Red Hat Product Errata RHSA-2026:22323 - Security Advisory Issued: 2026-06-01 Updated: 2026-06-01 RHSA-2026:22323 - Security Advisory Overview Updated Packages Synopsis Moderate: libsoup security update Type/Severity Security Advisory: Moderate Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for libsoup is now available for Red Hat Enterprise Linux 9.4 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description The libsoup packages provide an HTTP client and server library for GNOME. Security Fix(es): libsoup: libsoup: Information disclosure via cleartext transmission of cookies during HTTPS tunnel establishment (CVE-2026-5119) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 Affected Products Red Hat Enterprise Linux Server - AUS 9.4 x86_64 Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.4 ppc64le Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.4 x86_64 Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.4 aarch64 Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.4 s390x Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 9.4 x86_64 Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 9.4 aarch64 Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 9.4 ppc64le Red Hat Enterprise Linux for IBM z Systems - Extended Life Cycle 9.4 s390x Fixes BZ - 2452932 - CVE-2026-5119 libsoup: libsoup: Information disclosure via cleartext transmission of cookies during HTTPS tunnel establishment CVEs CVE-2026-5119 References https://access.redhat.com/security/updates/classification/#moderate Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux Server - AUS 9.4 SRPM libsoup-2.72.0-8.el9_4.10.src.rpm SHA-256: 90c8bd358f868ff6ddcdfafa4c1dcf8f24ec712a89ab419cdbf619e4b2541454 x86_64 libsoup-2.72.0-8.el9_4.10.i686.rpm SHA-256: 70229eab359c46eccf35a26d0e7088af31b990759d3fe9507e70a39f60d4d313 libsoup-2.72.0-8.el9_4.10.x86_64.rpm SHA-256: b83e44bdb7d03a808342675543fc97056a6f52469c47ceea5aa89b157a1cdced libsoup-debuginfo-2.72.0-8.el9_4.10.i686.rpm SHA-256: 5239697780f9bd7604e55668a7e41026abdb86f2bf6f13f9503a282e933a232c libsoup-debuginfo-2.72.0-8.el9_4.10.x86_64.rpm SHA-256: 211443d172371d20828adeea1456dc1dfec15982a17212885416126a082f2c15 libsoup-debugsource-2.72.0-8.el9_4.10.i686.rpm SHA-256: cd63dfa755d63e0d6672e4cfc260f1098f5dfd801db8e42c84600083bebfe664 libsoup-debugsource-2.72.0-8.el9_4.10.x86_64.rpm SHA-256: e22e4d58f8413fca9b5ee9de958b016ce8a520ad3d1f65360a34423512dc003f libsoup-devel-2.72.0-8.el9_4.10.i686.rpm SHA-256: a709fe32086bc6285975fc922cd30f22f8502d4436c470c2442642d1f5f5c738 libsoup-devel-2.72.0-8.el9_4.10.x86_64.rpm SHA-256: 0e64ee23f0222f886f8b7e209d7d200e9fa1ccfc906cb9e5be8ee158562648e8 Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.4 SRPM libsoup-2.72.0-8.el9_4.10.src.rpm SHA-256: 90c8bd358f868ff6ddcdfafa4c1dcf8f24ec712a89ab419cdbf619e4b2541454 ppc64le libsoup-2.72.0-8.el9_4.10.ppc64le.rpm SHA-256: 200ac3d9bccd8755e5a064b8c493212eb2c78c50aff4c2ff89c049aaf3aa96ca libsoup-debuginfo-2.72.0-8.el9_4.10.ppc64le.rpm