Описание
A flaw was found in GLib. An integer overflow and buffer under-read occur when parsing a long invalid ISO 8601 timestamp with the g_date_time_new_from_iso8601() function.
Меры по смягчению последствий
Currently, no mitigation is available for this vulnerability.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 10 | bootc | Fix deferred | ||
| Red Hat Enterprise Linux 10 | glib2 | Fix deferred | ||
| Red Hat Enterprise Linux 10 | glycin-loaders | Fix deferred | ||
| Red Hat Enterprise Linux 10 | loupe | Fix deferred | ||
| Red Hat Enterprise Linux 10 | mingw-glib2 | Fix deferred | ||
| Red Hat Enterprise Linux 6 | glib2 | Out of support scope | ||
| Red Hat Enterprise Linux 7 | glib2 | Out of support scope | ||
| Red Hat Enterprise Linux 8 | glib2 | Fix deferred | ||
| Red Hat Enterprise Linux 8 | librsvg2 | Fix deferred | ||
| Red Hat Enterprise Linux 8 | mingw-glib2 | Fix deferred |
Показывать по
10
Дополнительная информация
Статус:
Low
Дефект:
CWE-190
https://bugzilla.redhat.com/show_bug.cgi?id=2357754glibc: GLib prior to 2.82.5 is vulnerable to integer overflow and buffer under-read when parsing a very long invalid ISO 8601 timestamp with g_date_time_new_from_iso8601().
EPSS
Процентиль: 29%
0.00102
Низкий
3.7 Low
CVSS3
Связанные уязвимости
CVSS3: 3.7
ubuntu
5 месяцев назад
A flaw was found in GLib. An integer overflow and buffer under-read occur when parsing a long invalid ISO 8601 timestamp with the g_date_time_new_from_iso8601() function.
CVSS3: 3.7
nvd
5 месяцев назад
A flaw was found in GLib. An integer overflow and buffer under-read occur when parsing a long invalid ISO 8601 timestamp with the g_date_time_new_from_iso8601() function.
CVSS3: 3.7
debian
5 месяцев назад
A flaw was found in GLib. An integer overflow and buffer under-read oc ...
EPSS
Процентиль: 29%
0.00102
Низкий
3.7 Low
CVSS3