Unity Linux 20.1070e Security Update: glib-networking (UTSA-2025-993332)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-993332 advisory. glib-networking's OpenSSL backend fails to properly check the return value of a call to BIOwrite, resulting in an out of bounds read. Tenable has extracted the...

CVE-2025-60018

glib-networking's OpenSSL backend fails to properly check the return value of a call to BIOwrite, resulting in an out of bounds read...

CVE-2025-60018

CVE-2025-60018 affects glib-networking, specifically its OpenSSL backend, where BIO_write() return value is not properly checked, causing an out-of-bounds read. The issue is described across multiple sources as a vulnerability in the glib-networking OpenSSL backend, with the root cause being the ...

(size_t)BIO_write(in, buf, len) == len

Detailed report: https://clusterfuzz-external.appspot.com/testcase?key=6308967940620288 Fuzzer: libFuzzer Job Type: libfuzzerasanopenssl Platform Id: linux Crash Type: ASSERT Crash Address: Crash State: sizetBIOwritein, buf, len == len fuzzer::Fuzzer::ExecuteCallback fuzzer::Fuzzer::RunOne...