pkg:Debian/glib2.0

All known vulnerabilities

• CRITICAL9.8CVE-2025-14087A flaw was found in GLib (Gnome Lib).
  from 0, < 2.66.8-1+deb11u7
• CRITICAL9.8CVE-2024-52533glib2.0 - security update
  from 0, < 2.66.8-1+deb11u5
• CRITICAL9.8CVE-2024-52533glib2.0 - security update
  from 0, < 2.66.8-1+deb11u5
• CRITICAL9.8glib2.0 - security update
  from 0, < 2.42.1-1+deb8u1
• CRITICAL9.8glib2.0 - security update
  from 0, < 2.58.3-2
• CRITICAL9.8glib2.0 - security update
  from 0, < 2.58.0-1
• CRITICAL9.8glib2.0 - security update
  from 0, < 2.42.1-1+deb8u2
• HIGH8.8A vulnerability was found in GNOME gvdb.
  from 0, < 2.66.0-1
• HIGH7.8GNOME GLib before 2.65.3 has an integer overflow, that might lead to an out-of-bounds write, in g_option_group_add_entries.
  from 0, < 2.66.0-1
• HIGH7.8The g_file_copy function in glib 2.0 sets the permissions of a target file to the permissions of a symbolic link (777), which allows user-a…
  from 0, < 2.22.0-1
• HIGH7.7glib2.0 - security update
  from 0, < 2.66.8-1+deb11u7
• HIGH7.7glib2.0 - security update
  from 0, < 2.66.8-1+deb11u7
• HIGH7.5Glib: integer overflow in g_string_maybe_expand() leading to potential buffer overflow in glib gstring
  from 0, < 2.84.3-1
• HIGH7.5glib2.0 - security update
  from 0, < 2.58.3-2+deb10u5
• HIGH7.5glib2.0 - security update
  from 0, < 2.66.8-1+deb11u1
• HIGH7.5An issue was discovered in GNOME GLib before 2.66.6 and 2.67.x before 2.67.3.
  from 0, < 2.66.6-1
• HIGH7.5glib2.0 - security update
  from 0, < 2.66.7-1
• HIGH7.5glib2.0 - security update
  from 0, < 2.50.3-2+deb9u3
• HIGH7.5glib2.0 - regression update
  from 0, < 2.42.1-1+deb8u3
• HIGH7.5glib2.0 - regression update
  from 0, < 2.60.5-1
• HIGH7.5GNOME GLib 2.56.1 has an out-of-bounds read vulnerability in g_markup_parse_context_parse() in gmarkup.c, related to utf8_str().
  from 0, < 2.58.0-1
• HIGH7.5GLib 2.31.8 and earlier, when the g_str_hash function is used, computes hash values without restricting the ability to trigger hash collisi…
  from 0
• MEDIUM6.5A flaw was found in glib.
  from 0, < 2.66.8-1+deb11u7
• MEDIUM5.9GSocketClient in GNOME GLib through 2.62.4 may occasionally connect directly to a target address instead of connecting via a proxy server w…
  from 0, < 2.62.5-1
• MEDIUM5.5A flaw was found in GLib.
  from 0, < 2.66.8-1+deb11u1
• MEDIUM5.5A flaw was found in GLib.
  from 0, < 2.66.8-1+deb11u1
• MEDIUM5.5glib2.0 - security update
  from 0, < 2.58.3-2+deb10u4
• MEDIUM5.5glib2.0 - security update
  from 0, < 2.64.0-1
• MEDIUM5.4A flaw was found in GLib.
  from 0, < 2.66.8-1+deb11u8
• MEDIUM5.3An issue was discovered in GNOME GLib before 2.66.8.
  from 0, < 2.66.7-2
• MEDIUM5.2glib2.0 - security update
  from 0, < 2.66.8-1+deb11u2
• MEDIUM5.2glib2.0 - security update
  from 0, < 2.66.8-1+deb11u2
• MEDIUM5.2glib2.0 - security update
  from 0, < 2.58.3-2+deb10u6
• MEDIUM4.8A flaw was found in GLib, which is vulnerable to an integer overflow in the g_string_insert_unichar() function.
  from 0, < 2.66.8-1+deb11u7
• MEDIUM4.2A flaw was found in the GLib Base64 encoding routine when processing very large input data.
  from 0, < 2.66.8-1+deb11u8
• LOW3.7glib2.0 - security update
  from 0, < 2.66.8-1+deb11u8
• LOW3.7glib2.0 - security update
  from 0, < 2.66.8-1+deb11u8
• LOW3.7A flaw was found in glib.
  from 0, < 2.66.8-1+deb11u7
• LOW3.7glib2.0 - security update
  from 0, < 2.66.8-1+deb11u6
• LOW3.7glib2.0 - security update
  from 0, < 2.66.8-1+deb11u6
• LOW2.8A flaw was found in Glib's content type parsing logic.
  from 0, < 2.66.8-1+deb11u8
• —libdbus 1.5.x and earlier, when used in setuid or other privileged programs in X.org and possibly other products, allows local users to gai…
  from 0, < 2.33.12+really2.32.4-2
• —glib2.0 - arbitrary code execution
  from 0, < 2.20.0-1
• —glib2.0 - arbitrary code execution
  from 0, < 2.12.4-2+etch1
• —Perl-Compatible Regular Expression (PCRE) library before 6.7 does not properly calculate the compiled memory allocation for regular express…
  from 0, < 2.14.3-1
• —Perl-Compatible Regular Expression (PCRE) library before 6.7 allows context-dependent attackers to cause a denial of service (error or cras…
  from 0, < 2.14.3-1
• —Multiple integer overflows in Perl-Compatible Regular Expression (PCRE) library before 7.3 allow context-dependent attackers to cause a den…
  from 0, < 2.14.3-1
• —Perl-Compatible Regular Expression (PCRE) library before 7.3 backtracks too far when matching certain input bytes against some regex patter…
  from 0, < 2.14.3-1
• —Perl-Compatible Regular Expression (PCRE) library before 7.0 does not properly calculate sizes for unspecified "multiple forms of character…
  from 0, < 2.14.3-1
• —Heap-based buffer overflow in Perl-Compatible Regular Expression (PCRE) library before 7.3 allows context-dependent attackers to execute ar…
  from 0, < 2.14.3-1
• —Perl-Compatible Regular Expression (PCRE) library before 7.3 reads past the end of the string when searching for unmatched brackets and par…
  from 0, < 2.14.3-1
• —Perl-Compatible Regular Expression (PCRE) library before 7.3 does not properly compute the length of (1) a \p sequence, (2) a \P sequence,…
  from 0, < 2.14.3-1
• —pcre3 - arbitrary code execution
  from 0, < 2.14.3-1