Memory Leak Vulnerability in libsoup Affects Red Hat Products
CVE-2025-46420

6.5MEDIUM

Key Information:

Vendor: Red Hat
Status: Red Hat Enterprise Linux 8; Red Hat Enterprise Linux 8.2 Advanced Update Support; Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support; Red Hat Enterprise Linux 8.4 Telecommunications Update Service
Vendor: CVE Published:; 24 April 2025

What is CVE-2025-46420?

A memory leak has been identified in the libsoup library, specifically within the soup_header_parse_quality_list() function. This vulnerability occurs when parsing a quality list that improperly includes elements set to zero, potentially leading to inefficient memory usage and application performance degradation over time. Users of affected versions are advised to take immediate action to mitigate potential impacts.