27 matches found
USN-7942-1 glib2.0 vulnerabilities
It was discovered that GLib incorrectly handled escaping URI strings. An attacker could use this issue to cause GLib to crash, resulting in a denial of service, or possibly execute arbitrary code. CVE-2025-13601 It was discovered that GLib incorrectly parsed certain GVariants. An attacker could u...
EUVD-2025-10006
Malicious code in bioql PyPI...
EulerOS 2.0 SP12 : glib2 (EulerOS-SA-2025-2005)
According to the versions of the glib2 package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A flaw was found in GLib, which is vulnerable to an integer overflow in the gstringinsertunichar function. When the position at which to insert the...
SUSE-SU-2025:01599-1 Security update for glib2
This update for glib2 fixes the following issues: - CVE-2025-3360: Fixed integer overflow and buffer underread when parsing a very long and invalid ISO 8601 timestamp with gdatetimenewfromiso8601 bsc1240897...
SUSE-SU-2025:20318-1 Security update for glib2
This update for glib2 fixes the following issues: - CVE-2025-3360: Fixed integer overflow and buffer underread when parsing a very long and invalid ISO 8601 timestamp with gdatetimenewfromiso8601 bsc1240897...
SUSE SLED15: gio-branding-upstream / glib2-devel / glib2-devel-32bit / etc (SUSE-SU-2025:1367-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2025:1367-1 advisory. - CVE-2025-3360: Fixed integer overflow and buffer underread when parsing a very long and invalid ISO 860...
CVE-2025-3360
A flaw was found in GLib. An integer overflow and buffer under-read occur when parsing a long invalid ISO 8601 timestamp with the gdatetimenewfromiso8601 function...
CVE-2025-3360
A flaw was found in GLib. An integer overflow and buffer under-read occur when parsing a long invalid ISO 8601 timestamp with the gdatetimenewfromiso8601 function...
CVE-2025-3360 Glibc: glib prior to 2.82.5 is vulnerable to integer overflow and buffer under-read when parsing a very long invalid iso 8601 timestamp with g_date_time_new_from_iso8601().
A flaw was found in GLib. An integer overflow and buffer under-read occur when parsing a long invalid ISO 8601 timestamp with the gdatetimenewfromiso8601 function...
CVE-2025-3360
CVE-2025-3360 : GLib2 contains an integer overflow and buffer under-read when parsing a long invalid ISO 8601 timestamp via g_date_time_new_from_iso8601(). Debian LTS notes a fix in glib2.0 for Bullseye (2.66.8-1+deb11u6); other advisories (e.g., Astra/IBM-related pages) reference GLib fixes. CVS...
CVE-2025-3360 Glibc: glib prior to 2.82.5 is vulnerable to integer overflow and buffer under-read when parsing a very long invalid iso 8601 timestamp with g_date_time_new_from_iso8601().
A flaw was found in GLib. An integer overflow and buffer under-read occur when parsing a long invalid ISO 8601 timestamp with the gdatetimenewfromiso8601 function...
PT-2025-15227
Name of the Vulnerable Software and Affected Versions GLib affected versions not specified openSUSE Leap 15.4 SUSE Micro versions 5.1 through 5.5 Red Hat Enterprise Linux 6 Description An integer overflow and buffer under-read occur when parsing a long invalid ISO 8601 timestamp. This issue is...
openSUSE: Security Advisory for bea (SUSE-SU-2024:4007-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE-SU-2024:4007-1 Security update for SUSE Manager Server 4.3
This update fixes the following issues: release-notes-susemanager: - Update to SUSE Manager 4.3.14 Ubuntu 24.04 support as client Product migration from RHEL and Clones to SUSE Liberty Linux POS image templates now produce compressed images Date format for API endpoints has been changed to ISO-86...
SUSE CVE-2016-7129
The phpwddxprocessdata function in ext/wddx/wddx.c in PHP before 5.6.25 and 7.x before 7.0.10 allows remote attackers to cause a denial of service segmentation fault or possibly have unspecified other impact via an invalid ISO 8601 time value, as demonstrated by a wddxdeserialize call that...
Denial Of Service (DoS)
PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. A buffer overflow flaw was found in the Exif extension. A specially crafted JPEG or TIFF file could cause a PHP application using the exifthumbnail function to crash or, possibly, execute arbitrary code...
gstreamer: Out-of-bounds read in gst_date_time_new_from_iso8601_string()
The gstdatetimenewfromiso8601string function in gst/gstdatetime.c in GStreamer before 1.10.3 allows remote attackers to cause a denial of service out-of-bounds heap read via a malformed datetime string...
CVE-2016-7129
The phpwddxprocessdata function in ext/wddx/wddx.c in PHP before 5.6.25 and 7.x before 7.0.10 allows remote attackers to cause a denial of service segmentation fault or possibly have unspecified other impact via an invalid ISO 8601 time value, as demonstrated by a wddxdeserialize call that...
Code injection
The phpwddxprocessdata function in ext/wddx/wddx.c in PHP before 5.6.25 and 7.x before 7.0.10 allows remote attackers to cause a denial of service segmentation fault or possibly have unspecified other impact via an invalid ISO 8601 time value, as demonstrated by a wddxdeserialize call that...
CVE-2016-7129
The phpwddxprocessdata function in ext/wddx/wddx.c in PHP before 5.6.25 and 7.x before 7.0.10 allows remote attackers to cause a denial of service segmentation fault or possibly have unspecified other impact via an invalid ISO 8601 time value, as demonstrated by a wddxdeserialize call that...