Search for packages
| purl | pkg:deb/debian/glib2.0@2.74.6-2%2Bdeb12u8?distro=trixie |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-a9dn-qcuy-f7cs
Aliases: CVE-2026-1489 |
Glib: GLib: Memory corruption via integer overflow in Unicode case conversion |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-gchd-ewt9-17dk
Aliases: CVE-2026-0988 |
glib: GLib: Denial of Service via Integer Overflow in g_buffered_input_stream_peek() |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-gwaz-f5mw-j7cb
Aliases: CVE-2026-1485 |
Glib: Glib: Local denial of service via buffer underflow in content type parsing |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-u5sb-ke8a-qkd2
Aliases: CVE-2026-1484 |
Glib: Integer Overflow Leading to Buffer Underflow and Out-of-Bounds Write in GLib g_base64_encode() |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-1z8y-cqmn-s7gc | PCRE is vulnerable to multiple buffer overflow and memory corruption vulnerabilities, possibly leading to the execution of arbitrary code. |
CVE-2007-1659
|
| VCID-2dcv-wbjk-tqh8 | PCRE is vulnerable to multiple buffer overflow and memory corruption vulnerabilities, possibly leading to the execution of arbitrary code. |
CVE-2007-4767
|
| VCID-4em6-3x32-ybcv | Uncontrolled Resource Consumption A flaw was found in GLib. GVariant deserialization is vulnerable to a slowdown issue where a crafted GVariant can cause excessive processing, leading to denial of service. |
CVE-2023-32611
|
| VCID-6xng-bfkg-jfa4 | glib: Integer overflow in in g_escape_uri_string() |
CVE-2025-13601
|
| VCID-7ck1-vwbt-9qhd | glib: Mishandling of proxy_addr field in GSocketClient may lead to proxy being ignored |
CVE-2020-6750
|
| VCID-7ruc-s4au-kqe5 | glib: glib crash after long command line |
CVE-2025-4056
|
| VCID-817e-zas3-6yf6 | glibc: GLib prior to 2.82.5 is vulnerable to integer overflow and buffer under-read when parsing a very long invalid ISO 8601 timestamp with g_date_time_new_from_iso8601(). |
CVE-2025-3360
|
| VCID-83s2-671n-zugn | glib2: file_copy_fallback in gio/gfile.c in GNOME GLib does not properly restrict file permissions while a copy operation is in progress |
CVE-2019-12450
|
| VCID-bfyu-jryn-eyak | Multiple vulnerabilities have been found in GLib, the worst of which could result in the arbitrary execution of code. |
CVE-2021-28153
|
| VCID-ca52-wfc7-2ubd | Multiple vulnerabilities have been found in GLib, the worst of which could result in the arbitrary execution of code. |
CVE-2021-27219
|
| VCID-cgcb-brxv-mqef | glib: Buffer Underflow on GLib through glib/gstring.c via function g_string_insert_unichar |
CVE-2025-4373
|
| VCID-cs49-wfxj-j3ba | PCRE is vulnerable to multiple buffer overflow and memory corruption vulnerabilities, possibly leading to the execution of arbitrary code. |
CVE-2007-1661
|
| VCID-cy7v-dhum-gfgk | Uncontrolled Resource Consumption A flaw was found in glib, where the gvariant deserialization code is vulnerable to a denial of service introduced by additional input validation added to resolve CVE-2023-29499. The offset table validation may be very slow. This bug does not affect any released version of glib but does affect glib distributors who followed the guidance of glib developers to backport the initial fix for CVE-2023-29499. |
CVE-2023-32636
|
| VCID-dpz7-pg2m-67hv | Out-of-bounds Write A flaw was found in GLib. The GVariant deserialization code is vulnerable to a heap buffer overflow introduced by the fix for CVE-2023-32665. This bug does not affect any released version of GLib, but does affect GLib distributors who followed the guidance of GLib developers to backport the initial fix for CVE-2023-32665. |
CVE-2023-32643
|
| VCID-dqaf-8bt4-e7b2 | Multiple vulnerabilities have been identified, the worst of which allow arbitrary code execution on a user's system via a malicious Flash file. |
