Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2025-4373 (GCVE-0-2025-4373)
Vulnerability from cvelistv5
Published
2025-05-06 14:48
Modified
2025-10-08 16:01
Severity ?
VLAI Severity ?
EPSS score ?
CWE
- CWE-124 - Buffer Underwrite ('Buffer Underflow')
Summary
A flaw was found in GLib, which is vulnerable to an integer overflow in the g_string_insert_unichar() function. When the position at which to insert the character is large, the position will overflow, leading to a buffer underwrite.
References
Impacted products
| Vendor | Product | Version | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
Version: 0 ≤ |
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2025-4373",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-05-06T15:09:21.791020Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2025-05-06T15:09:46.724Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"collectionURL": "https://gitlab.gnome.org/GNOME/glib",
"defaultStatus": "unaffected",
"packageName": "glib",
"versions": [
{
"lessThan": "2.84.2",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:10.0"
],
"defaultStatus": "affected",
"packageName": "glib2",
"product": "Red Hat Enterprise Linux 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.80.4-4.el10_0.6",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:enterprise_linux:8::crb",
"cpe:/o:redhat:enterprise_linux:8::baseos"
],
"defaultStatus": "affected",
"packageName": "glib2",
"product": "Red Hat Enterprise Linux 8",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.56.4-166.el8_10",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:rhel_aus:8.2::baseos"
],
"defaultStatus": "affected",
"packageName": "glib2",
"product": "Red Hat Enterprise Linux 8.2 Advanced Update Support",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.56.4-8.el8_2.2",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:rhel_aus:8.4::baseos",
"cpe:/o:redhat:rhel_eus_long_life:8.4::baseos"
],
"defaultStatus": "affected",
"packageName": "glib2",
"product": "Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.56.4-10.el8_4.2",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:rhel_aus:8.4::baseos",
"cpe:/o:redhat:rhel_eus_long_life:8.4::baseos"
],
"defaultStatus": "affected",
"packageName": "glib2",
"product": "Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.56.4-10.el8_4.2",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:rhel_tus:8.6::baseos",
"cpe:/o:redhat:rhel_e4s:8.6::baseos",
"cpe:/o:redhat:rhel_aus:8.6::baseos"
],
"defaultStatus": "affected",
"packageName": "glib2",
"product": "Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.56.4-158.el8_6.2",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:rhel_tus:8.6::baseos",
"cpe:/o:redhat:rhel_e4s:8.6::baseos",
"cpe:/o:redhat:rhel_aus:8.6::baseos"
],
"defaultStatus": "affected",
"packageName": "glib2",
"product": "Red Hat Enterprise Linux 8.6 Telecommunications Update Service",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.56.4-158.el8_6.2",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:rhel_tus:8.6::baseos",
"cpe:/o:redhat:rhel_e4s:8.6::baseos",
"cpe:/o:redhat:rhel_aus:8.6::baseos"
],
"defaultStatus": "affected",
"packageName": "glib2",
"product": "Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.56.4-158.el8_6.2",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:rhel_tus:8.8::baseos",
"cpe:/o:redhat:rhel_e4s:8.8::baseos"
],
"defaultStatus": "affected",
"packageName": "glib2",
"product": "Red Hat Enterprise Linux 8.8 Telecommunications Update Service",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.56.4-162.el8_8",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:rhel_tus:8.8::baseos",
"cpe:/o:redhat:rhel_e4s:8.8::baseos"
],
"defaultStatus": "affected",
"packageName": "glib2",
"product": "Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.56.4-162.el8_8",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:enterprise_linux:9::crb",
"cpe:/o:redhat:enterprise_linux:9::baseos",
"cpe:/a:redhat:enterprise_linux:9::appstream"
],
"defaultStatus": "affected",
"packageName": "glib2",
"product": "Red Hat Enterprise Linux 9",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.68.4-16.el9_6.2",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:enterprise_linux:9::crb",
"cpe:/o:redhat:enterprise_linux:9::baseos",
"cpe:/a:redhat:enterprise_linux:9::appstream"
],
"defaultStatus": "affected",
"packageName": "glib2",
"product": "Red Hat Enterprise Linux 9",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.68.4-16.el9_6.2",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:rhel_e4s:9.0::baseos",
"cpe:/a:redhat:rhel_e4s:9.0::appstream"
],
"defaultStatus": "affected",
"packageName": "glib2",
"product": "Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.68.4-5.el9_0.2",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:rhel_e4s:9.2::baseos",
"cpe:/a:redhat:rhel_e4s:9.2::appstream"
],
"defaultStatus": "affected",
"packageName": "glib2",
"product": "Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.68.4-7.el9_2.2",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:rhel_eus:9.4::appstream",
"cpe:/a:redhat:rhel_eus:9.4::crb",
"cpe:/o:redhat:rhel_eus:9.4::baseos"
],
"defaultStatus": "affected",
"packageName": "glib2",
"product": "Red Hat Enterprise Linux 9.4 Extended Update Support",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.68.4-14.el9_4.3",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:insights_proxy:1.5::el9"
],
"defaultStatus": "affected",
"packageName": "insights-proxy/insights-proxy-container-rhel9",
"product": "Red Hat Insights proxy 1.5",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:openshift_distributed_tracing:3.6::el8"
],
"defaultStatus": "affected",
"packageName": "rhosdt/jaeger-agent-rhel8",
"product": "Red Hat OpenShift distributed tracing 3.6.1",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "sha256:389b9cbd0f05d3d773edc2c06aa73818307cbb25048bddf4f192a992670b6fb4",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:openshift_distributed_tracing:3.6::el8"
],
"defaultStatus": "affected",
"packageName": "rhosdt/jaeger-all-in-one-rhel8",
"product": "Red Hat OpenShift distributed tracing 3.6.1",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "sha256:d9ca4a9ec5bc8de23e4550387f822f19949cdfbc4aeeab20e07b206d92f4a426",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:openshift_distributed_tracing:3.6::el8"
],
"defaultStatus": "affected",
"packageName": "rhosdt/jaeger-collector-rhel8",
"product": "Red Hat OpenShift distributed tracing 3.6.1",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "sha256:a15009fde9c0a63168d82fb07363d2c6ce05f2096dc1a9992a09fe1d76bcf4a7",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:openshift_distributed_tracing:3.6::el8"
],
"defaultStatus": "affected",
"packageName": "rhosdt/jaeger-es-index-cleaner-rhel8",
"product": "Red Hat OpenShift distributed tracing 3.6.1",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "sha256:caadc05a8195f41d48d502458183cef05a1011c6edee343ac212b873ae98c763",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:openshift_distributed_tracing:3.6::el8"
],
"defaultStatus": "affected",
"packageName": "rhosdt/jaeger-es-rollover-rhel8",
"product": "Red Hat OpenShift distributed tracing 3.6.1",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "sha256:57d3bf93431295f0d3c8747fe376cdb0a06dc344dd1d6b0c838f732bd920c73e",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:openshift_distributed_tracing:3.6::el8"
],
"defaultStatus": "affected",
"packageName": "rhosdt/jaeger-ingester-rhel8",
"product": "Red Hat OpenShift distributed tracing 3.6.1",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "sha256:2e6d535aa3208ca8ae1bc588393c8bc499c4bfb452aceca047523502ddffa0ed",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:openshift_distributed_tracing:3.6::el8"
],
"defaultStatus": "affected",
"packageName": "rhosdt/jaeger-operator-bundle",
"product": "Red Hat OpenShift distributed tracing 3.6.1",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "sha256:be3feca3b19ac609e5ef829887b6d03ca3c504163ed0f9e10b2410cdfb175b72",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:openshift_distributed_tracing:3.6::el8"
],
"defaultStatus": "affected",
"packageName": "rhosdt/jaeger-query-rhel8",
"product": "Red Hat OpenShift distributed tracing 3.6.1",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "sha256:3d37f30462f237f5087ef8ac90e39f5cd2cbaf5c143f7cae9d6155eb574726f2",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:openshift_distributed_tracing:3.6::el8"
],
"defaultStatus": "affected",
"packageName": "rhosdt/jaeger-rhel8-operator",
"product": "Red Hat OpenShift distributed tracing 3.6.1",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "sha256:6f3b7f23a515ac140bdad844d60d96fecc79835a75b1d29a70f66df737f1b50c",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:10"
],
"defaultStatus": "affected",
"packageName": "bootc",
"product": "Red Hat Enterprise Linux 10",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:10"
],
"defaultStatus": "affected",
"packageName": "glycin-loaders",
"product": "Red Hat Enterprise Linux 10",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:10"
],
"defaultStatus": "affected",
"packageName": "loupe",
"product": "Red Hat Enterprise Linux 10",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:10"
],
"defaultStatus": "affected",
"packageName": "mingw-glib2",
"product": "Red Hat Enterprise Linux 10",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:6"
],
"defaultStatus": "affected",
"packageName": "glib2",
"product": "Red Hat Enterprise Linux 6",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:7"
],
"defaultStatus": "affected",
"packageName": "glib2",
"product": "Red Hat Enterprise Linux 7",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:8"
],
"defaultStatus": "affected",
"packageName": "librsvg2",
"product": "Red Hat Enterprise Linux 8",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:8"
],
"defaultStatus": "affected",
"packageName": "mingw-glib2",
"product": "Red Hat Enterprise Linux 8",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:9"
],
"defaultStatus": "affected",
"packageName": "bootc",
"product": "Red Hat Enterprise Linux 9",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:9"
],
"defaultStatus": "affected",
"packageName": "librsvg2",
"product": "Red Hat Enterprise Linux 9",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:9"
],
"defaultStatus": "affected",
"packageName": "mingw-glib2",
"product": "Red Hat Enterprise Linux 9",
"vendor": "Red Hat"
}
],
"datePublic": "2025-05-06T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "A flaw was found in GLib, which is vulnerable to an integer overflow in the g_string_insert_unichar() function. When the position at which to insert the character is large, the position will overflow, leading to a buffer underwrite."
}
],
"metrics": [
{
"other": {
"content": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"value": "Moderate"
},
"type": "Red Hat severity rating"
}
},
{
"cvssV3_1": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"format": "CVSS"
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-124",
"description": "Buffer Underwrite (\u0027Buffer Underflow\u0027)",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-10-08T16:01:12.220Z",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"name": "RHSA-2025:10855",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2025:10855"
},
{
"name": "RHSA-2025:11140",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2025:11140"
},
{
"name": "RHSA-2025:11327",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2025:11327"
},
{
"name": "RHSA-2025:11373",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2025:11373"
},
{
"name": "RHSA-2025:11374",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2025:11374"
},
{
"name": "RHSA-2025:11662",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2025:11662"
},
{
"name": "RHSA-2025:12275",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2025:12275"
},
{
"name": "RHSA-2025:13335",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2025:13335"
},
{
"name": "RHSA-2025:14988",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2025:14988"
},
{
"name": "RHSA-2025:14989",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2025:14989"
},
{
"name": "RHSA-2025:14990",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2025:14990"
},
{
"name": "RHSA-2025:14991",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2025:14991"
},
{
"tags": [
"vdb-entry",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/security/cve/CVE-2025-4373"
},
{
"name": "RHBZ#2364265",
"tags": [
"issue-tracking",
"x_refsource_REDHAT"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2364265"
},
{
"url": "https://gitlab.gnome.org/GNOME/glib/-/issues/3677"
}
],
"timeline": [
{
"lang": "en",
"time": "2025-05-06T00:33:30.003000+00:00",
"value": "Reported to Red Hat."
},
{
"lang": "en",
"time": "2025-05-06T00:00:00+00:00",
"value": "Made public."
}
],
"title": "Glib: buffer underflow on glib through glib/gstring.c via function g_string_insert_unichar",
"workarounds": [
{
"lang": "en",
"value": "Currently, no mitigation is available for this vulnerability."
}
],
"x_redhatCweChain": "CWE-124: Buffer Underwrite (\u0027Buffer Underflow\u0027)"
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2025-4373",
"datePublished": "2025-05-06T14:48:39.264Z",
"dateReserved": "2025-05-06T00:35:29.069Z",
"dateUpdated": "2025-10-08T16:01:12.220Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-2025-4373\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2025-05-06T15:16:05.320\",\"lastModified\":\"2025-09-02T03:15:41.650\",\"vulnStatus\":\"Awaiting Analysis\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"A flaw was found in GLib, which is vulnerable to an integer overflow in the g_string_insert_unichar() function. When the position at which to insert the character is large, the position will overflow, leading to a buffer underwrite.\"},{\"lang\":\"es\",\"value\":\"Se encontr\u00f3 una falla en GLib que causa un desbordamiento de enteros en la funci\u00f3n g_string_insert_unichar(). Cuando la posici\u00f3n donde se inserta el car\u00e1cter es grande, esta se desborda, lo que provoca una subscritura del b\u00fafer.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"secalert@redhat.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L\",\"baseScore\":4.8,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"HIGH\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"LOW\",\"availabilityImpact\":\"LOW\"},\"exploitabilityScore\":2.2,\"impactScore\":2.5}]},\"weaknesses\":[{\"source\":\"secalert@redhat.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-124\"}]}],\"references\":[{\"url\":\"https://access.redhat.com/errata/RHSA-2025:10855\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2025:11140\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2025:11327\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2025:11373\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2025:11374\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2025:11662\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2025:12275\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2025:13335\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2025:14988\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2025:14989\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2025:14990\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2025:14991\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/security/cve/CVE-2025-4373\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=2364265\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://gitlab.gnome.org/GNOME/glib/-/issues/3677\",\"source\":\"secalert@redhat.com\"}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2025-4373\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2025-05-06T15:09:21.791020Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2025-05-06T15:09:37.975Z\"}}], \"cna\": {\"title\": \"Glib: buffer underflow on glib through glib/gstring.c via function g_string_insert_unichar\", \"metrics\": [{\"other\": {\"type\": \"Red Hat severity rating\", \"content\": {\"value\": \"Moderate\", \"namespace\": \"https://access.redhat.com/security/updates/classification/\"}}}, {\"format\": \"CVSS\", \"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 4.8, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"MEDIUM\", \"vectorString\": \"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L\", \"integrityImpact\": \"LOW\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"HIGH\", \"availabilityImpact\": \"LOW\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"NONE\"}}], \"affected\": [{\"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"2.84.2\", \"versionType\": \"semver\"}], \"packageName\": \"glib\", \"collectionURL\": \"https://gitlab.gnome.org/GNOME/glib\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:10.0\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 10\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:2.80.4-4.el10_0.6\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"glib2\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:enterprise_linux:8::crb\", \"cpe:/o:redhat:enterprise_linux:8::baseos\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 8\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:2.56.4-166.el8_10\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"glib2\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:rhel_aus:8.2::baseos\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 8.2 Advanced Update Support\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:2.56.4-8.el8_2.2\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"glib2\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:rhel_aus:8.4::baseos\", \"cpe:/o:redhat:rhel_eus_long_life:8.4::baseos\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:2.56.4-10.el8_4.2\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"glib2\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:rhel_aus:8.4::baseos\", \"cpe:/o:redhat:rhel_eus_long_life:8.4::baseos\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:2.56.4-10.el8_4.2\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"glib2\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:rhel_tus:8.6::baseos\", \"cpe:/o:redhat:rhel_e4s:8.6::baseos\", \"cpe:/o:redhat:rhel_aus:8.6::baseos\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:2.56.4-158.el8_6.2\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"glib2\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:rhel_tus:8.6::baseos\", \"cpe:/o:redhat:rhel_e4s:8.6::baseos\", \"cpe:/o:redhat:rhel_aus:8.6::baseos\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 8.6 Telecommunications Update Service\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:2.56.4-158.el8_6.2\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"glib2\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:rhel_tus:8.6::baseos\", \"cpe:/o:redhat:rhel_e4s:8.6::baseos\", \"cpe:/o:redhat:rhel_aus:8.6::baseos\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:2.56.4-158.el8_6.2\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"glib2\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:rhel_tus:8.8::baseos\", \"cpe:/o:redhat:rhel_e4s:8.8::baseos\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 8.8 Telecommunications Update Service\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:2.56.4-162.el8_8\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"glib2\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:rhel_tus:8.8::baseos\", \"cpe:/o:redhat:rhel_e4s:8.8::baseos\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:2.56.4-162.el8_8\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"glib2\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:enterprise_linux:9::crb\", \"cpe:/o:redhat:enterprise_linux:9::baseos\", \"cpe:/a:redhat:enterprise_linux:9::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 9\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:2.68.4-16.el9_6.2\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"glib2\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:enterprise_linux:9::crb\", \"cpe:/o:redhat:enterprise_linux:9::baseos\", \"cpe:/a:redhat:enterprise_linux:9::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 9\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:2.68.4-16.el9_6.2\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"glib2\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:rhel_e4s:9.0::baseos\", \"cpe:/a:redhat:rhel_e4s:9.0::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:2.68.4-5.el9_0.2\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"glib2\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:rhel_e4s:9.2::baseos\", \"cpe:/a:redhat:rhel_e4s:9.2::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:2.68.4-7.el9_2.2\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"glib2\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhel_eus:9.4::appstream\", \"cpe:/a:redhat:rhel_eus:9.4::crb\", \"cpe:/o:redhat:rhel_eus:9.4::baseos\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 9.4 Extended Update Support\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:2.68.4-14.el9_4.3\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"glib2\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:insights_proxy:1.5::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Insights proxy 1.5\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"insights-proxy/insights-proxy-container-rhel9\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_distributed_tracing:3.6::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift distributed tracing 3.6.1\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"sha256:389b9cbd0f05d3d773edc2c06aa73818307cbb25048bddf4f192a992670b6fb4\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"rhosdt/jaeger-agent-rhel8\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_distributed_tracing:3.6::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift distributed tracing 3.6.1\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"sha256:d9ca4a9ec5bc8de23e4550387f822f19949cdfbc4aeeab20e07b206d92f4a426\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"rhosdt/jaeger-all-in-one-rhel8\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_distributed_tracing:3.6::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift distributed tracing 3.6.1\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"sha256:a15009fde9c0a63168d82fb07363d2c6ce05f2096dc1a9992a09fe1d76bcf4a7\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"rhosdt/jaeger-collector-rhel8\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_distributed_tracing:3.6::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift distributed tracing 3.6.1\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"sha256:caadc05a8195f41d48d502458183cef05a1011c6edee343ac212b873ae98c763\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"rhosdt/jaeger-es-index-cleaner-rhel8\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_distributed_tracing:3.6::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift distributed tracing 3.6.1\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"sha256:57d3bf93431295f0d3c8747fe376cdb0a06dc344dd1d6b0c838f732bd920c73e\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"rhosdt/jaeger-es-rollover-rhel8\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_distributed_tracing:3.6::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift distributed tracing 3.6.1\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"sha256:2e6d535aa3208ca8ae1bc588393c8bc499c4bfb452aceca047523502ddffa0ed\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"rhosdt/jaeger-ingester-rhel8\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_distributed_tracing:3.6::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift distributed tracing 3.6.1\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"sha256:be3feca3b19ac609e5ef829887b6d03ca3c504163ed0f9e10b2410cdfb175b72\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"rhosdt/jaeger-operator-bundle\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_distributed_tracing:3.6::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift distributed tracing 3.6.1\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"sha256:3d37f30462f237f5087ef8ac90e39f5cd2cbaf5c143f7cae9d6155eb574726f2\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"rhosdt/jaeger-query-rhel8\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_distributed_tracing:3.6::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift distributed tracing 3.6.1\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"sha256:6f3b7f23a515ac140bdad844d60d96fecc79835a75b1d29a70f66df737f1b50c\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"rhosdt/jaeger-rhel8-operator\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:10\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 10\", \"packageName\": \"bootc\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:10\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 10\", \"packageName\": \"glycin-loaders\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:10\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 10\", \"packageName\": \"loupe\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:10\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 10\", \"packageName\": \"mingw-glib2\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:6\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 6\", \"packageName\": \"glib2\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:7\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 7\", \"packageName\": \"glib2\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 8\", \"packageName\": \"librsvg2\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 8\", \"packageName\": \"mingw-glib2\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 9\", \"packageName\": \"bootc\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 9\", \"packageName\": \"librsvg2\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 9\", \"packageName\": \"mingw-glib2\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}], \"timeline\": [{\"lang\": \"en\", \"time\": \"2025-05-06T00:33:30.003000+00:00\", \"value\": \"Reported to Red Hat.\"}, {\"lang\": \"en\", \"time\": \"2025-05-06T00:00:00+00:00\", \"value\": \"Made public.\"}], \"datePublic\": \"2025-05-06T00:00:00.000Z\", \"references\": [{\"url\": \"https://access.redhat.com/errata/RHSA-2025:10855\", \"name\": \"RHSA-2025:10855\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2025:11140\", \"name\": \"RHSA-2025:11140\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2025:11327\", \"name\": \"RHSA-2025:11327\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2025:11373\", \"name\": \"RHSA-2025:11373\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2025:11374\", \"name\": \"RHSA-2025:11374\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2025:11662\", \"name\": \"RHSA-2025:11662\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2025:12275\", \"name\": \"RHSA-2025:12275\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2025:13335\", \"name\": \"RHSA-2025:13335\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2025:14988\", \"name\": \"RHSA-2025:14988\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2025:14989\", \"name\": \"RHSA-2025:14989\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2025:14990\", \"name\": \"RHSA-2025:14990\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2025:14991\", \"name\": \"RHSA-2025:14991\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/security/cve/CVE-2025-4373\", \"tags\": [\"vdb-entry\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=2364265\", \"name\": \"RHBZ#2364265\", \"tags\": [\"issue-tracking\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://gitlab.gnome.org/GNOME/glib/-/issues/3677\"}], \"workarounds\": [{\"lang\": \"en\", \"value\": \"Currently, no mitigation is available for this vulnerability.\"}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"A flaw was found in GLib, which is vulnerable to an integer overflow in the g_string_insert_unichar() function. When the position at which to insert the character is large, the position will overflow, leading to a buffer underwrite.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-124\", \"description\": \"Buffer Underwrite (\u0027Buffer Underflow\u0027)\"}]}], \"providerMetadata\": {\"orgId\": \"53f830b8-0a3f-465b-8143-3b8a9948e749\", \"shortName\": \"redhat\", \"dateUpdated\": \"2025-10-08T16:01:12.220Z\"}, \"x_redhatCweChain\": \"CWE-124: Buffer Underwrite (\u0027Buffer Underflow\u0027)\"}}",
"cveMetadata": "{\"cveId\": \"CVE-2025-4373\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-10-08T16:01:12.220Z\", \"dateReserved\": \"2025-05-06T00:35:29.069Z\", \"assignerOrgId\": \"53f830b8-0a3f-465b-8143-3b8a9948e749\", \"datePublished\": \"2025-05-06T14:48:39.264Z\", \"assignerShortName\": \"redhat\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
}
}
ncsc-2025-0330
Vulnerability from csaf_ncscnl
Published
2025-10-23 13:20
Modified
2025-10-23 13:20
Summary
Kwetsbaarheden verholpen in Oracle Communications producten
Notes
The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:
NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.
NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.
This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings.
Feiten
Oracle heeft meerdere kwetsbaarheden verholpen in zijn Communications producten, waaronder de Unified Assurance en Cloud Native Core.
Interpretaties
De kwetsbaarheden in de Oracle Communications producten stellen kwaadwillenden in staat om ongeautoriseerde toegang te verkrijgen, wat kan leiden tot gedeeltelijke of volledige Denial-of-Service (DoS) aanvallen. Specifiek kunnen aanvallers met netwerktoegang de systemen compromitteren, wat resulteert in ongeautoriseerde toegang tot gevoelige gegevens. De CVSS-scores van deze kwetsbaarheden variëren van 3.1 tot 9.8, wat wijst op een breed scala aan risico's, van beperkte tot ernstige impact op de vertrouwelijkheid, integriteit en beschikbaarheid van de systemen.
Oplossingen
Oracle heeft updates uitgebracht om de kwetsbaarheden in zijn Communications producten te verhelpen. Zie bijgevoegde referenties voor meer informatie.
Kans
medium
Schade
high
CWE-20
Improper Input Validation
CWE-22
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
CWE-23
Relative Path Traversal
CWE-94
Improper Control of Generation of Code ('Code Injection')
CWE-120
Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
CWE-121
Stack-based Buffer Overflow
CWE-122
Heap-based Buffer Overflow
CWE-124
Buffer Underwrite ('Buffer Underflow')
CWE-125
Out-of-bounds Read
CWE-129
Improper Validation of Array Index
CWE-130
Improper Handling of Length Parameter Inconsistency
CWE-147
Improper Neutralization of Input Terminators
CWE-190
Integer Overflow or Wraparound
CWE-197
Numeric Truncation Error
CWE-241
Improper Handling of Unexpected Data Type
CWE-252
Unchecked Return Value
CWE-253
Incorrect Check of Function Return Value
CWE-284
Improper Access Control
CWE-287
Improper Authentication
CWE-290
Authentication Bypass by Spoofing
CWE-328
Use of Weak Hash
CWE-385
Covert Timing Channel
CWE-390
Detection of Error Condition Without Action
CWE-400
Uncontrolled Resource Consumption
CWE-404
Improper Resource Shutdown or Release
CWE-407
Inefficient Algorithmic Complexity
CWE-409
Improper Handling of Highly Compressed Data (Data Amplification)
CWE-415
Double Free
CWE-416
Use After Free
CWE-426
Untrusted Search Path
CWE-440
Expected Behavior Violation
CWE-444
Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')
CWE-476
NULL Pointer Dereference
CWE-674
Uncontrolled Recursion
CWE-697
Incorrect Comparison
CWE-770
Allocation of Resources Without Limits or Throttling
CWE-787
Out-of-bounds Write
CWE-789
Memory Allocation with Excessive Size Value
CWE-835
Loop with Unreachable Exit Condition ('Infinite Loop')
CWE-843
Access of Resource Using Incompatible Type ('Type Confusion')
CWE-918
Server-Side Request Forgery (SSRF)
CWE-937
CWE-937
CWE-1035
CWE-1035
CWE-1284
Improper Validation of Specified Quantity in Input
CWE-1333
Inefficient Regular Expression Complexity
{
"document": {
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE"
}
},
"lang": "nl",
"notes": [
{
"category": "legal_disclaimer",
"text": "The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:\n\n NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.\n\n NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.\n This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings."