SHA-256: 281fe54e3ae952a28f593320a2e066e9387725f83144e0ea4566d85ee4e020f0 libsoup-debugsource-2.72.0-8.el9_4.10.ppc64le.rpm SHA-256: bb57ec3d4a0159b7d734d7082b1e47a75c289d83b965b449ed0bb7774991ab92 libsoup-devel-2.72.0-8.el9_4.10.ppc64le.rpm SHA-256: 020871b2bed1f9e2f13d10e101dd96e06421cb20e169d1f8bd6859cfb63e8464 Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.4 SRPM libsoup-2.72.0-8.el9_4.10.src.rpm SHA-256: 90c8bd358f868ff6ddcdfafa4c1dcf8f24ec712a89ab419cdbf619e4b2541454 x86_64 libsoup-2.72.0-8.el9_4.10.i686.rpm SHA-256: 70229eab359c46eccf35a26d0e7088af31b990759d3fe9507e70a39f60d4d313 libsoup-2.72.0-8.el9_4.10.x86_64.rpm SHA-256: b83e44bdb7d03a808342675543fc97056a6f52469c47ceea5aa89b157a1cdced libsoup-debuginfo-2.72.0-8.el9_4.10.i686.rpm SHA-256: 5239697780f9bd7604e55668a7e41026abdb86f2bf6f13f9503a282e933a232c libsoup-debuginfo-2.72.0-8.el9_4.10.x86_64.rpm SHA-256: 211443d172371d20828adeea1456dc1dfec15982a17212885416126a082f2c15 libsoup-debugsource-2.72.0-8.el9_4.10.i686.rpm SHA-256: cd63dfa755d63e0d6672e4cfc260f1098f5dfd801db8e42c84600083bebfe664 libsoup-debugsource-2.72.0-8.el9_4.10.x86_64.rpm SHA-256: e22e4d58f8413fca9b5ee9de958b016ce8a520ad3d1f65360a34423512dc003f libsoup-devel-2.72.0-8.el9_4.10.i686.rpm SHA-256: a709fe32086bc6285975fc922cd30f22f8502d4436c470c2442642d1f5f5c738 libsoup-devel-2.72.0-8.el9_4.10.x86_64.rpm SHA-256: 0e64ee23f0222f886f8b7e209d7d200e9fa1ccfc906cb9e5be8ee158562648e8 Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.4 SRPM libsoup-2.72.0-8.el9_4.10.src.rpm SHA-256: 90c8bd358f868ff6ddcdfafa4c1dcf8f24ec712a89ab419cdbf619e4b2541454 aarch64 libsoup-2.72.0-8.el9_4.10.aarch64.rpm SHA-256: cf0c8d43ae1137de4b461c040b12740eededc103acd790610983397e0e7bf075 libsoup-debuginfo-2.72.0-8.el9_4.10.aarch64.rpm SHA-256: c8219eff097348a11470c5a85b25f61b19c56ef7071d19dc6616e229b8577f3a libsoup-debugsource-2.72.0-8.el9_4.10.aarch64.rpm SHA-256: 36193cf047078cb66f6210d123892efc54c18bdfd1b690b9e58421462b86f82c libsoup-devel-2.72.0-8.el9_4.10.aarch64.rpm SHA-256: de06f1dcf922a0f16f41dbe8ea6722595fe9d47fdc8689810dc13fe930f40ab6 Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.4 SRPM libsoup-2.72.0-8.el9_4.10.src.rpm SHA-256: 90c8bd358f868ff6ddcdfafa4c1dcf8f24ec712a89ab419cdbf619e4b2541454 s390x libsoup-2.72.0-8.el9_4.10.s390x.rpm SHA-256: 4adf21fb4638aa17ed0319933f6b71722b95cfd147c790008d033ba50189bf71 libsoup-debuginfo-2.72.0-8.el9_4.10.s390x.rpm SHA-256: 3c6cdb562a00611d4101f85f33454b094e42a212e64b636118c9109132dcedb2 libsoup-debugsource-2.72.0-8.el9_4.10.s390x.rpm SHA-256: 45240f7474cdb40488e6673316319a97ee9b22ed7f3e81fec65064ceaa49b195 libsoup-devel-2.72.0-8.el9_4.10.s390x.rpm SHA-256: 8bc2647402583cb8dbf4ff075e8fe1c848aa02b075d95658bcd1d6afa75c4e91 Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 9.4 SRPM libsoup-2.72.0-8.el9_4.10.src.rpm SHA-256: 90c8bd358f868ff6ddcdfafa4c1dcf8f24ec712a89ab419cdbf619e4b2541454 x86_64 libsoup-2.72.0-8.el9_4.10.i686.rpm SHA-256: 