CVE-2025-11021 - Vulnerability Details

A flaw was found in the cookie date handling logic of the libsoup HTTP library, widely used by GNOME and other applications for web communication. When processing cookies with specially crafted expiration dates, the library may perform an out-of-bounds memory read. This flaw could result in unintended disclosure of memory contents, potentially exposing sensitive information from the process using libsoup.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00062.

Exploitation none

Automatable yes

Technical Impact partial

Vendors	Products
Redhat Subscribe	Enterprise Linux Subscribe Rhel Aus Subscribe Rhel E4s Subscribe Rhel Els Subscribe Rhel Eus Subscribe Rhel Eus Long Life Subscribe Rhel Tus Subscribe

No data.

Advisories

Source	ID	Title
EUVD	EUVD-2025-31225	A flaw was found in the cookie date handling logic of the libsoup HTTP library, widely used by GNOME and other applications for web communication. When processing cookies with specially crafted expiration dates, the library may perform an out-of-bounds memory read. This flaw could result in unintended disclosure of memory contents, potentially exposing sensitive information from the process using libsoup.

Fixes

Solution

No solution given by the vendor.

Workaround

Mitigation for this issue is either not available or the currently available options don’t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to a widespread installation base, or stability. It is strongly recommended to apply vendor-supplied patches once available.

References

Link	Providers
https://access.redhat.com/errata/RHSA-2025:18183
https://access.redhat.com/errata/RHSA-2025:19713
https://access.redhat.com/errata/RHSA-2025:19714
https://access.redhat.com/errata/RHSA-2025:20959
https://access.redhat.com/errata/RHSA-2025:21032
https://access.redhat.com/errata/RHSA-2025:21655
https://access.redhat.com/errata/RHSA-2025:21656
https://access.redhat.com/errata/RHSA-2025:21657
https://access.redhat.com/errata/RHSA-2025:21664
https://access.redhat.com/errata/RHSA-2025:21665
https://access.redhat.com/errata/RHSA-2025:21666
https://access.redhat.com/errata/RHSA-2025:21772
https://access.redhat.com/errata/RHSA-2025:22013
https://access.redhat.com/security/cve/CVE-2025-11021
https://bugzilla.redhat.com/show_bug.cgi?id=2399627
https://nvd.nist.gov/vuln/detail/CVE-2025-11021
https://www.cve.org/CVERecord?id=CVE-2025-11021

History

Tue, 25 Nov 2025 14:30:00 +0900

Type	Values Removed	Values Added
CPEs		cpe:/a:redhat:rhel_aus:8.2::appstream cpe:/o:redhat:rhel_aus:8.2::baseos
References		https://access.redhat.com/errata/RHSA-2025:22013

Thu, 20 Nov 2025 02:45:00 +0900

Type	Values Removed	Values Added
First Time appeared		Redhat rhel Eus Long Life
CPEs		cpe:/a:redhat:rhel_aus:8.4::appstream cpe:/a:redhat:rhel_eus_long_life:8.4::appstream cpe:/o:redhat:rhel_aus:8.4::baseos cpe:/o:redhat:rhel_eus_long_life:8.4::baseos
Vendors & Products		Redhat rhel Eus Long Life
References		https://access.redhat.com/errata/RHSA-2025:21772

Wed, 19 Nov 2025 00:00:00 +0900

Type	Values Removed	Values Added
First Time appeared		Redhat rhel Eus
CPEs		cpe:/a:redhat:rhel_e4s:8.8::appstream cpe:/a:redhat:rhel_eus:9.4::appstream cpe:/o:redhat:rhel_e4s:8.8::baseos
Vendors & Products		Redhat rhel Eus
References		https://access.redhat.com/errata/RHSA-2025:21665 https://access.redhat.com/errata/RHSA-2025:21666

Tue, 18 Nov 2025 18:15:00 +0900

Type	Values Removed	Values Added
First Time appeared		Redhat rhel Aus Redhat rhel Tus
CPEs		cpe:/a:redhat:rhel_aus:8.6::appstream cpe:/a:redhat:rhel_e4s:8.6::appstream cpe:/a:redhat:rhel_tus:8.6::appstream cpe:/o:redhat:rhel_aus:8.6::baseos cpe:/o:redhat:rhel_e4s:8.6::baseos cpe:/o:redhat:rhel_tus:8.6::baseos
Vendors & Products		Redhat rhel Aus Redhat rhel Tus
References		https://access.redhat.com/errata/RHSA-2025:21664