},
{
"category": "description",
"text": "Oracle heeft meerdere kwetsbaarheden verholpen in zijn Communications producten, waaronder de Unified Assurance en Cloud Native Core.",
"title": "Feiten"
},
{
"category": "description",
"text": "De kwetsbaarheden in de Oracle Communications producten stellen kwaadwillenden in staat om ongeautoriseerde toegang te verkrijgen, wat kan leiden tot gedeeltelijke of volledige Denial-of-Service (DoS) aanvallen. Specifiek kunnen aanvallers met netwerktoegang de systemen compromitteren, wat resulteert in ongeautoriseerde toegang tot gevoelige gegevens. De CVSS-scores van deze kwetsbaarheden vari\u00ebren van 3.1 tot 9.8, wat wijst op een breed scala aan risico\u0027s, van beperkte tot ernstige impact op de vertrouwelijkheid, integriteit en beschikbaarheid van de systemen.",
"title": "Interpretaties"
},
{
"category": "description",
"text": "Oracle heeft updates uitgebracht om de kwetsbaarheden in zijn Communications producten te verhelpen. Zie bijgevoegde referenties voor meer informatie.",
"title": "Oplossingen"
},
{
"category": "general",
"text": "medium",
"title": "Kans"
},
{
"category": "general",
"text": "high",
"title": "Schade"
},
{
"category": "general",
"text": "Improper Input Validation",
"title": "CWE-20"
},
{
"category": "general",
"text": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)",
"title": "CWE-22"
},
{
"category": "general",
"text": "Relative Path Traversal",
"title": "CWE-23"
},
{
"category": "general",
"text": "Improper Control of Generation of Code (\u0027Code Injection\u0027)",
"title": "CWE-94"
},
{
"category": "general",
"text": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)",
"title": "CWE-120"
},
{
"category": "general",
"text": "Stack-based Buffer Overflow",
"title": "CWE-121"
},
{
"category": "general",
"text": "Heap-based Buffer Overflow",
"title": "CWE-122"
},
{
"category": "general",
"text": "Buffer Underwrite (\u0027Buffer Underflow\u0027)",
"title": "CWE-124"
},
{
"category": "general",
"text": "Out-of-bounds Read",
"title": "CWE-125"
},
{
"category": "general",
"text": "Improper Validation of Array Index",
"title": "CWE-129"
},
{
"category": "general",
"text": "Improper Handling of Length Parameter Inconsistency",
"title": "CWE-130"
},
{
"category": "general",
"text": "Improper Neutralization of Input Terminators",
"title": "CWE-147"
},
{
"category": "general",
"text": "Integer Overflow or Wraparound",
"title": "CWE-190"
},
{
"category": "general",
"text": "Numeric Truncation Error",
"title": "CWE-197"
},
{
"category": "general",
"text": "Improper Handling of Unexpected Data Type",
"title": "CWE-241"
},
{
"category": "general",
"text": "Unchecked Return Value",
"title": "CWE-252"
},
{
"category": "general",
"text": "Incorrect Check of Function Return Value",
"title": "CWE-253"
},
{
"category": "general",
"text": "Improper Access Control",
"title": "CWE-284"
},
{
"category": "general",
"text": "Improper Authentication",
"title": "CWE-287"
},
{
"category": "general",
"text": "Authentication Bypass by Spoofing",
"title": "CWE-290"
},
{
"category": "general",
"text": "Use of Weak Hash",
"title": "CWE-328"
},
{
"category": "general",
"text": "Covert Timing Channel",
"title": "CWE-385"
},
{
"category": "general",
"text": "Detection of Error Condition Without Action",
"title": "CWE-390"
},
{
"category": "general",
"text": "Uncontrolled Resource Consumption",
"title": "CWE-400"
},
{
"category": "general",
"text": "Improper Resource Shutdown or Release",
"title": "CWE-404"
},
{
"category": "general",
"text": "Inefficient Algorithmic Complexity",
"title": "CWE-407"
},
{
"category": "general",
"text": "Improper Handling of Highly Compressed Data (Data Amplification)",
"title": "CWE-409"
},
{
"category": "general",
"text": "Double Free",
"title": "CWE-415"
},
{
"category": "general",
"text": "Use After Free",
"title": "CWE-416"
},
{
"category": "general",
"text": "Untrusted Search Path",
"title": "CWE-426"
},
{
"category": "general",
"text": "Expected Behavior Violation",
"title": "CWE-440"
},
{
"category": "general",
"text": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)",
"title": "CWE-444"
},
{
"category": "general",
"text": "NULL Pointer Dereference",
"title": "CWE-476"
},
{
"category": "general",
"text": "Uncontrolled Recursion",
"title": "CWE-674"
},
{
"category": "general",
"text": "Incorrect Comparison",
"title": "CWE-697"
},
{
"category": "general",
"text": "Allocation of Resources Without Limits or Throttling",
"title": "CWE-770"
},
{
"category": "general",
"text": "Out-of-bounds Write",
"title": "CWE-787"
},
{
"category": "general",
"text": "Memory Allocation with Excessive Size Value",
"title": "CWE-789"
},
{
"category": "general",
"text": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)",
"title": "CWE-835"
},
{
"category": "general",
"text": "Access of Resource Using Incompatible Type (\u0027Type Confusion\u0027)",
"title": "CWE-843"
},
{
"category": "general",
"text": "Server-Side Request Forgery (SSRF)",
"title": "CWE-918"
},
{
"category": "general",
"text": "CWE-937",
"title": "CWE-937"
},
{
"category": "general",
"text": "CWE-1035",
"title": "CWE-1035"
},
{
"category": "general",
"text": "Improper Validation of Specified Quantity in Input",
"title": "CWE-1284"
},
{
"category": "general",
"text": "Inefficient Regular Expression Complexity",
"title": "CWE-1333"
}
],
"publisher": {
"category": "coordinator",
"contact_details": "cert@ncsc.nl",
"name": "Nationaal Cyber Security Centrum",
"namespace": "https://www.ncsc.nl/"
},
"references": [
{
"category": "external",
"summary": "Reference",
"url": "https://www.oracle.com/security-alerts/cpuoct2025.html"
}
],
"title": "Kwetsbaarheden verholpen in Oracle Communications producten",
"tracking": {
"current_release_date": "2025-10-23T13:20:15.363063Z",
"generator": {
"date": "2025-08-04T16:30:00Z",
"engine": {
"name": "V.A.",
"version": "1.3"
}
},
"id": "NCSC-2025-0330",
"initial_release_date": "2025-10-23T13:20:15.363063Z",
"revision_history": [
{
"date": "2025-10-23T13:20:15.363063Z",
"number": "1.0.0",
"summary": "Initiele versie"
}
],
"status": "final",
"version": "1.0.0"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-1"
}
}
],
"category": "product_name",
"name": "Communications Cloud Native Core Console"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-2"
}
}
],
"category": "product_name",
"name": "Management Cloud Engine"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-3"
}
}
],
"category": "product_name",
"name": "Oracle Communications Billing and Revenue Management"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-4"
}
}
],
"category": "product_name",
"name": "Oracle Communications Calendar Server"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-5"
}
}
],
"category": "product_name",
"name": "Oracle Communications Cloud Native Core Automated Test Suite"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-6"
}
}
],
"category": "product_name",
"name": "Oracle Communications Cloud Native Core Binding Support Function"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-7"
}
}
],
"category": "product_name",
"name": "Oracle Communications Cloud Native Core Certificate Management"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-8"
}
}
],
"category": "product_name",
"name": "Oracle Communications Cloud Native Core DBTier"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-9"
}
}
],
"category": "product_name",
"name": "Oracle Communications Cloud Native Core Network Function Cloud Native Environment"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-10"
}
}
],
"category": "product_name",
"name": "Oracle Communications Cloud Native Core Network Repository Function"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-11"
}
}
],
"category": "product_name",
"name": "Oracle Communications Cloud Native Core Network Slice Selection Function"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-12"
}
}
],
"category": "product_name",
"name": "Oracle Communications Cloud Native Core Policy"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-13"
}
}
],
"category": "product_name",
"name": "Oracle Communications Cloud Native Core Security Edge Protection Proxy"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-14"
}
}
],
"category": "product_name",
"name": "Oracle Communications Cloud Native Core Service Communication Proxy"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-15"
}
}
],
"category": "product_name",
"name": "Oracle Communications Cloud Native Core Unified Data Repository"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-16"
}
}
],
"category": "product_name",
"name": "Oracle Communications Converged Charging System"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-17"
}
}
],
"category": "product_name",
"name": "Oracle Communications Convergence"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-18"
}
}
],
"category": "product_name",
"name": "Oracle Communications Convergent Charging Controller"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-19"
}
}
],
"category": "product_name",
"name": "Oracle Communications Diameter Signaling Router"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-20"
}
}
],
"category": "product_name",
"name": "Oracle Communications EAGLE Element Management System"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-21"
}
}
],
"category": "product_name",
"name": "Oracle Communications EAGLE LNP Application Processor"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-22"
}
}
],
"category": "product_name",
"name": "Oracle Communications LSMS"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-23"
}
}
],
"category": "product_name",
"name": "Oracle Communications Messaging Server"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-24"
}
}
],
"category": "product_name",
"name": "Oracle Communications Network Analytics Data Director"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-25"
}
}
],
"category": "product_name",
"name": "Oracle Communications Network Charging and Control"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-26"
}
}
],
"category": "product_name",
"name": "Oracle Communications Network Integrity"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-27"
}
}
],
"category": "product_name",
"name": "Oracle Communications Offline Mediation Controller"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-28"
}
}
],
"category": "product_name",
"name": "Oracle Communications Operations Monitor"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-29"
}
}
],
"category": "product_name",
"name": "Oracle Communications Order and Service Management"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-30"
}
}
],
"category": "product_name",
"name": "Oracle Communications Pricing Design Center"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-31"
}
}
],
"category": "product_name",
"name": "Oracle Communications Service Catalog and Design"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-32"
}
}
],
"category": "product_name",
"name": "Oracle Communications Session Border Controller"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-33"
}
}
],
"category": "product_name",
"name": "Oracle Communications Unified Assurance"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-34"
}
}
],
"category": "product_name",
"name": "Oracle Communications Unified Inventory Management"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-35"
}
}
],
"category": "product_name",
"name": "Oracle Enterprise Communications Broker"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-36"
}
}
],
"category": "product_name",
"name": "Oracle Enterprise Operations Monitor"
}
],
"category": "vendor",
"name": "Oracle"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-26555",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "other",
"text": "Out-of-bounds Write",
"title": "CWE-787"
},
{
"category": "description",
"text": "Recent updates address vulnerabilities in NTP 4.2.8p17 and Oracle products, including CVE-2023-26555 related to malformed RT-11 dates and various security issues in Oracle Communications and Database systems.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2023-26555 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2023/cve-2023-26555.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2023-26555"
},
{
"cve": "CVE-2024-7254",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "other",
"text": "Improper Input Validation",
"title": "CWE-20"
},
{
"category": "other",
"text": "Out-of-bounds Write",
"title": "CWE-787"
},
{
"category": "other",
"text": "Uncontrolled Resource Consumption",
"title": "CWE-400"
},
{
"category": "other",
"text": "Uncontrolled Recursion",
"title": "CWE-674"
},
{
"category": "description",
"text": "Multiple vulnerabilities across various Oracle, IBM, and Protobuf products could lead to Denial of Service and unauthorized access, with significant risks identified in versions of Oracle Communications, MySQL Connector/J, and IBM WebSphere.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-7254 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2024/cve-2024-7254.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.2,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2024-7254"
},
{
"cve": "CVE-2024-8006",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"notes": [
{
"category": "other",
"text": "NULL Pointer Dereference",
"title": "CWE-476"
},
{
"category": "description",
"text": "Multiple vulnerabilities in Oracle Communications products and the libpcap library allow high-privileged attackers to cause denial of service and NULL pointer dereference issues, with CVSS scores of 4.4 for the former.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-8006 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2024/cve-2024-8006.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2024-8006"
},
{
"cve": "CVE-2024-12133",
"cwe": {
"id": "CWE-407",
"name": "Inefficient Algorithmic Complexity"
},
"notes": [
{
"category": "other",
"text": "Inefficient Algorithmic Complexity",
"title": "CWE-407"
},
{
"category": "other",
"text": "Improper Resource Shutdown or Release",
"title": "CWE-404"
},
{
"category": "description",
"text": "Multiple vulnerabilities affecting Oracle Communications EAGLE LNP Application Processor, Oracle Communications Cloud Native Core Policy, and libtasn1 could lead to denial of service attacks, with CVSS scores of 5.3 for some products.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-12133 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2024/cve-2024-12133.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2024-12133"
},
{
"cve": "CVE-2024-28182",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"notes": [
{
"category": "other",
"text": "Uncontrolled Resource Consumption",
"title": "CWE-400"
},
{
"category": "other",
"text": "Detection of Error Condition Without Action",
"title": "CWE-390"
},
{
"category": "other",
"text": "Allocation of Resources Without Limits or Throttling",
"title": "CWE-770"
},
{
"category": "description",
"text": "Multiple vulnerabilities across Oracle MySQL, Oracle Communications, and nghttp2 products allow remote attackers to exploit confidentiality, integrity, and availability, with varying damage ratings from medium to high.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-28182 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2024/cve-2024-28182.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2024-28182"
},
{
"cve": "CVE-2024-35164",
"cwe": {
"id": "CWE-129",
"name": "Improper Validation of Array Index"
},
"notes": [
{
"category": "other",
"text": "Improper Validation of Array Index",
"title": "CWE-129"
},
{
"category": "description",
"text": "Recent vulnerabilities in Oracle Communications Unified Assurance and Apache Guacamole could allow high-privileged attackers to compromise systems and execute arbitrary code, respectively.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:H/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-35164 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2024/cve-2024-35164.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2024-35164"
},
{
"cve": "CVE-2024-37371",
"cwe": {
"id": "CWE-130",
"name": "Improper Handling of Length Parameter Inconsistency"
},
"notes": [
{
"category": "other",
"text": "Improper Handling of Length Parameter Inconsistency",
"title": "CWE-130"
},
{
"category": "other",
"text": "Out-of-bounds Read",
"title": "CWE-125"
},
{
"category": "description",
"text": "Multiple vulnerabilities across Oracle products, including Communications and MySQL, as well as MIT Kerberos 5, allow for unauthorized access, denial of service, and other malicious activities, with CVSS scores reaching 9.1.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-37371 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2024/cve-2024-37371.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2024-37371"
},
{
"cve": "CVE-2024-47554",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"notes": [
{
"category": "other",
"text": "Uncontrolled Resource Consumption",
"title": "CWE-400"
},
{
"category": "description",
"text": "Multiple vulnerabilities across Oracle Middleware, Documaker, and Apache Commons IO components allow unauthenticated attackers to exploit denial of service risks, with CVSS scores ranging from 4.3 to 7.5.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-47554 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2024/cve-2024-47554.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2024-47554"
},
{
"cve": "CVE-2024-50609",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"notes": [
{
"category": "other",
"text": "NULL Pointer Dereference",
"title": "CWE-476"
},
{
"category": "description",
"text": "Fluent Bit 3.1.9 has a vulnerability allowing remote Denial of Service attacks via a zero-length packet, while Oracle Communications Unified Assurance versions 6.1.0-6.1.1 can be exploited by high-privileged attackers for complete Denial of Service.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-50609 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2024/cve-2024-50609.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2024-50609"
},
{
"cve": "CVE-2024-51504",
"cwe": {
"id": "CWE-290",
"name": "Authentication Bypass by Spoofing"
},
"notes": [
{
"category": "other",
"text": "Authentication Bypass by Spoofing",
"title": "CWE-290"
},
{
"category": "description",
"text": "Recent vulnerabilities in Apache ZooKeeper and Oracle Communications Unified Assurance expose systems to authentication bypass and unauthorized access, allowing attackers to execute commands and access critical data.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:H/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-51504 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2024/cve-2024-51504.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2024-51504"
},
{
"cve": "CVE-2024-57699",
"cwe": {
"id": "CWE-674",
"name": "Uncontrolled Recursion"
},
"notes": [
{
"category": "other",
"text": "Uncontrolled Recursion",
"title": "CWE-674"
},
{
"category": "description",
"text": "Multiple security vulnerabilities across various Oracle products and the Netplex Json-smart library can lead to Denial of Service (DoS) due to stack exhaustion and other exploits, affecting versions 2.5.0 to 2.5.1 and specific Oracle software.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-57699 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2024/cve-2024-57699.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2024-57699"
},
{
"cve": "CVE-2025-1948",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"notes": [
{
"category": "other",
"text": "Uncontrolled Resource Consumption",
"title": "CWE-400"
},
{
"category": "description",
"text": "Eclipse Jetty versions 12.0.0 to 12.0.16 are vulnerable to OutOfMemoryError and denial of service attacks due to improper validation of the SETTINGS_MAX_HEADER_LIST_SIZE parameter, affecting various products including Oracle Communications EAGLE and NetApp.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-1948 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-1948.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-1948"
},
{
"cve": "CVE-2025-3576",
"cwe": {
"id": "CWE-328",
"name": "Use of Weak Hash"
},
"notes": [
{
"category": "other",
"text": "Use of Weak Hash",
"title": "CWE-328"
},
{
"category": "description",
"text": "Recent vulnerabilities in krb5 and MIT Kerberos implementations allow for message spoofing via MD5 checksum weaknesses, while Oracle Communications Network Analytics Data Director is susceptible to unauthorized data manipulation through SSH access.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-3576 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-3576.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-3576"
},
{
"cve": "CVE-2025-4373",
"cwe": {
"id": "CWE-124",
"name": "Buffer Underwrite (\u0027Buffer Underflow\u0027)"
},
"notes": [
{
"category": "other",
"text": "Buffer Underwrite (\u0027Buffer Underflow\u0027)",
"title": "CWE-124"
},
{
"category": "description",
"text": "Recent vulnerabilities in Oracle Communications Cloud Native Core and glib2 involve unauthorized access risks and buffer overflow issues, affecting multiple products with varying severity levels.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-4373 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-4373.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:L/E:U",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-4373"
},
{
"cve": "CVE-2025-4517",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"notes": [
{
"category": "other",
"text": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)",
"title": "CWE-22"
},
{
"category": "description",
"text": "Recent updates to Python versions 3.6 through 3.13.5 address multiple security vulnerabilities, particularly in the tarfile module, while enhancing various functionalities and resolving issues related to memory management and IPv6 handling.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-4517 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-4517.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.4,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-4517"
},
{
"cve": "CVE-2025-4802",
"cwe": {
"id": "CWE-426",
"name": "Untrusted Search Path"
},
"notes": [
{
"category": "other",
"text": "Untrusted Search Path",
"title": "CWE-426"
},
{
"category": "description",
"text": "Vulnerabilities in Oracle Communications Cloud Native Core and glibc allow unauthenticated access and privilege escalation, with CVSS scores of 7.8, affecting confidentiality, integrity, and availability.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-4802 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-4802.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-4802"
},
{
"cve": "CVE-2025-5115",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"notes": [
{
"category": "other",
"text": "Uncontrolled Resource Consumption",
"title": "CWE-400"
},
{
"category": "other",
"text": "Allocation of Resources Without Limits or Throttling",
"title": "CWE-770"
},
{
"category": "description",
"text": "The \u0027MadeYouReset\u0027 vulnerability in HTTP/2 affects certain Jetty versions, allowing denial of service through malformed control frames, while additional vulnerabilities exist in Oracle Communications and SAP Commerce Cloud.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:N/SI:N/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-5115 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-5115.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-5115"
},
{
"cve": "CVE-2025-5318",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "other",
"text": "Out-of-bounds Read",
"title": "CWE-125"
},
{
"category": "description",
"text": "Recent vulnerabilities in Oracle MySQL Workbench and the libssh library expose sensitive data and allow unauthorized access, with CVSS scores indicating moderate severity.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-5318 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-5318.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-5318"
},
{
"cve": "CVE-2025-5399",
"cwe": {
"id": "CWE-835",
"name": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)"
},
"notes": [
{
"category": "other",
"text": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)",
"title": "CWE-835"
},
{
"category": "description",
"text": "Multiple vulnerabilities in Oracle MySQL Server and Cluster, along with libcurl\u0027s WebSocket code, allow for various denial of service attacks, with CVSS scores ranging from 4.3 to 7.5.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-5399 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-5399.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-5399"
},
{
"cve": "CVE-2025-5889",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"notes": [
{
"category": "other",
"text": "Inefficient Regular Expression Complexity",
"title": "CWE-1333"
},
{
"category": "other",
"text": "Uncontrolled Resource Consumption",
"title": "CWE-400"
},
{
"category": "description",
"text": "The juliangruber brace-expansion library has a vulnerability in versions up to 4.0.0 affecting the expand function, while Oracle Communications Unified Assurance versions 6.1.0-6.1.1 are susceptible to a partial denial of service by low-privileged attackers.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-5889 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-5889.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.1,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-5889"
},
{
"cve": "CVE-2025-6965",
"cwe": {
"id": "CWE-197",
"name": "Numeric Truncation Error"
},
"notes": [
{
"category": "other",
"text": "Numeric Truncation Error",
"title": "CWE-197"
},
{
"category": "description",
"text": "Critical vulnerabilities in Oracle Communications Cloud Native Core and SQLite versions prior to 3.50.2 expose systems to severe risks, including memory corruption and integer truncation issues.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:L/VI:H/VA:L/SC:L/SI:H/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:N/AU:N/R:U/V:D/RE:L/U:Green",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-6965 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-6965.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-6965"
},
{
"cve": "CVE-2025-7339",
"cwe": {
"id": "CWE-241",
"name": "Improper Handling of Unexpected Data Type"
},
"notes": [
{
"category": "other",
"text": "Improper Handling of Unexpected Data Type",
"title": "CWE-241"
},
{
"category": "description",
"text": "Oracle Communications Unified Assurance has a vulnerability allowing unauthorized data access, while the on-headers middleware for Node.js has a bug affecting response header modifications in versions prior to 1.1.0.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-7339 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-7339.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.4,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-7339"
},
{
"cve": "CVE-2025-7425",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "other",
"text": "Use After Free",
"title": "CWE-416"
},
{
"category": "description",
"text": "Recent vulnerabilities in Oracle Communications Cloud Native Core and libxslt expose systems to unauthorized access and memory corruption, with significant impacts on integrity and availability.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-7425 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-7425.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-7425"
},
{
"cve": "CVE-2025-7962",
"cwe": {
"id": "CWE-147",
"name": "Improper Neutralization of Input Terminators"
},
"notes": [
{
"category": "other",
"text": "Improper Neutralization of Input Terminators",
"title": "CWE-147"
},
{
"category": "description",
"text": "Recent vulnerabilities in Oracle Communications Cloud Native Core Console and Jakarta Mail versions 2.0.2 and 2.2 expose systems to significant risks, including unauthorized access and SMTP Injection attacks.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:H/AT:N/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:L/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-7962 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-7962.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-7962"
},
{
"cve": "CVE-2025-8058",
"cwe": {
"id": "CWE-415",
"name": "Double Free"
},
"notes": [
{
"category": "other",
"text": "Double Free",
"title": "CWE-415"
},
{
"category": "description",
"text": "Recent vulnerabilities in Oracle Enterprise Operations Monitor and GNU C library versions 2.4 to 2.41 expose systems to potential unauthorized access, memory corruption, and denial of service risks.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:P/VC:L/VI:L/VA:H/SC:L/SI:L/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-8058 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-8058.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.0,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-8058"
},
{
"cve": "CVE-2025-8916",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"notes": [
{
"category": "other",
"text": "Allocation of Resources Without Limits or Throttling",
"title": "CWE-770"
},
{
"category": "other",
"text": "CWE-1035",
"title": "CWE-1035"
},
{
"category": "other",
"text": "CWE-937",
"title": "CWE-937"
},
{
"category": "description",
"text": "Bouncy Castle for Java and BCPKIX FIPS have a vulnerability allowing excessive resource allocation, while Oracle Communications Cloud Native Core Certificate Management and certain NetApp products face denial of service risks.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/S:P/R:U/RE:M/U:Amber",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-8916 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-8916.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-8916"
},
{
"cve": "CVE-2025-9086",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "other",
"text": "Out-of-bounds Read",
"title": "CWE-125"
},
{
"category": "description",
"text": "The curl update 8.14.1 addresses security vulnerabilities, including out-of-bounds reads, proxy cache poisoning, and a bug allowing insecure sites to override secure cookies, alongside a denial of service vulnerability in Oracle Communications Unified Inventory Management.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:P/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-9086 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-9086.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-9086"
},
{
"cve": "CVE-2025-25724",
"cwe": {
"id": "CWE-252",
"name": "Unchecked Return Value"
},
"notes": [
{
"category": "other",
"text": "Unchecked Return Value",
"title": "CWE-252"
},
{
"category": "description",
"text": "Multiple vulnerabilities have been identified in Oracle Communications Network Analytics Data Director and the libarchive component, affecting system integrity and availability, with CVSS scores indicating significant risks.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:P/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-25724 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-25724.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-25724"
},
{
"cve": "CVE-2025-27210",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"notes": [
{
"category": "other",
"text": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)",
"title": "CWE-22"
},
{
"category": "description",
"text": "Node.js versions 20.x, 22.x, and 24.x have an incomplete fix for CVE-2025-23084 affecting Windows device names and the `path.join` API, while Oracle Communications\u0027 Cloud Native Environment has a non-exploitable Security-in-Depth issue.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-27210 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-27210.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-27210"
},
{
"cve": "CVE-2025-27533",
"cwe": {
"id": "CWE-789",
"name": "Memory Allocation with Excessive Size Value"
},
"notes": [
{
"category": "other",
"text": "Memory Allocation with Excessive Size Value",
"title": "CWE-789"
},
{
"category": "description",
"text": "Multiple vulnerabilities across Apache ActiveMQ and Oracle products allow for denial of service attacks due to improper validation and excessive memory allocation, affecting various versions and configurations.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:Y/R:A/V:D/RE:M/U:Red",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-27533 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-27533.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-27533"
},
{
"cve": "CVE-2025-27553",
"cwe": {
"id": "CWE-23",
"name": "Relative Path Traversal"
},
"notes": [
{
"category": "other",
"text": "Relative Path Traversal",
"title": "CWE-23"
},
{
"category": "description",
"text": "Recent vulnerabilities in Oracle Middleware and Apache Commons VFS expose critical data and allow unauthorized file access, with significant risks associated with their exploitation.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-27553 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-27553.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-27553"
},
{
"cve": "CVE-2025-27587",
"cwe": {
"id": "CWE-385",
"name": "Covert Timing Channel"
},
"notes": [
{
"category": "other",
"text": "Covert Timing Channel",
"title": "CWE-385"
},
{
"category": "description",
"text": "OpenSSL versions 3.0.0 to 3.3.2 on PowerPC are vulnerable to a Minerva attack, while Oracle Communications Cloud Native Core Certificate Management 25.1.200 has a critical data access vulnerability, and OpenSSL 3 has addressed timing side channel issues.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:P/AC:H/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-27587 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-27587.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-27587"
},
{
"cve": "CVE-2025-27817",
"cwe": {
"id": "CWE-918",
"name": "Server-Side Request Forgery (SSRF)"
},
"notes": [
{
"category": "other",
"text": "Server-Side Request Forgery (SSRF)",
"title": "CWE-918"
},
{
"category": "description",
"text": "Multiple vulnerabilities across Apache Kafka and Oracle applications allow unauthorized access to sensitive data, with notable SSRF risks and CVSS scores of 7.5 for Oracle products.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:U",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-27817 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-27817.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-27817"
},
{
"cve": "CVE-2025-32415",
"cwe": {
"id": "CWE-1284",
"name": "Improper Validation of Specified Quantity in Input"
},
"notes": [
{
"category": "other",
"text": "Improper Validation of Specified Quantity in Input",
"title": "CWE-1284"
},
{
"category": "other",
"text": "Out-of-bounds Read",
"title": "CWE-125"
},
{
"category": "description",
"text": "Multiple vulnerabilities have been identified in Oracle Java SE and libxml2, allowing for potential system compromise and denial of service, with CVSS scores of 7.5 for several issues.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-32415 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-32415.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-32415"
},
{
"cve": "CVE-2025-32728",
"cwe": {
"id": "CWE-440",
"name": "Expected Behavior Violation"
},
"notes": [
{
"category": "other",
"text": "Expected Behavior Violation",
"title": "CWE-440"
},
{
"category": "description",
"text": "Multiple vulnerabilities across Oracle Enterprise Communications Broker, OpenSSH, and HP-UX Secure Shell daemon could lead to unauthorized data access and system compromise, with varying CVSS scores and exploitation potential.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-32728 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-32728.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-32728"
},
{
"cve": "CVE-2025-32990",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"notes": [
{
"category": "other",
"text": "Heap-based Buffer Overflow",
"title": "CWE-122"
},
{
"category": "description",
"text": "Recent vulnerabilities in Oracle Communications Unified Inventory Management and GnuTLS\u0027s certtool expose systems to denial-of-service and unauthorized data access, with significant integrity impacts and a CVSS score of 8.2 for Oracle\u0027s flaw.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-32990 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-32990.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.2,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-32990"
},
{
"cve": "CVE-2025-48734",
"cwe": {
"id": "CWE-284",
"name": "Improper Access Control"
},
"notes": [
{
"category": "other",
"text": "Improper Access Control",
"title": "CWE-284"
},
{
"category": "description",
"text": "Recent updates to Apache Commons BeanUtils address multiple vulnerabilities, including arbitrary code execution risks and unauthorized access to Java enum properties, affecting versions prior to 1.11.0 and 2.0.0-M2.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-48734 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-48734.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-48734"
},
{
"cve": "CVE-2025-48924",
"cwe": {
"id": "CWE-674",
"name": "Uncontrolled Recursion"
},
"notes": [
{
"category": "other",
"text": "Uncontrolled Recursion",
"title": "CWE-674"
},
{
"category": "description",
"text": "Recent vulnerabilities in Oracle WebLogic Server and Apache Commons Lang versions expose systems to denial of service risks, including an uncontrolled recursion flaw leading to StackOverflowErrors.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-48924 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-48924.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-48924"
},
{
"cve": "CVE-2025-48976",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"notes": [
{
"category": "other",
"text": "Allocation of Resources Without Limits or Throttling",
"title": "CWE-770"
},
{
"category": "description",
"text": "Multiple vulnerabilities affecting Oracle Application Testing Suite and Apache Commons FileUpload, including DoS risks due to insufficient multipart header limits, have been identified, with CVSS scores reaching 7.5.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-48976 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-48976.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-48976"
},
{
"cve": "CVE-2025-48989",
"cwe": {
"id": "CWE-404",
"name": "Improper Resource Shutdown or Release"
},
"notes": [
{
"category": "other",
"text": "Improper Resource Shutdown or Release",
"title": "CWE-404"
},
{
"category": "other",
"text": "Uncontrolled Resource Consumption",
"title": "CWE-400"
},
{
"category": "description",
"text": "Recent updates for Apache Tomcat versions 9, 10, and 11 address the \u0027MadeYouReset\u0027 DoS vulnerability in HTTP/2, along with various enhancements to components like Catalina and Coyote.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-48989 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-48989.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-48989"
},
{
"cve": "CVE-2025-49796",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "other",
"text": "Out-of-bounds Read",
"title": "CWE-125"
},
{
"category": "description",
"text": "Recent updates for libxml2 address multiple vulnerabilities, including heap use after free and type confusion, which could lead to denial of service or crashes, alongside an Oracle vulnerability allowing unauthorized data access.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-49796 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-49796.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-49796"
},
{
"cve": "CVE-2025-52999",
"cwe": {
"id": "CWE-121",
"name": "Stack-based Buffer Overflow"
},
"notes": [
{
"category": "other",
"text": "Stack-based Buffer Overflow",
"title": "CWE-121"
},
{
"category": "description",
"text": "Oracle Communications Unified Assurance has a vulnerability allowing denial of service, while jackson-core versions prior to 2.15.0 can cause StackoverflowError with deeply nested data, now mitigated in version 2.15.0.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-52999 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-52999.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-52999"
},
{
"cve": "CVE-2025-53547",
"cwe": {
"id": "CWE-94",
"name": "Improper Control of Generation of Code (\u0027Code Injection\u0027)"
},
"notes": [
{
"category": "other",
"text": "Improper Control of Generation of Code (\u0027Code Injection\u0027)",
"title": "CWE-94"
},
{
"category": "description",
"text": "Helm v3.18.4 addresses a critical vulnerability allowing local code execution through crafted `Chart.yaml` and symlinked `Chart.lock` files during dependency updates, alongside an Oracle Communications flaw with a CVSS score of 8.6.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-53547 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-53547.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.6,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-53547"
},
{
"cve": "CVE-2025-53643",
"cwe": {
"id": "CWE-444",
"name": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)"
},
"notes": [
{
"category": "other",
"text": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)",
"title": "CWE-444"
},
{
"category": "description",
"text": "Recent vulnerabilities in Oracle Communications Operations Monitor and aiohttp could allow unauthorized access and data manipulation, with significant integrity impacts and request smuggling risks in affected versions.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-53643 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-53643.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-53643"
},
{
"cve": "CVE-2025-53864",
"cwe": {
"id": "CWE-674",
"name": "Uncontrolled Recursion"
},
"notes": [
{
"category": "other",
"text": "Uncontrolled Recursion",
"title": "CWE-674"
},
{
"category": "description",
"text": "Recent vulnerabilities in Oracle GoldenGate and Connect2id Nimbus JOSE + JWT expose systems to denial of service attacks, with CVSS scores indicating significant availability impacts due to issues with deeply nested JSON objects.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-53864 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-53864.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-53864"
},
{
"cve": "CVE-2025-54090",
"cwe": {
"id": "CWE-253",
"name": "Incorrect Check of Function Return Value"
},
"notes": [
{
"category": "other",
"text": "Incorrect Check of Function Return Value",
"title": "CWE-253"
},
{
"category": "description",
"text": "Recent vulnerabilities in Oracle Communications Cloud Native Core Automated Test Suite and Apache HTTP Server 2.4.64 expose systems to unauthorized data access and potential denial of service, with a CVSS score of 6.3 for the Oracle issue.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-54090 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-54090.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-54090"
},
{
"cve": "CVE-2025-55163",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"notes": [
{
"category": "other",
"text": "Allocation of Resources Without Limits or Throttling",
"title": "CWE-770"
},
{
"category": "other",
"text": "CWE-1035",
"title": "CWE-1035"
},
{
"category": "other",
"text": "CWE-937",
"title": "CWE-937"
},
{
"category": "description",
"text": "Recent updates to Netty address critical vulnerabilities, including the \u0027MadeYouReset\u0027 DDoS attack in HTTP/2, which can lead to denial of service through resource exhaustion in various affected versions.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-55163 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-55163.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-55163"
},
{
"cve": "CVE-2025-57803",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"notes": [
{
"category": "other",
"text": "Heap-based Buffer Overflow",
"title": "CWE-122"
},
{
"category": "other",
"text": "Integer Overflow or Wraparound",
"title": "CWE-190"
},
{
"category": "description",
"text": "ImageMagick has addressed critical vulnerabilities in its BMP encoder, including a 32-bit integer overflow leading to heap corruption and potential code execution, alongside other security enhancements.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-57803 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-57803.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-57803"
},
{
"cve": "CVE-2025-58057",
"cwe": {
"id": "CWE-409",
"name": "Improper Handling of Highly Compressed Data (Data Amplification)"
},
"notes": [
{
"category": "other",
"text": "Improper Handling of Highly Compressed Data (Data Amplification)",
"title": "CWE-409"
},
{
"category": "other",
"text": "CWE-1035",
"title": "CWE-1035"
},
{
"category": "other",
"text": "CWE-937",
"title": "CWE-937"
},
{
"category": "description",
"text": "Multiple vulnerabilities in decompressing decoders, including `BrotliDecoder`, and components of Oracle and HPE products can lead to denial of service through excessive buffer allocation and malformed HTTP/2 frames.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-58057 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-58057.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-58057"
},
{
"cve": "CVE-2025-59375",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"notes": [
{
"category": "other",
"text": "Allocation of Resources Without Limits or Throttling",
"title": "CWE-770"
},
{
"category": "description",
"text": "A memory amplification vulnerability in libexpat (CVE-2025-59375) allows excessive memory allocations from crafted XML input, affecting versions prior to 2.7.2, while a Security-in-Depth issue exists in Oracle Database Server\u0027s Perl component but is not exploitable.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-59375 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-59375.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-59375"
}
]
}
ncsc-2025-0187
Vulnerability from csaf_ncscnl
Published
2025-06-10 13:11
Modified
2025-06-10 13:11
Summary
Kwetsbaarheden verholpen in Siemens producten
Notes
The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:
NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.
NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.
This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings.
Feiten
Siemens heeft kwetsbaarheden verholpen in diverse producten als RUGGEDCOM, SCALANCE, SIMATIC en Tecnomatix
Interpretaties
De kwetsbaarheden stellen een kwaadwillende mogelijk in staat aanvallen uit te voeren die kunnen leiden tot de volgende categorieën schade:
- Denial-of-Service (DoS)
- Manipulatie van gegevens
- Omzeilen van een beveiligingsmaatregel
- Omzeilen van authenticatie
- (Remote) code execution (root/admin rechten)
- (Remote) code execution (Gebruikersrechten)
- Toegang tot systeemgegevens
- Toegang tot gevoelige gegevens
- Spoofing
De kwaadwillende heeft hiervoor toegang nodig tot de productieomgeving. Het is goed gebruik een dergelijke omgeving niet publiek toegankelijk te hebben.
Oplossingen
Siemens heeft beveiligingsupdates uitgebracht om de kwetsbaarheden te verhelpen. Voor de kwetsbaarheden waar nog geen updates voor zijn, heeft Siemens mitigerende maatregelen gepubliceerd om de risico's zoveel als mogelijk te beperken. Zie de bijgevoegde referenties voor meer informatie.
Kans
medium
Schade
high
CWE-395
Use of NullPointerException Catch to Detect NULL Pointer Dereference
CWE-332
Insufficient Entropy in PRNG
CWE-940
Improper Verification of Source of a Communication Channel
CWE-466
Return of Pointer Value Outside of Expected Range
CWE-390
Detection of Error Condition Without Action
CWE-826
Premature Release of Resource During Expected Lifetime
CWE-222
Truncation of Security-relevant Information
CWE-310
CWE-310
CWE-273
Improper Check for Dropped Privileges
CWE-364
Signal Handler Race Condition
CWE-911
Improper Update of Reference Count
CWE-131
Incorrect Calculation of Buffer Size
CWE-304
Missing Critical Step in Authentication
CWE-684
Incorrect Provision of Specified Functionality
CWE-130
Improper Handling of Length Parameter Inconsistency
CWE-268
Privilege Chaining
CWE-366
Race Condition within a Thread
CWE-150
Improper Neutralization of Escape, Meta, or Control Sequences
CWE-201
Insertion of Sensitive Information Into Sent Data
CWE-407
Inefficient Algorithmic Complexity
CWE-371
CWE-371
CWE-367
Time-of-check Time-of-use (TOCTOU) Race Condition
CWE-667
Improper Locking
CWE-311
Missing Encryption of Sensitive Data
CWE-703
Improper Check or Handling of Exceptional Conditions
CWE-908
Use of Uninitialized Resource
CWE-617
Reachable Assertion
CWE-129
Improper Validation of Array Index
CWE-124
Buffer Underwrite ('Buffer Underflow')
CWE-843
Access of Resource Using Incompatible Type ('Type Confusion')
CWE-345
Insufficient Verification of Data Authenticity
CWE-354
Improper Validation of Integrity Check Value
CWE-325
Missing Cryptographic Step
CWE-190
Integer Overflow or Wraparound
CWE-290
Authentication Bypass by Spoofing
CWE-99
Improper Control of Resource Identifiers ('Resource Injection')
CWE-665
Improper Initialization
CWE-362
Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')
CWE-125
Out-of-bounds Read
CWE-404
Improper Resource Shutdown or Release
CWE-284
Improper Access Control
CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
CWE-416
Use After Free
CWE-476
NULL Pointer Dereference
CWE-757
Selection of Less-Secure Algorithm During Negotiation ('Algorithm Downgrade')
CWE-400
Uncontrolled Resource Consumption
CWE-770
Allocation of Resources Without Limits or Throttling
CWE-78
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
CWE-611
Improper Restriction of XML External Entity Reference
CWE-787
Out-of-bounds Write
CWE-200
Exposure of Sensitive Information to an Unauthorized Actor
CWE-122
Heap-based Buffer Overflow
CWE-121
Stack-based Buffer Overflow
CWE-120
Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
CWE-73
External Control of File Name or Path
CWE-20
Improper Input Validation
CWE-863
Incorrect Authorization
CWE-276
Incorrect Default Permissions
{
"document": {
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE"
}
},
"lang": "nl",
"notes": [
{
"category": "legal_disclaimer",
"text": "The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:\n\n NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.\n\n NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.\n This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings."
