CVE-2018-12910: libsoup: Crash in soup_cookie_jar.c:get_cookies() on empty hostnames

Severity: Critical

CVSS Score: 9.8

The get_cookies function in soup-cookie-jar.c in libsoup 2.63.2 allows attackers to have unspecified impact via an empty hostname.