CVE-2025-60018

Опубликовано: 05 авг. 2025

Источник: redhat

CVSS3: 4.8

EPSS Низкий

Описание

glib-networking's OpenSSL backend fails to properly check the return value of a call to BIO_write(), resulting in an out of bounds read.

Отчет

The OpenSSL backend is not compiled by default in any Red Hat Products hence no components are affected.

Затронутые пакеты

Платформа	Пакет	Состояние
Red Hat Enterprise Linux 10	glib-networking	Not affected
Red Hat Enterprise Linux 6	glib-networking	Not affected
Red Hat Enterprise Linux 7	glib-networking	Not affected
Red Hat Enterprise Linux 8	glib-networking	Not affected
Red Hat Enterprise Linux 9	glib-networking	Not affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low

Дефект:

CWE-125

https://bugzilla.redhat.com/show_bug.cgi?id=2398135glib-networking: Out of Bound Reads on glib-networking through tls/openssl/gtlscertificate-openssl.c via "g_tls_certificate_openssl_get_property()"

EPSS

Процентиль: 12%

0.0004

Низкий

4.8 Medium

CVSS3

Связанные уязвимости

CVE-2025-60018

CVSS3: 4.8

ubuntu

6 месяцев назад

glib-networking's OpenSSL backend fails to properly check the return value of a call to BIO_write(), resulting in an out of bounds read.

CVE-2025-60018

CVSS3: 4.8

nvd

6 месяцев назад

glib-networking's OpenSSL backend fails to properly check the return value of a call to BIO_write(), resulting in an out of bounds read.

CVE-2025-60018

msrc

6 месяцев назад

Glib-networking: out of bound reads on glib-networking through tls/openssl/gtlscertificate-openssl.c via "g_tls_certificate_openssl_get_property()"

CVE-2025-60018

CVSS3: 4.8

debian

6 месяцев назад

glib-networking's OpenSSL backend fails to properly check the return v ...

GHSA-3jwx-4xp9-65px

CVSS3: 4.8

github

6 месяцев назад

glib-networking's OpenSSL backend fails to properly check the return value of a call to BIO_write(), resulting in an out of bounds read.

EPSS

Процентиль: 12%

0.0004

Низкий

4.8 Medium

CVSS3