{"id":"CVE-2025-46420","details":"A flaw was found in libsoup. It is vulnerable to memory leaks in the soup_header_parse_quality_list() function when parsing a quality list that contains elements with all zeroes.","modified":"2026-03-13T08:00:02.846085Z","published":"2025-04-24T13:15:45.553Z","related":["ALSA-2025:4560","ALSA-2025:7436","SUSE-SU-2025:01503-1","SUSE-SU-2025:01504-1","SUSE-SU-2025:1503-1","SUSE-SU-2025:1504-1","SUSE-SU-2025:1509-1","SUSE-SU-2025:1510-1","SUSE-SU-2025:1518-1","SUSE-SU-2025:1519-1","SUSE-SU-2025:20375-1","SUSE-SU-2025:20446-1","openSUSE-SU-2025:15044-1"],"references":[{"type":"WEB","url":"https://access.redhat.com/security/cve/CVE-2025-46420"},{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2025:4439"},{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2025:4440"},{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2025:4508"},{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2025:4538"},{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2025:4560"},{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2025:4568"},{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2025:7436"},{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2025:4609"},{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2025:4624"},{"type":"REPORT","url":"https://gitlab.gnome.org/GNOME/libsoup/-/issues/438"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2361963"}],"affected":[{"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-46420.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}]}