35 matches found
Astra Linux - уязвимость в python-reportlab
The paraparser module in ReportLab before version 3.5.31 allows for remote code execution. This occurs because the startunichar function in paraparser.py evaluates untrusted user input as a Unicode character in a crafted XML document. The input includes the string “'code='” followed by arbitrary...
OESA-2026-1766 glib2 security update
GLib is a bundle of three formerly five low-level system libraries written in C and developed mainly by GNOME. GLib's code was separated from GTK, so it can be used by software other than GNOME and has been developed in parallel ever since. Security Fixes: A flaw was found in GLib, which is...
glib2 security update
An update is available for glib2. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list GLib provides the core application building blocks for libraries and applicatio...
RLSA-2025:11140 Moderate: glib2 security update
GLib provides the core application building blocks for libraries and applications written in C. It provides the core object system used in GNOME, the main loop implementation, and a large set of utility functions for strings and common data structures. Security Fixes: glib: buffer overflow in...
glib: Buffer Underflow on GLib through glib/gstring.c via function g_string_insert_unichar
A flaw was found in GLib, which is vulnerable to an integer overflow in the gstringinsertunichar function. When the position at which to insert the character is large, the position will overflow, leading to a buffer underwrite...
glib: Buffer Underflow on GLib through glib/gstring.c via function g_string_insert_unichar
A flaw was found in GLib, which is vulnerable to an integer overflow in the gstringinsertunichar function. When the position at which to insert the character is large, the position will overflow, leading to a buffer underwrite...
Linux Distros Unpatched Vulnerability : CVE-2019-19450
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - paraparser in ReportLab before 3.5.31 allows remote code execution because startunichar in paraparser.py evaluates untrusted user input in a unichar element in ...
K000153054: Glib vulnerability CVE-2025-4373
Security Advisory Description A flaw was found in GLib, which is vulnerable to an integer overflow in the gstringinsertunichar function. When the position at which to insert the character is large, the position will overflow, leading to a buffer underwrite. CVE-2025-4373 Impact There is no impact...
EulerOS 2.0 SP11 : glib2 (EulerOS-SA-2025-1950)
According to the versions of the glib2 package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A flaw was found in GLib. An integer overflow and buffer under-read occur when parsing a long invalid ISO 8601 timestamp with the...
glib: Buffer Underflow on GLib through glib/gstring.c via function g_string_insert_unichar
A flaw was found in GLib, which is vulnerable to an integer overflow in the gstringinsertunichar function. When the position at which to insert the character is large, the position will overflow, leading to a buffer underwrite...
CLSA-2025-1753769031 glib2: Fix of CVE-2025-4373
CVE-2025-4373: fix integer overflow in gstringinsertunichar function to prevent buffer underwrite...
CLSA-2025-1753768865 glib2: Fix of CVE-2025-4373
CVE-2025-4373: fix integer overflow in gstringinsertunichar function to prevent buffer underwrite...
SUSE-SU-2025:20508-1 Security update for glib2
This update for glib2 fixes the following issues: - CVE-2025-4373: Fixed buffer underflow through glib/gstring.c via function gstringinsertunichar bsc1242844 - CVE-2025-6052: Fixed integer overflow in gstringmaybeexpand leads to potential buffer overflow in GString bsc1244596...
glib: Buffer Underflow on GLib through glib/gstring.c via function g_string_insert_unichar
A flaw was found in GLib, which is vulnerable to an integer overflow in the gstringinsertunichar function. When the position at which to insert the character is large, the position will overflow, leading to a buffer underwrite...
glib: Buffer Underflow on GLib through glib/gstring.c via function g_string_insert_unichar
A flaw was found in GLib, which is vulnerable to an integer overflow in the gstringinsertunichar function. When the position at which to insert the character is large, the position will overflow, leading to a buffer underwrite...
glib: Buffer Underflow on GLib through glib/gstring.c via function g_string_insert_unichar
A flaw was found in GLib, which is vulnerable to an integer overflow in the gstringinsertunichar function. When the position at which to insert the character is large, the position will overflow, leading to a buffer underwrite...
Security update for glib2
This update for glib2 fixes the following issues: CVE-2025-4373: integer overflow in the gstringinsertunichar function can lead to buffer underwrite and memory corruption bsc1242844. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupda...
CVE-2025-4373
A flaw was found in GLib, which is vulnerable to an integer overflow in the gstringinsertunichar function. When the position at which to insert the character is large, the position will overflow, leading to a buffer underwrite...
AZL-62295 CVE-2025-4373 affecting package glib for versions less than 2.71.0-7
A flaw was found in GLib, which is vulnerable to an integer overflow in the gstringinsertunichar function. When the position at which to insert the character is large, the position will overflow, leading to a buffer underwrite...
Buffer Underwrite (Buffer Underflow)
Overview Affected versions of this package are vulnerable to Buffer Underwrite Buffer Underflow through the gstringinsertunichar function. An attacker can alter or corrupt memory data by inserting characters in a way that manipulates the buffer boundaries. Remediation Upgrade glib to version 2.85...