A flaw was found in libsoup. The HTTP/2 server in libsoup may not fully validate the values of pseudo-headers :scheme, :authority, and :path, which may allow a user to cause a denial of service (DoS).
The product misinterprets an input, whether from an attacker or another product, in a security-relevant fashion.