70229eab359c46eccf35a26d0e7088af31b990759d3fe9507e70a39f60d4d313 libsoup-2.72.0-8.el9_4.10.x86_64.rpm SHA-256: b83e44bdb7d03a808342675543fc97056a6f52469c47ceea5aa89b157a1cdced libsoup-debuginfo-2.72.0-8.el9_4.10.i686.rpm SHA-256: 5239697780f9bd7604e55668a7e41026abdb86f2bf6f13f9503a282e933a232c libsoup-debuginfo-2.72.0-8.el9_4.10.x86_64.rpm SHA-256: 211443d172371d20828adeea1456dc1dfec15982a17212885416126a082f2c15 libsoup-debugsource-2.72.0-8.el9_4.10.i686.rpm SHA-256: cd63dfa755d63e0d6672e4cfc260f1098f5dfd801db8e42c84600083bebfe664 libsoup-debugsource-2.72.0-8.el9_4.10.x86_64.rpm SHA-256: e22e4d58f8413fca9b5ee9de958b016ce8a520ad3d1f65360a34423512dc003f libsoup-devel-2.72.0-8.el9_4.10.i686.rpm SHA-256: a709fe32086bc6285975fc922cd30f22f8502d4436c470c2442642d1f5f5c738 libsoup-devel-2.72.0-8.el9_4.10.x86_64.rpm SHA-256: 0e64ee23f0222f886f8b7e209d7d200e9fa1ccfc906cb9e5be8ee158562648e8 Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 9.4 SRPM libsoup-2.72.0-8.el9_4.10.src.rpm SHA-256: 90c8bd358f868ff6ddcdfafa4c1dcf8f24ec712a89ab419cdbf619e4b2541454 aarch64 libsoup-2.72.0-8.el9_4.10.aarch64.rpm SHA-256: cf0c8d43ae1137de4b461c040b12740eededc103acd790610983397e0e7bf075 libsoup-debuginfo-2.72.0-8.el9_4.10.aarch64.rpm SHA-256: c8219eff097348a11470c5a85b25f61b19c56ef7071d19dc6616e229b8577f3a libsoup-debugsource-2.72.0-8.el9_4.10.aarch64.rpm SHA-256: 36193cf047078cb66f6210d123892efc54c18bdfd1b690b9e58421462b86f82c libsoup-devel-2.72.0-8.el9_4.10.aarch64.rpm SHA-256: de06f1dcf922a0f16f41dbe8ea6722595fe9d47fdc8689810dc13fe930f40ab6 Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 9.4 SRPM libsoup-2.72.0-8.el9_4.10.src.rpm SHA-256: 90c8bd358f868ff6ddcdfafa4c1dcf8f24ec712a89ab419cdbf619e4b2541454 ppc64le libsoup-2.72.0-8.el9_4.10.ppc64le.rpm SHA-256: 200ac3d9bccd8755e5a064b8c493212eb2c78c50aff4c2ff89c049aaf3aa96ca libsoup-debuginfo-2.72.0-8.el9_4.10.ppc64le.rpm SHA-256: 281fe54e3ae952a28f593320a2e066e9387725f83144e0ea4566d85ee4e020f0 libsoup-debugsource-2.72.0-8.el9_4.10.ppc64le.rpm SHA-256: bb57ec3d4a0159b7d734d7082b1e47a75c289d83b965b449ed0bb7774991ab92 libsoup-devel-2.72.0-8.el9_4.10.ppc64le.rpm SHA-256: 020871b2bed1f9e2f13d10e101dd96e06421cb20e169d1f8bd6859cfb63e8464 Red Hat Enterprise Linux for IBM z Systems - Extended Life Cycle 9.4 SRPM libsoup-2.72.0-8.el9_4.10.src.rpm SHA-256: 90c8bd358f868ff6ddcdfafa4c1dcf8f24ec712a89ab419cdbf619e4b2541454 s390x libsoup-2.72.0-8.el9_4.10.s390x.rpm SHA-256: 4adf21fb4638aa17ed0319933f6b71722b95cfd147c790008d033ba50189bf71 libsoup-debuginfo-2.72.0-8.el9_4.10.s390x.rpm SHA-256: 3c6cdb562a00611d4101f85f33454b094e42a212e64b636118c9109132dcedb2 libsoup-debugsource-2.72.0-8.el9_4.10.s390x.rpm SHA-256: 45240f7474cdb40488e6673316319a97ee9b22ed7f3e81fec65064ceaa49b195 libsoup-devel-2.72.0-8.el9_4.10.s390x.rpm SHA-256: 8bc2647402583cb8dbf4ff075e8fe1c848aa02b075d95658bcd1d6afa75c4e91 The Red Hat security contact is secalert@redhat.com . More contact details at https://access.redhat.com/security/team/contact/ .