},
{
"category": "description",
"text": "Siemens heeft kwetsbaarheden verholpen in diverse producten als RUGGEDCOM, SCALANCE, SIMATIC en Tecnomatix",
"title": "Feiten"
},
{
"category": "description",
"text": "De kwetsbaarheden stellen een kwaadwillende mogelijk in staat aanvallen uit te voeren die kunnen leiden tot de volgende categorie\u00ebn schade:\n\n- Denial-of-Service (DoS)\n- Manipulatie van gegevens\n- Omzeilen van een beveiligingsmaatregel\n- Omzeilen van authenticatie\n- (Remote) code execution (root/admin rechten)\n- (Remote) code execution (Gebruikersrechten)\n- Toegang tot systeemgegevens\n- Toegang tot gevoelige gegevens\n- Spoofing\n\nDe kwaadwillende heeft hiervoor toegang nodig tot de productieomgeving. Het is goed gebruik een dergelijke omgeving niet publiek toegankelijk te hebben.",
"title": "Interpretaties"
},
{
"category": "description",
"text": "Siemens heeft beveiligingsupdates uitgebracht om de kwetsbaarheden te verhelpen. Voor de kwetsbaarheden waar nog geen updates voor zijn, heeft Siemens mitigerende maatregelen gepubliceerd om de risico\u0027s zoveel als mogelijk te beperken. Zie de bijgevoegde referenties voor meer informatie.",
"title": "Oplossingen"
},
{
"category": "general",
"text": "medium",
"title": "Kans"
},
{
"category": "general",
"text": "high",
"title": "Schade"
},
{
"category": "general",
"text": "Use of NullPointerException Catch to Detect NULL Pointer Dereference",
"title": "CWE-395"
},
{
"category": "general",
"text": "Insufficient Entropy in PRNG",
"title": "CWE-332"
},
{
"category": "general",
"text": "Improper Verification of Source of a Communication Channel",
"title": "CWE-940"
},
{
"category": "general",
"text": "Return of Pointer Value Outside of Expected Range",
"title": "CWE-466"
},
{
"category": "general",
"text": "Detection of Error Condition Without Action",
"title": "CWE-390"
},
{
"category": "general",
"text": "Premature Release of Resource During Expected Lifetime",
"title": "CWE-826"
},
{
"category": "general",
"text": "Truncation of Security-relevant Information",
"title": "CWE-222"
},
{
"category": "general",
"text": "CWE-310",
"title": "CWE-310"
},
{
"category": "general",
"text": "Improper Check for Dropped Privileges",
"title": "CWE-273"
},
{
"category": "general",
"text": "Signal Handler Race Condition",
"title": "CWE-364"
},
{
"category": "general",
"text": "Improper Update of Reference Count",
"title": "CWE-911"
},
{
"category": "general",
"text": "Incorrect Calculation of Buffer Size",
"title": "CWE-131"
},
{
"category": "general",
"text": "Missing Critical Step in Authentication",
"title": "CWE-304"
},
{
"category": "general",
"text": "Incorrect Provision of Specified Functionality",
"title": "CWE-684"
},
{
"category": "general",
"text": "Improper Handling of Length Parameter Inconsistency",
"title": "CWE-130"
},
{
"category": "general",
"text": "Privilege Chaining",
"title": "CWE-268"
},
{
"category": "general",
"text": "Race Condition within a Thread",
"title": "CWE-366"
},
{
"category": "general",
"text": "Improper Neutralization of Escape, Meta, or Control Sequences",
"title": "CWE-150"
},
{
"category": "general",
"text": "Insertion of Sensitive Information Into Sent Data",
"title": "CWE-201"
},
{
"category": "general",
"text": "Inefficient Algorithmic Complexity",
"title": "CWE-407"
},
{
"category": "general",
"text": "CWE-371",
"title": "CWE-371"
},
{
"category": "general",
"text": "Time-of-check Time-of-use (TOCTOU) Race Condition",
"title": "CWE-367"
},
{
"category": "general",
"text": "Improper Locking",
"title": "CWE-667"
},
{
"category": "general",
"text": "Missing Encryption of Sensitive Data",
"title": "CWE-311"
},
{
"category": "general",
"text": "Improper Check or Handling of Exceptional Conditions",
"title": "CWE-703"
},
{
"category": "general",
"text": "Use of Uninitialized Resource",
"title": "CWE-908"
},
{
"category": "general",
"text": "Reachable Assertion",
"title": "CWE-617"
},
{
"category": "general",
"text": "Improper Validation of Array Index",
"title": "CWE-129"
},
{
"category": "general",
"text": "Buffer Underwrite (\u0027Buffer Underflow\u0027)",
"title": "CWE-124"
},
{
"category": "general",
"text": "Access of Resource Using Incompatible Type (\u0027Type Confusion\u0027)",
"title": "CWE-843"
},
{
"category": "general",
"text": "Insufficient Verification of Data Authenticity",
"title": "CWE-345"
},
{
"category": "general",
"text": "Improper Validation of Integrity Check Value",
"title": "CWE-354"
},
{
"category": "general",
"text": "Missing Cryptographic Step",
"title": "CWE-325"
},
{
"category": "general",
"text": "Integer Overflow or Wraparound",
"title": "CWE-190"
},
{
"category": "general",
"text": "Authentication Bypass by Spoofing",
"title": "CWE-290"
},
{
"category": "general",
"text": "Improper Control of Resource Identifiers (\u0027Resource Injection\u0027)",
"title": "CWE-99"
},
{
"category": "general",
"text": "Improper Initialization",
"title": "CWE-665"
},
{
"category": "general",
"text": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)",
"title": "CWE-362"
},
{
"category": "general",
"text": "Out-of-bounds Read",
"title": "CWE-125"
},
{
"category": "general",
"text": "Improper Resource Shutdown or Release",
"title": "CWE-404"
},
{
"category": "general",
"text": "Improper Access Control",
"title": "CWE-284"
},
{
"category": "general",
"text": "Improper Restriction of Operations within the Bounds of a Memory Buffer",
"title": "CWE-119"
},
{
"category": "general",
"text": "Use After Free",
"title": "CWE-416"
},
{
"category": "general",
"text": "NULL Pointer Dereference",
"title": "CWE-476"
},
{
"category": "general",
"text": "Selection of Less-Secure Algorithm During Negotiation (\u0027Algorithm Downgrade\u0027)",
"title": "CWE-757"
},
{
"category": "general",
"text": "Uncontrolled Resource Consumption",
"title": "CWE-400"
},
{
"category": "general",
"text": "Allocation of Resources Without Limits or Throttling",
"title": "CWE-770"
},
{
"category": "general",
"text": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)",
"title": "CWE-78"
},
{
"category": "general",
"text": "Improper Restriction of XML External Entity Reference",
"title": "CWE-611"
},
{
"category": "general",
"text": "Out-of-bounds Write",
"title": "CWE-787"
},
{
"category": "general",
"text": "Exposure of Sensitive Information to an Unauthorized Actor",
"title": "CWE-200"
},
{
"category": "general",
"text": "Heap-based Buffer Overflow",
"title": "CWE-122"
},
{
"category": "general",
"text": "Stack-based Buffer Overflow",
"title": "CWE-121"
},
{
"category": "general",
"text": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)",
"title": "CWE-120"
},
{
"category": "general",
"text": "External Control of File Name or Path",
"title": "CWE-73"
},
{
"category": "general",
"text": "Improper Input Validation",
"title": "CWE-20"
},
{
"category": "general",
"text": "Incorrect Authorization",
"title": "CWE-863"
},
{
"category": "general",
"text": "Incorrect Default Permissions",
"title": "CWE-276"
}
],
"publisher": {
"category": "coordinator",
"contact_details": "cert@ncsc.nl",
"name": "Nationaal Cyber Security Centrum",
"namespace": "https://www.ncsc.nl/"
},
"references": [
{
"category": "external",
"summary": "Reference - ncscclear",
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-082556.pdf"
},
{
"category": "external",
"summary": "Reference - ncscclear",
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-345750.pdf"
},
{
"category": "external",
"summary": "Reference - ncscclear",
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-486186.pdf"
},
{
"category": "external",
"summary": "Reference - ncscclear",
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-513708.pdf"
},
{
"category": "external",
"summary": "Reference - ncscclear",
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-633269.pdf"
},
{
"category": "external",
"summary": "Reference - ncscclear",
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-693776.pdf"
}
],
"title": "Kwetsbaarheden verholpen in Siemens producten",
"tracking": {
"current_release_date": "2025-06-10T13:11:56.672768Z",
"generator": {
"date": "2025-06-05T14:45:00Z",
"engine": {
"name": "V.A.",
"version": "1.1"
}
},
"id": "NCSC-2025-0187",
"initial_release_date": "2025-06-10T13:11:56.672768Z",
"revision_history": [
{
"date": "2025-06-10T13:11:56.672768Z",
"number": "1.0.0",
"summary": "Initiele versie"
}
],
"status": "final",
"version": "1.0.0"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/none",
"product": {
"name": "vers:unknown/none",
"product_id": "CSAFPID-1211853"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:siemens/3.1.0",
"product": {
"name": "vers:siemens/3.1.0",
"product_id": "CSAFPID-1195553"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1518-4 PN/DP MFP Firmware"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/1.0",
"product": {
"name": "vers:unknown/1.0",
"product_id": "CSAFPID-1211202"
}
}
],
"category": "product_name",
"name": "Simatic S7-1500 Tm Mfp Firmware"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:siemens/7.4.3",
"product": {
"name": "vers:siemens/7.4.3",
"product_id": "CSAFPID-2849543"
}
},
{
"category": "product_version_range",
"name": "vers:unknown/none",
"product": {
"name": "vers:unknown/none",
"product_id": "CSAFPID-1756091"
}
}
],
"category": "product_name",
"name": "RUGGEDCOM APE1808 Firmware"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/none",
"product": {
"name": "vers:unknown/none",
"product_id": "CSAFPID-2619544"
}
}
],
"category": "product_name",
"name": "Ruggedcom Ape1808"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:siemens/3.0.0",
"product": {
"name": "vers:siemens/3.0.0",
"product_id": "CSAFPID-2082475"
}
}
],
"category": "product_name",
"name": "Scalance W700 Ieee 802.11Ax Firmware"
}
],
"category": "product_family",
"name": "Siemens"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003e=v3.1.0",
"product": {
"name": "vers:all/\u003e=v3.1.0",
"product_id": "CSAFPID-1266669"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003e=v3.1.0",
"product": {
"name": "vers:all/\u003e=v3.1.0",
"product_id": "CSAFPID-1266670"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AC0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003e=v3.1.0",
"product": {
"name": "vers:all/\u003e=v3.1.0",
"product_id": "CSAFPID-1266671"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003e=v3.1.0",
"product": {
"name": "vers:all/\u003e=v3.1.0",
"product_id": "CSAFPID-1266672"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AC0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/*",
"product": {
"name": "vers:all/*",
"product_id": "CSAFPID-2460438"
}
},
{
"category": "product_version_range",
"name": "vers:unknown/\u003cv1.3.0",
"product": {
"name": "vers:unknown/\u003cv1.3.0",
"product_id": "CSAFPID-1270701"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 TM MFP - BIOS"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/\u003cv1.1",
"product": {
"name": "vers:unknown/\u003cv1.1",
"product_id": "CSAFPID-1270700"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 TM MFP -\u00a0GNU/Linux subsystem"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003e=v3.1.0",
"product": {
"name": "vers:all/\u003e=v3.1.0",
"product_id": "CSAFPID-1266673"
}
}
],
"category": "product_name",
"name": "SIPLUS S7-1500 CPU 1518-4 PN/DP MFP (6AG1518-4AX00-4AC0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/*",
"product": {
"name": "vers:all/*",
"product_id": "CSAFPID-1272525"
}
}
],
"category": "product_name",
"name": "RUGGEDCOM APE1808"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-126262",
"product_identification_helper": {
"cpe": "cpe:2.3:a:siemens:ruggedcom_ape1808:*:*:*:*:*:*:*:*"
}
}
}
],
"category": "product_name",
"name": "ruggedcom_ape1808"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/*",
"product": {
"name": "vers:all/*",
"product_id": "CSAFPID-2905706"
}
}
],
"category": "product_name",
"name": "Energy Services"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cv2404.0013",
"product": {
"name": "vers:all/\u003cv2404.0013",
"product_id": "CSAFPID-2905742"
}
}
],
"category": "product_name",
"name": "Tecnomatix Plant Simulation V2404"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.1",
"product": {
"name": "vers:all/\u003cv3.1",
"product_id": "CSAFPID-2905748"
}
},
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.2",
"product": {
"name": "vers:all/\u003cv3.2",
"product_id": "CSAFPID-2905793"
}
}
],
"category": "product_name",
"name": "SCALANCE XC316-8 (6GK5324-8TS00-2AC2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.1",
"product": {
"name": "vers:all/\u003cv3.1",
"product_id": "CSAFPID-2905749"
}
},
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.2",
"product": {
"name": "vers:all/\u003cv3.2",
"product_id": "CSAFPID-2905794"
}
}
],
"category": "product_name",
"name": "SCALANCE XC324-4 (6GK5328-4TS00-2AC2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.1",
"product": {
"name": "vers:all/\u003cv3.1",
"product_id": "CSAFPID-2905750"
}
},
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.2",
"product": {
"name": "vers:all/\u003cv3.2",
"product_id": "CSAFPID-2905795"
}
}
],
"category": "product_name",
"name": "SCALANCE XC324-4 EEC (6GK5328-4TS00-2EC2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.1",
"product": {
"name": "vers:all/\u003cv3.1",
"product_id": "CSAFPID-2905751"
}
},
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.2",
"product": {
"name": "vers:all/\u003cv3.2",
"product_id": "CSAFPID-2905796"
}
}
],
"category": "product_name",
"name": "SCALANCE XC332 (6GK5332-0GA00-2AC2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.1",
"product": {
"name": "vers:all/\u003cv3.1",
"product_id": "CSAFPID-2905752"
}
},
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.2",
"product": {
"name": "vers:all/\u003cv3.2",
"product_id": "CSAFPID-2905797"
}
}
],
"category": "product_name",
"name": "SCALANCE XC416-8 (6GK5424-8TR00-2AC2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.1",
"product": {
"name": "vers:all/\u003cv3.1",
"product_id": "CSAFPID-2905753"
}
},
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.2",
"product": {
"name": "vers:all/\u003cv3.2",
"product_id": "CSAFPID-2905798"
}
}
],
"category": "product_name",
"name": "SCALANCE XC424-4 (6GK5428-4TR00-2AC2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.1",
"product": {
"name": "vers:all/\u003cv3.1",
"product_id": "CSAFPID-2905754"
}
},
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.2",
"product": {
"name": "vers:all/\u003cv3.2",
"product_id": "CSAFPID-2905799"
}
}
],
"category": "product_name",
"name": "SCALANCE XC432 (6GK5432-0GR00-2AC2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.1",
"product": {
"name": "vers:all/\u003cv3.1",
"product_id": "CSAFPID-2905755"
}
},
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.2",
"product": {
"name": "vers:all/\u003cv3.2",
"product_id": "CSAFPID-2905800"
}
}
],
"category": "product_name",
"name": "SCALANCE XCH328 (6GK5328-4TS01-2EC2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.1",
"product": {
"name": "vers:all/\u003cv3.1",
"product_id": "CSAFPID-2905756"
}
},
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.2",
"product": {
"name": "vers:all/\u003cv3.2",
"product_id": "CSAFPID-2905801"
}
}
],
"category": "product_name",
"name": "SCALANCE XCM324 (6GK5324-8TS01-2AC2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.1",
"product": {
"name": "vers:all/\u003cv3.1",
"product_id": "CSAFPID-2905757"
}
},
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.2",
"product": {
"name": "vers:all/\u003cv3.2",
"product_id": "CSAFPID-2905802"
}
}
],
"category": "product_name",
"name": "SCALANCE XCM328 (6GK5328-4TS01-2AC2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.1",
"product": {
"name": "vers:all/\u003cv3.1",
"product_id": "CSAFPID-2905758"
}
},
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.2",
"product": {
"name": "vers:all/\u003cv3.2",
"product_id": "CSAFPID-2905803"
}
}
],
"category": "product_name",
"name": "SCALANCE XCM332 (6GK5332-0GA01-2AC2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.1",
"product": {
"name": "vers:all/\u003cv3.1",
"product_id": "CSAFPID-2905759"
}
},
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.2",
"product": {
"name": "vers:all/\u003cv3.2",
"product_id": "CSAFPID-2905804"
}
}
],
"category": "product_name",
"name": "SCALANCE XR302-32 (6GK5334-5TS00-2AR3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.1",
"product": {
"name": "vers:all/\u003cv3.1",
"product_id": "CSAFPID-2905760"
}
},
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.2",
"product": {
"name": "vers:all/\u003cv3.2",
"product_id": "CSAFPID-2905805"
}
}
],
"category": "product_name",
"name": "SCALANCE XR302-32 (6GK5334-5TS00-3AR3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.1",
"product": {
"name": "vers:all/\u003cv3.1",
"product_id": "CSAFPID-2905761"
}
},
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.2",
"product": {
"name": "vers:all/\u003cv3.2",
"product_id": "CSAFPID-2905806"
}
}
],
"category": "product_name",
"name": "SCALANCE XR302-32 (6GK5334-5TS00-4AR3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.1",
"product": {
"name": "vers:all/\u003cv3.1",
"product_id": "CSAFPID-2905762"
}
},
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.2",
"product": {
"name": "vers:all/\u003cv3.2",
"product_id": "CSAFPID-2905807"
}
}
],
"category": "product_name",
"name": "SCALANCE XR322-12 (6GK5334-3TS00-2AR3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.1",
"product": {
"name": "vers:all/\u003cv3.1",
"product_id": "CSAFPID-2905763"
}
},
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.2",
"product": {
"name": "vers:all/\u003cv3.2",
"product_id": "CSAFPID-2905808"
}
}
],
"category": "product_name",
"name": "SCALANCE XR322-12 (6GK5334-3TS00-3AR3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.1",
"product": {
"name": "vers:all/\u003cv3.1",
"product_id": "CSAFPID-2905764"
}
},
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.2",
"product": {
"name": "vers:all/\u003cv3.2",
"product_id": "CSAFPID-2905809"
}
}
],
"category": "product_name",
"name": "SCALANCE XR322-12 (6GK5334-3TS00-4AR3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.1",
"product": {
"name": "vers:all/\u003cv3.1",
"product_id": "CSAFPID-2905765"
}
},
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.2",
"product": {
"name": "vers:all/\u003cv3.2",
"product_id": "CSAFPID-2905810"
}
}
],
"category": "product_name",
"name": "SCALANCE XR326-8 (6GK5334-2TS00-2AR3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.1",
"product": {
"name": "vers:all/\u003cv3.1",
"product_id": "CSAFPID-2905766"
}
},
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.2",
"product": {
"name": "vers:all/\u003cv3.2",
"product_id": "CSAFPID-2905811"
}
}
],
"category": "product_name",
"name": "SCALANCE XR326-8 (6GK5334-2TS00-3AR3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.1",
"product": {
"name": "vers:all/\u003cv3.1",
"product_id": "CSAFPID-2905767"
}
},
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.2",
"product": {
"name": "vers:all/\u003cv3.2",
"product_id": "CSAFPID-2905812"
}
}
],
"category": "product_name",
"name": "SCALANCE XR326-8 (6GK5334-2TS00-4AR3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.1",
"product": {
"name": "vers:all/\u003cv3.1",
"product_id": "CSAFPID-2905768"
}
},
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.2",
"product": {
"name": "vers:all/\u003cv3.2",
"product_id": "CSAFPID-2905813"
}
}
],
"category": "product_name",
"name": "SCALANCE XR326-8 EEC (6GK5334-2TS00-2ER3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.1",
"product": {
"name": "vers:all/\u003cv3.1",
"product_id": "CSAFPID-2905769"
}
},
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.2",
"product": {
"name": "vers:all/\u003cv3.2",
"product_id": "CSAFPID-2905814"
}
}
],
"category": "product_name",
"name": "SCALANCE XR502-32 (6GK5534-5TR00-2AR3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.1",
"product": {
"name": "vers:all/\u003cv3.1",
"product_id": "CSAFPID-2905770"
}
},
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.2",
"product": {
"name": "vers:all/\u003cv3.2",
"product_id": "CSAFPID-2905815"
}
}
],
"category": "product_name",
"name": "SCALANCE XR502-32 (6GK5534-5TR00-3AR3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.1",
"product": {
"name": "vers:all/\u003cv3.1",
"product_id": "CSAFPID-2905771"
}
},
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.2",
"product": {
"name": "vers:all/\u003cv3.2",
"product_id": "CSAFPID-2905816"
}
}
],
"category": "product_name",
"name": "SCALANCE XR502-32 (6GK5534-5TR00-4AR3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.1",
"product": {
"name": "vers:all/\u003cv3.1",
"product_id": "CSAFPID-2905772"
}
},
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.2",
"product": {
"name": "vers:all/\u003cv3.2",
"product_id": "CSAFPID-2905817"
}
}
],
"category": "product_name",
"name": "SCALANCE XR522-12 (6GK5534-3TR00-2AR3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.1",
"product": {
"name": "vers:all/\u003cv3.1",
"product_id": "CSAFPID-2905773"
}
},
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.2",
"product": {
"name": "vers:all/\u003cv3.2",
"product_id": "CSAFPID-2905818"
}
}
],
"category": "product_name",
"name": "SCALANCE XR522-12 (6GK5534-3TR00-3AR3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.1",
"product": {
"name": "vers:all/\u003cv3.1",
"product_id": "CSAFPID-2905774"
}
},
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.2",
"product": {
"name": "vers:all/\u003cv3.2",
"product_id": "CSAFPID-2905819"
}
}
],
"category": "product_name",
"name": "SCALANCE XR522-12 (6GK5534-3TR00-4AR3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.1",
"product": {
"name": "vers:all/\u003cv3.1",
"product_id": "CSAFPID-2905775"
}
},
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.2",
"product": {
"name": "vers:all/\u003cv3.2",
"product_id": "CSAFPID-2905820"
}
}
],
"category": "product_name",
"name": "SCALANCE XR526-8 (6GK5534-2TR00-2AR3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.1",
"product": {
"name": "vers:all/\u003cv3.1",
"product_id": "CSAFPID-2905776"
}
},
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.2",
"product": {
"name": "vers:all/\u003cv3.2",
"product_id": "CSAFPID-2905821"
}
}
],
"category": "product_name",
"name": "SCALANCE XR526-8 (6GK5534-2TR00-3AR3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.1",
"product": {
"name": "vers:all/\u003cv3.1",
"product_id": "CSAFPID-2905777"
}
},
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.2",
"product": {
"name": "vers:all/\u003cv3.2",
"product_id": "CSAFPID-2905822"
}
}
],
"category": "product_name",
"name": "SCALANCE XR526-8 (6GK5534-2TR00-4AR3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.1",
"product": {
"name": "vers:all/\u003cv3.1",
"product_id": "CSAFPID-2905778"
}
},
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.2",
"product": {
"name": "vers:all/\u003cv3.2",
"product_id": "CSAFPID-2905823"
}
}
],
"category": "product_name",
"name": "SCALANCE XRH334 (24 V DC, 8xFO, CC) (6GK5334-2TS01-2ER3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.1",
"product": {
"name": "vers:all/\u003cv3.1",
"product_id": "CSAFPID-2905786"
}
},
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.2",
"product": {
"name": "vers:all/\u003cv3.2",
"product_id": "CSAFPID-2905831"
}
}
],
"category": "product_name",
"name": "SCALANCE XRM334 (230 V AC, 12xFO) (6GK5334-3TS01-3AR3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.1",
"product": {
"name": "vers:all/\u003cv3.1",
"product_id": "CSAFPID-2905785"
}
},
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.2",
"product": {
"name": "vers:all/\u003cv3.2",
"product_id": "CSAFPID-2905830"
}
}
],
"category": "product_name",
"name": "SCALANCE XRM334 (230 V AC, 8xFO) (6GK5334-2TS01-3AR3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.1",
"product": {
"name": "vers:all/\u003cv3.1",
"product_id": "CSAFPID-2905787"
}
},
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.2",
"product": {
"name": "vers:all/\u003cv3.2",
"product_id": "CSAFPID-2905832"
}
}
],
"category": "product_name",
"name": "SCALANCE XRM334 (230V AC, 2x10G, 24xSFP, 8xSFP+) (6GK5334-5TS01-3AR3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.1",
"product": {
"name": "vers:all/\u003cv3.1",
"product_id": "CSAFPID-2905783"
}
},
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.2",
"product": {
"name": "vers:all/\u003cv3.2",
"product_id": "CSAFPID-2905828"
}
}
],
"category": "product_name",
"name": "SCALANCE XRM334 (24 V DC, 12xFO) (6GK5334-3TS01-2AR3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.1",
"product": {
"name": "vers:all/\u003cv3.1",
"product_id": "CSAFPID-2905782"
}
},
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.2",
"product": {
"name": "vers:all/\u003cv3.2",
"product_id": "CSAFPID-2905827"
}
}
],
"category": "product_name",
"name": "SCALANCE XRM334 (24 V DC, 8xFO) (6GK5334-2TS01-2AR3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.1",
"product": {
"name": "vers:all/\u003cv3.1",
"product_id": "CSAFPID-2905784"
}
},
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.2",
"product": {
"name": "vers:all/\u003cv3.2",
"product_id": "CSAFPID-2905829"
}
}
],
"category": "product_name",
"name": "SCALANCE XRM334 (24V DC, 2x10G, 24xSFP, 8xSFP+) (6GK5334-5TS01-2AR3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.1",
"product": {
"name": "vers:all/\u003cv3.1",
"product_id": "CSAFPID-2905780"
}
},
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.2",
"product": {
"name": "vers:all/\u003cv3.2",
"product_id": "CSAFPID-2905825"
}
}
],
"category": "product_name",
"name": "SCALANCE XRM334 (2x230 V AC, 12xFO) (6GK5334-3TS01-4AR3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.1",
"product": {
"name": "vers:all/\u003cv3.1",
"product_id": "CSAFPID-2905779"
}
},
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.2",
"product": {
"name": "vers:all/\u003cv3.2",
"product_id": "CSAFPID-2905824"
}
}
],
"category": "product_name",
"name": "SCALANCE XRM334 (2x230 V AC, 8xFO) (6GK5334-2TS01-4AR3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.1",
"product": {
"name": "vers:all/\u003cv3.1",
"product_id": "CSAFPID-2905781"
}
},
{
"category": "product_version_range",
"name": "vers:all/\u003cv3.2",
"product": {
"name": "vers:all/\u003cv3.2",
"product_id": "CSAFPID-2905826"
}
}
],
"category": "product_name",
"name": "SCALANCE XRM334 (2x230V AC, 2x10G, 24xSFP, 8xSFP+) (6GK5334-5TS01-4AR3)"
}
],
"category": "vendor",
"name": "Siemens"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2021-41617",
"cwe": {
"id": "CWE-311",
"name": "Missing Encryption of Sensitive Data"
},
"notes": [
{
"category": "other",
"text": "Missing Encryption of Sensitive Data",
"title": "CWE-311"
},
{
"category": "other",
"text": "Improper Check for Dropped Privileges",
"title": "CWE-273"
},
{
"category": "other",
"text": "Improper Access Control",
"title": "CWE-284"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2021-41617 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2021/cve-2021-41617.json"
}
],
"title": "CVE-2021-41617"
},
{
"cve": "CVE-2023-4527",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "other",
"text": "Out-of-bounds Read",
"title": "CWE-125"
},
{
"category": "other",
"text": "Exposure of Sensitive Information to an Unauthorized Actor",
"title": "CWE-200"
},
{
"category": "other",
"text": "Stack-based Buffer Overflow",
"title": "CWE-121"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2023-4527 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2023/cve-2023-4527.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
}
],
"title": "CVE-2023-4527"
},
{
"cve": "CVE-2023-4806",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "other",
"text": "Use After Free",
"title": "CWE-416"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2023-4806 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2023/cve-2023-4806.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
}
],
"title": "CVE-2023-4806"
},
{
"cve": "CVE-2023-4911",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"notes": [
{
"category": "other",
"text": "Heap-based Buffer Overflow",
"title": "CWE-122"
},
{
"category": "other",
"text": "Stack-based Buffer Overflow",
"title": "CWE-121"
},
{
"category": "other",
"text": "Out-of-bounds Write",
"title": "CWE-787"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2023-4911 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2023/cve-2023-4911.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
}
],
"title": "CVE-2023-4911"
},
{
"cve": "CVE-2023-5363",
"cwe": {
"id": "CWE-325",
"name": "Missing Cryptographic Step"
},
"notes": [
{
"category": "other",
"text": "Missing Cryptographic Step",
"title": "CWE-325"
},
{
"category": "other",
"text": "Improper Input Validation",
"title": "CWE-20"
},
{
"category": "other",
"text": "Incorrect Provision of Specified Functionality",
"title": "CWE-684"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2023-5363 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2023/cve-2023-5363.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
}
],
"title": "CVE-2023-5363"
},
{
"cve": "CVE-2023-6246",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"notes": [
{
"category": "other",
"text": "Heap-based Buffer Overflow",
"title": "CWE-122"
},
{
"category": "other",
"text": "Out-of-bounds Write",
"title": "CWE-787"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2023-6246 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2023/cve-2023-6246.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
}
],
"title": "CVE-2023-6246"
},
{
"cve": "CVE-2023-6779",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"notes": [
{
"category": "other",
"text": "Heap-based Buffer Overflow",
"title": "CWE-122"
},
{
"category": "other",
"text": "Out-of-bounds Write",
"title": "CWE-787"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2023-6779 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2023/cve-2023-6779.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.2,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
}
],
"title": "CVE-2023-6779"
},
{
"cve": "CVE-2023-6780",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"notes": [
{
"category": "other",
"text": "Integer Overflow or Wraparound",
"title": "CWE-190"
},
{
"category": "other",
"text": "Incorrect Calculation of Buffer Size",
"title": "CWE-131"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2023-6780 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2023/cve-2023-6780.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
}
],
"title": "CVE-2023-6780"
},
{
"cve": "CVE-2023-28531",
"cwe": {
"id": "CWE-311",
"name": "Missing Encryption of Sensitive Data"
},
"notes": [
{
"category": "other",
"text": "Missing Encryption of Sensitive Data",
"title": "CWE-311"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2023-28531 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2023/cve-2023-28531.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
}
],
"title": "CVE-2023-28531"
},
{
"cve": "CVE-2023-38545",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"notes": [
{
"category": "other",
"text": "Heap-based Buffer Overflow",
"title": "CWE-122"
},
{
"category": "other",
"text": "Improper Restriction of Operations within the Bounds of a Memory Buffer",
"title": "CWE-119"
},
{
"category": "other",
"text": "Out-of-bounds Write",
"title": "CWE-787"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2023-38545 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2023/cve-2023-38545.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
}
],
"title": "CVE-2023-38545"
},
{
"cve": "CVE-2023-38546",
"cwe": {
"id": "CWE-73",
"name": "External Control of File Name or Path"
},
"notes": [
{
"category": "other",
"text": "External Control of File Name or Path",
"title": "CWE-73"
},
{
"category": "other",
"text": "Missing Encryption of Sensitive Data",
"title": "CWE-311"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2023-38546 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2023/cve-2023-38546.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
}
],
"title": "CVE-2023-38546"
},
{
"cve": "CVE-2023-44487",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"notes": [
{
"category": "other",
"text": "Uncontrolled Resource Consumption",
"title": "CWE-400"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2023-44487 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2023/cve-2023-44487.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
}
],
"title": "CVE-2023-44487"
},
{
"cve": "CVE-2023-46218",
"cwe": {
"id": "CWE-201",
"name": "Insertion of Sensitive Information Into Sent Data"
},
"notes": [
{
"category": "other",
"text": "Insertion of Sensitive Information Into Sent Data",
"title": "CWE-201"
},
{
"category": "other",
"text": "Improper Input Validation",
"title": "CWE-20"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2023-46218 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2023/cve-2023-46218.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
}
],
"title": "CVE-2023-46218"
},
{
"cve": "CVE-2023-46219",
"cwe": {
"id": "CWE-311",
"name": "Missing Encryption of Sensitive Data"
},
"notes": [
{
"category": "other",
"text": "Missing Encryption of Sensitive Data",
"title": "CWE-311"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2023-46219 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2023/cve-2023-46219.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
}
],
"title": "CVE-2023-46219"
},
{
"cve": "CVE-2023-48795",
"cwe": {
"id": "CWE-222",
"name": "Truncation of Security-relevant Information"
},
"notes": [
{
"category": "other",
"text": "Truncation of Security-relevant Information",
"title": "CWE-222"
},
{
"category": "other",
"text": "Selection of Less-Secure Algorithm During Negotiation (\u0027Algorithm Downgrade\u0027)",
"title": "CWE-757"
},
{
"category": "other",
"text": "Improper Validation of Integrity Check Value",
"title": "CWE-354"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:P/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/AU:N/R:A/V:D/RE:L/U:Amber",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2023-48795 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2023/cve-2023-48795.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
}
],
"title": "CVE-2023-48795"
},
{
"cve": "CVE-2023-51384",
"cwe": {
"id": "CWE-304",
"name": "Missing Critical Step in Authentication"
},
"notes": [
{
"category": "other",
"text": "Missing Critical Step in Authentication",
"title": "CWE-304"
},
{
"category": "other",
"text": "Improper Input Validation",
"title": "CWE-20"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2023-51384 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2023/cve-2023-51384.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
}
],
"title": "CVE-2023-51384"
},
{
"cve": "CVE-2023-51385",
"cwe": {
"id": "CWE-78",
"name": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)"
},
"notes": [
{
"category": "other",
"text": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)",
"title": "CWE-78"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2023-51385 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2023/cve-2023-51385.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
}
],
"title": "CVE-2023-51385"
},
{
"cve": "CVE-2023-52927",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "other",
"text": "Improper Input Validation",
"title": "CWE-20"
},
{
"category": "general",
"text": "CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2023-52927 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2023/cve-2023-52927.json"
}
],
"title": "CVE-2023-52927"
},
{
"cve": "CVE-2024-2961",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "other",
"text": "Out-of-bounds Write",
"title": "CWE-787"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-2961 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2024/cve-2024-2961.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
}
],
"title": "CVE-2024-2961"
},
{
"cve": "CVE-2024-6119",
"cwe": {
"id": "CWE-843",
"name": "Access of Resource Using Incompatible Type (\u0027Type Confusion\u0027)"
},
"notes": [
{
"category": "other",
"text": "Access of Resource Using Incompatible Type (\u0027Type Confusion\u0027)",
"title": "CWE-843"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-6119 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2024/cve-2024-6119.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
}
],
"title": "CVE-2024-6119"
},
{
"cve": "CVE-2024-6387",
"cwe": {
"id": "CWE-362",
"name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
},
"notes": [
{
"category": "other",
"text": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)",
"title": "CWE-362"
},
{
"category": "other",
"text": "Signal Handler Race Condition",
"title": "CWE-364"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-6387 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2024/cve-2024-6387.json"
}
],
"title": "CVE-2024-6387"
},
{
"cve": "CVE-2024-12133",
"cwe": {
"id": "CWE-404",
"name": "Improper Resource Shutdown or Release"
},
"notes": [
{
"category": "other",
"text": "Improper Resource Shutdown or Release",
"title": "CWE-404"
},
{
"category": "other",
"text": "Inefficient Algorithmic Complexity",
"title": "CWE-407"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-12133 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2024/cve-2024-12133.json"
}
],
"title": "CVE-2024-12133"
},
{
"cve": "CVE-2024-12243",
"cwe": {
"id": "CWE-404",
"name": "Improper Resource Shutdown or Release"
},
"notes": [
{
"category": "other",
"text": "Improper Resource Shutdown or Release",
"title": "CWE-404"
},
{
"category": "other",
"text": "Inefficient Algorithmic Complexity",
"title": "CWE-407"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-12243 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2024/cve-2024-12243.json"
}
],
"title": "CVE-2024-12243"
},
{
"cve": "CVE-2024-24855",
"cwe": {
"id": "CWE-367",
"name": "Time-of-check Time-of-use (TOCTOU) Race Condition"
},
"notes": [
{
"category": "other",
"text": "Time-of-check Time-of-use (TOCTOU) Race Condition",
"title": "CWE-367"
},
{
"category": "other",
"text": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)",
"title": "CWE-362"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-24855 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2024/cve-2024-24855.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
}
],
"title": "CVE-2024-24855"
},
{
"cve": "CVE-2024-26596",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"notes": [
{
"category": "other",
"text": "NULL Pointer Dereference",
"title": "CWE-476"
},
{
"category": "other",
"text": "Improper Input Validation",
"title": "CWE-20"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-26596 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2024/cve-2024-26596.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
}
],
"title": "CVE-2024-26596"
},
{
"cve": "CVE-2024-28085",
"cwe": {
"id": "CWE-268",
"name": "Privilege Chaining"
},
"notes": [
{
"category": "other",
"text": "Privilege Chaining",
"title": "CWE-268"
},
{
"category": "other",
"text": "Improper Input Validation",
"title": "CWE-20"
},
{
"category": "other",
"text": "Improper Neutralization of Escape, Meta, or Control Sequences",
"title": "CWE-150"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-28085 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2024/cve-2024-28085.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
}
],
"title": "CVE-2024-28085"
},
{
"cve": "CVE-2024-33599",
"cwe": {
"id": "CWE-119",
"name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
},
"notes": [
{
"category": "other",
"text": "Improper Restriction of Operations within the Bounds of a Memory Buffer",
"title": "CWE-119"
},
{
"category": "other",
"text": "Stack-based Buffer Overflow",
"title": "CWE-121"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-33599 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2024/cve-2024-33599.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.6,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L",
"version": "3.1"
},
"products": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
}
],
"title": "CVE-2024-33599"
},
{
"cve": "CVE-2024-33600",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"notes": [
{
"category": "other",
"text": "NULL Pointer Dereference",
"title": "CWE-476"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-33600 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2024/cve-2024-33600.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.6,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L",
