Wind River Support Network

HomeDefectsLIN1025-2631
Fixed

LIN1025-2631 : Security Advisory - libsoup&libsoup-2.4 - CVE-2025-7370

Created: Jul 10, 2025    Updated: Sep 1, 2025
Resolved Date: Jul 15, 2025
Found In Version: 10.25.33.1
Severity: Standard
Applicable for: Wind River Linux LTS 25
Component/s: Userspace

Description

A flaw was found in libsoup. A NULL pointer dereference vulnerability occurs in libsoup's cookie parsing functionality. When processing a cookie without a domain parameter, the soup_cookie_jar_add_cookie() function will crash, resulting in a denial of service.

CREATE(Triage):(User=admin) CVE-2025-7370 (https://nvd.nist.gov/vuln/detail/CVE-2025-7370)
  • Linkedin
  • Facebook
  • Twitter
  • Youtube