CVE-2026-3634

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2026-3634
A flaw was found in libsoup. An attacker controlling the value used to set the Content-Type header can inject a Carriage Return Line Feed (CRLF) sequence due to improper input sanitization in the `soup_message_headers_set_content_type()` function. This vulnerability allows for the injection of arbitrary header-value pairs, potentially leading to HTTP header injection and response splitting attacks.

3.9 /10

CVSS v3 : LOW

V3 Legend

Vector :

Exploitability : 0.5 / Impact : 3.4

Attack Vector NETWORK

Attack Complexity HIGH

Privileges Required HIGH

User Interaction REQUIRED

Confidentiality Impact LOW

Integrity Impact LOW

Availability Impact LOW

Scope UNCHANGED

References
Link Resource
https://access.redhat.com/security/cve/CVE-2026-3634 Vendor Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=2445129 Issue Tracking Vendor Advisory
https://gitlab.gnome.org/GNOME/libsoup/-/issues/485 Exploit Issue Tracking Vendor Advisory
https://gitlab.gnome.org/GNOME/libsoup/-/issues/485 Exploit Issue Tracking Vendor Advisory
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:gnome:libsoup:-:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:10.0:*:*:*:*:*:*:*
History

19 Mar 2026, 19:52

Type Values Removed Values Added
CPE cpe:2.3:o:redhat:enterprise_linux:10.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*
cpe:2.3:a:gnome:libsoup:-:*:*:*:*:*:*:*
Summary
  • (es) Se encontró una falla en libsoup. Un atacante que controla el valor utilizado para establecer el encabezado Content-Type puede inyectar una secuencia de Retorno de Carro y Salto de Línea (CRLF) debido a una sanitización de entrada inadecuada en la función `soup_message_headers_set_content_type()`. Esta vulnerabilidad permite la inyección de pares arbitrarios de encabezado-valor, potencialmente conduciendo a la inyección de encabezados HTTP y ataques de división de respuesta.
First Time Redhat
Gnome
Gnome libsoup
Redhat enterprise Linux
References () https://access.redhat.com/security/cve/CVE-2026-3634 - () https://access.redhat.com/security/cve/CVE-2026-3634 - Vendor Advisory
References () https://bugzilla.redhat.com/show_bug.cgi?id=2445129 - () https://bugzilla.redhat.com/show_bug.cgi?id=2445129 - Issue Tracking, Vendor Advisory
References () https://gitlab.gnome.org/GNOME/libsoup/-/issues/485 - () https://gitlab.gnome.org/GNOME/libsoup/-/issues/485 - Exploit, Issue Tracking, Vendor Advisory

17 Mar 2026, 14:20

Type Values Removed Values Added
References () https://gitlab.gnome.org/GNOME/libsoup/-/issues/485 - () https://gitlab.gnome.org/GNOME/libsoup/-/issues/485 -

17 Mar 2026, 10:16

Type Values Removed Values Added
New CVE
Information

Published : 2026-03-17 10:16

Updated : 2026-03-19 19:52

NVD link : CVE-2026-3634

Mitre link : CVE-2026-3634

CVE.ORG link : CVE-2026-3634

JSON object : View

Products Affected

redhat

  • enterprise_linux

gnome

  • libsoup
CWE
CWE-93

Improper Neutralization of CRLF Sequences ('CRLF Injection')