"version": "3.1"
},
"products": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
}
],
"title": "CVE-2024-33600"
},
{
"cve": "CVE-2024-33601",
"cwe": {
"id": "CWE-703",
"name": "Improper Check or Handling of Exceptional Conditions"
},
"notes": [
{
"category": "other",
"text": "Improper Check or Handling of Exceptional Conditions",
"title": "CWE-703"
},
{
"category": "other",
"text": "Reachable Assertion",
"title": "CWE-617"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-33601 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2024/cve-2024-33601.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.6,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L",
"version": "3.1"
},
"products": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
}
],
"title": "CVE-2024-33601"
},
{
"cve": "CVE-2024-33602",
"cwe": {
"id": "CWE-466",
"name": "Return of Pointer Value Outside of Expected Range"
},
"notes": [
{
"category": "other",
"text": "Return of Pointer Value Outside of Expected Range",
"title": "CWE-466"
},
{
"category": "other",
"text": "Improper Check or Handling of Exceptional Conditions",
"title": "CWE-703"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-33602 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2024/cve-2024-33602.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.6,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L",
"version": "3.1"
},
"products": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
}
],
"title": "CVE-2024-33602"
},
{
"cve": "CVE-2024-34397",
"cwe": {
"id": "CWE-940",
"name": "Improper Verification of Source of a Communication Channel"
},
"notes": [
{
"category": "other",
"text": "Improper Verification of Source of a Communication Channel",
"title": "CWE-940"
},
{
"category": "other",
"text": "Authentication Bypass by Spoofing",
"title": "CWE-290"
},
{
"category": "other",
"text": "Improper Input Validation",
"title": "CWE-20"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-34397 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2024/cve-2024-34397.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
}
],
"title": "CVE-2024-34397"
},
{
"cve": "CVE-2024-37370",
"cwe": {
"id": "CWE-130",
"name": "Improper Handling of Length Parameter Inconsistency"
},
"notes": [
{
"category": "other",
"text": "Improper Handling of Length Parameter Inconsistency",
"title": "CWE-130"
},
{
"category": "other",
"text": "Insufficient Verification of Data Authenticity",
"title": "CWE-345"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-37370 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2024/cve-2024-37370.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
}
],
"title": "CVE-2024-37370"
},
{
"cve": "CVE-2024-37371",
"cwe": {
"id": "CWE-130",
"name": "Improper Handling of Length Parameter Inconsistency"
},
"notes": [
{
"category": "other",
"text": "Improper Handling of Length Parameter Inconsistency",
"title": "CWE-130"
},
{
"category": "other",
"text": "Out-of-bounds Read",
"title": "CWE-125"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-37371 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2024/cve-2024-37371.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
}
],
"title": "CVE-2024-37371"
},
{
"cve": "CVE-2024-41797",
"cwe": {
"id": "CWE-269",
"name": "Improper Privilege Management"
},
"notes": [
{
"category": "other",
"text": "Improper Privilege Management",
"title": "CWE-269"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-41797 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2024/cve-2024-41797.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
}
],
"title": "CVE-2024-41797"
},
{
"cve": "CVE-2024-45490",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"notes": [
{
"category": "other",
"text": "Integer Overflow or Wraparound",
"title": "CWE-190"
},
{
"category": "other",
"text": "Incorrect Calculation of Buffer Size",
"title": "CWE-131"
},
{
"category": "other",
"text": "Improper Restriction of XML External Entity Reference",
"title": "CWE-611"
},
{
"category": "general",
"text": "CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-45490 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2024/cve-2024-45490.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
}
],
"title": "CVE-2024-45490"
},
{
"cve": "CVE-2024-45491",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"notes": [
{
"category": "other",
"text": "Integer Overflow or Wraparound",
"title": "CWE-190"
},
{
"category": "general",
"text": "CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-45491 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2024/cve-2024-45491.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
}
],
"title": "CVE-2024-45491"
},
{
"cve": "CVE-2024-45492",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"notes": [
{
"category": "other",
"text": "Integer Overflow or Wraparound",
"title": "CWE-190"
},
{
"category": "general",
"text": "CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-45492 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2024/cve-2024-45492.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
}
],
"title": "CVE-2024-45492"
},
{
"cve": "CVE-2024-50246",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "other",
"text": "Improper Input Validation",
"title": "CWE-20"
},
{
"category": "general",
"text": "CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-50246 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2024/cve-2024-50246.json"
}
],
"title": "CVE-2024-50246"
},
{
"cve": "CVE-2024-53166",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "other",
"text": "Use After Free",
"title": "CWE-416"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-53166 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2024/cve-2024-53166.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
}
],
"title": "CVE-2024-53166"
},
{
"cve": "CVE-2024-57977",
"cwe": {
"id": "CWE-667",
"name": "Improper Locking"
},
"notes": [
{
"category": "other",
"text": "Improper Locking",
"title": "CWE-667"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-57977 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2024/cve-2024-57977.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
}
],
"title": "CVE-2024-57977"
},
{
"cve": "CVE-2024-57996",
"cwe": {
"id": "CWE-129",
"name": "Improper Validation of Array Index"
},
"notes": [
{
"category": "other",
"text": "Improper Validation of Array Index",
"title": "CWE-129"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-57996 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2024/cve-2024-57996.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
}
],
"title": "CVE-2024-57996"
},
{
"cve": "CVE-2024-58005",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "other",
"text": "Improper Input Validation",
"title": "CWE-20"
},
{
"category": "other",
"text": "Improper Control of Resource Identifiers (\u0027Resource Injection\u0027)",
"title": "CWE-99"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-58005 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2024/cve-2024-58005.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
}
],
"title": "CVE-2024-58005"
},
{
"cve": "CVE-2025-0133",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"notes": [
{
"category": "other",
"text": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
"title": "CWE-79"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/S:N/AU:N/R:U/V:D/RE:M/U:Amber",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-0133 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-0133.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
}
],
"title": "CVE-2025-0133"
},
{
"cve": "CVE-2025-4373",
"cwe": {
"id": "CWE-120",
"name": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)"
},
"notes": [
{
"category": "other",
"text": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)",
"title": "CWE-120"
},
{
"category": "other",
"text": "Buffer Underwrite (\u0027Buffer Underflow\u0027)",
"title": "CWE-124"
},
{
"category": "general",
"text": "CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-4373 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-4373.json"
}
],
"title": "CVE-2025-4373"
},
{
"cve": "CVE-2025-4598",
"cwe": {
"id": "CWE-362",
"name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
},
"notes": [
{
"category": "other",
"text": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)",
"title": "CWE-362"
},
{
"category": "other",
"text": "Signal Handler Race Condition",
"title": "CWE-364"
},
{
"category": "general",
"text": "CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-4598 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-4598.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
}
],
"title": "CVE-2025-4598"
},
{
"cve": "CVE-2025-21701",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"notes": [
{
"category": "other",
"text": "Exposure of Sensitive Information to an Unauthorized Actor",
"title": "CWE-200"
},
{
"category": "other",
"text": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)",
"title": "CWE-362"
},
{
"category": "general",
"text": "CVSS:4.0/AV:A/AC:H/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-21701 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-21701.json"
}
],
"title": "CVE-2025-21701"
},
{
"cve": "CVE-2025-21702",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "other",
"text": "Improper Input Validation",
"title": "CWE-20"
},
{
"category": "general",
"text": "CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-21702 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-21702.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.0,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
}
],
"title": "CVE-2025-21702"
},
{
"cve": "CVE-2025-21712",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "other",
"text": "Improper Input Validation",
"title": "CWE-20"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-21712 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-21712.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
}
],
"title": "CVE-2025-21712"
},
{
"cve": "CVE-2025-21724",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "other",
"text": "Improper Input Validation",
"title": "CWE-20"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-21724 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-21724.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
}
],
"title": "CVE-2025-21724"
},
{
"cve": "CVE-2025-21728",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "other",
"text": "Improper Input Validation",
"title": "CWE-20"
},
{
"category": "general",
"text": "CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-21728 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-21728.json"
}
],
"title": "CVE-2025-21728"
},
{
"cve": "CVE-2025-21745",
"cwe": {
"id": "CWE-911",
"name": "Improper Update of Reference Count"
},
"notes": [
{
"category": "other",
"text": "Improper Update of Reference Count",
"title": "CWE-911"
},
{
"category": "other",
"text": "Improper Input Validation",
"title": "CWE-20"
},
{
"category": "general",
"text": "CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-21745 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-21745.json"
}
],
"title": "CVE-2025-21745"
},
{
"cve": "CVE-2025-21756",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "other",
"text": "Use After Free",
"title": "CWE-416"
},
{
"category": "other",
"text": "Improper Input Validation",
"title": "CWE-20"
},
{
"category": "general",
"text": "CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-21756 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-21756.json"
}
],
"title": "CVE-2025-21756"
},
{
"cve": "CVE-2025-21758",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"notes": [
{
"category": "other",
"text": "Allocation of Resources Without Limits or Throttling",
"title": "CWE-770"
},
{
"category": "other",
"text": "Improper Input Validation",
"title": "CWE-20"
},
{
"category": "general",
"text": "CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-21758 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-21758.json"
}
],
"title": "CVE-2025-21758"
},
{
"cve": "CVE-2025-21765",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "other",
"text": "Improper Input Validation",
"title": "CWE-20"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-21765 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-21765.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
}
],
"title": "CVE-2025-21765"
},
{
"cve": "CVE-2025-21766",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "other",
"text": "Improper Input Validation",
"title": "CWE-20"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-21766 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-21766.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
}
],
"title": "CVE-2025-21766"
},
{
"cve": "CVE-2025-21767",
"cwe": {
"id": "CWE-332",
"name": "Insufficient Entropy in PRNG"
},
"notes": [
{
"category": "other",
"text": "Insufficient Entropy in PRNG",
"title": "CWE-332"
},
{
"category": "other",
"text": "Improper Input Validation",
"title": "CWE-20"
},
{
"category": "general",
"text": "CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-21767 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-21767.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
}
],
"title": "CVE-2025-21767"
},
{
"cve": "CVE-2025-21795",
"cwe": {
"id": "CWE-371",
"name": "-"
},
"notes": [
{
"category": "other",
"text": "CWE-371",
"title": "CWE-371"
},
{
"category": "other",
"text": "Improper Input Validation",
"title": "CWE-20"
},
{
"category": "general",
"text": "CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-21795 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-21795.json"
}
],
"title": "CVE-2025-21795"
},
{
"cve": "CVE-2025-21796",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "other",
"text": "Use After Free",
"title": "CWE-416"
},
{
"category": "other",
"text": "Improper Input Validation",
"title": "CWE-20"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-21796 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-21796.json"
}
],
"title": "CVE-2025-21796"
},
{
"cve": "CVE-2025-21848",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"notes": [
{
"category": "other",
"text": "NULL Pointer Dereference",
"title": "CWE-476"
},
{
"category": "other",
"text": "Use of NullPointerException Catch to Detect NULL Pointer Dereference",
"title": "CWE-395"
},
{
"category": "general",
"text": "CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-21848 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-21848.json"
}
],
"title": "CVE-2025-21848"
},
{
"cve": "CVE-2025-21862",
"cwe": {
"id": "CWE-665",
"name": "Improper Initialization"
},
"notes": [
{
"category": "other",
"text": "Improper Initialization",
"title": "CWE-665"
},
{
"category": "other",
"text": "Use of Uninitialized Resource",
"title": "CWE-908"
},
{
"category": "general",
"text": "CVSS:4.0/AV:A/AC:H/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-21862 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-21862.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
}
],
"title": "CVE-2025-21862"
},
{
"cve": "CVE-2025-21864",
"cwe": {
"id": "CWE-371",
"name": "-"
},
"notes": [
{
"category": "other",
"text": "CWE-371",
"title": "CWE-371"
},
{
"category": "other",
"text": "NULL Pointer Dereference",
"title": "CWE-476"
},
{
"category": "general",
"text": "CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-21864 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-21864.json"
}
],
"title": "CVE-2025-21864"
},
{
"cve": "CVE-2025-21865",
"cwe": {
"id": "CWE-121",
"name": "Stack-based Buffer Overflow"
},
"notes": [
{
"category": "other",
"text": "Stack-based Buffer Overflow",
"title": "CWE-121"
},
{
"category": "other",
"text": "Out-of-bounds Write",
"title": "CWE-787"
},
{
"category": "general",
"text": "CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-21865 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-21865.json"
}
],
"title": "CVE-2025-21865"
},
{
"cve": "CVE-2025-26465",
"cwe": {
"id": "CWE-310",
"name": "-"
},
"notes": [
{
"category": "other",
"text": "CWE-310",
"title": "CWE-310"
},
{
"category": "other",
"text": "Detection of Error Condition Without Action",
"title": "CWE-390"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-26465 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-26465.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
}
],
"title": "CVE-2025-26465"
},
{
"cve": "CVE-2025-31115",
"cwe": {
"id": "CWE-366",
"name": "Race Condition within a Thread"
},
"notes": [
{
"category": "other",
"text": "Race Condition within a Thread",
"title": "CWE-366"
},
{
"category": "other",
"text": "NULL Pointer Dereference",
"title": "CWE-476"
},
{
"category": "other",
"text": "Use After Free",
"title": "CWE-416"
},
{
"category": "other",
"text": "Premature Release of Resource During Expected Lifetime",
"title": "CWE-826"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-31115 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-31115.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
}
],
"title": "CVE-2025-31115"
},
{
"cve": "CVE-2025-32454",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "other",
"text": "Out-of-bounds Read",
"title": "CWE-125"
},
{
"category": "general",
"text": "CVSS:4.0/AV:L/AC:H/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-32454 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-32454.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
}
],
"title": "CVE-2025-32454"
},
{
"cve": "CVE-2025-40567",
"cwe": {
"id": "CWE-863",
"name": "Incorrect Authorization"
},
"notes": [
{
"category": "other",
"text": "Incorrect Authorization",
"title": "CWE-863"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-40567 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-40567.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
}
],
"title": "CVE-2025-40567"
},
{
"cve": "CVE-2025-40568",
"cwe": {
"id": "CWE-863",
"name": "Incorrect Authorization"
},
"notes": [
{
"category": "other",
"text": "Incorrect Authorization",
"title": "CWE-863"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-40568 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-40568.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
}
],
"title": "CVE-2025-40568"
},
{
"cve": "CVE-2025-40569",
"cwe": {
"id": "CWE-362",
"name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
},
"notes": [
{
"category": "other",
"text": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)",
"title": "CWE-362"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-40569 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-40569.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
}
],
"title": "CVE-2025-40569"
},
{
"cve": "CVE-2025-40585",
"cwe": {
"id": "CWE-276",
"name": "Incorrect Default Permissions"
},
"notes": [
{
"category": "other",
"text": "Incorrect Default Permissions",
"title": "CWE-276"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-40585 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-40585.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.9,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:H/A:L",
"version": "3.1"
},
"products": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
}
],
"title": "CVE-2025-40585"
},
{
"cve": "CVE-2025-46836",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "other",
"text": "Improper Input Validation",
"title": "CWE-20"
},
{
"category": "other",
"text": "Stack-based Buffer Overflow",
"title": "CWE-121"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-46836 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-46836.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1211853",
"CSAFPID-1266669",
"CSAFPID-1266670",
"CSAFPID-1195553",
"CSAFPID-1266671",
"CSAFPID-1266672",
"CSAFPID-2460438",
"CSAFPID-1270701",
"CSAFPID-1270700",
"CSAFPID-1266673",
"CSAFPID-1211202",
"CSAFPID-1272525",
"CSAFPID-2849543",
"CSAFPID-1756091",
"CSAFPID-2619544",
"CSAFPID-126262",
"CSAFPID-2082475",
"CSAFPID-2905706",
"CSAFPID-2905742",
"CSAFPID-2905748",
"CSAFPID-2905793",
"CSAFPID-2905749",
"CSAFPID-2905794",
"CSAFPID-2905750",
"CSAFPID-2905795",
"CSAFPID-2905751",
"CSAFPID-2905796",
"CSAFPID-2905752",
"CSAFPID-2905797",
"CSAFPID-2905753",
"CSAFPID-2905798",
"CSAFPID-2905754",
"CSAFPID-2905799",
"CSAFPID-2905755",
"CSAFPID-2905800",
"CSAFPID-2905756",
"CSAFPID-2905801",
"CSAFPID-2905757",
"CSAFPID-2905802",
"CSAFPID-2905758",
"CSAFPID-2905803",
"CSAFPID-2905759",
"CSAFPID-2905804",
"CSAFPID-2905760",
"CSAFPID-2905805",
"CSAFPID-2905761",
"CSAFPID-2905806",
"CSAFPID-2905762",
"CSAFPID-2905807",
"CSAFPID-2905763",
"CSAFPID-2905808",
"CSAFPID-2905764",
"CSAFPID-2905809",
"CSAFPID-2905765",
"CSAFPID-2905810",
"CSAFPID-2905766",
"CSAFPID-2905811",
"CSAFPID-2905767",
"CSAFPID-2905812",
"CSAFPID-2905768",
"CSAFPID-2905813",
"CSAFPID-2905769",
"CSAFPID-2905814",
"CSAFPID-2905770",
"CSAFPID-2905815",
"CSAFPID-2905771",
"CSAFPID-2905816",
"CSAFPID-2905772",
"CSAFPID-2905817",
"CSAFPID-2905773",
"CSAFPID-2905818",
"CSAFPID-2905774",
"CSAFPID-2905819",
"CSAFPID-2905775",
"CSAFPID-2905820",
"CSAFPID-2905776",
"CSAFPID-2905821",
"CSAFPID-2905777",
"CSAFPID-2905822",
"CSAFPID-2905778",
"CSAFPID-2905823",
"CSAFPID-2905786",
"CSAFPID-2905831",
"CSAFPID-2905785",
"CSAFPID-2905830",
"CSAFPID-2905787",
"CSAFPID-2905832",
"CSAFPID-2905783",
"CSAFPID-2905828",
"CSAFPID-2905782",
"CSAFPID-2905827",
"CSAFPID-2905784",
"CSAFPID-2905829",
"CSAFPID-2905780",
"CSAFPID-2905825",
"CSAFPID-2905779",
"CSAFPID-2905824",
"CSAFPID-2905781",
"CSAFPID-2905826"
]
}
],
"title": "CVE-2025-46836"
}
]
}
wid-sec-w-2025-1905
Vulnerability from csaf_certbund
Published
2025-08-25 22:00
Modified
2025-08-27 22:00
Summary
IBM QRadar SIEM Komponente: Mehrere Schwachstellen
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
IBM QRadar Security Information and Event Management (SIEM) bietet Unterstützung bei der Erkennung und Priorisierung von Sicherheitsbedrohungen im Unternehmen.
Angriff
Ein Angreifer kann mehrere Schwachstellen in IBM QRadar SIEM Komponenten ausnutzen, um Daten zu manipulieren, um einen Denial of Service Angriff durchzuführen, um beliebigen Programmcode auszuführen, um Sicherheitsvorkehrungen zu umgehen, und um Informationen offenzulegen.
Betroffene Betriebssysteme
- Linux
- UNIX
{
"document": {
"aggregate_severity": {
"text": "hoch"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "IBM QRadar Security Information and Event Management (SIEM) bietet Unterst\u00fctzung bei der Erkennung und Priorisierung von Sicherheitsbedrohungen im Unternehmen.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein Angreifer kann mehrere Schwachstellen in IBM QRadar SIEM Komponenten ausnutzen, um Daten zu manipulieren, um einen Denial of Service Angriff durchzuf\u00fchren, um beliebigen Programmcode auszuf\u00fchren, um Sicherheitsvorkehrungen zu umgehen, und um Informationen offenzulegen.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Linux\n- UNIX",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2025-1905 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-1905.json"
},
{
"category": "self",
"summary": "WID-SEC-2025-1905 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-1905"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7243011 vom 2025-08-25",
"url": "https://www.ibm.com/support/pages/node/7243011"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:14746 vom 2025-08-27",
"url": "https://access.redhat.com/errata/RHSA-2025:14746"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:14748 vom 2025-08-27",
"url": "https://access.redhat.com/errata/RHSA-2025:14748"
}
],
"source_lang": "en-US",
"title": "IBM QRadar SIEM Komponente: Mehrere Schwachstellen",
"tracking": {
"current_release_date": "2025-08-27T22:00:00.000+00:00",
"generator": {
"date": "2025-08-28T05:52:03.530+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.4.0"
}
},
"id": "WID-SEC-W-2025-1905",
"initial_release_date": "2025-08-25T22:00:00.000+00:00",
"revision_history": [
{
"date": "2025-08-25T22:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2025-08-27T22:00:00.000+00:00",
"number": "2",
"summary": "Neue Updates von Red Hat aufgenommen"
}
],
"status": "final",
"version": "2"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c7.5.0 UP13 IF01",
"product": {
"name": "IBM QRadar SIEM \u003c7.5.0 UP13 IF01",
"product_id": "T046492"
}
},
{
"category": "product_version",
"name": "7.5.0 UP13 IF01",
"product": {
"name": "IBM QRadar SIEM 7.5.0 UP13 IF01",
"product_id": "T046492-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:qradar_siem:7.5.0_up13_if01"
}
}
}
],
"category": "product_name",
"name": "QRadar SIEM"
}
],
"category": "vendor",
"name": "IBM"
},
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux",
"product": {
"name": "Red Hat Enterprise Linux",
"product_id": "67646",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:-"
}
}
}
],
"category": "vendor",
"name": "Red Hat"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2019-17543",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2019-17543"
},
{
"cve": "CVE-2019-5427",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2019-5427"
},
{
"cve": "CVE-2020-5260",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2020-5260"
},
{
"cve": "CVE-2022-49058",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2022-49058"
},
{
"cve": "CVE-2022-49111",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2022-49111"
},
{
"cve": "CVE-2022-49136",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2022-49136"
},
{
"cve": "CVE-2022-49788",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2022-49788"
},
{
"cve": "CVE-2022-49846",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2022-49846"
},
{
"cve": "CVE-2022-49977",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2022-49977"
},
{
"cve": "CVE-2022-50020",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2022-50020"
},
{
"cve": "CVE-2024-23337",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2024-23337"
},
{
"cve": "CVE-2024-28956",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2024-28956"
},
{
"cve": "CVE-2024-34397",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2024-34397"
},
{
"cve": "CVE-2024-43420",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2024-43420"
},
{
"cve": "CVE-2024-45332",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2024-45332"
},
{
"cve": "CVE-2024-50154",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2024-50154"
},
{
"cve": "CVE-2024-50349",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2024-50349"
},
{
"cve": "CVE-2024-52006",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2024-52006"
},
{
"cve": "CVE-2024-52533",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2024-52533"
},
{
"cve": "CVE-2024-53920",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2024-53920"
},
{
"cve": "CVE-2024-54661",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2024-54661"
},
{
"cve": "CVE-2024-57980",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2024-57980"
},
{
"cve": "CVE-2024-58002",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2024-58002"
},
{
"cve": "CVE-2024-6531",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2024-6531"
},
{
"cve": "CVE-2025-20012",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-20012"
},
{
"cve": "CVE-2025-20623",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-20623"
},
{
"cve": "CVE-2025-21905",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-21905"
},
{
"cve": "CVE-2025-21919",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-21919"
},
{
"cve": "CVE-2025-21928",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-21928"
},
{
"cve": "CVE-2025-21991",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-21991"
},
{
"cve": "CVE-2025-22004",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-22004"
},
{
"cve": "CVE-2025-22020",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-22020"
},
{
"cve": "CVE-2025-23150",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-23150"
},
{
"cve": "CVE-2025-24495",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-24495"
},
{
"cve": "CVE-2025-27613",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-27613"
},
{
"cve": "CVE-2025-27614",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-27614"
},
{
"cve": "CVE-2025-32415",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-32415"
},
{
"cve": "CVE-2025-37738",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-37738"
},
{
"cve": "CVE-2025-37890",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-37890"
},
{
"cve": "CVE-2025-38052",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-38052"
},
{
"cve": "CVE-2025-38079",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-38079"
},
{
"cve": "CVE-2025-38086",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-38086"
},
{
"cve": "CVE-2025-4373",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-4373"
},
{
"cve": "CVE-2025-46835",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-46835"
},
{
"cve": "CVE-2025-47273",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-47273"
},
{
"cve": "CVE-2025-48060",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-48060"
},
{
"cve": "CVE-2025-48384",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-48384"
},
{
"cve": "CVE-2025-48385",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-48385"
},
{
"cve": "CVE-2025-49794",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-49794"
},
{
"cve": "CVE-2025-49796",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-49796"
},
{
"cve": "CVE-2025-52434",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-52434"
},
{
"cve": "CVE-2025-52520",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-52520"
},
{
"cve": "CVE-2025-53506",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-53506"
},
{
"cve": "CVE-2025-55668",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-55668"
},
{
"cve": "CVE-2025-6021",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-6021"
},
{
"cve": "CVE-2025-6965",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-6965"
},
{
"cve": "CVE-2025-7425",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-7425"
}
]
}
wid-sec-w-2025-1546
Vulnerability from csaf_certbund
Published
2025-07-14 22:00
Modified
2025-09-09 22:00
Summary
Red Hat Enterprise Linux (GLib): Schwachstelle ermöglicht Denial of Service
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
Red Hat Enterprise Linux (RHEL) ist eine populäre Linux-Distribution.
Angriff
Ein entfernter, anonymer Angreifer kann eine Schwachstelle in Red Hat Enterprise Linux GLib ausnutzen, um einen Denial of Service Angriff durchzuführen.
Betroffene Betriebssysteme
- Linux
- UNIX
{
"document": {
"aggregate_severity": {
"text": "mittel"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Red Hat Enterprise Linux (RHEL) ist eine popul\u00e4re Linux-Distribution.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein entfernter, anonymer Angreifer kann eine Schwachstelle in Red Hat Enterprise Linux GLib ausnutzen, um einen Denial of Service Angriff durchzuf\u00fchren.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Linux\n- UNIX",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2025-1546 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-1546.json"
},
{
"category": "self",
"summary": "WID-SEC-2025-1546 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-1546"
},
{
"category": "external",
"summary": "Red Hat Security Advisory vom 2025-07-14",
"url": "https://access.redhat.com/errata/RHSA-2025:10855"
},
{
"category": "external",
"summary": "Red Hat Security Advisory CVE-2025-4373",
"url": "https://access.redhat.com/security/cve/CVE-2025-4373"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2025-11140 vom 2025-07-16",
"url": "https://linux.oracle.com/errata/ELSA-2025-11140.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:11140 vom 2025-07-15",
"url": "https://access.redhat.com/errata/RHSA-2025:11140"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2025-11327 vom 2025-07-17",
"url": "https://linux.oracle.com/errata/ELSA-2025-11327.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:11327 vom 2025-07-17",
"url": "https://access.redhat.com/errata/RHSA-2025:11327"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:20471-1 vom 2025-07-16",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-July/021826.html"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2025-10855 vom 2025-07-17",
"url": "https://linux.oracle.com/errata/ELSA-2025-10855.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:11373 vom 2025-07-17",
"url": "https://access.redhat.com/errata/RHSA-2025:11373"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:11374 vom 2025-07-17",
"url": "https://access.redhat.com/errata/RHSA-2025:11374"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:02375-1 vom 2025-07-18",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-July/021853.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:11675 vom 2025-07-29",
"url": "https://access.redhat.com/errata/RHSA-2025:11675"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:12275 vom 2025-07-30",
"url": "https://access.redhat.com/errata/RHSA-2025:12275"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:12450 vom 2025-07-31",
"url": "https://access.redhat.com/errata/RHSA-2025:12450"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:12447 vom 2025-07-31",
"url": "https://access.redhat.com/errata/RHSA-2025:12447"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:20508-1 vom 2025-08-04",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-August/022042.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:13276 vom 2025-08-07",
"url": "https://access.redhat.com/errata/RHSA-2025:13276"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7241673 vom 2025-08-07",
"url": "https://www.ibm.com/support/pages/node/7241673"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:13335 vom 2025-08-07",
"url": "https://access.redhat.com/errata/RHSA-2025:13335"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:14989 vom 2025-09-02",
"url": "https://access.redhat.com/errata/RHSA-2025:14989"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:14988 vom 2025-09-02",
"url": "https://access.redhat.com/errata/RHSA-2025:14988"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:14990 vom 2025-09-02",
"url": "https://access.redhat.com/errata/RHSA-2025:14990"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:14991 vom 2025-09-02",
"url": "https://access.redhat.com/errata/RHSA-2025:14991"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7243787 vom 2025-09-02",
"url": "https://www.ibm.com/support/pages/node/7243787"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7244160 vom 2025-09-05",
"url": "https://www.ibm.com/support/pages/node/7244160"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7244360 vom 2025-09-09",
"url": "https://www.ibm.com/support/pages/node/7244360"
}
],
"source_lang": "en-US",
"title": "Red Hat Enterprise Linux (GLib): Schwachstelle erm\u00f6glicht Denial of Service",
"tracking": {
"current_release_date": "2025-09-09T22:00:00.000+00:00",
"generator": {
"date": "2025-09-10T05:06:41.186+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.4.0"
}
},
"id": "WID-SEC-W-2025-1546",
"initial_release_date": "2025-07-14T22:00:00.000+00:00",
"revision_history": [
{
"date": "2025-07-14T22:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2025-07-15T22:00:00.000+00:00",
"number": "2",
"summary": "Neue Updates von Oracle Linux und Red Hat aufgenommen"
},
{
"date": "2025-07-16T22:00:00.000+00:00",
"number": "3",
"summary": "Neue Updates von Oracle Linux, Red Hat und SUSE aufgenommen"
},
{
"date": "2025-07-20T22:00:00.000+00:00",
"number": "4",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2025-07-28T22:00:00.000+00:00",
"number": "5",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2025-07-29T22:00:00.000+00:00",
"number": "6",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2025-07-31T22:00:00.000+00:00",
"number": "7",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2025-08-03T22:00:00.000+00:00",
"number": "8",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2025-08-06T22:00:00.000+00:00",
"number": "9",
"summary": "Neue Updates von Red Hat und IBM aufgenommen"
},
{
"date": "2025-08-07T22:00:00.000+00:00",
"number": "10",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2025-09-01T22:00:00.000+00:00",
"number": "11",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2025-09-02T22:00:00.000+00:00",
"number": "12",
"summary": "Neue Updates von IBM aufgenommen"
},
{
"date": "2025-09-07T22:00:00.000+00:00",
"number": "13",
"summary": "Neue Updates von IBM aufgenommen"
},
{
"date": "2025-09-09T22:00:00.000+00:00",
"number": "14",
"summary": "Neue Updates von IBM aufgenommen"
}
],
"status": "final",
"version": "14"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "IBM App Connect Enterprise",
"product": {
"name": "IBM App Connect Enterprise",
"product_id": "T032495",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:app_connect_enterprise:-"
}
}
},
{
"branches": [
{
"category": "product_version",
"name": "Operator",
"product": {
"name": "IBM MQ Operator",
"product_id": "T036688",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:mq:operator"
}
}
},
{
"category": "product_version",
"name": "Container",
"product": {
"name": "IBM MQ Container",
"product_id": "T040640",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:mq:container"
}
}
}
],
"category": "product_name",
"name": "MQ"
},
{
"branches": [
{
"category": "product_version",
"name": "v10",
"product": {
"name": "IBM Power Hardware Management Console v10",
"product_id": "T023373",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:hardware_management_console:v10"
}
}
},
{
"category": "product_version",
"name": "v11",
"product": {
"name": "IBM Power Hardware Management Console v11",
"product_id": "T046812",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:hardware_management_console:v11"
}
}
}
],
"category": "product_name",
"name": "Power Hardware Management Console"
},
{
"category": "product_name",
"name": "IBM Sterling Connect:Direct",
"product": {
"name": "IBM Sterling Connect:Direct",
"product_id": "T045428",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:sterling_connect%3adirect:-"
}
}
}
],
"category": "vendor",
"name": "IBM"
},
{
"branches": [
{
"category": "product_name",
"name": "Oracle Linux",
"product": {
"name": "Oracle Linux",
"product_id": "T004914",
"product_identification_helper": {
"cpe": "cpe:/o:oracle:linux:-"
}
}
}
],
"category": "vendor",
"name": "Oracle"
},
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux",
"product": {
"name": "Red Hat Enterprise Linux",
"product_id": "67646",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:-"
}
}
},
{
"category": "product_version_range",
"name": "\u003c10",
"product": {
"name": "Red Hat Enterprise Linux \u003c10",
"product_id": "T045353"
}
},
{
"category": "product_version",
"name": "10",
"product": {
"name": "Red Hat Enterprise Linux 10",
"product_id": "T045353-fixed",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:10"
}
}
}
],
"category": "product_name",
"name": "Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "Container Platform",
"product": {
"name": "Red Hat OpenShift Container Platform",
"product_id": "T040130",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:container_platform"
}
}
}
],
"category": "product_name",
"name": "OpenShift"
}
],
"category": "vendor",
"name": "Red Hat"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux",
"product": {
"name": "SUSE Linux",
"product_id": "T002207",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse_linux:-"
}
}
}
],
"category": "vendor",
"name": "SUSE"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-4373",
"product_status": {
"known_affected": [
"T040130",
"T046812",
"T002207",
"T045428",
"67646",
"T036688",
"T004914",
"T040640",
"T045353",
"T023373",
"T032495"
]
},
"release_date": "2025-07-14T22:00:00.000+00:00",
"title": "CVE-2025-4373"
}
]
}
rhsa-2025:11140
Vulnerability from csaf_redhat
Published
2025-07-15 13:39
Modified
2025-10-10 00:28
Summary
Red Hat Security Advisory: glib2 security update
Notes
Topic
An update for glib2 is now available for Red Hat Enterprise Linux 9.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
GLib provides the core application building blocks for libraries and applications written in C. It provides the core object system used in GNOME, the main loop implementation, and a large set of utility functions for strings and common data structures.
