Description
A flaw was found in glib. This vulnerability allows a heap buffer overflow and denial-of-service (DoS) via an integer overflow in GLib's GIO (GLib Input/Output) escape_byte_string() function when processing malicious file or remote filesystem attribute values.
Problem types
Integer Overflow or Wraparound
Product status
Any version before 2.86.3
0:2.80.4-10.el10_1.13 (rpm) before *
0:2.80.4-12.el10_2.13 (rpm) before *
0:2.56.4-169.el8_10 (rpm) before *
0:2.56.4-165.el8_8 (rpm) before *
0:2.56.4-165.el8_8 (rpm) before *
0:2.68.4-18.el9_7.2 (rpm) before *
0:2.68.4-19.el9_8.1 (rpm) before *
0:2.68.4-18.el9_7.2 (rpm) before *
0:2.68.4-19.el9_8.1 (rpm) before *
0:2.68.4-5.el9_0.5 (rpm) before *
0:2.68.4-7.el9_2.5 (rpm) before *
0:2.68.4-14.el9_4.6 (rpm) before *
0:2.68.4-16.el9_6.5 (rpm) before *
2.88.0-1.1.hum1 (rpm) before *
Timeline
| 2025-12-11: | Reported to Red Hat. |
| 2025-12-11: | Made public. |
Credits
Red Hat would like to thank Codean Labs for reporting this issue.
References
access.redhat.com/errata/RHSA-2026:15953 (RHSA-2026:15953)
access.redhat.com/errata/RHSA-2026:15969 (RHSA-2026:15969)
access.redhat.com/errata/RHSA-2026:15971 (RHSA-2026:15971)
access.redhat.com/errata/RHSA-2026:19148 (RHSA-2026:19148)
access.redhat.com/errata/RHSA-2026:19361 (RHSA-2026:19361)
access.redhat.com/errata/RHSA-2026:19452 (RHSA-2026:19452)
access.redhat.com/errata/RHSA-2026:19457 (RHSA-2026:19457)
access.redhat.com/errata/RHSA-2026:19459 (RHSA-2026:19459)
access.redhat.com/errata/RHSA-2026:19460 (RHSA-2026:19460)
access.redhat.com/errata/RHSA-2026:19523 (RHSA-2026:19523)
access.redhat.com/errata/RHSA-2026:7461 (RHSA-2026:7461)
access.redhat.com/security/cve/CVE-2025-14512
bugzilla.redhat.com/show_bug.cgi?id=2421339 (RHBZ#2421339)
gitlab.gnome.org/GNOME/glib/-/issues/3845