Tue, 18 Nov 2025 18:00:00 +0900

Type	Values Removed	Values Added
First Time appeared		Redhat rhel E4s Redhat rhel Els
CPEs	~~cpe:/o:redhat:enterprise_linux:7~~	cpe:/a:redhat:rhel_e4s:9.0::appstream cpe:/a:redhat:rhel_e4s:9.2::appstream cpe:/o:redhat:rhel_els:7
Vendors & Products		Redhat rhel E4s Redhat rhel Els
References		https://access.redhat.com/errata/RHSA-2025:21655 https://access.redhat.com/errata/RHSA-2025:21656 https://access.redhat.com/errata/RHSA-2025:21657

Wed, 12 Nov 2025 05:45:00 +0900

Type	Values Removed	Values Added
CPEs		cpe:/o:redhat:enterprise_linux:10.1
References		https://access.redhat.com/errata/RHSA-2025:20959 https://access.redhat.com/errata/RHSA-2025:21032

Wed, 05 Nov 2025 04:45:00 +0900

Type	Values Removed	Values Added
CPEs	~~cpe:/o:redhat:enterprise_linux:9~~	cpe:/a:redhat:enterprise_linux:9::appstream
References		https://access.redhat.com/errata/RHSA-2025:19713

Wed, 05 Nov 2025 01:00:00 +0900

Type	Values Removed	Values Added
CPEs	~~cpe:/o:redhat:enterprise_linux:8~~	cpe:/a:redhat:enterprise_linux:8::appstream cpe:/o:redhat:enterprise_linux:8::baseos
References		https://access.redhat.com/errata/RHSA-2025:19714

Thu, 16 Oct 2025 05:45:00 +0900

Type	Values Removed	Values Added
CPEs	~~cpe:/o:redhat:enterprise_linux:10~~	cpe:/o:redhat:enterprise_linux:10.0
References		https://access.redhat.com/errata/RHSA-2025:18183

Wed, 08 Oct 2025 23:00:00 +0900

Type	Values Removed	Values Added
CPEs	~~cpe:/o:redhat:rhivos:1~~
Vendors & Products	Redhat rhivos

Wed, 01 Oct 2025 23:00:00 +0900

Type	Values Removed	Values Added
First Time appeared		Redhat rhivos
CPEs		cpe:/o:redhat:rhivos:1
Vendors & Products		Redhat rhivos

Sat, 27 Sep 2025 01:15:00 +0900

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Fri, 26 Sep 2025 21:15:00 +0900

Type	Values Removed	Values Added
References		https://nvd.nist.gov/vuln/detail/CVE-2025-11021 https://www.cve.org/CVERecord?id=CVE-2025-11021
Metrics	threat_severity `None`	threat_severity `Important`

Fri, 26 Sep 2025 17:45:00 +0900

Type	Values Removed	Values Added
Description		A flaw was found in the cookie date handling logic of the libsoup HTTP library, widely used by GNOME and other applications for web communication. When processing cookies with specially crafted expiration dates, the library may perform an out-of-bounds memory read. This flaw could result in unintended disclosure of memory contents, potentially exposing sensitive information from the process using libsoup.
Title		Libsoup: out-of-bounds read in cookie date handling of libsoup http library
First Time appeared		Redhat Redhat enterprise Linux
Weaknesses		CWE-125
CPEs		cpe:/o:redhat:enterprise_linux:10 cpe:/o:redhat:enterprise_linux:6 cpe:/o:redhat:enterprise_linux:7 cpe:/o:redhat:enterprise_linux:8 cpe:/o:redhat:enterprise_linux:9
Vendors & Products		Redhat Redhat enterprise Linux
References		https://access.redhat.com/security/cve/CVE-2025-11021 https://bugzilla.redhat.com/show_bug.cgi?id=2399627
Metrics		cvssV3_1 `{'score': 7.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N'}`

Projects

Sign in to view the affected projects.

MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2025-09-26T08:36:19.399Z

Updated: 2025-11-25T05:13:22.532Z

Reserved: 2025-09-26T07:16:40.923Z

Link: CVE-2025-11021

Vulnrichment

Updated: 2025-09-26T15:36:35.222Z

NVD

Status : Awaiting Analysis

Published: 2025-09-26T09:15:31.370

Modified: 2025-11-25T06:15:44.720

Link: CVE-2025-11021

Redhat

Severity : Important

Publid Date: 2025-09-26T00:00:00Z

Links: CVE-2025-11021 - Bugzilla

OpenCVE Enrichment

No data.

Weaknesses

CWE-125

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction None

Exploitation none

Automatable yes

Technical Impact partial

Affected Vendors & Products

Projects

JSON object

JSON object

JSON object

JSON object

JSON object