Security Fix(es):
* glib: buffer overflow in set_connect_msg() (CVE-2024-52533)
* glib: Buffer Underflow on GLib through glib/gstring.c via function g_string_insert_unichar (CVE-2025-4373)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for glib2 is now available for Red Hat Enterprise Linux 9.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "GLib provides the core application building blocks for libraries and applications written in C. It provides the core object system used in GNOME, the main loop implementation, and a large set of utility functions for strings and common data structures.\n\nSecurity Fix(es):\n\n* glib: buffer overflow in set_connect_msg() (CVE-2024-52533)\n\n* glib: Buffer Underflow on GLib through glib/gstring.c via function g_string_insert_unichar (CVE-2025-4373)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:11140",
"url": "https://access.redhat.com/errata/RHSA-2025:11140"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "2325340",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2325340"
},
{
"category": "external",
"summary": "2364265",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2364265"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_11140.json"
}
],
"title": "Red Hat Security Advisory: glib2 security update",
"tracking": {
"current_release_date": "2025-10-10T00:28:35+00:00",
"generator": {
"date": "2025-10-10T00:28:35+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.9"
}
},
"id": "RHSA-2025:11140",
"initial_release_date": "2025-07-15T13:39:40+00:00",
"revision_history": [
{
"date": "2025-07-15T13:39:40+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-07-15T13:39:40+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-10T00:28:35+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream (v. 9)",
"product": {
"name": "Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:9::appstream"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux BaseOS (v. 9)",
"product": {
"name": "Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:9::baseos"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)",
"product": {
"name": "Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.6.0.Z.MAIN.EUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:9::crb"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "glib2-devel-0:2.68.4-16.el9_6.2.aarch64",
"product": {
"name": "glib2-devel-0:2.68.4-16.el9_6.2.aarch64",
"product_id": "glib2-devel-0:2.68.4-16.el9_6.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel@2.68.4-16.el9_6.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "glib2-tests-0:2.68.4-16.el9_6.2.aarch64",
"product": {
"name": "glib2-tests-0:2.68.4-16.el9_6.2.aarch64",
"product_id": "glib2-tests-0:2.68.4-16.el9_6.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-tests@2.68.4-16.el9_6.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "glib2-debugsource-0:2.68.4-16.el9_6.2.aarch64",
"product": {
"name": "glib2-debugsource-0:2.68.4-16.el9_6.2.aarch64",
"product_id": "glib2-debugsource-0:2.68.4-16.el9_6.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debugsource@2.68.4-16.el9_6.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "glib2-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"product": {
"name": "glib2-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"product_id": "glib2-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debuginfo@2.68.4-16.el9_6.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"product": {
"name": "glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"product_id": "glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel-debuginfo@2.68.4-16.el9_6.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"product": {
"name": "glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"product_id": "glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-tests-debuginfo@2.68.4-16.el9_6.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "glib2-static-0:2.68.4-16.el9_6.2.aarch64",
"product": {
"name": "glib2-static-0:2.68.4-16.el9_6.2.aarch64",
"product_id": "glib2-static-0:2.68.4-16.el9_6.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-static@2.68.4-16.el9_6.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "glib2-0:2.68.4-16.el9_6.2.aarch64",
"product": {
"name": "glib2-0:2.68.4-16.el9_6.2.aarch64",
"product_id": "glib2-0:2.68.4-16.el9_6.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2@2.68.4-16.el9_6.2?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "glib2-devel-0:2.68.4-16.el9_6.2.ppc64le",
"product": {
"name": "glib2-devel-0:2.68.4-16.el9_6.2.ppc64le",
"product_id": "glib2-devel-0:2.68.4-16.el9_6.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel@2.68.4-16.el9_6.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "glib2-tests-0:2.68.4-16.el9_6.2.ppc64le",
"product": {
"name": "glib2-tests-0:2.68.4-16.el9_6.2.ppc64le",
"product_id": "glib2-tests-0:2.68.4-16.el9_6.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-tests@2.68.4-16.el9_6.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "glib2-debugsource-0:2.68.4-16.el9_6.2.ppc64le",
"product": {
"name": "glib2-debugsource-0:2.68.4-16.el9_6.2.ppc64le",
"product_id": "glib2-debugsource-0:2.68.4-16.el9_6.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debugsource@2.68.4-16.el9_6.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "glib2-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"product": {
"name": "glib2-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"product_id": "glib2-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debuginfo@2.68.4-16.el9_6.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"product": {
"name": "glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"product_id": "glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel-debuginfo@2.68.4-16.el9_6.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"product": {
"name": "glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"product_id": "glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-tests-debuginfo@2.68.4-16.el9_6.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "glib2-static-0:2.68.4-16.el9_6.2.ppc64le",
"product": {
"name": "glib2-static-0:2.68.4-16.el9_6.2.ppc64le",
"product_id": "glib2-static-0:2.68.4-16.el9_6.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-static@2.68.4-16.el9_6.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "glib2-0:2.68.4-16.el9_6.2.ppc64le",
"product": {
"name": "glib2-0:2.68.4-16.el9_6.2.ppc64le",
"product_id": "glib2-0:2.68.4-16.el9_6.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2@2.68.4-16.el9_6.2?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "glib2-devel-0:2.68.4-16.el9_6.2.i686",
"product": {
"name": "glib2-devel-0:2.68.4-16.el9_6.2.i686",
"product_id": "glib2-devel-0:2.68.4-16.el9_6.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel@2.68.4-16.el9_6.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "glib2-debugsource-0:2.68.4-16.el9_6.2.i686",
"product": {
"name": "glib2-debugsource-0:2.68.4-16.el9_6.2.i686",
"product_id": "glib2-debugsource-0:2.68.4-16.el9_6.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debugsource@2.68.4-16.el9_6.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "glib2-debuginfo-0:2.68.4-16.el9_6.2.i686",
"product": {
"name": "glib2-debuginfo-0:2.68.4-16.el9_6.2.i686",
"product_id": "glib2-debuginfo-0:2.68.4-16.el9_6.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debuginfo@2.68.4-16.el9_6.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.i686",
"product": {
"name": "glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.i686",
"product_id": "glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel-debuginfo@2.68.4-16.el9_6.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.i686",
"product": {
"name": "glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.i686",
"product_id": "glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-tests-debuginfo@2.68.4-16.el9_6.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "glib2-static-0:2.68.4-16.el9_6.2.i686",
"product": {
"name": "glib2-static-0:2.68.4-16.el9_6.2.i686",
"product_id": "glib2-static-0:2.68.4-16.el9_6.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-static@2.68.4-16.el9_6.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "glib2-0:2.68.4-16.el9_6.2.i686",
"product": {
"name": "glib2-0:2.68.4-16.el9_6.2.i686",
"product_id": "glib2-0:2.68.4-16.el9_6.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2@2.68.4-16.el9_6.2?arch=i686"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "glib2-devel-0:2.68.4-16.el9_6.2.x86_64",
"product": {
"name": "glib2-devel-0:2.68.4-16.el9_6.2.x86_64",
"product_id": "glib2-devel-0:2.68.4-16.el9_6.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel@2.68.4-16.el9_6.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glib2-tests-0:2.68.4-16.el9_6.2.x86_64",
"product": {
"name": "glib2-tests-0:2.68.4-16.el9_6.2.x86_64",
"product_id": "glib2-tests-0:2.68.4-16.el9_6.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-tests@2.68.4-16.el9_6.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glib2-debugsource-0:2.68.4-16.el9_6.2.x86_64",
"product": {
"name": "glib2-debugsource-0:2.68.4-16.el9_6.2.x86_64",
"product_id": "glib2-debugsource-0:2.68.4-16.el9_6.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debugsource@2.68.4-16.el9_6.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glib2-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"product": {
"name": "glib2-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"product_id": "glib2-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debuginfo@2.68.4-16.el9_6.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"product": {
"name": "glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"product_id": "glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel-debuginfo@2.68.4-16.el9_6.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"product": {
"name": "glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"product_id": "glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-tests-debuginfo@2.68.4-16.el9_6.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glib2-static-0:2.68.4-16.el9_6.2.x86_64",
"product": {
"name": "glib2-static-0:2.68.4-16.el9_6.2.x86_64",
"product_id": "glib2-static-0:2.68.4-16.el9_6.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-static@2.68.4-16.el9_6.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glib2-0:2.68.4-16.el9_6.2.x86_64",
"product": {
"name": "glib2-0:2.68.4-16.el9_6.2.x86_64",
"product_id": "glib2-0:2.68.4-16.el9_6.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2@2.68.4-16.el9_6.2?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "glib2-devel-0:2.68.4-16.el9_6.2.s390x",
"product": {
"name": "glib2-devel-0:2.68.4-16.el9_6.2.s390x",
"product_id": "glib2-devel-0:2.68.4-16.el9_6.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel@2.68.4-16.el9_6.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "glib2-tests-0:2.68.4-16.el9_6.2.s390x",
"product": {
"name": "glib2-tests-0:2.68.4-16.el9_6.2.s390x",
"product_id": "glib2-tests-0:2.68.4-16.el9_6.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-tests@2.68.4-16.el9_6.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "glib2-debugsource-0:2.68.4-16.el9_6.2.s390x",
"product": {
"name": "glib2-debugsource-0:2.68.4-16.el9_6.2.s390x",
"product_id": "glib2-debugsource-0:2.68.4-16.el9_6.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debugsource@2.68.4-16.el9_6.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "glib2-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"product": {
"name": "glib2-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"product_id": "glib2-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debuginfo@2.68.4-16.el9_6.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"product": {
"name": "glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"product_id": "glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel-debuginfo@2.68.4-16.el9_6.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"product": {
"name": "glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"product_id": "glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-tests-debuginfo@2.68.4-16.el9_6.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "glib2-static-0:2.68.4-16.el9_6.2.s390x",
"product": {
"name": "glib2-static-0:2.68.4-16.el9_6.2.s390x",
"product_id": "glib2-static-0:2.68.4-16.el9_6.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-static@2.68.4-16.el9_6.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "glib2-0:2.68.4-16.el9_6.2.s390x",
"product": {
"name": "glib2-0:2.68.4-16.el9_6.2.s390x",
"product_id": "glib2-0:2.68.4-16.el9_6.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2@2.68.4-16.el9_6.2?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "glib2-doc-0:2.68.4-16.el9_6.2.noarch",
"product": {
"name": "glib2-doc-0:2.68.4-16.el9_6.2.noarch",
"product_id": "glib2-doc-0:2.68.4-16.el9_6.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-doc@2.68.4-16.el9_6.2?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "glib2-0:2.68.4-16.el9_6.2.src",
"product": {
"name": "glib2-0:2.68.4-16.el9_6.2.src",
"product_id": "glib2-0:2.68.4-16.el9_6.2.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2@2.68.4-16.el9_6.2?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.68.4-16.el9_6.2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.aarch64"
},
"product_reference": "glib2-0:2.68.4-16.el9_6.2.aarch64",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.68.4-16.el9_6.2.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.i686"
},
"product_reference": "glib2-0:2.68.4-16.el9_6.2.i686",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.68.4-16.el9_6.2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.ppc64le"
},
"product_reference": "glib2-0:2.68.4-16.el9_6.2.ppc64le",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.68.4-16.el9_6.2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.s390x"
},
"product_reference": "glib2-0:2.68.4-16.el9_6.2.s390x",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.68.4-16.el9_6.2.src as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.src"
},
"product_reference": "glib2-0:2.68.4-16.el9_6.2.src",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.68.4-16.el9_6.2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.x86_64"
},
"product_reference": "glib2-0:2.68.4-16.el9_6.2.x86_64",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.68.4-16.el9_6.2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.aarch64"
},
"product_reference": "glib2-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.68.4-16.el9_6.2.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.i686"
},
"product_reference": "glib2-debuginfo-0:2.68.4-16.el9_6.2.i686",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.68.4-16.el9_6.2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.ppc64le"
},
"product_reference": "glib2-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.68.4-16.el9_6.2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.s390x"
},
"product_reference": "glib2-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.68.4-16.el9_6.2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.x86_64"
},
"product_reference": "glib2-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.68.4-16.el9_6.2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.aarch64"
},
"product_reference": "glib2-debugsource-0:2.68.4-16.el9_6.2.aarch64",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.68.4-16.el9_6.2.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.i686"
},
"product_reference": "glib2-debugsource-0:2.68.4-16.el9_6.2.i686",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.68.4-16.el9_6.2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.ppc64le"
},
"product_reference": "glib2-debugsource-0:2.68.4-16.el9_6.2.ppc64le",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.68.4-16.el9_6.2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.s390x"
},
"product_reference": "glib2-debugsource-0:2.68.4-16.el9_6.2.s390x",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.68.4-16.el9_6.2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.x86_64"
},
"product_reference": "glib2-debugsource-0:2.68.4-16.el9_6.2.x86_64",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.68.4-16.el9_6.2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.aarch64"
},
"product_reference": "glib2-devel-0:2.68.4-16.el9_6.2.aarch64",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.68.4-16.el9_6.2.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.i686"
},
"product_reference": "glib2-devel-0:2.68.4-16.el9_6.2.i686",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.68.4-16.el9_6.2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.ppc64le"
},
"product_reference": "glib2-devel-0:2.68.4-16.el9_6.2.ppc64le",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.68.4-16.el9_6.2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.s390x"
},
"product_reference": "glib2-devel-0:2.68.4-16.el9_6.2.s390x",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.68.4-16.el9_6.2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.x86_64"
},
"product_reference": "glib2-devel-0:2.68.4-16.el9_6.2.x86_64",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.aarch64"
},
"product_reference": "glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.i686"
},
"product_reference": "glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.i686",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.ppc64le"
},
"product_reference": "glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.s390x"
},
"product_reference": "glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.x86_64"
},
"product_reference": "glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-doc-0:2.68.4-16.el9_6.2.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:glib2-doc-0:2.68.4-16.el9_6.2.noarch"
},
"product_reference": "glib2-doc-0:2.68.4-16.el9_6.2.noarch",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-static-0:2.68.4-16.el9_6.2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.aarch64"
},
"product_reference": "glib2-static-0:2.68.4-16.el9_6.2.aarch64",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-static-0:2.68.4-16.el9_6.2.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.i686"
},
"product_reference": "glib2-static-0:2.68.4-16.el9_6.2.i686",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-static-0:2.68.4-16.el9_6.2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.ppc64le"
},
"product_reference": "glib2-static-0:2.68.4-16.el9_6.2.ppc64le",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-static-0:2.68.4-16.el9_6.2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.s390x"
},
"product_reference": "glib2-static-0:2.68.4-16.el9_6.2.s390x",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-static-0:2.68.4-16.el9_6.2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.x86_64"
},
"product_reference": "glib2-static-0:2.68.4-16.el9_6.2.x86_64",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-0:2.68.4-16.el9_6.2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.aarch64"
},
"product_reference": "glib2-tests-0:2.68.4-16.el9_6.2.aarch64",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-0:2.68.4-16.el9_6.2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.ppc64le"
},
"product_reference": "glib2-tests-0:2.68.4-16.el9_6.2.ppc64le",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-0:2.68.4-16.el9_6.2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.s390x"
},
"product_reference": "glib2-tests-0:2.68.4-16.el9_6.2.s390x",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-0:2.68.4-16.el9_6.2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.x86_64"
},
"product_reference": "glib2-tests-0:2.68.4-16.el9_6.2.x86_64",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.aarch64"
},
"product_reference": "glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.i686"
},
"product_reference": "glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.i686",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.ppc64le"
},
"product_reference": "glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.s390x"
},
"product_reference": "glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.x86_64"
},
"product_reference": "glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.68.4-16.el9_6.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.aarch64"
},
"product_reference": "glib2-0:2.68.4-16.el9_6.2.aarch64",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.68.4-16.el9_6.2.i686 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.i686"
},
"product_reference": "glib2-0:2.68.4-16.el9_6.2.i686",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.68.4-16.el9_6.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.ppc64le"
},
"product_reference": "glib2-0:2.68.4-16.el9_6.2.ppc64le",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.68.4-16.el9_6.2.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.s390x"
},
"product_reference": "glib2-0:2.68.4-16.el9_6.2.s390x",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.68.4-16.el9_6.2.src as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.src"
},
"product_reference": "glib2-0:2.68.4-16.el9_6.2.src",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.68.4-16.el9_6.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.x86_64"
},
"product_reference": "glib2-0:2.68.4-16.el9_6.2.x86_64",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.68.4-16.el9_6.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.aarch64"
},
"product_reference": "glib2-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.68.4-16.el9_6.2.i686 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.i686"
},
"product_reference": "glib2-debuginfo-0:2.68.4-16.el9_6.2.i686",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.68.4-16.el9_6.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.ppc64le"
},
"product_reference": "glib2-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.68.4-16.el9_6.2.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.s390x"
},
"product_reference": "glib2-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.68.4-16.el9_6.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.x86_64"
},
"product_reference": "glib2-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.68.4-16.el9_6.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.aarch64"
},
"product_reference": "glib2-debugsource-0:2.68.4-16.el9_6.2.aarch64",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.68.4-16.el9_6.2.i686 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.i686"
},
"product_reference": "glib2-debugsource-0:2.68.4-16.el9_6.2.i686",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.68.4-16.el9_6.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.ppc64le"
},
"product_reference": "glib2-debugsource-0:2.68.4-16.el9_6.2.ppc64le",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.68.4-16.el9_6.2.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.s390x"
},
"product_reference": "glib2-debugsource-0:2.68.4-16.el9_6.2.s390x",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.68.4-16.el9_6.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.x86_64"
},
"product_reference": "glib2-debugsource-0:2.68.4-16.el9_6.2.x86_64",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.68.4-16.el9_6.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.aarch64"
},
"product_reference": "glib2-devel-0:2.68.4-16.el9_6.2.aarch64",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.68.4-16.el9_6.2.i686 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.i686"
},
"product_reference": "glib2-devel-0:2.68.4-16.el9_6.2.i686",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.68.4-16.el9_6.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.ppc64le"
},
"product_reference": "glib2-devel-0:2.68.4-16.el9_6.2.ppc64le",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.68.4-16.el9_6.2.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.s390x"
},
"product_reference": "glib2-devel-0:2.68.4-16.el9_6.2.s390x",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.68.4-16.el9_6.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.x86_64"
},
"product_reference": "glib2-devel-0:2.68.4-16.el9_6.2.x86_64",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.aarch64"
},
"product_reference": "glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.i686 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.i686"
},
"product_reference": "glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.i686",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.ppc64le"
},
"product_reference": "glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.s390x"
},
"product_reference": "glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.x86_64"
},
"product_reference": "glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-doc-0:2.68.4-16.el9_6.2.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:glib2-doc-0:2.68.4-16.el9_6.2.noarch"
},
"product_reference": "glib2-doc-0:2.68.4-16.el9_6.2.noarch",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-static-0:2.68.4-16.el9_6.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.aarch64"
},
"product_reference": "glib2-static-0:2.68.4-16.el9_6.2.aarch64",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-static-0:2.68.4-16.el9_6.2.i686 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.i686"
},
"product_reference": "glib2-static-0:2.68.4-16.el9_6.2.i686",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-static-0:2.68.4-16.el9_6.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.ppc64le"
},
"product_reference": "glib2-static-0:2.68.4-16.el9_6.2.ppc64le",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-static-0:2.68.4-16.el9_6.2.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.s390x"
},
"product_reference": "glib2-static-0:2.68.4-16.el9_6.2.s390x",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-static-0:2.68.4-16.el9_6.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.x86_64"
},
"product_reference": "glib2-static-0:2.68.4-16.el9_6.2.x86_64",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-0:2.68.4-16.el9_6.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.aarch64"
},
"product_reference": "glib2-tests-0:2.68.4-16.el9_6.2.aarch64",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-0:2.68.4-16.el9_6.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.ppc64le"
},
"product_reference": "glib2-tests-0:2.68.4-16.el9_6.2.ppc64le",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-0:2.68.4-16.el9_6.2.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.s390x"
},
"product_reference": "glib2-tests-0:2.68.4-16.el9_6.2.s390x",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-0:2.68.4-16.el9_6.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.x86_64"
},
"product_reference": "glib2-tests-0:2.68.4-16.el9_6.2.x86_64",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.aarch64"
},
"product_reference": "glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.i686 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.i686"
},
"product_reference": "glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.i686",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.ppc64le"
},
"product_reference": "glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.s390x"
},
"product_reference": "glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.x86_64"
},
"product_reference": "glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.68.4-16.el9_6.2.aarch64 as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.aarch64"
},
"product_reference": "glib2-0:2.68.4-16.el9_6.2.aarch64",
"relates_to_product_reference": "CRB-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.68.4-16.el9_6.2.i686 as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.i686"
},
"product_reference": "glib2-0:2.68.4-16.el9_6.2.i686",
"relates_to_product_reference": "CRB-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.68.4-16.el9_6.2.ppc64le as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.ppc64le"
},
"product_reference": "glib2-0:2.68.4-16.el9_6.2.ppc64le",
"relates_to_product_reference": "CRB-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.68.4-16.el9_6.2.s390x as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.s390x"
},
"product_reference": "glib2-0:2.68.4-16.el9_6.2.s390x",
"relates_to_product_reference": "CRB-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.68.4-16.el9_6.2.src as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.src"
},
"product_reference": "glib2-0:2.68.4-16.el9_6.2.src",
"relates_to_product_reference": "CRB-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.68.4-16.el9_6.2.x86_64 as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.x86_64"
},
"product_reference": "glib2-0:2.68.4-16.el9_6.2.x86_64",
"relates_to_product_reference": "CRB-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.68.4-16.el9_6.2.aarch64 as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.aarch64"
},
"product_reference": "glib2-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"relates_to_product_reference": "CRB-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.68.4-16.el9_6.2.i686 as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.i686"
},
"product_reference": "glib2-debuginfo-0:2.68.4-16.el9_6.2.i686",
"relates_to_product_reference": "CRB-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.68.4-16.el9_6.2.ppc64le as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.ppc64le"
},
"product_reference": "glib2-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"relates_to_product_reference": "CRB-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.68.4-16.el9_6.2.s390x as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.s390x"
},
"product_reference": "glib2-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"relates_to_product_reference": "CRB-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.68.4-16.el9_6.2.x86_64 as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.x86_64"
},
"product_reference": "glib2-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"relates_to_product_reference": "CRB-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.68.4-16.el9_6.2.aarch64 as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.aarch64"
},
"product_reference": "glib2-debugsource-0:2.68.4-16.el9_6.2.aarch64",
"relates_to_product_reference": "CRB-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.68.4-16.el9_6.2.i686 as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.i686"
},
"product_reference": "glib2-debugsource-0:2.68.4-16.el9_6.2.i686",
"relates_to_product_reference": "CRB-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.68.4-16.el9_6.2.ppc64le as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.ppc64le"
},
"product_reference": "glib2-debugsource-0:2.68.4-16.el9_6.2.ppc64le",
"relates_to_product_reference": "CRB-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.68.4-16.el9_6.2.s390x as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.s390x"
},
"product_reference": "glib2-debugsource-0:2.68.4-16.el9_6.2.s390x",
"relates_to_product_reference": "CRB-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.68.4-16.el9_6.2.x86_64 as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.x86_64"
},
"product_reference": "glib2-debugsource-0:2.68.4-16.el9_6.2.x86_64",
"relates_to_product_reference": "CRB-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.68.4-16.el9_6.2.aarch64 as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.aarch64"
},
"product_reference": "glib2-devel-0:2.68.4-16.el9_6.2.aarch64",
"relates_to_product_reference": "CRB-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.68.4-16.el9_6.2.i686 as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.i686"
},
"product_reference": "glib2-devel-0:2.68.4-16.el9_6.2.i686",
"relates_to_product_reference": "CRB-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.68.4-16.el9_6.2.ppc64le as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.ppc64le"
},
"product_reference": "glib2-devel-0:2.68.4-16.el9_6.2.ppc64le",
"relates_to_product_reference": "CRB-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.68.4-16.el9_6.2.s390x as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.s390x"
},
"product_reference": "glib2-devel-0:2.68.4-16.el9_6.2.s390x",
"relates_to_product_reference": "CRB-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.68.4-16.el9_6.2.x86_64 as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.x86_64"
},
"product_reference": "glib2-devel-0:2.68.4-16.el9_6.2.x86_64",
"relates_to_product_reference": "CRB-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.aarch64 as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.aarch64"
},
"product_reference": "glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"relates_to_product_reference": "CRB-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.i686 as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.i686"
},
"product_reference": "glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.i686",
"relates_to_product_reference": "CRB-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.ppc64le as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.ppc64le"
},
"product_reference": "glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"relates_to_product_reference": "CRB-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.s390x as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.s390x"
},
"product_reference": "glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"relates_to_product_reference": "CRB-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.x86_64 as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.x86_64"
},
"product_reference": "glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"relates_to_product_reference": "CRB-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-doc-0:2.68.4-16.el9_6.2.noarch as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.6.0.Z.MAIN.EUS:glib2-doc-0:2.68.4-16.el9_6.2.noarch"
},
"product_reference": "glib2-doc-0:2.68.4-16.el9_6.2.noarch",
"relates_to_product_reference": "CRB-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-static-0:2.68.4-16.el9_6.2.aarch64 as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.aarch64"
},
"product_reference": "glib2-static-0:2.68.4-16.el9_6.2.aarch64",
"relates_to_product_reference": "CRB-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-static-0:2.68.4-16.el9_6.2.i686 as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.i686"
},
"product_reference": "glib2-static-0:2.68.4-16.el9_6.2.i686",
"relates_to_product_reference": "CRB-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-static-0:2.68.4-16.el9_6.2.ppc64le as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.ppc64le"
},
"product_reference": "glib2-static-0:2.68.4-16.el9_6.2.ppc64le",
"relates_to_product_reference": "CRB-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-static-0:2.68.4-16.el9_6.2.s390x as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.s390x"
},
"product_reference": "glib2-static-0:2.68.4-16.el9_6.2.s390x",
"relates_to_product_reference": "CRB-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-static-0:2.68.4-16.el9_6.2.x86_64 as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.x86_64"
},
"product_reference": "glib2-static-0:2.68.4-16.el9_6.2.x86_64",
"relates_to_product_reference": "CRB-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-0:2.68.4-16.el9_6.2.aarch64 as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.aarch64"
},
"product_reference": "glib2-tests-0:2.68.4-16.el9_6.2.aarch64",
"relates_to_product_reference": "CRB-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-0:2.68.4-16.el9_6.2.ppc64le as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.ppc64le"
},
"product_reference": "glib2-tests-0:2.68.4-16.el9_6.2.ppc64le",
"relates_to_product_reference": "CRB-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-0:2.68.4-16.el9_6.2.s390x as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.s390x"
},
"product_reference": "glib2-tests-0:2.68.4-16.el9_6.2.s390x",
"relates_to_product_reference": "CRB-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-0:2.68.4-16.el9_6.2.x86_64 as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.x86_64"
},
"product_reference": "glib2-tests-0:2.68.4-16.el9_6.2.x86_64",
"relates_to_product_reference": "CRB-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.aarch64 as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.aarch64"
},
"product_reference": "glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"relates_to_product_reference": "CRB-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.i686 as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.i686"
},
"product_reference": "glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.i686",
"relates_to_product_reference": "CRB-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.ppc64le as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.ppc64le"
},
"product_reference": "glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"relates_to_product_reference": "CRB-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.s390x as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.s390x"
},
"product_reference": "glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"relates_to_product_reference": "CRB-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.x86_64 as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)",
"product_id": "CRB-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.x86_64"
},
"product_reference": "glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"relates_to_product_reference": "CRB-9.6.0.Z.MAIN.EUS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-52533",
"cwe": {
"id": "CWE-193",
"name": "Off-by-one Error"
},
"discovery_date": "2024-11-11T23:00:48.125765+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2325340"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Glib library. A buffer overflow condition can be triggered in certain conditions due to an off-by-one error in SOCKS4_CONN_MSG_LEN. This issue may lead to an application crash or other undefined behavior.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "glib: buffer overflow in set_connect_msg()",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.i686",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.src",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.i686",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.i686",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.i686",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.i686",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-doc-0:2.68.4-16.el9_6.2.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.i686",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.i686",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.src",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-doc-0:2.68.4-16.el9_6.2.noarch",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.aarch64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.i686",
"CRB-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.ppc64le",
"CRB-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.s390x",
"CRB-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.src",
"CRB-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.x86_64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.i686",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.aarch64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.i686",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.ppc64le",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.s390x",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.x86_64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.aarch64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.i686",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.ppc64le",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.s390x",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.x86_64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.i686",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-doc-0:2.68.4-16.el9_6.2.noarch",
"CRB-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.aarch64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.i686",
"CRB-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.ppc64le",
"CRB-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.s390x",
"CRB-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.x86_64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.aarch64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.ppc64le",
"CRB-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.s390x",
"CRB-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.x86_64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.i686",
"CRB-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"CRB-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"CRB-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-52533"
},
{
"category": "external",
"summary": "RHBZ#2325340",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2325340"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-52533",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-52533"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-52533",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-52533"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/GNOME/glib/-/issues/3461",
"url": "https://gitlab.gnome.org/GNOME/glib/-/issues/3461"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/GNOME/glib/-/releases/2.82.1",
"url": "https://gitlab.gnome.org/GNOME/glib/-/releases/2.82.1"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/Teams/Releng/security/-/wikis/home",
"url": "https://gitlab.gnome.org/Teams/Releng/security/-/wikis/home"
}
],
"release_date": "2024-11-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-07-15T13:39:40+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.i686",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.src",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.i686",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.i686",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.i686",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.i686",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-doc-0:2.68.4-16.el9_6.2.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.i686",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.i686",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.src",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-doc-0:2.68.4-16.el9_6.2.noarch",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.aarch64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.i686",
"CRB-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.ppc64le",
"CRB-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.s390x",
"CRB-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.src",
"CRB-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.x86_64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.i686",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.aarch64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.i686",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.ppc64le",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.s390x",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.x86_64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.aarch64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.i686",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.ppc64le",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.s390x",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.x86_64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.i686",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-doc-0:2.68.4-16.el9_6.2.noarch",
"CRB-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.aarch64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.i686",
"CRB-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.ppc64le",
"CRB-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.s390x",
"CRB-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.x86_64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.aarch64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.ppc64le",
"CRB-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.s390x",
"CRB-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.x86_64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.i686",
"CRB-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"CRB-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"CRB-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:11140"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.i686",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.src",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.i686",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.i686",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.i686",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.i686",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-doc-0:2.68.4-16.el9_6.2.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.i686",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.i686",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.src",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-doc-0:2.68.4-16.el9_6.2.noarch",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.aarch64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.i686",
"CRB-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.ppc64le",
"CRB-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.s390x",
"CRB-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.src",
"CRB-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.x86_64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.i686",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.aarch64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.i686",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.ppc64le",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.s390x",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.x86_64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.aarch64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.i686",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.ppc64le",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.s390x",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.x86_64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.i686",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-doc-0:2.68.4-16.el9_6.2.noarch",
"CRB-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.aarch64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.i686",
"CRB-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.ppc64le",
"CRB-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.s390x",
"CRB-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.x86_64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.aarch64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.ppc64le",
"CRB-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.s390x",
"CRB-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.x86_64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.i686",
"CRB-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"CRB-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"CRB-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.i686",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.src",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.i686",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.i686",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.i686",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.i686",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-doc-0:2.68.4-16.el9_6.2.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.i686",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.i686",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.src",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-doc-0:2.68.4-16.el9_6.2.noarch",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.aarch64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.i686",
"CRB-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.ppc64le",
"CRB-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.s390x",
"CRB-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.src",
"CRB-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.x86_64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.i686",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.aarch64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.i686",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.ppc64le",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.s390x",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.x86_64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.aarch64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.i686",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.ppc64le",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.s390x",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.x86_64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.i686",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-doc-0:2.68.4-16.el9_6.2.noarch",
"CRB-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.aarch64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.i686",
"CRB-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.ppc64le",
"CRB-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.s390x",
"CRB-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.x86_64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.aarch64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.ppc64le",
"CRB-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.s390x",
"CRB-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.x86_64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.i686",
"CRB-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"CRB-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"CRB-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "glib: buffer overflow in set_connect_msg()"
},
{
"cve": "CVE-2025-4373",
"cwe": {
"id": "CWE-124",
"name": "Buffer Underwrite (\u0027Buffer Underflow\u0027)"
},
"discovery_date": "2025-05-06T00:33:30.003000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2364265"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in GLib, which is vulnerable to an integer overflow in the g_string_insert_unichar() function. When the position at which to insert the character is large, the position will overflow, leading to a buffer underwrite.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "glib: Buffer Underflow on GLib through glib/gstring.c via function g_string_insert_unichar",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Within regulated environments, a combination of the following controls acts as a significant barrier to the successful exploitation of a CWE-124: Buffer Underwrite (\u0027Buffer Underflow\u0027) vulnerability and therefore downgrades the severity of this particular CVE from Moderate to Low.\n\nSecure baseline configurations enforce strict memory handling policies, while change controls ensure any deviations are reviewed and approved. Least functionality reduces the attack surface by disabling unnecessary features that could introduce memory risks. Process isolation contains faults within individual workloads, minimizing broader impact. Real-time monitoring and malicious code protection detect and respond to abnormal memory behavior or exploitation attempts. Hardened configuration settings restrict low-level memory access, lowering the likelihood of unsafe operations. Finally, the platform uses memory protection mechanisms such as Data Execution Prevention (DEP) and Address Space Layout Randomization (ASLR) to strengthen resilience against buffer underwrite exploits.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.i686",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.src",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.i686",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.i686",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.i686",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.i686",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-doc-0:2.68.4-16.el9_6.2.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.i686",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.i686",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.src",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-doc-0:2.68.4-16.el9_6.2.noarch",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.aarch64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.i686",
"CRB-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.ppc64le",
"CRB-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.s390x",
"CRB-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.src",
"CRB-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.x86_64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.i686",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.aarch64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.i686",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.ppc64le",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.s390x",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.x86_64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.aarch64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.i686",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.ppc64le",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.s390x",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.x86_64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.i686",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-doc-0:2.68.4-16.el9_6.2.noarch",
"CRB-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.aarch64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.i686",
"CRB-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.ppc64le",
"CRB-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.s390x",
"CRB-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.x86_64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.aarch64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.ppc64le",
"CRB-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.s390x",
"CRB-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.x86_64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.i686",
"CRB-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"CRB-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"CRB-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-4373"
},
{
"category": "external",
"summary": "RHBZ#2364265",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2364265"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-4373",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4373"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-4373",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-4373"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/GNOME/glib/-/issues/3677",
"url": "https://gitlab.gnome.org/GNOME/glib/-/issues/3677"
}
],
"release_date": "2025-05-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-07-15T13:39:40+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.i686",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.src",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.i686",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.i686",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.i686",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.i686",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-doc-0:2.68.4-16.el9_6.2.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.i686",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.i686",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.src",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-doc-0:2.68.4-16.el9_6.2.noarch",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.aarch64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.i686",
"CRB-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.ppc64le",
"CRB-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.s390x",
"CRB-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.src",
"CRB-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.x86_64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.i686",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.aarch64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.i686",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.ppc64le",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.s390x",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.x86_64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.aarch64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.i686",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.ppc64le",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.s390x",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.x86_64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.i686",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-doc-0:2.68.4-16.el9_6.2.noarch",
"CRB-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.aarch64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.i686",
"CRB-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.ppc64le",
"CRB-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.s390x",
"CRB-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.x86_64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.aarch64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.ppc64le",
"CRB-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.s390x",
"CRB-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.x86_64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.i686",
"CRB-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"CRB-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"CRB-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:11140"
},
{
"category": "workaround",
"details": "Currently, no mitigation is available for this vulnerability.",
"product_ids": [
"AppStream-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.i686",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.src",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.i686",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.i686",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.i686",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.i686",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-doc-0:2.68.4-16.el9_6.2.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.i686",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.i686",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.src",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-doc-0:2.68.4-16.el9_6.2.noarch",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.aarch64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.i686",
"CRB-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.ppc64le",
"CRB-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.s390x",
"CRB-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.src",
"CRB-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.x86_64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.i686",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.aarch64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.i686",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.ppc64le",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.s390x",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.x86_64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.aarch64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.i686",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.ppc64le",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.s390x",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.x86_64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.i686",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-doc-0:2.68.4-16.el9_6.2.noarch",
"CRB-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.aarch64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.i686",
"CRB-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.ppc64le",
"CRB-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.s390x",
"CRB-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.x86_64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.aarch64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.ppc64le",
"CRB-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.s390x",
"CRB-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.x86_64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.i686",
"CRB-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"CRB-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"CRB-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"AppStream-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.i686",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.src",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.i686",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.i686",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.i686",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.i686",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-doc-0:2.68.4-16.el9_6.2.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.i686",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.i686",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.src",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-doc-0:2.68.4-16.el9_6.2.noarch",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.aarch64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.i686",
"CRB-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.ppc64le",
"CRB-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.s390x",
"CRB-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.src",
"CRB-9.6.0.Z.MAIN.EUS:glib2-0:2.68.4-16.el9_6.2.x86_64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.i686",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.aarch64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.i686",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.ppc64le",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.s390x",
"CRB-9.6.0.Z.MAIN.EUS:glib2-debugsource-0:2.68.4-16.el9_6.2.x86_64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.aarch64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.i686",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.ppc64le",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.s390x",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-0:2.68.4-16.el9_6.2.x86_64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.i686",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"CRB-9.6.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.68.4-16.el9_6.2.x86_64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-doc-0:2.68.4-16.el9_6.2.noarch",
"CRB-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.aarch64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.i686",
"CRB-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.ppc64le",
"CRB-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.s390x",
"CRB-9.6.0.Z.MAIN.EUS:glib2-static-0:2.68.4-16.el9_6.2.x86_64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.aarch64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.ppc64le",
"CRB-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.s390x",
"CRB-9.6.0.Z.MAIN.EUS:glib2-tests-0:2.68.4-16.el9_6.2.x86_64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.aarch64",
"CRB-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.i686",
"CRB-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.ppc64le",
"CRB-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.s390x",
"CRB-9.6.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.68.4-16.el9_6.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "glib: Buffer Underflow on GLib through glib/gstring.c via function g_string_insert_unichar"
}
]
}
rhsa-2025:13335
Vulnerability from csaf_redhat
Published
2025-08-07 07:50
Modified
2025-10-29 12:15
Summary
Red Hat Security Advisory: Insights proxy Container Image
Notes
Topic
Initial GA Release of Red Hat Insights proxy
Details
The Insights proxy Container is used by the Insights proxy product RPM and serves as an intermediary between cystomer systems in disconnected networks, air-gapped systems or systems with no outside connections and Insights.
