CVE-2025-32907

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2025-32907

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-32907.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2025-32907

Downstream

DEBIAN-CVE-2025-32907

OESA-2025-1485

RHSA-2025:4439

RHSA-2025:4440

RHSA-2025:4508

RHSA-2025:7436

RHSA-2025:8128

RHSA-2025:8292

RLSA-2025:8292

SUSE-SU-2025:01503-1

SUSE-SU-2025:01504-1

SUSE-SU-2025:1503-1

SUSE-SU-2025:1504-1

SUSE-SU-2025:1509-1

SUSE-SU-2025:1510-1

SUSE-SU-2025:1518-1

SUSE-SU-2025:1519-1

UBUNTU-CVE-2025-32907

USN-7643-1

openSUSE-SU-2025:15043-1

openSUSE-SU-2025:15044-1

Related

Published

2025-04-14T14:15:24Z

Modified

2025-08-09T20:01:26Z

Summary

[none]

Details

A flaw was found in libsoup. The implementation of HTTP range requests is vulnerable to a resource consumption attack. This flaw allows a malicious client to request the same range many times in a single HTTP request, causing the server to use large amounts of memory. This does not allow for a full denial of service.

References

Affected packages