gnu: libsoup: Apply patches fixing deadlocks and CVE-2025-4476.

The patches are a subset taken from Debian (see:
<https://sources.debian.org/patches/libsoup3/3.6.5-3/>).

* gnu/packages/patches/libsoup-auth-digest-fix-crash.patch
* gnu/packages/patches/libsoup-deadlock-in-add_listener_in_thread.patch
* gnu/packages/patches/libsoup-fix-merge-of-ranges.patch
* gnu/packages/patches/libsoup-memory-leak-in-soup_form_decode.patch
* gnu/packages/patches/libsoup-multipart-bounds-check.patch
* gnu/packages/patches/libsoup-use-libdl-instead-of-gmodule.patch: New files.
* gnu/local.mk (dist_patch_DATA): Register them.
* gnu/packages/gnome.scm (libsoup-minimal): Apply them.

Change-Id: I7e4968c1d87e28860fc68616f6107d018e0d93dd

1 files changed, 6 insertions, 0 deletions

diff --git a/gnu/local.mk b/gnu/local.mk
index fe5af0c7398..01cf85e5da5 100644
--- a/gnu/local.mk
+++ b/gnu/local.mk
@@ -1807,6 +1807,12 @@ dist_patch_DATA =						\
   %D%/packages/patches/libsecret-fix-test-paths.patch		\
   %D%/packages/patches/libsepol-versioned-docbook.patch		\
   %D%/packages/patches/libskk-fix-invalid-escape.patch		\
+  %D%/packages/patches/libsoup-auth-digest-fix-crash.patch      \
+  %D%/packages/patches/libsoup-deadlock-in-add_listener_in_thread.patch \
+  %D%/packages/patches/libsoup-fix-merge-of-ranges.patch        \
+  %D%/packages/patches/libsoup-memory-leak-in-soup_form_decode.patch    \
+  %D%/packages/patches/libsoup-multipart-bounds-check.patch     \
+  %D%/packages/patches/libsoup-use-libdl-instead-of-gmodule.patch       \
   %D%/packages/patches/libspatialite-libxml2-2.14.patch		\
   %D%/packages/patches/libtar-CVE-2013-4420.patch 		\
   %D%/packages/patches/libtar-CVE-2021-33643-CVE-2021-33644.patch	\