. This enables GNOME applications to access HTTP servers
on the network in a completely asynchronous fashion, very similar to
the GTK+ programming model (a synchronous operation mode is also
supported for those who want it).
.
It can be used by packages using the GIRepository format to generate
dynamic bindings.
- libsoup-gnome2.4-1: HTTP library implementation in C -- GNOME support library
It was originally part of a SOAP (Simple Object Access Protocol)
implementation called Soup, but the SOAP and non-SOAP parts have now been
split into separate packages.
.
libsoup uses the Glib main loop and is designed to work well with GTK+
applications. This enables GNOME applications to access HTTP servers
on the network in a completely asynchronous fashion, very similar to
the GTK+ programming model (a synchronous operation mode is also
supported for those who want it).
.
The GNOME support library is used for features which are important to
GNOME apps, but which require GNOME-specific libraries that non-GNOME
apps may not want to add dependencies on.
.
Features:
* Both asynchronous (GMainLoop and callback-based) and synchronous APIs
* Automatically caches connections
* SSL Support using GnuTLS
* Proxy support, including authentication and SSL tunneling
* Client support for Digest, NTLM, and Basic authentication
* Server support for Digest and Basic authentication
* Basic client-side SOAP and XML-RPC support
.
This package contains the GNOME support shared library.
- libsoup-gnome2.4-1-dbgsym: debug symbols for libsoup-gnome2.4-1
- libsoup-gnome2.4-dev: HTTP library implementation in C -- GNOME support development files
It was originally part of a SOAP (Simple Object Access Protocol)
implementation called Soup, but the SOAP and non-SOAP parts have now been
split into separate packages.
.
libsoup uses the Glib main loop and is designed to work well with GTK+
applications. This enables GNOME applications to access HTTP servers
on the network in a completely asynchronous fashion, very similar to
the Gtk+ programming model (a synchronous operation mode is also
supported for those who want it).
.
The GNOME support library is used for features which are important to
GNOME apps, but which require GNOME-specific libraries that non-GNOME
apps may not want to add dependencies on.
.
Features:
* Both asynchronous (GMainLoop and callback-based) and synchronous APIs
* Automatically caches connections
* SSL Support using GnuTLS
* Proxy support, including authentication and SSL tunneling
* Client support for Digest, NTLM, and Basic authentication
* Server support for Digest and Basic authentication
* Basic client-side SOAP and XML-RPC support
.
This package contains the development files for the GNOME support.
- libsoup2.4-1: HTTP library implementation in C -- Shared library
It was originally part of a SOAP (Simple Object Access Protocol)
implementation called Soup, but the SOAP and non-SOAP parts have now been
split into separate packages.
.
libsoup uses the Glib main loop and is designed to work well with GTK+
applications. This enables GNOME applications to access HTTP servers
on the network in a completely asynchronous fashion, very similar to
the GTK+ programming model (a synchronous operation mode is also
supported for those who want it).
.
Features:
* Both asynchronous (GMainLoop and callback-based) and synchronous APIs
* Automatically caches connections
* SSL Support using GnuTLS
* Proxy support, including authentication and SSL tunneling
* Client support for Digest, NTLM, and Basic authentication
* Server support for Digest and Basic authentication
* Basic client-side SOAP and XML-RPC support
.
This package contains the shared library.
- libsoup2.4-1-dbgsym: debug symbols for libsoup2.4-1
- libsoup2.4-dev: HTTP library implementation in C -- Development files
It was originally part of a SOAP (Simple Object Access Protocol)
implementation called Soup, but the SOAP and non-SOAP parts have now been
split into separate packages.
.
libsoup uses the Glib main loop and is designed to work well with GTK+
applications. This enables GNOME applications to access HTTP servers
on the network in a completely asynchronous fashion, very similar to
the GTK+ programming model (a synchronous operation mode is also
supported for those who want it).
.
Features:
* Both asynchronous (GMainLoop and callback-based) and synchronous APIs
* Automatically caches connections
* SSL Support using GnuTLS
* Proxy support, including authentication and SSL tunneling
* Client support for Digest, NTLM, and Basic authentication
* Server support for Digest and Basic authentication
* Basic client-side SOAP and XML-RPC support
.
This package contains the development files.
- libsoup2.4-doc: HTTP library implementation in C -- API Reference
It was originally part of a SOAP (Simple Object Access Protocol)
implementation called Soup, but the SOAP and non-SOAP parts have now been
split into separate packages.
.
libsoup uses the Glib main loop and is designed to work well with GTK+
applications. This enables GNOME applications to access HTTP servers
on the network in a completely asynchronous fashion, very similar to
the GTK+ programming model (a synchronous operation mode is also
supported for those who want it).
.
Features:
* Both asynchronous (GMainLoop and callback-based) and synchronous APIs
* Automatically caches connections
* SSL Support using GnuTLS
* Proxy support, including authentication and SSL tunneling
* Client support for Digest, NTLM, and Basic authentication
* Server support for Digest and Basic authentication
* Basic client-side SOAP and XML-RPC support
.
This package contains the documentation.
- libsoup2.4-tests: HTTP library implementation in C -- installed tests
libsoup uses the Glib main loop and is designed to work well with GTK+
applications. This enables GNOME applications to access HTTP servers
on the network in a completely asynchronous fashion, very similar to
the GTK+ programming model (a synchronous operation mode is also
supported for those who want it).
.
This package contains automated tests, mostly for use via autopkgtest.
They can most easily be invoked via the gnome-desktop-testing- runner
tool in the gnome-desktop-testing package.
- libsoup2.4-tests-dbgsym: debug symbols for libsoup2.4-tests
