commit libsoup for openSUSE:Factory

Fri, 09 Jan 2026 08:03:11 -0800 

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package libsoup for openSUSE:Factory checked 
in at 2026-01-09 17:02:27
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/libsoup (Old)
 and      /work/SRC/openSUSE:Factory/.libsoup.new.1928 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Package is "libsoup"

Fri Jan  9 17:02:27 2026 rev:161 rq:1325911 version:3.6.5

Changes:
--------
--- /work/SRC/openSUSE:Factory/libsoup/libsoup.changes  2025-11-25 
15:51:46.231759512 +0100
+++ /work/SRC/openSUSE:Factory/.libsoup.new.1928/libsoup.changes        
2026-01-09 17:02:37.813783161 +0100
@@ -1,0 +2,6 @@
+Thu Jan  8 05:12:46 UTC 2026 - Alynx Zhou <[email protected]>
+
+- Add libsoup-CVE-2025-14523.patch: Reject duplicated Host in
+  headers (bsc#1254876, CVE-2025-14523, glgo#GNOME/libsoup!491).
+
+-------------------------------------------------------------------

New:
----
  libsoup-CVE-2025-14523.patch

----------(New B)----------
  New:
- Add libsoup-CVE-2025-14523.patch: Reject duplicated Host in
  headers (bsc#1254876, CVE-2025-14523, glgo#GNOME/libsoup!491).
----------(New E)----------

++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Other differences:
------------------
++++++ libsoup.spec ++++++
--- /var/tmp/diff_new_pack.PrnjqV/_old  2026-01-09 17:02:38.757822400 +0100
+++ /var/tmp/diff_new_pack.PrnjqV/_new  2026-01-09 17:02:38.765822733 +0100
@@ -1,6 +1,7 @@
 #
 # spec file for package libsoup
 #
+# Copyright (c) 2026 SUSE LLC
 # Copyright (c) 2025 SUSE LLC and contributors
 #
 # All modifications and additions to the file contributed by third parties
@@ -44,6 +45,8 @@
 Patch7:         libsoup-CVE-2025-11021.patch
 # PATCH-FIX-UPSTREAM libsoup-CVE-2025-12105.patch bsc#1252555 [email protected] 
-- fix use after free caused by 'finishing' queued item twice.
 Patch8:         libsoup-CVE-2025-12105.patch
+# PATCH-FIX-UPSTREAM libsoup-CVE-2025-14523.patch bsc#1254876, CVE-2025-14523, 
glgo#GNOME/libsoup!491 [email protected] -- Reject duplicated Host in headers
+Patch9:         libsoup-CVE-2025-14523.patch
 
 BuildRequires:  glib-networking
 BuildRequires:  meson >= 0.53

++++++ libsoup-CVE-2025-14523.patch ++++++
++++ 657 lines (skipped)

Reply via email to