Red Hat Product Errata RHSA-2026:13978 - Security Advisory Issued: 2026-05-06 Updated: 2026-05-06 RHSA-2026:13978 - Security Advisory Overview Updated Packages Synopsis Moderate: libsoup security update Type/Severity Security Advisory: Moderate Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for libsoup is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description The libsoup packages provide an HTTP client and server library for GNOME. Security Fix(es): libsoup: libsoup: Information disclosure via cleartext transmission of cookies during HTTPS tunnel establishment (CVE-2026-5119) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 Affected Products Red Hat Enterprise Linux for x86_64 9 x86_64 Red Hat Enterprise Linux for IBM z Systems 9 s390x Red Hat Enterprise Linux for Power, little endian 9 ppc64le Red Hat Enterprise Linux for ARM 64 9 aarch64 Fixes BZ - 2452932 - CVE-2026-5119 libsoup: libsoup: Information disclosure via cleartext transmission of cookies during HTTPS tunnel establishment CVEs CVE-2026-5119 References https://access.redhat.com/security/updates/classification/#moderate Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux for x86_64 9 SRPM libsoup-2.72.0-12.el9_7.6.src.rpm SHA-256: 819fbf8aa0df3adf2fee668d02397f3b733b1d182c759d218206d65d7c74dd8d x86_64 libsoup-2.72.0-12.el9_7.6.i686.rpm SHA-256: 9c329170d3aac8812ad515d8acd491dc5f5e8a5c296659666841fd59eacf2490 libsoup-2.72.0-12.el9_7.6.x86_64.rpm SHA-256: 293af2490e3e55e861a6424756b0b0f0dc69b4efce71dc6570690f8f98c4df69 libsoup-debuginfo-2.72.0-12.el9_7.6.i686.rpm SHA-256: 281a3ba3cf9ba730e7ccbde03353699c22ad9531a78b7a625b8ab579b0e6dfac libsoup-debuginfo-2.72.0-12.el9_7.6.x86_64.rpm SHA-256: 6d6173cf35d950bad9970d1b4516978d92965c170814e21230fa755ca257f529 libsoup-debugsource-2.72.0-12.el9_7.6.i686.rpm SHA-256: a158e35c69ede8df9718f93ee1c53929bd48b0e29f92a94fc7a6ebc54e5df0e0 libsoup-debugsource-2.72.0-12.el9_7.6.x86_64.rpm SHA-256: 75a42298da1192637247c9a3a31b69f7531bcc91290bbb6358c9214f10b7c22f libsoup-devel-2.72.0-12.el9_7.6.i686.rpm SHA-256: bbe4a94b8c24fc439e63bda5b2cfe8a86647c3356cec55224e7ddcc502769dcf libsoup-devel-2.72.0-12.el9_7.6.x86_64.rpm SHA-256: 5b10f78f2ced09b961eca7781c7fe4e5f88542cd1b3ce1d0b2de4c5845dafcbc Red Hat Enterprise Linux for IBM z Systems 9 SRPM libsoup-2.72.0-12.el9_7.6.src.rpm SHA-256: 819fbf8aa0df3adf2fee668d02397f3b733b1d182c759d218206d65d7c74dd8d s390x libsoup-2.72.0-12.el9_7.6.s390x.rpm SHA-256: c0502f43104971516e6f209f244668f74b6b2ac9f50fc4ded66e595e61bda022 libsoup-debuginfo-2.72.0-12.el9_7.6.s390x.rpm SHA-256: d4df82d18116d53675b5eac0f57d74044f4980d29bf5c062d038417073fffe6a libsoup-debugsource-2.72.0-12.el9_7.6.s390x.rpm SHA-256: a714cf0108fe64356ea2778827bb6bfb3d4f75ad0272e36bad2238de5a3c29a4 libsoup-devel-2.72.0-12.el9_7.6.s390x.rpm SHA-256: 85b0138f743830f963fae24766ad779c20a1464d8d61e1d21ce94732079c7297 Red Hat Enterprise Linux for Power, little endian 9 SRPM libsoup-2.72.0-12.el9_7.6.src.rpm SHA-256: 819fbf8aa0df3adf2fee668d02397f3b733b1d182c759d218206d65d7c74dd8d ppc64le libsoup-2.72.0-12.el9_7.6.ppc64le.rpm SHA-256: bc894291c82c70a5331557f6751eaae05fc1e13b55c07a04f3c9823674c38cc0 libsoup-debuginfo-2.72.0-12.el9_7.6.ppc64le.rpm SHA-256: 3820e656b0dc37d96c8da270262db87bc5f8e74ddafe7a1c96d59e1b1f193386 libsoup-debugsource-2.72.0-12.el9_7.6.ppc64le.rpm SHA-256: 373561767bb539fa7ea10a7e1678885d54829f1249ad6971382eb40de020a74b libsoup-devel-2.72.0-12.el9_7.6.ppc64le.rpm SHA-256: 883c6033be0a32245a283054b1adb827c369a6a6a8d25dc049275e9fa80961e0 Red Hat Enterprise Linux for ARM 64 9 SRPM libsoup-2.72.0-12.el9_7.6.src.rpm SHA-256: 819fbf8aa0df3adf2fee668d02397f3b733b1d182c759d218206d65d7c74dd8d aarch64 libsoup-2.72.0-12.el9_7.6.aarch64.rpm SHA-256: c50d3c35d684ab55968d034635b492fdbfdbbdf166101370fd16c9fdd9f05724 libsoup-debuginfo-2.72.0-12.el9_7.6.aarch64.rpm SHA-256: 88777325ff6221ad1b81812717f15acc8c7474aa4904f62f2a5afb724b825fab libsoup-debugsource-2.72.0-12.el9_7.6.aarch64.rpm SHA-256: 9ae7fde5af69b39596ff33ce59e0ae95589ac1ebfcf19f2547069a36e3077aa7 libsoup-devel-2.72.0-12.el9_7.6.aarch64.rpm SHA-256: 24778ebdd6a30236c52c7c982a8f91d7c37de2e6a6ecc45642dae66251310fe0 The Red Hat security contact is secalert@redhat.com . More contact details at https://access.redhat.com/security/team/contact/ .