Search for packages
| purl | pkg:alpm/archlinux/glib2@2.66.7-1 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-38zg-dgk4-aaac
Aliases: CVE-2021-28153 |
An issue was discovered in GNOME GLib before 2.66.8. When g_file_replace() is used with G_FILE_CREATE_REPLACE_DESTINATION to replace a path that is a dangling symlink, it incorrectly also creates the target of the symlink as an empty file, which could conceivably have security relevance if the symlink is attacker-controlled. (If the path is a symlink to a file that already exists, then the contents of that file correctly remain unchanged.) |
Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-gq67-5cnu-aaam | An issue was discovered in GNOME GLib before 2.66.7 and 2.67.x before 2.67.4. If g_byte_array_new_take() was called with a buffer of 4GB or more on a 64-bit platform, the length would be truncated modulo 2**32, causing unintended length truncation. |
CVE-2021-27218
|
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2025-03-28T07:47:04.567688+00:00 | Arch Linux Importer | Affected by | VCID-38zg-dgk4-aaac | https://security.archlinux.org/AVG-1680 | 36.0.0 |
| 2025-03-28T07:46:42.646644+00:00 | Arch Linux Importer | Fixing | VCID-gq67-5cnu-aaam | https://security.archlinux.org/AVG-1575 | 36.0.0 |
| 2024-09-18T02:02:27.903807+00:00 | Arch Linux Importer | Affected by | VCID-38zg-dgk4-aaac | https://security.archlinux.org/AVG-1680 | 34.0.1 |
| 2024-09-18T02:02:03.555327+00:00 | Arch Linux Importer | Fixing | VCID-gq67-5cnu-aaam | https://security.archlinux.org/AVG-1575 | 34.0.1 |
| 2024-01-03T22:28:28.805798+00:00 | Arch Linux Importer | Affected by | VCID-38zg-dgk4-aaac | https://security.archlinux.org/AVG-1680 | 34.0.0rc1 |
| 2024-01-03T22:28:06.297451+00:00 | Arch Linux Importer | Fixing | VCID-gq67-5cnu-aaam | https://security.archlinux.org/AVG-1575 | 34.0.0rc1 |