CVE-2026-1489 affecting package glib for versions less than 2.71.0-10

CVE-2026-1489 affecting package glib for versions less than 2.71.0-10. A patched version of the package is available...

OESA-2026-1683 glib2 security update

GLib is a bundle of three formerly five low-level system libraries written in C and developed mainly by GNOME. GLib's code was separated from GTK, so it can be used by software other than GNOME and has been developed in parallel ever since. Security Fixes: A flaw was found in GLib. An integer...

CVE-2026-1489 affecting package glib for versions less than 2.78.6-8

CVE-2026-1489 affecting package glib for versions less than 2.78.6-8. A patched version of the package is available...

SUSE: Security Advisory (SUSE-SU-2026:0458-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE-SU-2026:0458-1 Security update for glib2

This update for glib2 fixes the following issues: - CVE-2026-1485: Fixed buffer underflow and out-of-bounds access due to integer wraparound in content type parsing bsc1257354. - CVE-2026-1484: Fixed buffer underflow and out-of-bounds access due to miscalculated buffer boundaries in the Base64...

SUSE: Security Advisory (SUSE-SU-2026:20221-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora: Security Advisory (FEDORA-2026-607c3364fd)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora 42 : mingw-glib2 (2026-2c53d4d272)

The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-2c53d4d272 advisory. Backport fixes for CVE-2026-1484, CVE-2026-1485, CVE-2026-1489. Tenable has extracted the preceding description block directly from the Fedora...

openSUSE Security Advisory (SUSE-SU-2026:0373-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : glib2 (SUSE-SU-2026:0373-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:0373-1 advisory. - CVE-2026-1485: Fixed buffer underflow and out-of-bounds access due to integer wraparound in...

ROOT-OS-DEBIAN-12-CVE-2026-1489 CVE-2026-1489 in rootio-glib2.0 - Patched by Root

Root has patched CVE-2026-1489 in the rootio-glib2.0 package for Root:Debian:12. Multiple fixed versions available...

openSUSE 16 Security Update : glib2 (openSUSE-SU-2026:20150-1)

The remote openSUSE 16 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2026:20150-1 advisory. - CVE-2026-1485: Fixed buffer underflow and out-of-bounds access due to integer wraparound in content type parsing bsc1257354. - CVE-2026-1484:...

CVE-2026-1489

creationtimestamp| type| source ---|---|--- 2026-01-27 16:49:47+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mdg7onrhof2c 2026-02-23 13:52:49+00:00| seen| https://bsky.app/profile/ferramentaslinux.bsky.social/post/3mfjsexr4u22b...

CVE-2026-1489

A flaw was found in GLib. An integer overflow vulnerability in its Unicode case conversion implementation can lead to memory corruption. By processing specially crafted and extremely large Unicode strings, an attacker could trigger an undersized memory allocation, resulting in out-of-bounds write...

Linux Distros Unpatched Vulnerability : CVE-2026-1489

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in GLib. An integer overflow vulnerability in its Unicode case conversion implementation can lead to memory corruption. By processing specially...

CVE-2019-1489

An information disclosure vulnerability exists when the Windows Remote Desktop Protocol RDP fails to properly handle objects in memory, aka 'Remote Desktop Protocol Information Disclosure Vulnerability'...

CVE-2025-1489

The WP-Appbox plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's appbox shortcode in all versions up to, and including, 4.5.4 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers,...

CVE-2025-1489

The WP-Appbox plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's appbox shortcode in all versions up to, and including, 4.5.4 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers,...

CVE-2025-1489

The WP-Appbox plugin for WordPress has a Stored Cross-Site Scripting (XSS) vulnerability in the appbox shortcode, affecting all versions up to 4.5.4 due to insufficient input sanitization and output escaping on user-supplied attributes. Exploitation requires authentication (Contributor+), enablin...

CVE-2025-1489 WP-Appbox <= 4.5.4 - Authenticated (Contributor+) Stored Cross-Site Scripting via appbox Shortcode

The WP-Appbox plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's appbox shortcode in all versions up to, and including, 4.5.4 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers,...