The Insights proxy routes all Red Hat Insights traffic through itself, providing a layer of privary and security for disconnected customer systems.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Initial GA Release of Red Hat Insights proxy",
"title": "Topic"
},
{
"category": "general",
"text": "The Insights proxy Container is used by the Insights proxy product RPM and serves as an intermediary between cystomer systems in disconnected networks, air-gapped systems or systems with no outside connections and Insights.\nThe Insights proxy routes all Red Hat Insights traffic through itself, providing a layer of privary and security for disconnected customer systems.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:13335",
"url": "https://access.redhat.com/errata/RHSA-2025:13335"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-52533",
"url": "https://access.redhat.com/security/cve/CVE-2024-52533"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-4373",
"url": "https://access.redhat.com/security/cve/CVE-2025-4373"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-49794",
"url": "https://access.redhat.com/security/cve/CVE-2025-49794"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-49796",
"url": "https://access.redhat.com/security/cve/CVE-2025-49796"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-6021",
"url": "https://access.redhat.com/security/cve/CVE-2025-6021"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-6965",
"url": "https://access.redhat.com/security/cve/CVE-2025-6965"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-7425",
"url": "https://access.redhat.com/security/cve/CVE-2025-7425"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-8058",
"url": "https://access.redhat.com/security/cve/CVE-2025-8058"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_13335.json"
}
],
"title": "Red Hat Security Advisory: Insights proxy Container Image",
"tracking": {
"current_release_date": "2025-10-29T12:15:05+00:00",
"generator": {
"date": "2025-10-29T12:15:05+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.10"
}
},
"id": "RHSA-2025:13335",
"initial_release_date": "2025-08-07T07:50:20+00:00",
"revision_history": [
{
"date": "2025-08-07T07:50:20+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-08-07T07:50:23+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-29T12:15:05+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Insights proxy 1.5",
"product": {
"name": "Red Hat Insights proxy 1.5",
"product_id": "Red Hat Insights proxy 1.5",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:insights_proxy:1.5::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat Insights proxy"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:c26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7_amd64",
"product": {
"name": "registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:c26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7_amd64",
"product_id": "registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:c26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7_amd64",
"product_identification_helper": {
"purl": "pkg:oci/insights-proxy-container-rhel9@sha256%3Ac26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7?arch=amd64\u0026repository_url=registry.redhat.io/insights-proxy\u0026tag=1.5.5-1754504343"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d_arm64",
"product": {
"name": "registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d_arm64",
"product_id": "registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d_arm64",
"product_identification_helper": {
"purl": "pkg:oci/insights-proxy-container-rhel9@sha256%3Ae54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d?arch=arm64\u0026repository_url=registry.redhat.io/insights-proxy\u0026tag=1.5.5-1754504343"
}
}
}
],
"category": "architecture",
"name": "arm64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:c26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7_amd64 as a component of Red Hat Insights proxy 1.5",
"product_id": "Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:c26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7_amd64"
},
"product_reference": "registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:c26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7_amd64",
"relates_to_product_reference": "Red Hat Insights proxy 1.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d_arm64 as a component of Red Hat Insights proxy 1.5",
"product_id": "Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d_arm64"
},
"product_reference": "registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d_arm64",
"relates_to_product_reference": "Red Hat Insights proxy 1.5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-52533",
"cwe": {
"id": "CWE-193",
"name": "Off-by-one Error"
},
"discovery_date": "2024-11-11T23:00:48.125765+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2325340"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Glib library. A buffer overflow condition can be triggered in certain conditions due to an off-by-one error in SOCKS4_CONN_MSG_LEN. This issue may lead to an application crash or other undefined behavior.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "glib: buffer overflow in set_connect_msg()",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:c26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7_amd64",
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-52533"
},
{
"category": "external",
"summary": "RHBZ#2325340",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2325340"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-52533",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-52533"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-52533",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-52533"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/GNOME/glib/-/issues/3461",
"url": "https://gitlab.gnome.org/GNOME/glib/-/issues/3461"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/GNOME/glib/-/releases/2.82.1",
"url": "https://gitlab.gnome.org/GNOME/glib/-/releases/2.82.1"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/Teams/Releng/security/-/wikis/home",
"url": "https://gitlab.gnome.org/Teams/Releng/security/-/wikis/home"
}
],
"release_date": "2024-11-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-08-07T07:50:20+00:00",
"details": "The Insights proxy container image provided here is downloaded by the Red Hat Insights proxy product RPM.\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.",
"product_ids": [
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:c26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7_amd64",
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:13335"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:c26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7_amd64",
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:c26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7_amd64",
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "glib: buffer overflow in set_connect_msg()"
},
{
"cve": "CVE-2025-4373",
"cwe": {
"id": "CWE-124",
"name": "Buffer Underwrite (\u0027Buffer Underflow\u0027)"
},
"discovery_date": "2025-05-06T00:33:30.003000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2364265"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in GLib, which is vulnerable to an integer overflow in the g_string_insert_unichar() function. When the position at which to insert the character is large, the position will overflow, leading to a buffer underwrite.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "glib: Buffer Underflow on GLib through glib/gstring.c via function g_string_insert_unichar",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Within regulated environments, a combination of the following controls acts as a significant barrier to the successful exploitation of a CWE-124: Buffer Underwrite (\u0027Buffer Underflow\u0027) vulnerability and therefore downgrades the severity of this particular CVE from Moderate to Low.\n\nSecure baseline configurations enforce strict memory handling policies, while change controls ensure any deviations are reviewed and approved. Least functionality reduces the attack surface by disabling unnecessary features that could introduce memory risks. Process isolation contains faults within individual workloads, minimizing broader impact. Real-time monitoring and malicious code protection detect and respond to abnormal memory behavior or exploitation attempts. Hardened configuration settings restrict low-level memory access, lowering the likelihood of unsafe operations. Finally, the platform uses memory protection mechanisms such as Data Execution Prevention (DEP) and Address Space Layout Randomization (ASLR) to strengthen resilience against buffer underwrite exploits.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:c26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7_amd64",
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-4373"
},
{
"category": "external",
"summary": "RHBZ#2364265",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2364265"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-4373",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4373"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-4373",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-4373"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/GNOME/glib/-/issues/3677",
"url": "https://gitlab.gnome.org/GNOME/glib/-/issues/3677"
}
],
"release_date": "2025-05-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-08-07T07:50:20+00:00",
"details": "The Insights proxy container image provided here is downloaded by the Red Hat Insights proxy product RPM.\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.",
"product_ids": [
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:c26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7_amd64",
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:13335"
},
{
"category": "workaround",
"details": "Currently, no mitigation is available for this vulnerability.",
"product_ids": [
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:c26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7_amd64",
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:c26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7_amd64",
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "glib: Buffer Underflow on GLib through glib/gstring.c via function g_string_insert_unichar"
},
{
"acknowledgments": [
{
"names": [
"Ahmed Lekssays"
]
}
],
"cve": "CVE-2025-6021",
"cwe": {
"id": "CWE-121",
"name": "Stack-based Buffer Overflow"
},
"discovery_date": "2025-06-12T07:55:45.428000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2372406"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in libxml2\u0027s xmlBuildQName function, where integer overflows in buffer size calculations can lead to a stack-based buffer overflow. This issue can result in memory corruption or a denial of service when processing crafted input.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libxml2: Integer Overflow in xmlBuildQName() Leads to Stack Buffer Overflow in libxml2",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is rated Moderate due to the lack of confidentiality impact and limited integrity concerns, with the main risk being potential denial-of-service from a crash. Exploitation requires crafted XML input and specific application behavior using xmlBuildQName. While it\u2019s a write overflow, modern mitigations make remote code execution unlikely.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:c26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7_amd64",
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-6021"
},
{
"category": "external",
"summary": "RHBZ#2372406",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2372406"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-6021",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6021"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-6021",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-6021"
}
],
"release_date": "2025-06-12T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-08-07T07:50:20+00:00",
"details": "The Insights proxy container image provided here is downloaded by the Red Hat Insights proxy product RPM.\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.",
"product_ids": [
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:c26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7_amd64",
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:13335"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability. Users are strongly advised to apply vendor-supplied patches as soon as they become available to address the underlying integer overflow flaw in the affected code.",
"product_ids": [
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:c26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7_amd64",
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:c26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7_amd64",
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "libxml2: Integer Overflow in xmlBuildQName() Leads to Stack Buffer Overflow in libxml2"
},
{
"cve": "CVE-2025-6965",
"cwe": {
"id": "CWE-197",
"name": "Numeric Truncation Error"
},
"discovery_date": "2025-07-15T14:02:19.241458+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2380149"
}
],
"notes": [
{
"category": "description",
"text": "A memory corruption flaw was found in SQLite. Under specific conditions a query can be generated where the number of aggregate terms could exceed the number of columns available. This issue could lead to memory corruption and subsequent unintended behavior.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "sqlite: Integer Truncation in SQLite",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in SQLite is categorized as Important rather than Critical because, although it involves memory corruption, the conditions required to trigger it are relatively constrained. The flaw arises when a query causes the number of aggregate terms to exceed internal limits, leading to potential buffer overflows or memory mismanagement. However, exploitation requires the ability to craft complex SQL queries and interact with the SQLite engine in a specific manner\u2014typically through direct SQL input. There is no known evidence of arbitrary code execution, privilege escalation, or remote exploitability as a direct result of this flaw. Additionally, most SQLite deployments are embedded in applications where input is tightly controlled or sanitized.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:c26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7_amd64",
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-6965"
},
{
"category": "external",
"summary": "RHBZ#2380149",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2380149"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-6965",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6965"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-6965",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-6965"
},
{
"category": "external",
"summary": "https://www.sqlite.org/src/info/5508b56fd24016c13981ec280ecdd833007c9d8dd595edb295b984c2b487b5c8",
"url": "https://www.sqlite.org/src/info/5508b56fd24016c13981ec280ecdd833007c9d8dd595edb295b984c2b487b5c8"
}
],
"release_date": "2025-07-15T13:44:00.784000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-08-07T07:50:20+00:00",
"details": "The Insights proxy container image provided here is downloaded by the Red Hat Insights proxy product RPM.\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.",
"product_ids": [
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:c26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7_amd64",
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:13335"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:c26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7_amd64",
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.7,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:H/A:L",
"version": "3.1"
},
"products": [
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:c26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7_amd64",
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "sqlite: Integer Truncation in SQLite"
},
{
"acknowledgments": [
{
"names": [
"Sergei Glazunov"
],
"organization": "Google Project Zero"
}
],
"cve": "CVE-2025-7425",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2025-07-10T09:37:28.172000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2379274"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in libxslt where the attribute type, atype, flags are modified in a way that corrupts internal memory management. When XSLT functions, such as the key() process, result in tree fragments, this corruption prevents the proper cleanup of ID attributes. As a result, the system may access freed memory, causing crashes or enabling attackers to trigger heap corruption.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libxslt: Heap Use-After-Free in libxslt caused by atype corruption in xmlAttrPtr",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This heap-use-after-free vulnerability in libxslt is rated Important because it can lead to memory corruption and application crashes. The flaw arises when internal attribute metadata (atype) is modified by libxslt\u0027s xsltSetSourceNodeFlags() function during processing of result tree fragments. If the flag corruption prevents proper removal of ID references, later memory cleanup routines may operate on already-freed memory. Since libxslt is commonly used in server-side XML processing, this could result in denial-of-service or potentially facilitate code execution under certain memory reuse conditions.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:c26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7_amd64",
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-7425"
},
{
"category": "external",
"summary": "RHBZ#2379274",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2379274"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-7425",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-7425"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-7425",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-7425"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/GNOME/libxslt/-/issues/140",
"url": "https://gitlab.gnome.org/GNOME/libxslt/-/issues/140"
}
],
"release_date": "2025-07-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-08-07T07:50:20+00:00",
"details": "The Insights proxy container image provided here is downloaded by the Red Hat Insights proxy product RPM.\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.",
"product_ids": [
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:c26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7_amd64",
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:13335"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:c26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7_amd64",
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:c26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7_amd64",
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "libxslt: Heap Use-After-Free in libxslt caused by atype corruption in xmlAttrPtr"
},
{
"cve": "CVE-2025-8058",
"cwe": {
"id": "CWE-415",
"name": "Double Free"
},
"discovery_date": "2025-07-23T20:00:41.541234+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2383146"
}
],
"notes": [
{
"category": "description",
"text": "A double-free vulnerability has been discovered in glibc (GNU C Library). This flaw occurs during bracket expression parsing within the regcomp function, specifically when a memory allocation failure takes place. Exploitation of a double-free vulnerability can lead to memory corruption, which could enable an attacker to achieve arbitrary code execution or a denial of service condition.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "glibc: Double free in glibc",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Within regulated environments, a combination of the following controls acts as a significant barrier to successfully exploiting a CWE-415: Double Free vulnerability and therefore downgrades the severity of this particular CVE from Moderate to Low.\n\nThe platform enforces hardening guidelines to apply the most restrictive settings necessary for operational requirements. Baseline configurations and system controls ensure secure software configurations, while least functionality reduces the attack surface by enforcing safe memory allocation and deallocation practices, lowering the risk of double-free vulnerabilities. The environment employs IPS/IDS and antimalware solutions to detect and prevent malicious code while providing real-time visibility into memory usage, reducing the risk of arbitrary code execution. Static code analysis and peer reviews enforce strong input validation and error handling, minimizing the risk of denial-of-service (DoS) attacks. In the event of successful exploitation, process isolation prevents compromised workloads from accessing other processes\u2019 memory, containing the potential impact. Finally, memory protection mechanisms such as Data Execution Prevention (DEP) and Address Space Layout Randomization (ASLR) enhance resilience against memory-related vulnerabilities.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:c26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7_amd64",
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-8058"
},
{
"category": "external",
"summary": "RHBZ#2383146",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2383146"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-8058",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8058"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-8058",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-8058"
},
{
"category": "external",
"summary": "https://sourceware.org/bugzilla/show_bug.cgi?id=33185",
"url": "https://sourceware.org/bugzilla/show_bug.cgi?id=33185"
},
{
"category": "external",
"summary": "https://sourceware.org/git/?p=glibc.git;a=commit;h=3ff17af18c38727b88d9115e536c069e6b5d601f",
"url": "https://sourceware.org/git/?p=glibc.git;a=commit;h=3ff17af18c38727b88d9115e536c069e6b5d601f"
}
],
"release_date": "2025-07-23T19:57:17.138000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-08-07T07:50:20+00:00",
"details": "The Insights proxy container image provided here is downloaded by the Red Hat Insights proxy product RPM.\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.",
"product_ids": [
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:c26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7_amd64",
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:13335"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:c26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7_amd64",
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "LOW",
"baseScore": 4.2,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:c26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7_amd64",
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "glibc: Double free in glibc"
},
{
"cve": "CVE-2025-49794",
"cwe": {
"id": "CWE-825",
"name": "Expired Pointer Dereference"
},
"discovery_date": "2025-06-11T21:33:43.044000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2372373"
}
],
"notes": [
{
"category": "description",
"text": "A use-after-free vulnerability was found in libxml2. This issue occurs when parsing XPath elements under certain circumstances when the XML schematron has the \u003csch:name path=\"...\"/\u003e schema elements. This flaw allows a malicious actor to craft a malicious XML document used as input for libxml, resulting in the program\u0027s crash using libxml or other possible undefined behaviors.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libxml: Heap use after free (UAF) leads to Denial of service (DoS)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue was rated with a severity impact of Important by Red Hat Product Security, as libxml can be used to parse XML coming from the network depending on how the program consumes it and uses the library. Additionally, although the initial report shows a crash due to invalid memory access (A:H), other undefined issues that can present data integrity due to the application overwriting sensitive data are not discarded (I:H).",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:c26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7_amd64",
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-49794"
},
{
"category": "external",
"summary": "RHBZ#2372373",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2372373"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-49794",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49794"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-49794",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-49794"
}
],
"release_date": "2025-06-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-08-07T07:50:20+00:00",
"details": "The Insights proxy container image provided here is downloaded by the Red Hat Insights proxy product RPM.\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.",
"product_ids": [
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:c26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7_amd64",
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:13335"
},
{
"category": "workaround",
"details": "There\u0027s no available mitigation other than avoid processing untrusted XML documents before updating to the libxml version containing the fix.",
"product_ids": [
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:c26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7_amd64",
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:c26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7_amd64",
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "libxml: Heap use after free (UAF) leads to Denial of service (DoS)"
},
{
"cve": "CVE-2025-49796",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2025-06-12T00:35:26.470000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2372385"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in libxml2. Processing certain sch:name elements from the input XML file can trigger a memory corruption issue. This flaw allows an attacker to craft a malicious XML input file that can lead libxml to crash, resulting in a denial of service or other possible undefined behavior due to sensitive data being corrupted in memory.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libxml: Type confusion leads to Denial of service (DoS)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The Red Hat Product Security team has evaluated this vulnerability as having an Important security impact, as libxml can be used to parse XML from the network depending on how the program consumes it using the library. Additionally, although the initial report shows a crash due to invalid memory access (A:H), other undefined issues that can present data integrity due to the application overwriting sensitive data are not discarded (I:H).",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:c26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7_amd64",
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-49796"
},
{
"category": "external",
"summary": "RHBZ#2372385",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2372385"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-49796",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49796"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-49796",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-49796"
}
],
"release_date": "2025-06-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-08-07T07:50:20+00:00",
"details": "The Insights proxy container image provided here is downloaded by the Red Hat Insights proxy product RPM.\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.",
"product_ids": [
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:c26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7_amd64",
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:13335"
},
{
"category": "workaround",
"details": "There\u0027s no available mitigation other than to avoid processing untrusted XML documents if the user is unable/unwilling to update the library.",
"product_ids": [
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:c26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7_amd64",
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:c26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7_amd64",
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "libxml: Type confusion leads to Denial of service (DoS)"
}
]
}
rhsa-2025:11327
Vulnerability from csaf_redhat
Published
2025-07-16 14:14
Modified
2025-10-10 00:20
Summary
Red Hat Security Advisory: glib2 security update
Notes
Topic
An update for glib2 is now available for Red Hat Enterprise Linux 8.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
GLib provides the core application building blocks for libraries and applications written in C. It provides the core object system used in GNOME, the main loop implementation, and a large set of utility functions for strings and common data structures.
Security Fix(es):
* glib2: Signal subscription vulnerabilities (CVE-2024-34397)
* glib: buffer overflow in set_connect_msg() (CVE-2024-52533)
* glib: Buffer Underflow on GLib through glib/gstring.c via function g_string_insert_unichar (CVE-2025-4373)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for glib2 is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "GLib provides the core application building blocks for libraries and applications written in C. It provides the core object system used in GNOME, the main loop implementation, and a large set of utility functions for strings and common data structures.\n\nSecurity Fix(es):\n\n* glib2: Signal subscription vulnerabilities (CVE-2024-34397)\n\n* glib: buffer overflow in set_connect_msg() (CVE-2024-52533)\n\n* glib: Buffer Underflow on GLib through glib/gstring.c via function g_string_insert_unichar (CVE-2025-4373)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:11327",
"url": "https://access.redhat.com/errata/RHSA-2025:11327"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "2279632",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2279632"
},
{
"category": "external",
"summary": "2325340",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2325340"
},
{
"category": "external",
"summary": "2364265",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2364265"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_11327.json"
}
],
"title": "Red Hat Security Advisory: glib2 security update",
"tracking": {
"current_release_date": "2025-10-10T00:20:27+00:00",
"generator": {
"date": "2025-10-10T00:20:27+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.9"
}
},
"id": "RHSA-2025:11327",
"initial_release_date": "2025-07-16T14:14:58+00:00",
"revision_history": [
{
"date": "2025-07-16T14:14:58+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-07-16T14:14:58+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-10T00:20:27+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux BaseOS (v. 8)",
"product": {
"name": "Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:8::baseos"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux CRB (v. 8)",
"product": {
"name": "Red Hat Enterprise Linux CRB (v. 8)",
"product_id": "CRB-8.10.0.Z.MAIN.EUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:8::crb"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "glib2-0:2.56.4-166.el8_10.src",
"product": {
"name": "glib2-0:2.56.4-166.el8_10.src",
"product_id": "glib2-0:2.56.4-166.el8_10.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2@2.56.4-166.el8_10?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "glib2-0:2.56.4-166.el8_10.aarch64",
"product": {
"name": "glib2-0:2.56.4-166.el8_10.aarch64",
"product_id": "glib2-0:2.56.4-166.el8_10.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2@2.56.4-166.el8_10?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "glib2-devel-0:2.56.4-166.el8_10.aarch64",
"product": {
"name": "glib2-devel-0:2.56.4-166.el8_10.aarch64",
"product_id": "glib2-devel-0:2.56.4-166.el8_10.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel@2.56.4-166.el8_10?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "glib2-fam-0:2.56.4-166.el8_10.aarch64",
"product": {
"name": "glib2-fam-0:2.56.4-166.el8_10.aarch64",
"product_id": "glib2-fam-0:2.56.4-166.el8_10.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-fam@2.56.4-166.el8_10?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "glib2-tests-0:2.56.4-166.el8_10.aarch64",
"product": {
"name": "glib2-tests-0:2.56.4-166.el8_10.aarch64",
"product_id": "glib2-tests-0:2.56.4-166.el8_10.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-tests@2.56.4-166.el8_10?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "glib2-debugsource-0:2.56.4-166.el8_10.aarch64",
"product": {
"name": "glib2-debugsource-0:2.56.4-166.el8_10.aarch64",
"product_id": "glib2-debugsource-0:2.56.4-166.el8_10.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debugsource@2.56.4-166.el8_10?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "glib2-debuginfo-0:2.56.4-166.el8_10.aarch64",
"product": {
"name": "glib2-debuginfo-0:2.56.4-166.el8_10.aarch64",
"product_id": "glib2-debuginfo-0:2.56.4-166.el8_10.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debuginfo@2.56.4-166.el8_10?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "glib2-devel-debuginfo-0:2.56.4-166.el8_10.aarch64",
"product": {
"name": "glib2-devel-debuginfo-0:2.56.4-166.el8_10.aarch64",
"product_id": "glib2-devel-debuginfo-0:2.56.4-166.el8_10.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel-debuginfo@2.56.4-166.el8_10?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "glib2-fam-debuginfo-0:2.56.4-166.el8_10.aarch64",
"product": {
"name": "glib2-fam-debuginfo-0:2.56.4-166.el8_10.aarch64",
"product_id": "glib2-fam-debuginfo-0:2.56.4-166.el8_10.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-fam-debuginfo@2.56.4-166.el8_10?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "glib2-tests-debuginfo-0:2.56.4-166.el8_10.aarch64",
"product": {
"name": "glib2-tests-debuginfo-0:2.56.4-166.el8_10.aarch64",
"product_id": "glib2-tests-debuginfo-0:2.56.4-166.el8_10.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-tests-debuginfo@2.56.4-166.el8_10?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "glib2-static-0:2.56.4-166.el8_10.aarch64",
"product": {
"name": "glib2-static-0:2.56.4-166.el8_10.aarch64",
"product_id": "glib2-static-0:2.56.4-166.el8_10.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-static@2.56.4-166.el8_10?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "glib2-0:2.56.4-166.el8_10.ppc64le",
"product": {
"name": "glib2-0:2.56.4-166.el8_10.ppc64le",
"product_id": "glib2-0:2.56.4-166.el8_10.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2@2.56.4-166.el8_10?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "glib2-devel-0:2.56.4-166.el8_10.ppc64le",
"product": {
"name": "glib2-devel-0:2.56.4-166.el8_10.ppc64le",
"product_id": "glib2-devel-0:2.56.4-166.el8_10.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel@2.56.4-166.el8_10?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "glib2-fam-0:2.56.4-166.el8_10.ppc64le",
"product": {
"name": "glib2-fam-0:2.56.4-166.el8_10.ppc64le",
"product_id": "glib2-fam-0:2.56.4-166.el8_10.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-fam@2.56.4-166.el8_10?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "glib2-tests-0:2.56.4-166.el8_10.ppc64le",
"product": {
"name": "glib2-tests-0:2.56.4-166.el8_10.ppc64le",
"product_id": "glib2-tests-0:2.56.4-166.el8_10.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-tests@2.56.4-166.el8_10?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "glib2-debugsource-0:2.56.4-166.el8_10.ppc64le",
"product": {
"name": "glib2-debugsource-0:2.56.4-166.el8_10.ppc64le",
"product_id": "glib2-debugsource-0:2.56.4-166.el8_10.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debugsource@2.56.4-166.el8_10?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "glib2-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"product": {
"name": "glib2-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"product_id": "glib2-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debuginfo@2.56.4-166.el8_10?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "glib2-devel-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"product": {
"name": "glib2-devel-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"product_id": "glib2-devel-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel-debuginfo@2.56.4-166.el8_10?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "glib2-fam-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"product": {
"name": "glib2-fam-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"product_id": "glib2-fam-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-fam-debuginfo@2.56.4-166.el8_10?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "glib2-tests-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"product": {
"name": "glib2-tests-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"product_id": "glib2-tests-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-tests-debuginfo@2.56.4-166.el8_10?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "glib2-static-0:2.56.4-166.el8_10.ppc64le",
"product": {
"name": "glib2-static-0:2.56.4-166.el8_10.ppc64le",
"product_id": "glib2-static-0:2.56.4-166.el8_10.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-static@2.56.4-166.el8_10?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "glib2-0:2.56.4-166.el8_10.i686",
"product": {
"name": "glib2-0:2.56.4-166.el8_10.i686",
"product_id": "glib2-0:2.56.4-166.el8_10.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2@2.56.4-166.el8_10?arch=i686"
}
}
},
{
"category": "product_version",
"name": "glib2-devel-0:2.56.4-166.el8_10.i686",
"product": {
"name": "glib2-devel-0:2.56.4-166.el8_10.i686",
"product_id": "glib2-devel-0:2.56.4-166.el8_10.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel@2.56.4-166.el8_10?arch=i686"
}
}
},
{
"category": "product_version",
"name": "glib2-debugsource-0:2.56.4-166.el8_10.i686",
"product": {
"name": "glib2-debugsource-0:2.56.4-166.el8_10.i686",
"product_id": "glib2-debugsource-0:2.56.4-166.el8_10.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debugsource@2.56.4-166.el8_10?arch=i686"
}
}
},
{
"category": "product_version",
"name": "glib2-debuginfo-0:2.56.4-166.el8_10.i686",
"product": {
"name": "glib2-debuginfo-0:2.56.4-166.el8_10.i686",
"product_id": "glib2-debuginfo-0:2.56.4-166.el8_10.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debuginfo@2.56.4-166.el8_10?arch=i686"
}
}
},
{
"category": "product_version",
"name": "glib2-devel-debuginfo-0:2.56.4-166.el8_10.i686",
"product": {
"name": "glib2-devel-debuginfo-0:2.56.4-166.el8_10.i686",
"product_id": "glib2-devel-debuginfo-0:2.56.4-166.el8_10.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel-debuginfo@2.56.4-166.el8_10?arch=i686"
}
}
},
{
"category": "product_version",
"name": "glib2-fam-debuginfo-0:2.56.4-166.el8_10.i686",
"product": {
"name": "glib2-fam-debuginfo-0:2.56.4-166.el8_10.i686",
"product_id": "glib2-fam-debuginfo-0:2.56.4-166.el8_10.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-fam-debuginfo@2.56.4-166.el8_10?arch=i686"
}
}
},
{
"category": "product_version",
"name": "glib2-tests-debuginfo-0:2.56.4-166.el8_10.i686",
"product": {
"name": "glib2-tests-debuginfo-0:2.56.4-166.el8_10.i686",
"product_id": "glib2-tests-debuginfo-0:2.56.4-166.el8_10.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-tests-debuginfo@2.56.4-166.el8_10?arch=i686"
}
}
},
{
"category": "product_version",
"name": "glib2-static-0:2.56.4-166.el8_10.i686",
"product": {
"name": "glib2-static-0:2.56.4-166.el8_10.i686",
"product_id": "glib2-static-0:2.56.4-166.el8_10.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-static@2.56.4-166.el8_10?arch=i686"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "glib2-0:2.56.4-166.el8_10.x86_64",
"product": {
"name": "glib2-0:2.56.4-166.el8_10.x86_64",
"product_id": "glib2-0:2.56.4-166.el8_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2@2.56.4-166.el8_10?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glib2-devel-0:2.56.4-166.el8_10.x86_64",
"product": {
"name": "glib2-devel-0:2.56.4-166.el8_10.x86_64",
"product_id": "glib2-devel-0:2.56.4-166.el8_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel@2.56.4-166.el8_10?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glib2-fam-0:2.56.4-166.el8_10.x86_64",
"product": {
"name": "glib2-fam-0:2.56.4-166.el8_10.x86_64",
"product_id": "glib2-fam-0:2.56.4-166.el8_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-fam@2.56.4-166.el8_10?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glib2-tests-0:2.56.4-166.el8_10.x86_64",
"product": {
"name": "glib2-tests-0:2.56.4-166.el8_10.x86_64",
"product_id": "glib2-tests-0:2.56.4-166.el8_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-tests@2.56.4-166.el8_10?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glib2-debugsource-0:2.56.4-166.el8_10.x86_64",
"product": {
"name": "glib2-debugsource-0:2.56.4-166.el8_10.x86_64",
"product_id": "glib2-debugsource-0:2.56.4-166.el8_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debugsource@2.56.4-166.el8_10?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glib2-debuginfo-0:2.56.4-166.el8_10.x86_64",
"product": {
"name": "glib2-debuginfo-0:2.56.4-166.el8_10.x86_64",
"product_id": "glib2-debuginfo-0:2.56.4-166.el8_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debuginfo@2.56.4-166.el8_10?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glib2-devel-debuginfo-0:2.56.4-166.el8_10.x86_64",
"product": {
"name": "glib2-devel-debuginfo-0:2.56.4-166.el8_10.x86_64",
"product_id": "glib2-devel-debuginfo-0:2.56.4-166.el8_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel-debuginfo@2.56.4-166.el8_10?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glib2-fam-debuginfo-0:2.56.4-166.el8_10.x86_64",
"product": {
"name": "glib2-fam-debuginfo-0:2.56.4-166.el8_10.x86_64",
"product_id": "glib2-fam-debuginfo-0:2.56.4-166.el8_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-fam-debuginfo@2.56.4-166.el8_10?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glib2-tests-debuginfo-0:2.56.4-166.el8_10.x86_64",
"product": {
"name": "glib2-tests-debuginfo-0:2.56.4-166.el8_10.x86_64",
"product_id": "glib2-tests-debuginfo-0:2.56.4-166.el8_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-tests-debuginfo@2.56.4-166.el8_10?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glib2-static-0:2.56.4-166.el8_10.x86_64",
"product": {
"name": "glib2-static-0:2.56.4-166.el8_10.x86_64",
"product_id": "glib2-static-0:2.56.4-166.el8_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-static@2.56.4-166.el8_10?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "glib2-0:2.56.4-166.el8_10.s390x",
"product": {
"name": "glib2-0:2.56.4-166.el8_10.s390x",
"product_id": "glib2-0:2.56.4-166.el8_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2@2.56.4-166.el8_10?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "glib2-devel-0:2.56.4-166.el8_10.s390x",
"product": {
"name": "glib2-devel-0:2.56.4-166.el8_10.s390x",
"product_id": "glib2-devel-0:2.56.4-166.el8_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel@2.56.4-166.el8_10?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "glib2-fam-0:2.56.4-166.el8_10.s390x",
"product": {
"name": "glib2-fam-0:2.56.4-166.el8_10.s390x",
"product_id": "glib2-fam-0:2.56.4-166.el8_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-fam@2.56.4-166.el8_10?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "glib2-tests-0:2.56.4-166.el8_10.s390x",
"product": {
"name": "glib2-tests-0:2.56.4-166.el8_10.s390x",
"product_id": "glib2-tests-0:2.56.4-166.el8_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-tests@2.56.4-166.el8_10?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "glib2-debugsource-0:2.56.4-166.el8_10.s390x",
"product": {
"name": "glib2-debugsource-0:2.56.4-166.el8_10.s390x",
"product_id": "glib2-debugsource-0:2.56.4-166.el8_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debugsource@2.56.4-166.el8_10?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "glib2-debuginfo-0:2.56.4-166.el8_10.s390x",
"product": {
"name": "glib2-debuginfo-0:2.56.4-166.el8_10.s390x",
"product_id": "glib2-debuginfo-0:2.56.4-166.el8_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debuginfo@2.56.4-166.el8_10?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "glib2-devel-debuginfo-0:2.56.4-166.el8_10.s390x",
"product": {
"name": "glib2-devel-debuginfo-0:2.56.4-166.el8_10.s390x",
"product_id": "glib2-devel-debuginfo-0:2.56.4-166.el8_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel-debuginfo@2.56.4-166.el8_10?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "glib2-fam-debuginfo-0:2.56.4-166.el8_10.s390x",
"product": {
"name": "glib2-fam-debuginfo-0:2.56.4-166.el8_10.s390x",
"product_id": "glib2-fam-debuginfo-0:2.56.4-166.el8_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-fam-debuginfo@2.56.4-166.el8_10?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "glib2-tests-debuginfo-0:2.56.4-166.el8_10.s390x",
"product": {
"name": "glib2-tests-debuginfo-0:2.56.4-166.el8_10.s390x",
"product_id": "glib2-tests-debuginfo-0:2.56.4-166.el8_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-tests-debuginfo@2.56.4-166.el8_10?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "glib2-static-0:2.56.4-166.el8_10.s390x",
"product": {
"name": "glib2-static-0:2.56.4-166.el8_10.s390x",
"product_id": "glib2-static-0:2.56.4-166.el8_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-static@2.56.4-166.el8_10?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "glib2-doc-0:2.56.4-166.el8_10.noarch",
"product": {
"name": "glib2-doc-0:2.56.4-166.el8_10.noarch",
"product_id": "glib2-doc-0:2.56.4-166.el8_10.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-doc@2.56.4-166.el8_10?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.56.4-166.el8_10.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.aarch64"
},
"product_reference": "glib2-0:2.56.4-166.el8_10.aarch64",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.56.4-166.el8_10.i686 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.i686"
},
"product_reference": "glib2-0:2.56.4-166.el8_10.i686",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.56.4-166.el8_10.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.ppc64le"
},
"product_reference": "glib2-0:2.56.4-166.el8_10.ppc64le",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.56.4-166.el8_10.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.s390x"
},
"product_reference": "glib2-0:2.56.4-166.el8_10.s390x",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.56.4-166.el8_10.src as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.src"
},
"product_reference": "glib2-0:2.56.4-166.el8_10.src",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.56.4-166.el8_10.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.x86_64"
},
"product_reference": "glib2-0:2.56.4-166.el8_10.x86_64",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.56.4-166.el8_10.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.aarch64"
},
"product_reference": "glib2-debuginfo-0:2.56.4-166.el8_10.aarch64",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.56.4-166.el8_10.i686 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.i686"
},
"product_reference": "glib2-debuginfo-0:2.56.4-166.el8_10.i686",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.56.4-166.el8_10.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.ppc64le"
},
"product_reference": "glib2-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.56.4-166.el8_10.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.s390x"
},
"product_reference": "glib2-debuginfo-0:2.56.4-166.el8_10.s390x",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.56.4-166.el8_10.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.x86_64"
},
"product_reference": "glib2-debuginfo-0:2.56.4-166.el8_10.x86_64",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.56.4-166.el8_10.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.aarch64"
},
"product_reference": "glib2-debugsource-0:2.56.4-166.el8_10.aarch64",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.56.4-166.el8_10.i686 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.i686"
},
"product_reference": "glib2-debugsource-0:2.56.4-166.el8_10.i686",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.56.4-166.el8_10.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.ppc64le"
},
"product_reference": "glib2-debugsource-0:2.56.4-166.el8_10.ppc64le",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.56.4-166.el8_10.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.s390x"
},
"product_reference": "glib2-debugsource-0:2.56.4-166.el8_10.s390x",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.56.4-166.el8_10.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.x86_64"
},
"product_reference": "glib2-debugsource-0:2.56.4-166.el8_10.x86_64",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.56.4-166.el8_10.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.aarch64"
},
"product_reference": "glib2-devel-0:2.56.4-166.el8_10.aarch64",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.56.4-166.el8_10.i686 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.i686"
},
"product_reference": "glib2-devel-0:2.56.4-166.el8_10.i686",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.56.4-166.el8_10.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.ppc64le"
},
"product_reference": "glib2-devel-0:2.56.4-166.el8_10.ppc64le",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.56.4-166.el8_10.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.s390x"
},
"product_reference": "glib2-devel-0:2.56.4-166.el8_10.s390x",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.56.4-166.el8_10.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.x86_64"
},
"product_reference": "glib2-devel-0:2.56.4-166.el8_10.x86_64",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.56.4-166.el8_10.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.aarch64"
},
"product_reference": "glib2-devel-debuginfo-0:2.56.4-166.el8_10.aarch64",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.56.4-166.el8_10.i686 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.i686"
},
"product_reference": "glib2-devel-debuginfo-0:2.56.4-166.el8_10.i686",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.56.4-166.el8_10.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.ppc64le"
},
"product_reference": "glib2-devel-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.56.4-166.el8_10.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.s390x"
},
"product_reference": "glib2-devel-debuginfo-0:2.56.4-166.el8_10.s390x",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.56.4-166.el8_10.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.x86_64"