CVE-2007-4768
|
| VCID-dsah-jpwg-yfez | glib: buffer overflow in set_connect_msg() |
CVE-2024-52533
|
| VCID-ezwm-38cx-tfct | glib: g_socket_client_connected_callback in gio/gsocketclient.c allows to cause denial of service |
CVE-2019-9633
|
| VCID-gkef-z3kc-tua8 | Multiple integer overflows might allow for the execution of arbitrary code when performing base64 conversion. |
CVE-2008-4316
|
| VCID-h7kh-2qm2-1fgu | glib: GLib: Buffer underflow in GVariant parser leads to heap corruption |
CVE-2025-14087
|
| VCID-j5ez-ccu3-j3c6 | glib2: folder | symlink permissions change after copy via nautilus |
CVE-2009-3289
|
| VCID-jkfs-7tug-5beu | glib2: NULL pointer dereference in g_markup_parse_context_end_parse() function in gmarkup.c |
CVE-2018-16428
|
| VCID-khtv-um6m-pkad | glib2: Possible privilege escalation thourgh pkexec and aliases |
CVE-2021-3800
|
| VCID-mha6-j74w-wudp | PCRE is vulnerable to multiple buffer overflow and memory corruption vulnerabilities, possibly leading to the execution of arbitrary code. |
CVE-2007-1662
|
| VCID-p6zn-nqaf-wfa7 | glib2: insecure permissions for files and directories |
CVE-2019-13012
|
| VCID-r5t7-nkkv-skhg | A vulnerability has been discovered in GLib, which can lead to privilege escalation. |
CVE-2024-34397
|
| VCID-re78-z26g-ffen | glib: Buffer Under-read on GLib through glib/gfileutils.c via get_tmp_file() |
CVE-2025-7039
|
| VCID-s4xn-z1py-9bbs | A vulnerability has been found in D-Bus which allows local attackers to gain escalated privileges. |
CVE-2012-3524
|
| VCID-sue7-e3bs-tuep | pcre miscalculation of memory requirements for malformed Posix character class |
CVE-2006-7225
|
| VCID-sy5p-ju6m-vbgp | PCRE is vulnerable to multiple buffer overflow and memory corruption vulnerabilities, possibly leading to the execution of arbitrary code. |
CVE-2007-1660
|
| VCID-syjs-4vtj-4bcb | Multiple vulnerabilities have been found in GLib, the worst of which could result in the arbitrary execution of code. |
CVE-2021-27218
|
| VCID-t8h7-hah9-bkaw | gvdb: use after free issue was fixed in gvdb_table_write_contents_async() |
CVE-2019-25085
|
| VCID-tmff-7vrs-sqfx | GNOME GLib before 2.65.3 has an integer overflow, that might lead to an out-of-bounds write, in g_option_group_add_entries. NOTE: the vendor's position is "Realistically this is not a security issue. The standard pattern is for callers to provide a static list of option entries in a fixed number of calls to g_option_group_add_entries()." The researcher states that this pattern is undocumented |
CVE-2020-35457
|
| VCID-tzt9-dtt8-bkfm | Deserialization of Untrusted Data A flaw was found in GLib. GVariant deserialization is vulnerable to an exponential blowup issue where a crafted GVariant can cause excessive processing, leading to denial of service. |
CVE-2023-32665
|
| VCID-vrjs-v8f3-s3d7 | PCRE is vulnerable to multiple buffer overflow and memory corruption vulnerabilities, possibly leading to the execution of arbitrary code. |
CVE-2007-4766
|
| VCID-wj2d-k1ha-pqgd | pcre miscalculation of memory requirements for repeated subpattern containing a named recursion or subroutine reference |
CVE-2006-7226
|
| VCID-xq36-cxqj-h3hh | glib: Integer Overflow in GLib GIO Attribute Escaping Causes Heap Buffer Overflow |
CVE-2025-14512
|
| VCID-xzum-kd1h-nfdk | glib2: Out-of-bounds read in g_markup_parse_context_parse() in gmarkup.c |
CVE-2018-16429
|
| VCID-z2v6-3j7r-vkaj | Uncontrolled Resource Consumption A flaw was found in GLib. GVariant deserialization fails to validate that the input conforms to the expected format, leading to denial of service. |
CVE-2023-29499
|
| VCID-zdk7-7nsk-gbfs | glib: Integer overflow in g_string_maybe_expand() leading to potential buffer overflow in GLib GString |
CVE-2025-6052
|