CVE-2023-32611

A flaw was found in GLib. GVariant deserialization is vulnerable to a slowdown issue where a crafted GVariant can cause excessive processing, leading to denial of service...

CVE-2023-29499 Gvariant offset table entry size is not checked in is_normal()

A flaw was found in GLib. GVariant deserialization fails to validate that the input conforms to the expected format, leading to denial of service...

CVE-2023-29499 Gvariant offset table entry size is not checked in is_normal()

A flaw was found in GLib. GVariant deserialization fails to validate that the input conforms to the expected format, leading to denial of service...

CVE-2023-29499

CVE-2023-29499 affects GLib’s GVariant deserialization. The root cause is that input is not validated to the expected format, allowing a crafted payload to trigger a denial of service. Public documents describe the issue as a vulnerability in GLib’s GVariant handling and note that fixes update GL...

CVE-2023-29499

A flaw was found in GLib. GVariant deserialization fails to validate that the input conforms to the expected format, leading to denial of service...

CVE-2023-32665 Gvariant deserialisation does not match spec for non-normal data

A flaw was found in GLib. GVariant deserialization is vulnerable to an exponential blowup issue where a crafted GVariant can cause excessive processing, leading to denial of service...

CVE-2023-32665 Gvariant deserialisation does not match spec for non-normal data

A flaw was found in GLib. GVariant deserialization is vulnerable to an exponential blowup issue where a crafted GVariant can cause excessive processing, leading to denial of service...

CVE-2023-32665

GLib's GVariant deserialization vulnerability (CVE-2023-32665) enables denial of service via an exponential blowup with crafted GVariant inputs. The issue is tied to GLib's GVariant handling and is discussed across multiple advisories (CVE-2023-29499, CVE-2023-32611, CVE-2023-32665). Public resol...

CVE-2023-32665

A flaw was found in GLib. GVariant deserialization is vulnerable to an exponential blowup issue where a crafted GVariant can cause excessive processing, leading to denial of service...

EulerOS 2.0 SP9 : glib2 (EulerOS-SA-2023-2582)

According to the versions of the glib2 package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : It was discovered that GLib incorrectly handled non-normal GVariants. An attacker could use this issue to cause GLib to crash, resulting in a denial...

EulerOS 2.0 SP9 : glib2 (EulerOS-SA-2023-2612)

According to the versions of the glib2 package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : It was discovered that GLib incorrectly handled non-normal GVariants. An attacker could use this issue to cause GLib to crash, resulting in a denial...

Medium: glib2

Issue Overview: The upstream bug report describes this issue as follows: A vulnerability was found in GLib2.0, where DoS caused by handling a malicious text-form variant which is structured to cause looping superlinear to its text size. Applications are at risk if they parse untrusted text-form...

Fedora 37 : mingw-glib2 (2023-1a7e2b3dda)

The remote Fedora 37 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-1a7e2b3dda advisory. Update to glib2-2.74.7. Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not...

glib2 代码问题漏洞

glib2 is a general-purpose, portable utility library for the GNOME project. It provides many useful data types, macros, type conversions, string utilities, file utilities, main loop abstractions, and more. A security vulnerability exists in glib2, which stems from a mismatch between the...

USN-6165-1: GLib vulnerabilities

It was discovered that GLib incorrectly handled non-normal GVariants. An attacker could use this issue to cause GLib to crash, resulting in a denial of service, or perform other unknown attacks...

CVE-2023-32643

A flaw was found in GLib. The GVariant deserialization code is vulnerable to a heap buffer overflow introduced by the fix for CVE-2023-32665. This bug does not affect any released version of GLib, but does affect GLib distributors who followed the guidance of GLib developers to backport the initi...

CVE-2023-32611

A flaw was found in GLib. GVariant deserialization is vulnerable to a slowdown issue where a crafted GVariant can cause excessive processing, leading to denial of service...

CVE-2023-29499

A flaw was found in GLib. GVariant deserialization fails to validate that the input conforms to the expected format, leading to denial of service...

CVE-2023-32665

A flaw was found in GLib. GVariant deserialization is vulnerable to an exponential blowup issue where a crafted GVariant can cause excessive processing, leading to denial of service...

UBUNTU-CVE-2023-32636

A flaw was found in glib, where the gvariant deserialization code is vulnerable to a denial of service introduced by additional input validation added to resolve CVE-2023-29499. The offset table validation may be very slow. This bug does not affect any released version of glib but does affect gli...