},
"product_reference": "glib2-devel-debuginfo-0:2.56.4-166.el8_10.x86_64",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-doc-0:2.56.4-166.el8_10.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:glib2-doc-0:2.56.4-166.el8_10.noarch"
},
"product_reference": "glib2-doc-0:2.56.4-166.el8_10.noarch",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-fam-0:2.56.4-166.el8_10.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.aarch64"
},
"product_reference": "glib2-fam-0:2.56.4-166.el8_10.aarch64",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-fam-0:2.56.4-166.el8_10.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.ppc64le"
},
"product_reference": "glib2-fam-0:2.56.4-166.el8_10.ppc64le",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-fam-0:2.56.4-166.el8_10.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.s390x"
},
"product_reference": "glib2-fam-0:2.56.4-166.el8_10.s390x",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-fam-0:2.56.4-166.el8_10.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.x86_64"
},
"product_reference": "glib2-fam-0:2.56.4-166.el8_10.x86_64",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-fam-debuginfo-0:2.56.4-166.el8_10.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.aarch64"
},
"product_reference": "glib2-fam-debuginfo-0:2.56.4-166.el8_10.aarch64",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-fam-debuginfo-0:2.56.4-166.el8_10.i686 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.i686"
},
"product_reference": "glib2-fam-debuginfo-0:2.56.4-166.el8_10.i686",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-fam-debuginfo-0:2.56.4-166.el8_10.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.ppc64le"
},
"product_reference": "glib2-fam-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-fam-debuginfo-0:2.56.4-166.el8_10.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.s390x"
},
"product_reference": "glib2-fam-debuginfo-0:2.56.4-166.el8_10.s390x",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-fam-debuginfo-0:2.56.4-166.el8_10.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.x86_64"
},
"product_reference": "glib2-fam-debuginfo-0:2.56.4-166.el8_10.x86_64",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-static-0:2.56.4-166.el8_10.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.aarch64"
},
"product_reference": "glib2-static-0:2.56.4-166.el8_10.aarch64",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-static-0:2.56.4-166.el8_10.i686 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.i686"
},
"product_reference": "glib2-static-0:2.56.4-166.el8_10.i686",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-static-0:2.56.4-166.el8_10.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.ppc64le"
},
"product_reference": "glib2-static-0:2.56.4-166.el8_10.ppc64le",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-static-0:2.56.4-166.el8_10.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.s390x"
},
"product_reference": "glib2-static-0:2.56.4-166.el8_10.s390x",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-static-0:2.56.4-166.el8_10.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.x86_64"
},
"product_reference": "glib2-static-0:2.56.4-166.el8_10.x86_64",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-0:2.56.4-166.el8_10.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.aarch64"
},
"product_reference": "glib2-tests-0:2.56.4-166.el8_10.aarch64",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-0:2.56.4-166.el8_10.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.ppc64le"
},
"product_reference": "glib2-tests-0:2.56.4-166.el8_10.ppc64le",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-0:2.56.4-166.el8_10.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.s390x"
},
"product_reference": "glib2-tests-0:2.56.4-166.el8_10.s390x",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-0:2.56.4-166.el8_10.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.x86_64"
},
"product_reference": "glib2-tests-0:2.56.4-166.el8_10.x86_64",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.56.4-166.el8_10.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.aarch64"
},
"product_reference": "glib2-tests-debuginfo-0:2.56.4-166.el8_10.aarch64",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.56.4-166.el8_10.i686 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.i686"
},
"product_reference": "glib2-tests-debuginfo-0:2.56.4-166.el8_10.i686",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.56.4-166.el8_10.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.ppc64le"
},
"product_reference": "glib2-tests-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.56.4-166.el8_10.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.s390x"
},
"product_reference": "glib2-tests-debuginfo-0:2.56.4-166.el8_10.s390x",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.56.4-166.el8_10.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.x86_64"
},
"product_reference": "glib2-tests-debuginfo-0:2.56.4-166.el8_10.x86_64",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.56.4-166.el8_10.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)",
"product_id": "CRB-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.aarch64"
},
"product_reference": "glib2-0:2.56.4-166.el8_10.aarch64",
"relates_to_product_reference": "CRB-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.56.4-166.el8_10.i686 as a component of Red Hat Enterprise Linux CRB (v. 8)",
"product_id": "CRB-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.i686"
},
"product_reference": "glib2-0:2.56.4-166.el8_10.i686",
"relates_to_product_reference": "CRB-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.56.4-166.el8_10.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)",
"product_id": "CRB-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.ppc64le"
},
"product_reference": "glib2-0:2.56.4-166.el8_10.ppc64le",
"relates_to_product_reference": "CRB-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.56.4-166.el8_10.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)",
"product_id": "CRB-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.s390x"
},
"product_reference": "glib2-0:2.56.4-166.el8_10.s390x",
"relates_to_product_reference": "CRB-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.56.4-166.el8_10.src as a component of Red Hat Enterprise Linux CRB (v. 8)",
"product_id": "CRB-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.src"
},
"product_reference": "glib2-0:2.56.4-166.el8_10.src",
"relates_to_product_reference": "CRB-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.56.4-166.el8_10.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)",
"product_id": "CRB-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.x86_64"
},
"product_reference": "glib2-0:2.56.4-166.el8_10.x86_64",
"relates_to_product_reference": "CRB-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.56.4-166.el8_10.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)",
"product_id": "CRB-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.aarch64"
},
"product_reference": "glib2-debuginfo-0:2.56.4-166.el8_10.aarch64",
"relates_to_product_reference": "CRB-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.56.4-166.el8_10.i686 as a component of Red Hat Enterprise Linux CRB (v. 8)",
"product_id": "CRB-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.i686"
},
"product_reference": "glib2-debuginfo-0:2.56.4-166.el8_10.i686",
"relates_to_product_reference": "CRB-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.56.4-166.el8_10.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)",
"product_id": "CRB-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.ppc64le"
},
"product_reference": "glib2-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"relates_to_product_reference": "CRB-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.56.4-166.el8_10.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)",
"product_id": "CRB-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.s390x"
},
"product_reference": "glib2-debuginfo-0:2.56.4-166.el8_10.s390x",
"relates_to_product_reference": "CRB-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.56.4-166.el8_10.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)",
"product_id": "CRB-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.x86_64"
},
"product_reference": "glib2-debuginfo-0:2.56.4-166.el8_10.x86_64",
"relates_to_product_reference": "CRB-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.56.4-166.el8_10.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)",
"product_id": "CRB-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.aarch64"
},
"product_reference": "glib2-debugsource-0:2.56.4-166.el8_10.aarch64",
"relates_to_product_reference": "CRB-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.56.4-166.el8_10.i686 as a component of Red Hat Enterprise Linux CRB (v. 8)",
"product_id": "CRB-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.i686"
},
"product_reference": "glib2-debugsource-0:2.56.4-166.el8_10.i686",
"relates_to_product_reference": "CRB-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.56.4-166.el8_10.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)",
"product_id": "CRB-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.ppc64le"
},
"product_reference": "glib2-debugsource-0:2.56.4-166.el8_10.ppc64le",
"relates_to_product_reference": "CRB-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.56.4-166.el8_10.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)",
"product_id": "CRB-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.s390x"
},
"product_reference": "glib2-debugsource-0:2.56.4-166.el8_10.s390x",
"relates_to_product_reference": "CRB-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.56.4-166.el8_10.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)",
"product_id": "CRB-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.x86_64"
},
"product_reference": "glib2-debugsource-0:2.56.4-166.el8_10.x86_64",
"relates_to_product_reference": "CRB-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.56.4-166.el8_10.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)",
"product_id": "CRB-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.aarch64"
},
"product_reference": "glib2-devel-0:2.56.4-166.el8_10.aarch64",
"relates_to_product_reference": "CRB-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.56.4-166.el8_10.i686 as a component of Red Hat Enterprise Linux CRB (v. 8)",
"product_id": "CRB-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.i686"
},
"product_reference": "glib2-devel-0:2.56.4-166.el8_10.i686",
"relates_to_product_reference": "CRB-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.56.4-166.el8_10.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)",
"product_id": "CRB-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.ppc64le"
},
"product_reference": "glib2-devel-0:2.56.4-166.el8_10.ppc64le",
"relates_to_product_reference": "CRB-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.56.4-166.el8_10.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)",
"product_id": "CRB-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.s390x"
},
"product_reference": "glib2-devel-0:2.56.4-166.el8_10.s390x",
"relates_to_product_reference": "CRB-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.56.4-166.el8_10.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)",
"product_id": "CRB-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.x86_64"
},
"product_reference": "glib2-devel-0:2.56.4-166.el8_10.x86_64",
"relates_to_product_reference": "CRB-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.56.4-166.el8_10.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)",
"product_id": "CRB-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.aarch64"
},
"product_reference": "glib2-devel-debuginfo-0:2.56.4-166.el8_10.aarch64",
"relates_to_product_reference": "CRB-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.56.4-166.el8_10.i686 as a component of Red Hat Enterprise Linux CRB (v. 8)",
"product_id": "CRB-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.i686"
},
"product_reference": "glib2-devel-debuginfo-0:2.56.4-166.el8_10.i686",
"relates_to_product_reference": "CRB-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.56.4-166.el8_10.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)",
"product_id": "CRB-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.ppc64le"
},
"product_reference": "glib2-devel-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"relates_to_product_reference": "CRB-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.56.4-166.el8_10.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)",
"product_id": "CRB-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.s390x"
},
"product_reference": "glib2-devel-debuginfo-0:2.56.4-166.el8_10.s390x",
"relates_to_product_reference": "CRB-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.56.4-166.el8_10.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)",
"product_id": "CRB-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.x86_64"
},
"product_reference": "glib2-devel-debuginfo-0:2.56.4-166.el8_10.x86_64",
"relates_to_product_reference": "CRB-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-doc-0:2.56.4-166.el8_10.noarch as a component of Red Hat Enterprise Linux CRB (v. 8)",
"product_id": "CRB-8.10.0.Z.MAIN.EUS:glib2-doc-0:2.56.4-166.el8_10.noarch"
},
"product_reference": "glib2-doc-0:2.56.4-166.el8_10.noarch",
"relates_to_product_reference": "CRB-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-fam-0:2.56.4-166.el8_10.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)",
"product_id": "CRB-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.aarch64"
},
"product_reference": "glib2-fam-0:2.56.4-166.el8_10.aarch64",
"relates_to_product_reference": "CRB-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-fam-0:2.56.4-166.el8_10.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)",
"product_id": "CRB-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.ppc64le"
},
"product_reference": "glib2-fam-0:2.56.4-166.el8_10.ppc64le",
"relates_to_product_reference": "CRB-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-fam-0:2.56.4-166.el8_10.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)",
"product_id": "CRB-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.s390x"
},
"product_reference": "glib2-fam-0:2.56.4-166.el8_10.s390x",
"relates_to_product_reference": "CRB-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-fam-0:2.56.4-166.el8_10.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)",
"product_id": "CRB-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.x86_64"
},
"product_reference": "glib2-fam-0:2.56.4-166.el8_10.x86_64",
"relates_to_product_reference": "CRB-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-fam-debuginfo-0:2.56.4-166.el8_10.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)",
"product_id": "CRB-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.aarch64"
},
"product_reference": "glib2-fam-debuginfo-0:2.56.4-166.el8_10.aarch64",
"relates_to_product_reference": "CRB-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-fam-debuginfo-0:2.56.4-166.el8_10.i686 as a component of Red Hat Enterprise Linux CRB (v. 8)",
"product_id": "CRB-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.i686"
},
"product_reference": "glib2-fam-debuginfo-0:2.56.4-166.el8_10.i686",
"relates_to_product_reference": "CRB-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-fam-debuginfo-0:2.56.4-166.el8_10.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)",
"product_id": "CRB-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.ppc64le"
},
"product_reference": "glib2-fam-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"relates_to_product_reference": "CRB-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-fam-debuginfo-0:2.56.4-166.el8_10.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)",
"product_id": "CRB-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.s390x"
},
"product_reference": "glib2-fam-debuginfo-0:2.56.4-166.el8_10.s390x",
"relates_to_product_reference": "CRB-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-fam-debuginfo-0:2.56.4-166.el8_10.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)",
"product_id": "CRB-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.x86_64"
},
"product_reference": "glib2-fam-debuginfo-0:2.56.4-166.el8_10.x86_64",
"relates_to_product_reference": "CRB-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-static-0:2.56.4-166.el8_10.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)",
"product_id": "CRB-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.aarch64"
},
"product_reference": "glib2-static-0:2.56.4-166.el8_10.aarch64",
"relates_to_product_reference": "CRB-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-static-0:2.56.4-166.el8_10.i686 as a component of Red Hat Enterprise Linux CRB (v. 8)",
"product_id": "CRB-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.i686"
},
"product_reference": "glib2-static-0:2.56.4-166.el8_10.i686",
"relates_to_product_reference": "CRB-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-static-0:2.56.4-166.el8_10.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)",
"product_id": "CRB-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.ppc64le"
},
"product_reference": "glib2-static-0:2.56.4-166.el8_10.ppc64le",
"relates_to_product_reference": "CRB-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-static-0:2.56.4-166.el8_10.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)",
"product_id": "CRB-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.s390x"
},
"product_reference": "glib2-static-0:2.56.4-166.el8_10.s390x",
"relates_to_product_reference": "CRB-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-static-0:2.56.4-166.el8_10.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)",
"product_id": "CRB-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.x86_64"
},
"product_reference": "glib2-static-0:2.56.4-166.el8_10.x86_64",
"relates_to_product_reference": "CRB-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-0:2.56.4-166.el8_10.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)",
"product_id": "CRB-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.aarch64"
},
"product_reference": "glib2-tests-0:2.56.4-166.el8_10.aarch64",
"relates_to_product_reference": "CRB-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-0:2.56.4-166.el8_10.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)",
"product_id": "CRB-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.ppc64le"
},
"product_reference": "glib2-tests-0:2.56.4-166.el8_10.ppc64le",
"relates_to_product_reference": "CRB-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-0:2.56.4-166.el8_10.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)",
"product_id": "CRB-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.s390x"
},
"product_reference": "glib2-tests-0:2.56.4-166.el8_10.s390x",
"relates_to_product_reference": "CRB-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-0:2.56.4-166.el8_10.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)",
"product_id": "CRB-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.x86_64"
},
"product_reference": "glib2-tests-0:2.56.4-166.el8_10.x86_64",
"relates_to_product_reference": "CRB-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.56.4-166.el8_10.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)",
"product_id": "CRB-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.aarch64"
},
"product_reference": "glib2-tests-debuginfo-0:2.56.4-166.el8_10.aarch64",
"relates_to_product_reference": "CRB-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.56.4-166.el8_10.i686 as a component of Red Hat Enterprise Linux CRB (v. 8)",
"product_id": "CRB-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.i686"
},
"product_reference": "glib2-tests-debuginfo-0:2.56.4-166.el8_10.i686",
"relates_to_product_reference": "CRB-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.56.4-166.el8_10.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 8)",
"product_id": "CRB-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.ppc64le"
},
"product_reference": "glib2-tests-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"relates_to_product_reference": "CRB-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.56.4-166.el8_10.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)",
"product_id": "CRB-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.s390x"
},
"product_reference": "glib2-tests-debuginfo-0:2.56.4-166.el8_10.s390x",
"relates_to_product_reference": "CRB-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.56.4-166.el8_10.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)",
"product_id": "CRB-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.x86_64"
},
"product_reference": "glib2-tests-debuginfo-0:2.56.4-166.el8_10.x86_64",
"relates_to_product_reference": "CRB-8.10.0.Z.MAIN.EUS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-34397",
"cwe": {
"id": "CWE-940",
"name": "Improper Verification of Source of a Communication Channel"
},
"discovery_date": "2024-05-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2279632"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in GNOME GLib. When a GDBus-based client subscribes to signals from a trusted system service such as NetworkManager on a shared computer, other users of the same computer can send spoofed D-Bus signals that the GDBus-based client will wrongly interpret as having been sent by the trusted system service. This issue could lead to the GDBus-based client behaving incorrectly with an application-dependent impact.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "glib2: Signal subscription vulnerabilities",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.src",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-doc-0:2.56.4-166.el8_10.noarch",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.src",
"CRB-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-doc-0:2.56.4-166.el8_10.noarch",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-34397"
},
{
"category": "external",
"summary": "RHBZ#2279632",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2279632"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-34397",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34397"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-34397",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-34397"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/GNOME/glib/-/issues/3268",
"url": "https://gitlab.gnome.org/GNOME/glib/-/issues/3268"
},
{
"category": "external",
"summary": "https://www.openwall.com/lists/oss-security/2024/05/07/5",
"url": "https://www.openwall.com/lists/oss-security/2024/05/07/5"
}
],
"release_date": "2024-05-07T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-07-16T14:14:58+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.src",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-doc-0:2.56.4-166.el8_10.noarch",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.src",
"CRB-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-doc-0:2.56.4-166.el8_10.noarch",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:11327"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 3.8,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.src",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-doc-0:2.56.4-166.el8_10.noarch",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.src",
"CRB-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-doc-0:2.56.4-166.el8_10.noarch",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "glib2: Signal subscription vulnerabilities"
},
{
"cve": "CVE-2024-52533",
"cwe": {
"id": "CWE-193",
"name": "Off-by-one Error"
},
"discovery_date": "2024-11-11T23:00:48.125765+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2325340"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Glib library. A buffer overflow condition can be triggered in certain conditions due to an off-by-one error in SOCKS4_CONN_MSG_LEN. This issue may lead to an application crash or other undefined behavior.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "glib: buffer overflow in set_connect_msg()",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.src",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-doc-0:2.56.4-166.el8_10.noarch",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.src",
"CRB-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-doc-0:2.56.4-166.el8_10.noarch",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-52533"
},
{
"category": "external",
"summary": "RHBZ#2325340",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2325340"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-52533",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-52533"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-52533",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-52533"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/GNOME/glib/-/issues/3461",
"url": "https://gitlab.gnome.org/GNOME/glib/-/issues/3461"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/GNOME/glib/-/releases/2.82.1",
"url": "https://gitlab.gnome.org/GNOME/glib/-/releases/2.82.1"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/Teams/Releng/security/-/wikis/home",
"url": "https://gitlab.gnome.org/Teams/Releng/security/-/wikis/home"
}
],
"release_date": "2024-11-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-07-16T14:14:58+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.src",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-doc-0:2.56.4-166.el8_10.noarch",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.src",
"CRB-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-doc-0:2.56.4-166.el8_10.noarch",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:11327"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.src",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-doc-0:2.56.4-166.el8_10.noarch",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.src",
"CRB-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-doc-0:2.56.4-166.el8_10.noarch",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.src",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-doc-0:2.56.4-166.el8_10.noarch",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.src",
"CRB-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-doc-0:2.56.4-166.el8_10.noarch",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "glib: buffer overflow in set_connect_msg()"
},
{
"cve": "CVE-2025-4373",
"cwe": {
"id": "CWE-124",
"name": "Buffer Underwrite (\u0027Buffer Underflow\u0027)"
},
"discovery_date": "2025-05-06T00:33:30.003000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2364265"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in GLib, which is vulnerable to an integer overflow in the g_string_insert_unichar() function. When the position at which to insert the character is large, the position will overflow, leading to a buffer underwrite.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "glib: Buffer Underflow on GLib through glib/gstring.c via function g_string_insert_unichar",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Within regulated environments, a combination of the following controls acts as a significant barrier to the successful exploitation of a CWE-124: Buffer Underwrite (\u0027Buffer Underflow\u0027) vulnerability and therefore downgrades the severity of this particular CVE from Moderate to Low.\n\nSecure baseline configurations enforce strict memory handling policies, while change controls ensure any deviations are reviewed and approved. Least functionality reduces the attack surface by disabling unnecessary features that could introduce memory risks. Process isolation contains faults within individual workloads, minimizing broader impact. Real-time monitoring and malicious code protection detect and respond to abnormal memory behavior or exploitation attempts. Hardened configuration settings restrict low-level memory access, lowering the likelihood of unsafe operations. Finally, the platform uses memory protection mechanisms such as Data Execution Prevention (DEP) and Address Space Layout Randomization (ASLR) to strengthen resilience against buffer underwrite exploits.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.src",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-doc-0:2.56.4-166.el8_10.noarch",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.src",
"CRB-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-doc-0:2.56.4-166.el8_10.noarch",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-4373"
},
{
"category": "external",
"summary": "RHBZ#2364265",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2364265"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-4373",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4373"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-4373",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-4373"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/GNOME/glib/-/issues/3677",
"url": "https://gitlab.gnome.org/GNOME/glib/-/issues/3677"
}
],
"release_date": "2025-05-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-07-16T14:14:58+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.src",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-doc-0:2.56.4-166.el8_10.noarch",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.src",
"CRB-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-doc-0:2.56.4-166.el8_10.noarch",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:11327"
},
{
"category": "workaround",
"details": "Currently, no mitigation is available for this vulnerability.",
"product_ids": [
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.src",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-doc-0:2.56.4-166.el8_10.noarch",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.src",
"CRB-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-doc-0:2.56.4-166.el8_10.noarch",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.src",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-doc-0:2.56.4-166.el8_10.noarch",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.src",
"CRB-8.10.0.Z.MAIN.EUS:glib2-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debuginfo-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-debugsource-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-devel-debuginfo-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-doc-0:2.56.4-166.el8_10.noarch",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-fam-debuginfo-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-static-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-0:2.56.4-166.el8_10.x86_64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.aarch64",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.i686",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.ppc64le",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.s390x",
"CRB-8.10.0.Z.MAIN.EUS:glib2-tests-debuginfo-0:2.56.4-166.el8_10.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "glib: Buffer Underflow on GLib through glib/gstring.c via function g_string_insert_unichar"
}
]
}
rhsa-2025:14989
Vulnerability from csaf_redhat
Published
2025-09-02 02:11
Modified
2025-10-10 00:20
Summary
Red Hat Security Advisory: glib2 security update
Notes
Topic
An update for glib2 is now available for Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions and Red Hat Enterprise Linux 8.8 Telecommunications Update Service.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
GLib provides the core application building blocks for libraries and applications written in C. It provides the core object system used in GNOME, the main loop implementation, and a large set of utility functions for strings and common data structures.
Security Fix(es):
* glib2: Signal subscription vulnerabilities (CVE-2024-34397)
* glib: buffer overflow in set_connect_msg() (CVE-2024-52533)
* glib: Buffer Underflow on GLib through glib/gstring.c via function g_string_insert_unichar (CVE-2025-4373)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for glib2 is now available for Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions and Red Hat Enterprise Linux 8.8 Telecommunications Update Service.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "GLib provides the core application building blocks for libraries and applications written in C. It provides the core object system used in GNOME, the main loop implementation, and a large set of utility functions for strings and common data structures.\n\nSecurity Fix(es):\n\n* glib2: Signal subscription vulnerabilities (CVE-2024-34397)\n\n* glib: buffer overflow in set_connect_msg() (CVE-2024-52533)\n\n* glib: Buffer Underflow on GLib through glib/gstring.c via function g_string_insert_unichar (CVE-2025-4373)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:14989",
"url": "https://access.redhat.com/errata/RHSA-2025:14989"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "2279632",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2279632"
},
{
"category": "external",
"summary": "2325340",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2325340"
},
{
"category": "external",
"summary": "2364265",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2364265"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_14989.json"
}
],
"title": "Red Hat Security Advisory: glib2 security update",
"tracking": {
"current_release_date": "2025-10-10T00:20:27+00:00",
"generator": {
"date": "2025-10-10T00:20:27+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.9"
}
},
"id": "RHSA-2025:14989",
"initial_release_date": "2025-09-02T02:11:24+00:00",
"revision_history": [
{
"date": "2025-09-02T02:11:24+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-09-02T02:11:24+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-10T00:20:27+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux BaseOS E4S (v.8.8)",
"product": {
"name": "Red Hat Enterprise Linux BaseOS E4S (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.E4S",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_e4s:8.8::baseos"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux BaseOS TUS (v.8.8)",
"product": {
"name": "Red Hat Enterprise Linux BaseOS TUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.TUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_tus:8.8::baseos"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "glib2-0:2.56.4-162.el8_8.src",
"product": {
"name": "glib2-0:2.56.4-162.el8_8.src",
"product_id": "glib2-0:2.56.4-162.el8_8.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2@2.56.4-162.el8_8?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "glib2-0:2.56.4-162.el8_8.ppc64le",
"product": {
"name": "glib2-0:2.56.4-162.el8_8.ppc64le",
"product_id": "glib2-0:2.56.4-162.el8_8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2@2.56.4-162.el8_8?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "glib2-devel-0:2.56.4-162.el8_8.ppc64le",
"product": {
"name": "glib2-devel-0:2.56.4-162.el8_8.ppc64le",
"product_id": "glib2-devel-0:2.56.4-162.el8_8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel@2.56.4-162.el8_8?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "glib2-fam-0:2.56.4-162.el8_8.ppc64le",
"product": {
"name": "glib2-fam-0:2.56.4-162.el8_8.ppc64le",
"product_id": "glib2-fam-0:2.56.4-162.el8_8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-fam@2.56.4-162.el8_8?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "glib2-tests-0:2.56.4-162.el8_8.ppc64le",
"product": {
"name": "glib2-tests-0:2.56.4-162.el8_8.ppc64le",
"product_id": "glib2-tests-0:2.56.4-162.el8_8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-tests@2.56.4-162.el8_8?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "glib2-debugsource-0:2.56.4-162.el8_8.ppc64le",
"product": {
"name": "glib2-debugsource-0:2.56.4-162.el8_8.ppc64le",
"product_id": "glib2-debugsource-0:2.56.4-162.el8_8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debugsource@2.56.4-162.el8_8?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "glib2-debuginfo-0:2.56.4-162.el8_8.ppc64le",
"product": {
"name": "glib2-debuginfo-0:2.56.4-162.el8_8.ppc64le",
"product_id": "glib2-debuginfo-0:2.56.4-162.el8_8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debuginfo@2.56.4-162.el8_8?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "glib2-devel-debuginfo-0:2.56.4-162.el8_8.ppc64le",
"product": {
"name": "glib2-devel-debuginfo-0:2.56.4-162.el8_8.ppc64le",
"product_id": "glib2-devel-debuginfo-0:2.56.4-162.el8_8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel-debuginfo@2.56.4-162.el8_8?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "glib2-fam-debuginfo-0:2.56.4-162.el8_8.ppc64le",
"product": {
"name": "glib2-fam-debuginfo-0:2.56.4-162.el8_8.ppc64le",
"product_id": "glib2-fam-debuginfo-0:2.56.4-162.el8_8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-fam-debuginfo@2.56.4-162.el8_8?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "glib2-tests-debuginfo-0:2.56.4-162.el8_8.ppc64le",
"product": {
"name": "glib2-tests-debuginfo-0:2.56.4-162.el8_8.ppc64le",
"product_id": "glib2-tests-debuginfo-0:2.56.4-162.el8_8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-tests-debuginfo@2.56.4-162.el8_8?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "glib2-0:2.56.4-162.el8_8.i686",
"product": {
"name": "glib2-0:2.56.4-162.el8_8.i686",
"product_id": "glib2-0:2.56.4-162.el8_8.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2@2.56.4-162.el8_8?arch=i686"
}
}
},
{
"category": "product_version",
"name": "glib2-devel-0:2.56.4-162.el8_8.i686",
"product": {
"name": "glib2-devel-0:2.56.4-162.el8_8.i686",
"product_id": "glib2-devel-0:2.56.4-162.el8_8.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel@2.56.4-162.el8_8?arch=i686"
}
}
},
{
"category": "product_version",
"name": "glib2-debugsource-0:2.56.4-162.el8_8.i686",
"product": {
"name": "glib2-debugsource-0:2.56.4-162.el8_8.i686",
"product_id": "glib2-debugsource-0:2.56.4-162.el8_8.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debugsource@2.56.4-162.el8_8?arch=i686"
}
}
},
{
"category": "product_version",
"name": "glib2-debuginfo-0:2.56.4-162.el8_8.i686",
"product": {
"name": "glib2-debuginfo-0:2.56.4-162.el8_8.i686",
"product_id": "glib2-debuginfo-0:2.56.4-162.el8_8.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debuginfo@2.56.4-162.el8_8?arch=i686"
}
}
},
{
"category": "product_version",
"name": "glib2-devel-debuginfo-0:2.56.4-162.el8_8.i686",
"product": {
"name": "glib2-devel-debuginfo-0:2.56.4-162.el8_8.i686",
"product_id": "glib2-devel-debuginfo-0:2.56.4-162.el8_8.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel-debuginfo@2.56.4-162.el8_8?arch=i686"
}
}
},
{
"category": "product_version",
"name": "glib2-fam-debuginfo-0:2.56.4-162.el8_8.i686",
"product": {
"name": "glib2-fam-debuginfo-0:2.56.4-162.el8_8.i686",
"product_id": "glib2-fam-debuginfo-0:2.56.4-162.el8_8.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-fam-debuginfo@2.56.4-162.el8_8?arch=i686"
}
}
},
{
"category": "product_version",
"name": "glib2-tests-debuginfo-0:2.56.4-162.el8_8.i686",
"product": {
"name": "glib2-tests-debuginfo-0:2.56.4-162.el8_8.i686",
"product_id": "glib2-tests-debuginfo-0:2.56.4-162.el8_8.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-tests-debuginfo@2.56.4-162.el8_8?arch=i686"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "glib2-0:2.56.4-162.el8_8.x86_64",
"product": {
"name": "glib2-0:2.56.4-162.el8_8.x86_64",
"product_id": "glib2-0:2.56.4-162.el8_8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2@2.56.4-162.el8_8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glib2-devel-0:2.56.4-162.el8_8.x86_64",
"product": {
"name": "glib2-devel-0:2.56.4-162.el8_8.x86_64",
"product_id": "glib2-devel-0:2.56.4-162.el8_8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel@2.56.4-162.el8_8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glib2-fam-0:2.56.4-162.el8_8.x86_64",
"product": {
"name": "glib2-fam-0:2.56.4-162.el8_8.x86_64",
"product_id": "glib2-fam-0:2.56.4-162.el8_8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-fam@2.56.4-162.el8_8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glib2-tests-0:2.56.4-162.el8_8.x86_64",
"product": {
"name": "glib2-tests-0:2.56.4-162.el8_8.x86_64",
"product_id": "glib2-tests-0:2.56.4-162.el8_8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-tests@2.56.4-162.el8_8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glib2-debugsource-0:2.56.4-162.el8_8.x86_64",
"product": {
"name": "glib2-debugsource-0:2.56.4-162.el8_8.x86_64",
"product_id": "glib2-debugsource-0:2.56.4-162.el8_8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debugsource@2.56.4-162.el8_8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glib2-debuginfo-0:2.56.4-162.el8_8.x86_64",
"product": {
"name": "glib2-debuginfo-0:2.56.4-162.el8_8.x86_64",
"product_id": "glib2-debuginfo-0:2.56.4-162.el8_8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debuginfo@2.56.4-162.el8_8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glib2-devel-debuginfo-0:2.56.4-162.el8_8.x86_64",
"product": {
"name": "glib2-devel-debuginfo-0:2.56.4-162.el8_8.x86_64",
"product_id": "glib2-devel-debuginfo-0:2.56.4-162.el8_8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel-debuginfo@2.56.4-162.el8_8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glib2-fam-debuginfo-0:2.56.4-162.el8_8.x86_64",
"product": {
"name": "glib2-fam-debuginfo-0:2.56.4-162.el8_8.x86_64",
"product_id": "glib2-fam-debuginfo-0:2.56.4-162.el8_8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-fam-debuginfo@2.56.4-162.el8_8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glib2-tests-debuginfo-0:2.56.4-162.el8_8.x86_64",
"product": {
"name": "glib2-tests-debuginfo-0:2.56.4-162.el8_8.x86_64",
"product_id": "glib2-tests-debuginfo-0:2.56.4-162.el8_8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-tests-debuginfo@2.56.4-162.el8_8?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.56.4-162.el8_8.i686 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.E4S:glib2-0:2.56.4-162.el8_8.i686"
},
"product_reference": "glib2-0:2.56.4-162.el8_8.i686",
"relates_to_product_reference": "BaseOS-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.56.4-162.el8_8.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.E4S:glib2-0:2.56.4-162.el8_8.ppc64le"
},
"product_reference": "glib2-0:2.56.4-162.el8_8.ppc64le",
"relates_to_product_reference": "BaseOS-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.56.4-162.el8_8.src as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.E4S:glib2-0:2.56.4-162.el8_8.src"
},
"product_reference": "glib2-0:2.56.4-162.el8_8.src",
"relates_to_product_reference": "BaseOS-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.56.4-162.el8_8.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.E4S:glib2-0:2.56.4-162.el8_8.x86_64"
},
"product_reference": "glib2-0:2.56.4-162.el8_8.x86_64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.56.4-162.el8_8.i686 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.E4S:glib2-debuginfo-0:2.56.4-162.el8_8.i686"
},
"product_reference": "glib2-debuginfo-0:2.56.4-162.el8_8.i686",
"relates_to_product_reference": "BaseOS-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.56.4-162.el8_8.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.E4S:glib2-debuginfo-0:2.56.4-162.el8_8.ppc64le"
},
"product_reference": "glib2-debuginfo-0:2.56.4-162.el8_8.ppc64le",
"relates_to_product_reference": "BaseOS-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.56.4-162.el8_8.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.E4S:glib2-debuginfo-0:2.56.4-162.el8_8.x86_64"
},
"product_reference": "glib2-debuginfo-0:2.56.4-162.el8_8.x86_64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.56.4-162.el8_8.i686 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.E4S:glib2-debugsource-0:2.56.4-162.el8_8.i686"
},
"product_reference": "glib2-debugsource-0:2.56.4-162.el8_8.i686",
"relates_to_product_reference": "BaseOS-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.56.4-162.el8_8.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.E4S:glib2-debugsource-0:2.56.4-162.el8_8.ppc64le"
},
"product_reference": "glib2-debugsource-0:2.56.4-162.el8_8.ppc64le",
"relates_to_product_reference": "BaseOS-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.56.4-162.el8_8.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.E4S:glib2-debugsource-0:2.56.4-162.el8_8.x86_64"
},
"product_reference": "glib2-debugsource-0:2.56.4-162.el8_8.x86_64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.56.4-162.el8_8.i686 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.E4S:glib2-devel-0:2.56.4-162.el8_8.i686"
},
"product_reference": "glib2-devel-0:2.56.4-162.el8_8.i686",
"relates_to_product_reference": "BaseOS-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.56.4-162.el8_8.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.E4S:glib2-devel-0:2.56.4-162.el8_8.ppc64le"
},
"product_reference": "glib2-devel-0:2.56.4-162.el8_8.ppc64le",
"relates_to_product_reference": "BaseOS-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.56.4-162.el8_8.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.E4S:glib2-devel-0:2.56.4-162.el8_8.x86_64"
},
"product_reference": "glib2-devel-0:2.56.4-162.el8_8.x86_64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.56.4-162.el8_8.i686 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-162.el8_8.i686"
},
"product_reference": "glib2-devel-debuginfo-0:2.56.4-162.el8_8.i686",
"relates_to_product_reference": "BaseOS-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.56.4-162.el8_8.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-162.el8_8.ppc64le"
},
"product_reference": "glib2-devel-debuginfo-0:2.56.4-162.el8_8.ppc64le",
"relates_to_product_reference": "BaseOS-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.56.4-162.el8_8.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-162.el8_8.x86_64"
},
"product_reference": "glib2-devel-debuginfo-0:2.56.4-162.el8_8.x86_64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-fam-0:2.56.4-162.el8_8.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.E4S:glib2-fam-0:2.56.4-162.el8_8.ppc64le"
},
"product_reference": "glib2-fam-0:2.56.4-162.el8_8.ppc64le",
"relates_to_product_reference": "BaseOS-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-fam-0:2.56.4-162.el8_8.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.E4S:glib2-fam-0:2.56.4-162.el8_8.x86_64"
},
"product_reference": "glib2-fam-0:2.56.4-162.el8_8.x86_64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-fam-debuginfo-0:2.56.4-162.el8_8.i686 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-162.el8_8.i686"
},
"product_reference": "glib2-fam-debuginfo-0:2.56.4-162.el8_8.i686",
"relates_to_product_reference": "BaseOS-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-fam-debuginfo-0:2.56.4-162.el8_8.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-162.el8_8.ppc64le"
},
"product_reference": "glib2-fam-debuginfo-0:2.56.4-162.el8_8.ppc64le",
"relates_to_product_reference": "BaseOS-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-fam-debuginfo-0:2.56.4-162.el8_8.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-162.el8_8.x86_64"
},
"product_reference": "glib2-fam-debuginfo-0:2.56.4-162.el8_8.x86_64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-0:2.56.4-162.el8_8.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.E4S:glib2-tests-0:2.56.4-162.el8_8.ppc64le"
},
"product_reference": "glib2-tests-0:2.56.4-162.el8_8.ppc64le",
"relates_to_product_reference": "BaseOS-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-0:2.56.4-162.el8_8.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.E4S:glib2-tests-0:2.56.4-162.el8_8.x86_64"
},
"product_reference": "glib2-tests-0:2.56.4-162.el8_8.x86_64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.56.4-162.el8_8.i686 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-162.el8_8.i686"
},
"product_reference": "glib2-tests-debuginfo-0:2.56.4-162.el8_8.i686",
"relates_to_product_reference": "BaseOS-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.56.4-162.el8_8.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-162.el8_8.ppc64le"
},
"product_reference": "glib2-tests-debuginfo-0:2.56.4-162.el8_8.ppc64le",
"relates_to_product_reference": "BaseOS-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.56.4-162.el8_8.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-162.el8_8.x86_64"
},
"product_reference": "glib2-tests-debuginfo-0:2.56.4-162.el8_8.x86_64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.56.4-162.el8_8.i686 as a component of Red Hat Enterprise Linux BaseOS TUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.TUS:glib2-0:2.56.4-162.el8_8.i686"
},
"product_reference": "glib2-0:2.56.4-162.el8_8.i686",
"relates_to_product_reference": "BaseOS-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.56.4-162.el8_8.src as a component of Red Hat Enterprise Linux BaseOS TUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.TUS:glib2-0:2.56.4-162.el8_8.src"
},
"product_reference": "glib2-0:2.56.4-162.el8_8.src",
"relates_to_product_reference": "BaseOS-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.56.4-162.el8_8.x86_64 as a component of Red Hat Enterprise Linux BaseOS TUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.TUS:glib2-0:2.56.4-162.el8_8.x86_64"
},
"product_reference": "glib2-0:2.56.4-162.el8_8.x86_64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.56.4-162.el8_8.i686 as a component of Red Hat Enterprise Linux BaseOS TUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.TUS:glib2-debuginfo-0:2.56.4-162.el8_8.i686"
},
"product_reference": "glib2-debuginfo-0:2.56.4-162.el8_8.i686",
"relates_to_product_reference": "BaseOS-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.56.4-162.el8_8.x86_64 as a component of Red Hat Enterprise Linux BaseOS TUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.TUS:glib2-debuginfo-0:2.56.4-162.el8_8.x86_64"
},
"product_reference": "glib2-debuginfo-0:2.56.4-162.el8_8.x86_64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.56.4-162.el8_8.i686 as a component of Red Hat Enterprise Linux BaseOS TUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.TUS:glib2-debugsource-0:2.56.4-162.el8_8.i686"
},
"product_reference": "glib2-debugsource-0:2.56.4-162.el8_8.i686",
"relates_to_product_reference": "BaseOS-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.56.4-162.el8_8.x86_64 as a component of Red Hat Enterprise Linux BaseOS TUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.TUS:glib2-debugsource-0:2.56.4-162.el8_8.x86_64"
},
"product_reference": "glib2-debugsource-0:2.56.4-162.el8_8.x86_64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.56.4-162.el8_8.i686 as a component of Red Hat Enterprise Linux BaseOS TUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.TUS:glib2-devel-0:2.56.4-162.el8_8.i686"
},
"product_reference": "glib2-devel-0:2.56.4-162.el8_8.i686",
