Lucene search
K

EulerOS Virtualization 2.13.1 : glib2 (EulerOS-SA-2026-2126)

🗓️ 06 Jun 2026 00:00:00Reported by TenableType 
nessus
 nessus
🔗 www.tenable.com👁 8 Views

GLib vulnerabilities on EulerOS Virtualization 2.13.1 risk memory corruption and DoS.

Related
Refs
Code
#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##

include('compat.inc');

if (description)
{
  script_id(319441);
  script_version("1.1");
  script_set_attribute(attribute:"plugin_modification_date", value:"2026/06/06");

  script_cve_id(
    "CVE-2025-13601",
    "CVE-2025-14087",
    "CVE-2025-14512",
    "CVE-2026-0988",
    "CVE-2026-1484",
    "CVE-2026-1485",
    "CVE-2026-1489"
  );

  script_name(english:"EulerOS Virtualization 2.13.1 : glib2 (EulerOS-SA-2026-2126)");

  script_set_attribute(attribute:"synopsis", value:
"The remote EulerOS Virtualization host is missing multiple security updates.");
  script_set_attribute(attribute:"description", value:
"According to the versions of the glib2 package installed, the EulerOS Virtualization installation on the remote host is
affected by the following vulnerabilities :

    A flaw was found in GLib. An integer overflow vulnerability in its Unicode case conversion implementation
    can lead to memory corruption. By processing specially crafted and extremely large Unicode strings, an
    attacker could trigger an undersized memory allocation, resulting in out-of-bounds writes. This could
    cause applications utilizing GLib for string conversion to crash or become unstable.(CVE-2026-1489)

    A flaw was found in the GLib Base64 encoding routine when processing very large input data. Due to
    incorrect use of integer types during length calculation, the library may miscalculate buffer boundaries.
    This can cause memory writes outside the allocated buffer. Applications that process untrusted or
    extremely large Base64 input using GLib may crash or behave unpredictably.(CVE-2026-1484)

    A flaw was found in Glib's content type parsing logic. This buffer underflow vulnerability occurs because
    the length of a header line is stored in a signed integer, which can lead to integer wraparound for very
    large inputs. This results in pointer underflow and out-of-bounds memory access. Exploitation requires a
    local user to install or process a specially crafted treemagic file, which can lead to local denial of
    service or application instability.(CVE-2026-1485)

    A flaw was found in GLib (Gnome Lib). This vulnerability allows a remote attacker to cause heap
    corruption, leading to a denial of service or potential code execution via a buffer-underflow in the
    GVariant parser when processing maliciously crafted input strings.(CVE-2025-14087)

    A flaw was found in glib. This vulnerability allows a heap buffer overflow and denial-of-service (DoS) via
    an integer overflow in GLib's GIO (GLib Input/Output) escape_byte_string() function when processing
    malicious file or remote filesystem attribute values.(CVE-2025-14512)

    A flaw was found in glib. Missing validation of offset and count parameters in the
    g_buffered_input_stream_peek() function can lead to an integer overflow during length calculation. When
    specially crafted values are provided, this overflow results in an incorrect size being passed to
    memcpy(), triggering a buffer overflow. This can cause application crashes, leading to a Denial of Service
    (DoS).(CVE-2026-0988)

    A heap-based buffer overflow problem was found in glib through an incorrect calculation of buffer size in
    the g_escape_uri_string() function. If the string to escape contains a very large number of unacceptable
    characters (which would need escaping), the calculation of the length of the escaped string could
    overflow, leading to a potential write off the end of the newly allocated string.(CVE-2025-13601)

Tenable has extracted the preceding description block directly from the EulerOS Virtualization glib2 security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version
number.");
  # https://developer.huaweicloud.com/ict/en/site-euleros/euleros/security-advisories/EulerOS-SA-2026-2126
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?602afde6");
  script_set_attribute(attribute:"solution", value:
"Update the affected glib2 packages.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2025-14087");

  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");

  script_set_attribute(attribute:"vuln_publication_date", value:"2025/11/26");
  script_set_attribute(attribute:"patch_publication_date", value:"2026/06/02");
  script_set_attribute(attribute:"plugin_publication_date", value:"2026/06/06");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:glib2");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:huawei:euleros:uvp:2.13.1");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Huawei Local Security Checks");

  script_copyright(english:"This script is Copyright (C) 2026 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/EulerOS/release", "Host/EulerOS/rpm-list", "Host/EulerOS/uvp_version");

  exit(0);
}

include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);

var _release = get_kb_item("Host/EulerOS/release");
if (isnull(_release) || _release !~ "^EulerOS") audit(AUDIT_OS_NOT, "EulerOS");
var uvp = get_kb_item("Host/EulerOS/uvp_version");
if (uvp != "2.13.1") audit(AUDIT_OS_NOT, "EulerOS Virtualization 2.13.1");
if (!get_kb_item("Host/EulerOS/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

var cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$" && "aarch64" >!< cpu && "x86" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "EulerOS", cpu);
if ("aarch64" >!< cpu) audit(AUDIT_ARCH_NOT, "aarch64", cpu);

var flag = 0;

var pkgs = [
  "glib2-2.72.2-12.h17.eulerosv2r13"
];

foreach (var pkg in pkgs)
  if (rpm_check(release:"EulerOS-2.0", reference:pkg)) flag++;

if (flag)
{
  security_report_v4(
    port       : 0,
    severity   : SECURITY_HOLE,
    extra      : rpm_report_get()
  );
  exit(0);
}
else
{
  var tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "glib2");
}

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

06 Jun 2026 00:00Current
6.5Medium risk
Vulners AI Score6.5
CVSS 3.17.7 - 9.8
EPSS0.00754
SSVC
8