VulnerableCode Package Details - pkg:deb/debian/glib2.0@2.74.6-2%2Bdeb12u4

Search for packages

Package details: pkg:deb/debian/glib2.0@2.74.6-2%2Bdeb12u4

Essentials
History (1)

purl	pkg:deb/debian/glib2.0@2.74.6-2%2Bdeb12u4
Tags	Ghost

Next non-vulnerable version	2.78.4-1
Latest non-vulnerable version	2.84.3-1
Risk	3.1

Vulnerabilities affecting this package (1)

Vulnerability	Summary	Fixed by
VCID-yznb-jwt4-43h8 Aliases: CVE-2024-52533	gio/gsocks4aproxy.c in GNOME GLib before 2.82.1 has an off-by-one error and resultant buffer overflow because SOCKS4_CONN_MSG_LEN is not sufficient for a trailing '\0' character.	2.74.6-2+deb12u5 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 2.74.6-2+deb12u6 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}

Vulnerability

Summary

Fixed by

VCID-yznb-jwt4-43h8
Aliases:
CVE-2024-52533

gio/gsocks4aproxy.c in GNOME GLib before 2.82.1 has an off-by-one error and resultant buffer overflow because SOCKS4_CONN_MSG_LEN is not sufficient for a trailing '\0' character.

2.74.6-2+deb12u5
Affected by 2 other vulnerabilities.

2.74.6-2+deb12u6
Affected by 1 other vulnerability.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2024-12-15T18:57:40.874762+00:00	Debian Importer	Affected by	VCID-yznb-jwt4-43h8	https://security-tracker.debian.org/tracker/data/json	35.0.0