Red Hat Product Errata RHSA-2026:19356 - Security Advisory Issued: 2026-05-19 Updated: 2026-05-19 RHSA-2026:19356 - Security Advisory Overview Updated Packages Synopsis Moderate: libsoup security update Type/Severity Security Advisory: Moderate Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for libsoup is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description The libsoup packages provide an HTTP client and server library for GNOME. Security Fix(es): libsoup: libsoup: Information disclosure via cleartext transmission of cookies during HTTPS tunnel establishment (CVE-2026-5119) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 Affected Products Red Hat Enterprise Linux for x86_64 9 x86_64 Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.8 x86_64 Red Hat Enterprise Linux for IBM z Systems 9 s390x Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.8 s390x Red Hat Enterprise Linux for Power, little endian 9 ppc64le Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.8 ppc64le Red Hat Enterprise Linux for ARM 64 9 aarch64 Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.8 aarch64 Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.8 ppc64le Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.8 x86_64 Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.8 aarch64 Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.8 s390x Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 9.8 x86_64 Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 9.8 aarch64 Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 9.8 ppc64le Red Hat Enterprise Linux for IBM z Systems - Extended Life Cycle 9.8 s390x Fixes BZ - 2452932 - CVE-2026-5119 libsoup: libsoup: Information disclosure via cleartext transmission of cookies during HTTPS tunnel establishment CVEs CVE-2026-5119 References https://access.redhat.com/security/updates/classification/#moderate Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux for x86_64 9 SRPM libsoup-2.72.0-16.el9_8.1.src.rpm SHA-256: c06781ea375ec15787387c715b2418df9642edaf70d4aadd53f822018242095a x86_64 libsoup-2.72.0-16.el9_8.1.i686.rpm SHA-256: e56f26f3d2a8aa180121f393783323f0dbd70dfadd22055afaaa110f9c4a591d libsoup-2.72.0-16.el9_8.1.x86_64.rpm SHA-256: 51e8ba797e199a99037c8e7773e577ad1d7e5d9ca7a84e4e8b044d0a12527dd3 libsoup-debuginfo-2.72.0-16.el9_8.1.i686.rpm SHA-256: 1bb2904847fa02505f25ba5dd0648adedca93a8aa831d4bc122d26ec06e7d4e0 libsoup-debuginfo-2.72.0-16.el9_8.1.x86_64.rpm SHA-256: 52f25c6bd01bc7d8c86f8258bf1c052ca2060bb113189dc97e9d995ef5fc4aa9 libsoup-debugsource-2.72.0-16.el9_8.1.i686.rpm SHA-256: 756dfd0881c15ea8d3243be1e3ec845bb88b4dc3dd04b5cbc2fecaf940994417 libsoup-debugsource-2.72.0-16.el9_8.1.x86_64.rpm SHA-256: 484a204498f493f29aec11e1d562a2b3488f3f4ddedbbfe7a875f2bfb3337c3a libsoup-devel-2.72.0-16.el9_8.1.i686.rpm SHA-256: d96bd672fd12087716852e2e60a71cafc8f3b56d8313c5a9012024c197d6ec2e libsoup-devel-2.72.0-16.el9_8.1.x86_64.rpm SHA-256: 5019298394cf469fcd37cd0b08c73ba09dfc5187c08bc96d7bd0f97133487053 Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.8 SRPM libsoup-2.72.0-16.el9_8.1.src.rpm SHA-256: c06781ea375ec15787387c715b2418df9642edaf70d4aadd53f822018242095a x86_64 libsoup-2.72.0-16.el9_8.1.i686.rpm SHA-256: e56f26f3d2a8aa180121f393783323f0dbd70dfadd22055afaaa110f9c4a591d libsoup-2.72.0-16.el9_8.1.x86_64.rpm SHA-256: 51e8ba797e199a99037c8e7773e577ad1d7e5d9ca7a84e4e8b044d0a12527dd3 libsoup-debuginfo-2.72.0-16.el9_8.1.i686.rpm SHA-256: 1bb2904847fa02505f25ba5dd0648adedca93a8aa831d4bc122d26ec06e7d4e0 libsoup-debuginfo-2.72.0-16.el9_8.1.x86_64.rpm SHA-256: 52f25c6bd01bc7d8c86f8258bf1c052ca2060bb113189dc97e9d995ef5fc4aa9 libsoup-debugsource-2.72.0-16.el9_8.1.i686.rpm SHA-256: 756dfd0881c15ea8d3243be1e3ec845bb88b4dc3dd04b5cbc2fecaf940994417 libsoup-debugsource-2.72.0-16.el9_8.1.x86_64.rpm SHA-256: 484a204498f493f29aec11e1d562a2b3488f3f4ddedbbfe7a875f2bfb3337c3a libsoup-devel-2.72.0-16.el9_8.1.i686.rpm SHA-256: d96bd672fd12087716852e2e60a71cafc8f3b56d8313c5a9012024c197d6ec2e libsoup-devel-2.72.0-16.el9_8.1.x86_64.rpm SHA-256: 5019298394cf469fcd37cd0b08c73ba09dfc5187c08bc96d7bd0f97133487053 Red Hat Enterprise Linux for IBM z Systems 9 SRPM libsoup-2.72.0-16.el9_8.1.src.rpm SHA-256: c06781ea375ec15787387c715b2418df9642edaf70d4aadd53f822018242095a s390x libsoup-2.72.0-16.el9_8.1.s390x.rpm SHA-256: 0fb46fdb6156d2264a5ad15a27fd7d979b78f1f431ab42045799ebdcac5cead8 libsoup-debuginfo-2.72.0-16.el9_8.1.s390x.rpm SHA-256: eeeb15e50dec81204870e21679553b728d7339ae6bcfdd230271ba3a4c843682 libsoup-debugsource-2.72.0-16.el9_8.1.s390x.rpm SHA-256: 84daaf94b24a0bc186c63604f17f62b8066559f6672a4228cc43122ee7f51737 libsoup-devel-2.72.0-16.el9_8.1.s390x.rpm SHA-256: 103d23c0b82beb5c3de55727dc1ea9ca3956f8ef26e2f675511b369ad5d74ea0 Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.8 SRPM libsoup-2.72.0-16.el9_8.1.src.rpm SHA-256: c06781ea375ec15787387c715b2418df9642edaf70d4aadd53f822018242095a s390x libsoup-2.72.0-16.el9_8.1.s390x.rpm SHA-256: 0fb46fdb6156d2264a5ad15a27fd7d979b78f1f431ab42045799ebdcac5cead8 libsoup-debuginfo-2.72.0-16.el9_8.1.s390x.rpm SHA-256: eeeb15e50dec81204870e21679553b728d7339ae6bcfdd230271ba3a4c843682 libsoup-debugsource-2.72.0-16.el9_8.1.s390x.rpm SHA-256: 84daaf94b24a0bc186c63604f17f62b8066559f6672a4228cc43122ee7f51737 libsoup-devel-2.72.0-16.el9_8.1.s390x.rpm SHA-256: 103d23c0b82beb5c3de55727dc1ea9ca3956f8ef26e2f675511b369ad5d74ea0 Red Hat Enterprise Linux for Power, little endian 9 SRPM libsoup-2.72.0-16.el9_8.1.src.rpm SHA-256: c06781ea375ec15787387c715b2418df9642edaf70d4aadd53f822018242095a ppc64le libsoup-2.72.0-16.el9_8.1.ppc64le.rpm SHA-256: c9e973819aece6a566f481f576d2e745c1d91f680004e3e23f177e76a41fda6a libsoup-debuginfo-2.72.0-16.el9_8.1.ppc64le.rpm SHA-256: 9b1af631251e6fcd27fffeda9a119da10beb581377679c52012332489fc92641 libsoup-debugsource-2.72.0-16.el9_8.1.ppc64le.rpm SHA-256: f4c210f9cd8a9ae32d51cfaa40b2c25c821f0ea59eb25080ba44355fba9b0b21 libsoup-devel-2.72.0-16.el9_8.1.ppc64le.rpm SHA-256: 