(RHSA-2021:3058) Moderate: glib2 security update

2021-08-1011:56:26

access.redhat.com

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.01 Low

EPSS

Percentile

83.2%

JSON

GLib provides the core application building blocks for libraries and applications written in C. It provides the core object system used in GNOME, the main loop implementation, and a large set of utility functions for strings and common data structures.

Security Fix(es):

glib: integer overflow in g_byte_array_new_take function when called with a buffer of 4GB or more on a 64-bit platform (CVE-2021-27218)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

OSVersionArchitecturePackageVersionFilename
RedHat8ppc64leglib2< 2.56.4-10.el8_4.1glib2-2.56.4-10.el8_4.1.ppc64le.rpm
RedHat8ppc64leglib2-static< 2.56.4-10.el8_4.1glib2-static-2.56.4-10.el8_4.1.ppc64le.rpm
RedHat8ppc64leglib2-fam< 2.56.4-10.el8_4.1glib2-fam-2.56.4-10.el8_4.1.ppc64le.rpm
RedHat8i686glib2-tests-debuginfo< 2.56.4-10.el8_4.1glib2-tests-debuginfo-2.56.4-10.el8_4.1.i686.rpm
RedHat8aarch64glib2-tests-debuginfo< 2.56.4-10.el8_4.1glib2-tests-debuginfo-2.56.4-10.el8_4.1.aarch64.rpm
RedHat8i686glib2-debuginfo< 2.56.4-10.el8_4.1glib2-debuginfo-2.56.4-10.el8_4.1.i686.rpm
RedHat8x86_64glib2-devel< 2.56.4-10.el8_4.1glib2-devel-2.56.4-10.el8_4.1.x86_64.rpm
RedHat8s390xglib2-fam< 2.56.4-10.el8_4.1glib2-fam-2.56.4-10.el8_4.1.s390x.rpm
RedHat8x86_64glib2-static< 2.56.4-10.el8_4.1glib2-static-2.56.4-10.el8_4.1.x86_64.rpm
RedHat8ppc64leglib2-tests-debuginfo< 2.56.4-10.el8_4.1glib2-tests-debuginfo-2.56.4-10.el8_4.1.ppc64le.rpm

OS	Version	Architecture	Package	Version	Filename
RedHat	8	ppc64le	glib2	< 2.56.4-10.el8_4.1	glib2-2.56.4-10.el8_4.1.ppc64le.rpm
RedHat	8	ppc64le	glib2-static	< 2.56.4-10.el8_4.1	glib2-static-2.56.4-10.el8_4.1.ppc64le.rpm
RedHat	8	ppc64le	glib2-fam	< 2.56.4-10.el8_4.1	glib2-fam-2.56.4-10.el8_4.1.ppc64le.rpm
RedHat	8	i686	glib2-tests-debuginfo	< 2.56.4-10.el8_4.1	glib2-tests-debuginfo-2.56.4-10.el8_4.1.i686.rpm
RedHat	8	aarch64	glib2-tests-debuginfo	< 2.56.4-10.el8_4.1	glib2-tests-debuginfo-2.56.4-10.el8_4.1.aarch64.rpm
RedHat	8	i686	glib2-debuginfo	< 2.56.4-10.el8_4.1	glib2-debuginfo-2.56.4-10.el8_4.1.i686.rpm
RedHat	8	x86_64	glib2-devel	< 2.56.4-10.el8_4.1	glib2-devel-2.56.4-10.el8_4.1.x86_64.rpm
RedHat	8	s390x	glib2-fam	< 2.56.4-10.el8_4.1	glib2-fam-2.56.4-10.el8_4.1.s390x.rpm
RedHat	8	x86_64	glib2-static	< 2.56.4-10.el8_4.1	glib2-static-2.56.4-10.el8_4.1.x86_64.rpm
RedHat	8	ppc64le	glib2-tests-debuginfo	< 2.56.4-10.el8_4.1	glib2-tests-debuginfo-2.56.4-10.el8_4.1.ppc64le.rpm