3763ef10ba51767c7e9539e69ac8a19eeeec6fafda5c21794097179376406afe Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.8 SRPM libsoup-2.72.0-16.el9_8.1.src.rpm SHA-256: c06781ea375ec15787387c715b2418df9642edaf70d4aadd53f822018242095a ppc64le libsoup-2.72.0-16.el9_8.1.ppc64le.rpm SHA-256: c9e973819aece6a566f481f576d2e745c1d91f680004e3e23f177e76a41fda6a libsoup-debuginfo-2.72.0-16.el9_8.1.ppc64le.rpm SHA-256: 9b1af631251e6fcd27fffeda9a119da10beb581377679c52012332489fc92641 libsoup-debugsource-2.72.0-16.el9_8.1.ppc64le.rpm SHA-256: f4c210f9cd8a9ae32d51cfaa40b2c25c821f0ea59eb25080ba44355fba9b0b21 libsoup-devel-2.72.0-16.el9_8.1.ppc64le.rpm SHA-256: 3763ef10ba51767c7e9539e69ac8a19eeeec6fafda5c21794097179376406afe Red Hat Enterprise Linux for ARM 64 9 SRPM libsoup-2.72.0-16.el9_8.1.src.rpm SHA-256: c06781ea375ec15787387c715b2418df9642edaf70d4aadd53f822018242095a aarch64 libsoup-2.72.0-16.el9_8.1.aarch64.rpm SHA-256: 5103f49c502c9cb8e8b5b5c4e7b16262ac03b8db0e0581a564838092a19bcaa9 libsoup-debuginfo-2.72.0-16.el9_8.1.aarch64.rpm SHA-256: b8b8b65e31f936b7161d07d50a9bd677d75b7a665cfd9efe2cacbeef11837143 libsoup-debugsource-2.72.0-16.el9_8.1.aarch64.rpm SHA-256: 4d66f853df539688d5d6d7497e857797711d4ae2d9de0e4eab0ef8e4c940adc8 libsoup-devel-2.72.0-16.el9_8.1.aarch64.rpm SHA-256: b8a869be5b31d6d8dde59631ec7d16ba8b3ea257af114350b4e9c5a173c6effa Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.8 SRPM libsoup-2.72.0-16.el9_8.1.src.rpm SHA-256: c06781ea375ec15787387c715b2418df9642edaf70d4aadd53f822018242095a aarch64 libsoup-2.72.0-16.el9_8.1.aarch64.rpm SHA-256: 5103f49c502c9cb8e8b5b5c4e7b16262ac03b8db0e0581a564838092a19bcaa9 libsoup-debuginfo-2.72.0-16.el9_8.1.aarch64.rpm SHA-256: b8b8b65e31f936b7161d07d50a9bd677d75b7a665cfd9efe2cacbeef11837143 libsoup-debugsource-2.72.0-16.el9_8.1.aarch64.rpm SHA-256: 4d66f853df539688d5d6d7497e857797711d4ae2d9de0e4eab0ef8e4c940adc8 libsoup-devel-2.72.0-16.el9_8.1.aarch64.rpm SHA-256: b8a869be5b31d6d8dde59631ec7d16ba8b3ea257af114350b4e9c5a173c6effa Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.8 SRPM libsoup-2.72.0-16.el9_8.1.src.rpm SHA-256: c06781ea375ec15787387c715b2418df9642edaf70d4aadd53f822018242095a ppc64le libsoup-2.72.0-16.el9_8.1.ppc64le.rpm SHA-256: c9e973819aece6a566f481f576d2e745c1d91f680004e3e23f177e76a41fda6a libsoup-debuginfo-2.72.0-16.el9_8.1.ppc64le.rpm SHA-256: 9b1af631251e6fcd27fffeda9a119da10beb581377679c52012332489fc92641 libsoup-debugsource-2.72.0-16.el9_8.1.ppc64le.rpm SHA-256: f4c210f9cd8a9ae32d51cfaa40b2c25c821f0ea59eb25080ba44355fba9b0b21 libsoup-devel-2.72.0-16.el9_8.1.ppc64le.rpm SHA-256: 3763ef10ba51767c7e9539e69ac8a19eeeec6fafda5c21794097179376406afe Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.8 SRPM libsoup-2.72.0-16.el9_8.1.src.rpm SHA-256: c06781ea375ec15787387c715b2418df9642edaf70d4aadd53f822018242095a x86_64 libsoup-2.72.0-16.el9_8.1.i686.rpm SHA-256: e56f26f3d2a8aa180121f393783323f0dbd70dfadd22055afaaa110f9c4a591d libsoup-2.72.0-16.el9_8.1.x86_64.rpm SHA-256: 51e8ba797e199a99037c8e7773e577ad1d7e5d9ca7a84e4e8b044