"relates_to_product_reference": "BaseOS-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.56.4-162.el8_8.x86_64 as a component of Red Hat Enterprise Linux BaseOS TUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.TUS:glib2-devel-0:2.56.4-162.el8_8.x86_64"
},
"product_reference": "glib2-devel-0:2.56.4-162.el8_8.x86_64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.56.4-162.el8_8.i686 as a component of Red Hat Enterprise Linux BaseOS TUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.TUS:glib2-devel-debuginfo-0:2.56.4-162.el8_8.i686"
},
"product_reference": "glib2-devel-debuginfo-0:2.56.4-162.el8_8.i686",
"relates_to_product_reference": "BaseOS-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.56.4-162.el8_8.x86_64 as a component of Red Hat Enterprise Linux BaseOS TUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.TUS:glib2-devel-debuginfo-0:2.56.4-162.el8_8.x86_64"
},
"product_reference": "glib2-devel-debuginfo-0:2.56.4-162.el8_8.x86_64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-fam-0:2.56.4-162.el8_8.x86_64 as a component of Red Hat Enterprise Linux BaseOS TUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.TUS:glib2-fam-0:2.56.4-162.el8_8.x86_64"
},
"product_reference": "glib2-fam-0:2.56.4-162.el8_8.x86_64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-fam-debuginfo-0:2.56.4-162.el8_8.i686 as a component of Red Hat Enterprise Linux BaseOS TUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.TUS:glib2-fam-debuginfo-0:2.56.4-162.el8_8.i686"
},
"product_reference": "glib2-fam-debuginfo-0:2.56.4-162.el8_8.i686",
"relates_to_product_reference": "BaseOS-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-fam-debuginfo-0:2.56.4-162.el8_8.x86_64 as a component of Red Hat Enterprise Linux BaseOS TUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.TUS:glib2-fam-debuginfo-0:2.56.4-162.el8_8.x86_64"
},
"product_reference": "glib2-fam-debuginfo-0:2.56.4-162.el8_8.x86_64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-0:2.56.4-162.el8_8.x86_64 as a component of Red Hat Enterprise Linux BaseOS TUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.TUS:glib2-tests-0:2.56.4-162.el8_8.x86_64"
},
"product_reference": "glib2-tests-0:2.56.4-162.el8_8.x86_64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.56.4-162.el8_8.i686 as a component of Red Hat Enterprise Linux BaseOS TUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.TUS:glib2-tests-debuginfo-0:2.56.4-162.el8_8.i686"
},
"product_reference": "glib2-tests-debuginfo-0:2.56.4-162.el8_8.i686",
"relates_to_product_reference": "BaseOS-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.56.4-162.el8_8.x86_64 as a component of Red Hat Enterprise Linux BaseOS TUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.TUS:glib2-tests-debuginfo-0:2.56.4-162.el8_8.x86_64"
},
"product_reference": "glib2-tests-debuginfo-0:2.56.4-162.el8_8.x86_64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.TUS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-34397",
"cwe": {
"id": "CWE-940",
"name": "Improper Verification of Source of a Communication Channel"
},
"discovery_date": "2024-05-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2279632"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in GNOME GLib. When a GDBus-based client subscribes to signals from a trusted system service such as NetworkManager on a shared computer, other users of the same computer can send spoofed D-Bus signals that the GDBus-based client will wrongly interpret as having been sent by the trusted system service. This issue could lead to the GDBus-based client behaving incorrectly with an application-dependent impact.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "glib2: Signal subscription vulnerabilities",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.8.0.Z.E4S:glib2-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.E4S:glib2-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-0:2.56.4-162.el8_8.src",
"BaseOS-8.8.0.Z.E4S:glib2-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.E4S:glib2-debuginfo-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-debuginfo-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-debugsource-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.E4S:glib2-debugsource-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-debugsource-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-devel-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.E4S:glib2-devel-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-devel-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-fam-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-fam-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-tests-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-tests-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.TUS:glib2-0:2.56.4-162.el8_8.src",
"BaseOS-8.8.0.Z.TUS:glib2-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.TUS:glib2-debuginfo-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-debugsource-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.TUS:glib2-debugsource-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-devel-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.TUS:glib2-devel-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-devel-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.TUS:glib2-devel-debuginfo-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-fam-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-fam-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.TUS:glib2-fam-debuginfo-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-tests-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-tests-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.TUS:glib2-tests-debuginfo-0:2.56.4-162.el8_8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-34397"
},
{
"category": "external",
"summary": "RHBZ#2279632",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2279632"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-34397",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34397"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-34397",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-34397"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/GNOME/glib/-/issues/3268",
"url": "https://gitlab.gnome.org/GNOME/glib/-/issues/3268"
},
{
"category": "external",
"summary": "https://www.openwall.com/lists/oss-security/2024/05/07/5",
"url": "https://www.openwall.com/lists/oss-security/2024/05/07/5"
}
],
"release_date": "2024-05-07T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-02T02:11:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.8.0.Z.E4S:glib2-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.E4S:glib2-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-0:2.56.4-162.el8_8.src",
"BaseOS-8.8.0.Z.E4S:glib2-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.E4S:glib2-debuginfo-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-debuginfo-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-debugsource-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.E4S:glib2-debugsource-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-debugsource-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-devel-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.E4S:glib2-devel-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-devel-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-fam-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-fam-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-tests-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-tests-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.TUS:glib2-0:2.56.4-162.el8_8.src",
"BaseOS-8.8.0.Z.TUS:glib2-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.TUS:glib2-debuginfo-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-debugsource-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.TUS:glib2-debugsource-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-devel-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.TUS:glib2-devel-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-devel-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.TUS:glib2-devel-debuginfo-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-fam-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-fam-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.TUS:glib2-fam-debuginfo-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-tests-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-tests-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.TUS:glib2-tests-debuginfo-0:2.56.4-162.el8_8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:14989"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 3.8,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"BaseOS-8.8.0.Z.E4S:glib2-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.E4S:glib2-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-0:2.56.4-162.el8_8.src",
"BaseOS-8.8.0.Z.E4S:glib2-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.E4S:glib2-debuginfo-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-debuginfo-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-debugsource-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.E4S:glib2-debugsource-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-debugsource-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-devel-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.E4S:glib2-devel-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-devel-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-fam-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-fam-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-tests-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-tests-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.TUS:glib2-0:2.56.4-162.el8_8.src",
"BaseOS-8.8.0.Z.TUS:glib2-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.TUS:glib2-debuginfo-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-debugsource-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.TUS:glib2-debugsource-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-devel-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.TUS:glib2-devel-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-devel-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.TUS:glib2-devel-debuginfo-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-fam-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-fam-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.TUS:glib2-fam-debuginfo-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-tests-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-tests-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.TUS:glib2-tests-debuginfo-0:2.56.4-162.el8_8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "glib2: Signal subscription vulnerabilities"
},
{
"cve": "CVE-2024-52533",
"cwe": {
"id": "CWE-193",
"name": "Off-by-one Error"
},
"discovery_date": "2024-11-11T23:00:48.125765+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2325340"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Glib library. A buffer overflow condition can be triggered in certain conditions due to an off-by-one error in SOCKS4_CONN_MSG_LEN. This issue may lead to an application crash or other undefined behavior.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "glib: buffer overflow in set_connect_msg()",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.8.0.Z.E4S:glib2-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.E4S:glib2-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-0:2.56.4-162.el8_8.src",
"BaseOS-8.8.0.Z.E4S:glib2-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.E4S:glib2-debuginfo-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-debuginfo-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-debugsource-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.E4S:glib2-debugsource-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-debugsource-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-devel-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.E4S:glib2-devel-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-devel-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-fam-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-fam-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-tests-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-tests-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.TUS:glib2-0:2.56.4-162.el8_8.src",
"BaseOS-8.8.0.Z.TUS:glib2-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.TUS:glib2-debuginfo-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-debugsource-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.TUS:glib2-debugsource-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-devel-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.TUS:glib2-devel-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-devel-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.TUS:glib2-devel-debuginfo-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-fam-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-fam-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.TUS:glib2-fam-debuginfo-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-tests-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-tests-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.TUS:glib2-tests-debuginfo-0:2.56.4-162.el8_8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-52533"
},
{
"category": "external",
"summary": "RHBZ#2325340",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2325340"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-52533",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-52533"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-52533",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-52533"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/GNOME/glib/-/issues/3461",
"url": "https://gitlab.gnome.org/GNOME/glib/-/issues/3461"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/GNOME/glib/-/releases/2.82.1",
"url": "https://gitlab.gnome.org/GNOME/glib/-/releases/2.82.1"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/Teams/Releng/security/-/wikis/home",
"url": "https://gitlab.gnome.org/Teams/Releng/security/-/wikis/home"
}
],
"release_date": "2024-11-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-02T02:11:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.8.0.Z.E4S:glib2-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.E4S:glib2-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-0:2.56.4-162.el8_8.src",
"BaseOS-8.8.0.Z.E4S:glib2-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.E4S:glib2-debuginfo-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-debuginfo-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-debugsource-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.E4S:glib2-debugsource-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-debugsource-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-devel-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.E4S:glib2-devel-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-devel-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-fam-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-fam-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-tests-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-tests-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.TUS:glib2-0:2.56.4-162.el8_8.src",
"BaseOS-8.8.0.Z.TUS:glib2-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.TUS:glib2-debuginfo-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-debugsource-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.TUS:glib2-debugsource-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-devel-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.TUS:glib2-devel-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-devel-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.TUS:glib2-devel-debuginfo-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-fam-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-fam-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.TUS:glib2-fam-debuginfo-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-tests-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-tests-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.TUS:glib2-tests-debuginfo-0:2.56.4-162.el8_8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:14989"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"BaseOS-8.8.0.Z.E4S:glib2-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.E4S:glib2-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-0:2.56.4-162.el8_8.src",
"BaseOS-8.8.0.Z.E4S:glib2-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.E4S:glib2-debuginfo-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-debuginfo-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-debugsource-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.E4S:glib2-debugsource-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-debugsource-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-devel-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.E4S:glib2-devel-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-devel-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-fam-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-fam-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-tests-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-tests-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.TUS:glib2-0:2.56.4-162.el8_8.src",
"BaseOS-8.8.0.Z.TUS:glib2-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.TUS:glib2-debuginfo-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-debugsource-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.TUS:glib2-debugsource-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-devel-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.TUS:glib2-devel-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-devel-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.TUS:glib2-devel-debuginfo-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-fam-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-fam-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.TUS:glib2-fam-debuginfo-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-tests-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-tests-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.TUS:glib2-tests-debuginfo-0:2.56.4-162.el8_8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.8.0.Z.E4S:glib2-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.E4S:glib2-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-0:2.56.4-162.el8_8.src",
"BaseOS-8.8.0.Z.E4S:glib2-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.E4S:glib2-debuginfo-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-debuginfo-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-debugsource-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.E4S:glib2-debugsource-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-debugsource-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-devel-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.E4S:glib2-devel-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-devel-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-fam-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-fam-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-tests-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-tests-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.TUS:glib2-0:2.56.4-162.el8_8.src",
"BaseOS-8.8.0.Z.TUS:glib2-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.TUS:glib2-debuginfo-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-debugsource-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.TUS:glib2-debugsource-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-devel-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.TUS:glib2-devel-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-devel-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.TUS:glib2-devel-debuginfo-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-fam-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-fam-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.TUS:glib2-fam-debuginfo-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-tests-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-tests-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.TUS:glib2-tests-debuginfo-0:2.56.4-162.el8_8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "glib: buffer overflow in set_connect_msg()"
},
{
"cve": "CVE-2025-4373",
"cwe": {
"id": "CWE-124",
"name": "Buffer Underwrite (\u0027Buffer Underflow\u0027)"
},
"discovery_date": "2025-05-06T00:33:30.003000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2364265"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in GLib, which is vulnerable to an integer overflow in the g_string_insert_unichar() function. When the position at which to insert the character is large, the position will overflow, leading to a buffer underwrite.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "glib: Buffer Underflow on GLib through glib/gstring.c via function g_string_insert_unichar",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Within regulated environments, a combination of the following controls acts as a significant barrier to the successful exploitation of a CWE-124: Buffer Underwrite (\u0027Buffer Underflow\u0027) vulnerability and therefore downgrades the severity of this particular CVE from Moderate to Low.\n\nSecure baseline configurations enforce strict memory handling policies, while change controls ensure any deviations are reviewed and approved. Least functionality reduces the attack surface by disabling unnecessary features that could introduce memory risks. Process isolation contains faults within individual workloads, minimizing broader impact. Real-time monitoring and malicious code protection detect and respond to abnormal memory behavior or exploitation attempts. Hardened configuration settings restrict low-level memory access, lowering the likelihood of unsafe operations. Finally, the platform uses memory protection mechanisms such as Data Execution Prevention (DEP) and Address Space Layout Randomization (ASLR) to strengthen resilience against buffer underwrite exploits.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.8.0.Z.E4S:glib2-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.E4S:glib2-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-0:2.56.4-162.el8_8.src",
"BaseOS-8.8.0.Z.E4S:glib2-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.E4S:glib2-debuginfo-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-debuginfo-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-debugsource-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.E4S:glib2-debugsource-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-debugsource-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-devel-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.E4S:glib2-devel-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-devel-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-fam-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-fam-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-tests-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-tests-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.TUS:glib2-0:2.56.4-162.el8_8.src",
"BaseOS-8.8.0.Z.TUS:glib2-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.TUS:glib2-debuginfo-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-debugsource-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.TUS:glib2-debugsource-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-devel-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.TUS:glib2-devel-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-devel-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.TUS:glib2-devel-debuginfo-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-fam-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-fam-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.TUS:glib2-fam-debuginfo-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-tests-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-tests-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.TUS:glib2-tests-debuginfo-0:2.56.4-162.el8_8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-4373"
},
{
"category": "external",
"summary": "RHBZ#2364265",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2364265"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-4373",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4373"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-4373",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-4373"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/GNOME/glib/-/issues/3677",
"url": "https://gitlab.gnome.org/GNOME/glib/-/issues/3677"
}
],
"release_date": "2025-05-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-02T02:11:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.8.0.Z.E4S:glib2-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.E4S:glib2-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-0:2.56.4-162.el8_8.src",
"BaseOS-8.8.0.Z.E4S:glib2-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.E4S:glib2-debuginfo-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-debuginfo-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-debugsource-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.E4S:glib2-debugsource-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-debugsource-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-devel-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.E4S:glib2-devel-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-devel-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-fam-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-fam-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-tests-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-tests-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.TUS:glib2-0:2.56.4-162.el8_8.src",
"BaseOS-8.8.0.Z.TUS:glib2-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.TUS:glib2-debuginfo-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-debugsource-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.TUS:glib2-debugsource-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-devel-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.TUS:glib2-devel-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-devel-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.TUS:glib2-devel-debuginfo-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-fam-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-fam-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.TUS:glib2-fam-debuginfo-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-tests-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-tests-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.TUS:glib2-tests-debuginfo-0:2.56.4-162.el8_8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:14989"
},
{
"category": "workaround",
"details": "Currently, no mitigation is available for this vulnerability.",
"product_ids": [
"BaseOS-8.8.0.Z.E4S:glib2-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.E4S:glib2-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-0:2.56.4-162.el8_8.src",
"BaseOS-8.8.0.Z.E4S:glib2-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.E4S:glib2-debuginfo-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-debuginfo-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-debugsource-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.E4S:glib2-debugsource-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-debugsource-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-devel-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.E4S:glib2-devel-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-devel-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-fam-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-fam-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-tests-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-tests-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.TUS:glib2-0:2.56.4-162.el8_8.src",
"BaseOS-8.8.0.Z.TUS:glib2-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.TUS:glib2-debuginfo-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-debugsource-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.TUS:glib2-debugsource-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-devel-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.TUS:glib2-devel-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-devel-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.TUS:glib2-devel-debuginfo-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-fam-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-fam-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.TUS:glib2-fam-debuginfo-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-tests-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-tests-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.TUS:glib2-tests-debuginfo-0:2.56.4-162.el8_8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"BaseOS-8.8.0.Z.E4S:glib2-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.E4S:glib2-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-0:2.56.4-162.el8_8.src",
"BaseOS-8.8.0.Z.E4S:glib2-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.E4S:glib2-debuginfo-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-debuginfo-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-debugsource-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.E4S:glib2-debugsource-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-debugsource-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-devel-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.E4S:glib2-devel-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-devel-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-fam-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-fam-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-tests-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-tests-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-162.el8_8.ppc64le",
"BaseOS-8.8.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.TUS:glib2-0:2.56.4-162.el8_8.src",
"BaseOS-8.8.0.Z.TUS:glib2-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.TUS:glib2-debuginfo-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-debugsource-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.TUS:glib2-debugsource-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-devel-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.TUS:glib2-devel-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-devel-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.TUS:glib2-devel-debuginfo-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-fam-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-fam-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.TUS:glib2-fam-debuginfo-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-tests-0:2.56.4-162.el8_8.x86_64",
"BaseOS-8.8.0.Z.TUS:glib2-tests-debuginfo-0:2.56.4-162.el8_8.i686",
"BaseOS-8.8.0.Z.TUS:glib2-tests-debuginfo-0:2.56.4-162.el8_8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "glib: Buffer Underflow on GLib through glib/gstring.c via function g_string_insert_unichar"
}
]
}
rhsa-2025:14988
Vulnerability from csaf_redhat
Published
2025-09-02 02:53
Modified
2025-10-10 00:20
Summary
Red Hat Security Advisory: glib2 security update
Notes
Topic
An update for glib2 is now available for Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions, and Red Hat Enterprise Linux 8.6 Telecommunications Update Service.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
GLib provides the core application building blocks for libraries and applications written in C. It provides the core object system used in GNOME, the main loop implementation, and a large set of utility functions for strings and common data structures.
Security Fix(es):
* glib2: Signal subscription vulnerabilities (CVE-2024-34397)
* glib: buffer overflow in set_connect_msg() (CVE-2024-52533)
* glib: Buffer Underflow on GLib through glib/gstring.c via function g_string_insert_unichar (CVE-2025-4373)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for glib2 is now available for Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions, and Red Hat Enterprise Linux 8.6 Telecommunications Update Service.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "GLib provides the core application building blocks for libraries and applications written in C. It provides the core object system used in GNOME, the main loop implementation, and a large set of utility functions for strings and common data structures.\n\nSecurity Fix(es):\n\n* glib2: Signal subscription vulnerabilities (CVE-2024-34397)\n\n* glib: buffer overflow in set_connect_msg() (CVE-2024-52533)\n\n* glib: Buffer Underflow on GLib through glib/gstring.c via function g_string_insert_unichar (CVE-2025-4373)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:14988",
"url": "https://access.redhat.com/errata/RHSA-2025:14988"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "2279632",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2279632"
},
{
"category": "external",
"summary": "2325340",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2325340"
},
{
"category": "external",
"summary": "2364265",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2364265"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_14988.json"
}
],
"title": "Red Hat Security Advisory: glib2 security update",
"tracking": {
"current_release_date": "2025-10-10T00:20:27+00:00",
"generator": {
"date": "2025-10-10T00:20:27+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.9"
}
},
"id": "RHSA-2025:14988",
"initial_release_date": "2025-09-02T02:53:04+00:00",
"revision_history": [
{
"date": "2025-09-02T02:53:04+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-09-02T02:53:04+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-10T00:20:27+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux BaseOS AUS (v.8.6)",
"product": {
"name": "Red Hat Enterprise Linux BaseOS AUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.AUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_aus:8.6::baseos"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product": {
"name": "Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_e4s:8.6::baseos"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux BaseOS TUS (v.8.6)",
"product": {
"name": "Red Hat Enterprise Linux BaseOS TUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.TUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_tus:8.6::baseos"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "glib2-0:2.56.4-158.el8_6.2.src",
"product": {
"name": "glib2-0:2.56.4-158.el8_6.2.src",
"product_id": "glib2-0:2.56.4-158.el8_6.2.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2@2.56.4-158.el8_6.2?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "glib2-0:2.56.4-158.el8_6.2.i686",
"product": {
"name": "glib2-0:2.56.4-158.el8_6.2.i686",
"product_id": "glib2-0:2.56.4-158.el8_6.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2@2.56.4-158.el8_6.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "glib2-devel-0:2.56.4-158.el8_6.2.i686",
"product": {
"name": "glib2-devel-0:2.56.4-158.el8_6.2.i686",
"product_id": "glib2-devel-0:2.56.4-158.el8_6.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel@2.56.4-158.el8_6.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "glib2-debugsource-0:2.56.4-158.el8_6.2.i686",
"product": {
"name": "glib2-debugsource-0:2.56.4-158.el8_6.2.i686",
"product_id": "glib2-debugsource-0:2.56.4-158.el8_6.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debugsource@2.56.4-158.el8_6.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "glib2-debuginfo-0:2.56.4-158.el8_6.2.i686",
"product": {
"name": "glib2-debuginfo-0:2.56.4-158.el8_6.2.i686",
"product_id": "glib2-debuginfo-0:2.56.4-158.el8_6.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debuginfo@2.56.4-158.el8_6.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.i686",
"product": {
"name": "glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.i686",
"product_id": "glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel-debuginfo@2.56.4-158.el8_6.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.i686",
"product": {
"name": "glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.i686",
"product_id": "glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-fam-debuginfo@2.56.4-158.el8_6.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.i686",
"product": {
"name": "glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.i686",
"product_id": "glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-tests-debuginfo@2.56.4-158.el8_6.2?arch=i686"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "glib2-0:2.56.4-158.el8_6.2.x86_64",
"product": {
"name": "glib2-0:2.56.4-158.el8_6.2.x86_64",
"product_id": "glib2-0:2.56.4-158.el8_6.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2@2.56.4-158.el8_6.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glib2-devel-0:2.56.4-158.el8_6.2.x86_64",
"product": {
"name": "glib2-devel-0:2.56.4-158.el8_6.2.x86_64",
"product_id": "glib2-devel-0:2.56.4-158.el8_6.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel@2.56.4-158.el8_6.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glib2-fam-0:2.56.4-158.el8_6.2.x86_64",
"product": {
"name": "glib2-fam-0:2.56.4-158.el8_6.2.x86_64",
"product_id": "glib2-fam-0:2.56.4-158.el8_6.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-fam@2.56.4-158.el8_6.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glib2-tests-0:2.56.4-158.el8_6.2.x86_64",
"product": {
"name": "glib2-tests-0:2.56.4-158.el8_6.2.x86_64",
"product_id": "glib2-tests-0:2.56.4-158.el8_6.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-tests@2.56.4-158.el8_6.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glib2-debugsource-0:2.56.4-158.el8_6.2.x86_64",
"product": {
"name": "glib2-debugsource-0:2.56.4-158.el8_6.2.x86_64",
"product_id": "glib2-debugsource-0:2.56.4-158.el8_6.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debugsource@2.56.4-158.el8_6.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glib2-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"product": {
"name": "glib2-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"product_id": "glib2-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debuginfo@2.56.4-158.el8_6.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"product": {
"name": "glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"product_id": "glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel-debuginfo@2.56.4-158.el8_6.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"product": {
"name": "glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"product_id": "glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-fam-debuginfo@2.56.4-158.el8_6.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"product": {
"name": "glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"product_id": "glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-tests-debuginfo@2.56.4-158.el8_6.2?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "glib2-0:2.56.4-158.el8_6.2.aarch64",
"product": {
"name": "glib2-0:2.56.4-158.el8_6.2.aarch64",
"product_id": "glib2-0:2.56.4-158.el8_6.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2@2.56.4-158.el8_6.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "glib2-devel-0:2.56.4-158.el8_6.2.aarch64",
"product": {
"name": "glib2-devel-0:2.56.4-158.el8_6.2.aarch64",
"product_id": "glib2-devel-0:2.56.4-158.el8_6.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel@2.56.4-158.el8_6.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "glib2-fam-0:2.56.4-158.el8_6.2.aarch64",
"product": {
"name": "glib2-fam-0:2.56.4-158.el8_6.2.aarch64",
"product_id": "glib2-fam-0:2.56.4-158.el8_6.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-fam@2.56.4-158.el8_6.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "glib2-tests-0:2.56.4-158.el8_6.2.aarch64",
"product": {
"name": "glib2-tests-0:2.56.4-158.el8_6.2.aarch64",
"product_id": "glib2-tests-0:2.56.4-158.el8_6.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-tests@2.56.4-158.el8_6.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "glib2-debugsource-0:2.56.4-158.el8_6.2.aarch64",
"product": {
"name": "glib2-debugsource-0:2.56.4-158.el8_6.2.aarch64",
"product_id": "glib2-debugsource-0:2.56.4-158.el8_6.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debugsource@2.56.4-158.el8_6.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "glib2-debuginfo-0:2.56.4-158.el8_6.2.aarch64",
"product": {
"name": "glib2-debuginfo-0:2.56.4-158.el8_6.2.aarch64",
"product_id": "glib2-debuginfo-0:2.56.4-158.el8_6.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debuginfo@2.56.4-158.el8_6.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.aarch64",
"product": {
"name": "glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.aarch64",
"product_id": "glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel-debuginfo@2.56.4-158.el8_6.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.aarch64",
"product": {
"name": "glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.aarch64",
"product_id": "glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-fam-debuginfo@2.56.4-158.el8_6.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.aarch64",
"product": {
"name": "glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.aarch64",
"product_id": "glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-tests-debuginfo@2.56.4-158.el8_6.2?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "glib2-0:2.56.4-158.el8_6.2.ppc64le",
"product": {
"name": "glib2-0:2.56.4-158.el8_6.2.ppc64le",
"product_id": "glib2-0:2.56.4-158.el8_6.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2@2.56.4-158.el8_6.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "glib2-devel-0:2.56.4-158.el8_6.2.ppc64le",
"product": {
"name": "glib2-devel-0:2.56.4-158.el8_6.2.ppc64le",
"product_id": "glib2-devel-0:2.56.4-158.el8_6.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel@2.56.4-158.el8_6.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "glib2-fam-0:2.56.4-158.el8_6.2.ppc64le",
"product": {
"name": "glib2-fam-0:2.56.4-158.el8_6.2.ppc64le",
"product_id": "glib2-fam-0:2.56.4-158.el8_6.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-fam@2.56.4-158.el8_6.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "glib2-tests-0:2.56.4-158.el8_6.2.ppc64le",
"product": {
"name": "glib2-tests-0:2.56.4-158.el8_6.2.ppc64le",
"product_id": "glib2-tests-0:2.56.4-158.el8_6.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-tests@2.56.4-158.el8_6.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "glib2-debugsource-0:2.56.4-158.el8_6.2.ppc64le",
"product": {
"name": "glib2-debugsource-0:2.56.4-158.el8_6.2.ppc64le",
"product_id": "glib2-debugsource-0:2.56.4-158.el8_6.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debugsource@2.56.4-158.el8_6.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "glib2-debuginfo-0:2.56.4-158.el8_6.2.ppc64le",
"product": {
"name": "glib2-debuginfo-0:2.56.4-158.el8_6.2.ppc64le",
"product_id": "glib2-debuginfo-0:2.56.4-158.el8_6.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debuginfo@2.56.4-158.el8_6.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.ppc64le",
"product": {
"name": "glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.ppc64le",
"product_id": "glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel-debuginfo@2.56.4-158.el8_6.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.ppc64le",
"product": {
"name": "glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.ppc64le",
"product_id": "glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-fam-debuginfo@2.56.4-158.el8_6.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.ppc64le",
"product": {
"name": "glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.ppc64le",
"product_id": "glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-tests-debuginfo@2.56.4-158.el8_6.2?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "glib2-0:2.56.4-158.el8_6.2.s390x",
"product": {
"name": "glib2-0:2.56.4-158.el8_6.2.s390x",
"product_id": "glib2-0:2.56.4-158.el8_6.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2@2.56.4-158.el8_6.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "glib2-devel-0:2.56.4-158.el8_6.2.s390x",
"product": {
"name": "glib2-devel-0:2.56.4-158.el8_6.2.s390x",
"product_id": "glib2-devel-0:2.56.4-158.el8_6.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel@2.56.4-158.el8_6.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "glib2-fam-0:2.56.4-158.el8_6.2.s390x",
"product": {
"name": "glib2-fam-0:2.56.4-158.el8_6.2.s390x",
"product_id": "glib2-fam-0:2.56.4-158.el8_6.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-fam@2.56.4-158.el8_6.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "glib2-tests-0:2.56.4-158.el8_6.2.s390x",
"product": {
"name": "glib2-tests-0:2.56.4-158.el8_6.2.s390x",
"product_id": "glib2-tests-0:2.56.4-158.el8_6.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-tests@2.56.4-158.el8_6.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "glib2-debugsource-0:2.56.4-158.el8_6.2.s390x",
"product": {
"name": "glib2-debugsource-0:2.56.4-158.el8_6.2.s390x",
"product_id": "glib2-debugsource-0:2.56.4-158.el8_6.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debugsource@2.56.4-158.el8_6.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "glib2-debuginfo-0:2.56.4-158.el8_6.2.s390x",
"product": {
"name": "glib2-debuginfo-0:2.56.4-158.el8_6.2.s390x",
"product_id": "glib2-debuginfo-0:2.56.4-158.el8_6.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debuginfo@2.56.4-158.el8_6.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.s390x",
"product": {
"name": "glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.s390x",
"product_id": "glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel-debuginfo@2.56.4-158.el8_6.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.s390x",
"product": {
"name": "glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.s390x",
"product_id": "glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-fam-debuginfo@2.56.4-158.el8_6.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.s390x",
"product": {
"name": "glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.s390x",
"product_id": "glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-tests-debuginfo@2.56.4-158.el8_6.2?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.56.4-158.el8_6.2.i686 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.AUS:glib2-0:2.56.4-158.el8_6.2.i686"
},
"product_reference": "glib2-0:2.56.4-158.el8_6.2.i686",
"relates_to_product_reference": "BaseOS-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.56.4-158.el8_6.2.src as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.AUS:glib2-0:2.56.4-158.el8_6.2.src"
},
"product_reference": "glib2-0:2.56.4-158.el8_6.2.src",
"relates_to_product_reference": "BaseOS-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.56.4-158.el8_6.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.AUS:glib2-0:2.56.4-158.el8_6.2.x86_64"
},
"product_reference": "glib2-0:2.56.4-158.el8_6.2.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.56.4-158.el8_6.2.i686 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.AUS:glib2-debuginfo-0:2.56.4-158.el8_6.2.i686"
},
"product_reference": "glib2-debuginfo-0:2.56.4-158.el8_6.2.i686",
"relates_to_product_reference": "BaseOS-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.56.4-158.el8_6.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.AUS:glib2-debuginfo-0:2.56.4-158.el8_6.2.x86_64"
},
"product_reference": "glib2-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.56.4-158.el8_6.2.i686 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.AUS:glib2-debugsource-0:2.56.4-158.el8_6.2.i686"
},
"product_reference": "glib2-debugsource-0:2.56.4-158.el8_6.2.i686",
"relates_to_product_reference": "BaseOS-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.56.4-158.el8_6.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.AUS:glib2-debugsource-0:2.56.4-158.el8_6.2.x86_64"
},
"product_reference": "glib2-debugsource-0:2.56.4-158.el8_6.2.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.56.4-158.el8_6.2.i686 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.AUS:glib2-devel-0:2.56.4-158.el8_6.2.i686"
},
"product_reference": "glib2-devel-0:2.56.4-158.el8_6.2.i686",
"relates_to_product_reference": "BaseOS-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.56.4-158.el8_6.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.AUS:glib2-devel-0:2.56.4-158.el8_6.2.x86_64"
},
"product_reference": "glib2-devel-0:2.56.4-158.el8_6.2.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.i686 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.AUS:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.i686"
},
"product_reference": "glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.i686",
"relates_to_product_reference": "BaseOS-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.AUS:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.x86_64"
},
"product_reference": "glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-fam-0:2.56.4-158.el8_6.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.AUS:glib2-fam-0:2.56.4-158.el8_6.2.x86_64"
},
"product_reference": "glib2-fam-0:2.56.4-158.el8_6.2.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.i686 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.AUS:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.i686"
},
"product_reference": "glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.i686",
"relates_to_product_reference": "BaseOS-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.AUS:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.x86_64"
},
"product_reference": "glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-0:2.56.4-158.el8_6.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.AUS:glib2-tests-0:2.56.4-158.el8_6.2.x86_64"
},
"product_reference": "glib2-tests-0:2.56.4-158.el8_6.2.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.i686 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.AUS:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.i686"
},
"product_reference": "glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.i686",
"relates_to_product_reference": "BaseOS-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.AUS:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.x86_64"
},
"product_reference": "glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.56.4-158.el8_6.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:glib2-0:2.56.4-158.el8_6.2.aarch64"
},
"product_reference": "glib2-0:2.56.4-158.el8_6.2.aarch64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.56.4-158.el8_6.2.i686 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:glib2-0:2.56.4-158.el8_6.2.i686"
},
"product_reference": "glib2-0:2.56.4-158.el8_6.2.i686",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.56.4-158.el8_6.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:glib2-0:2.56.4-158.el8_6.2.ppc64le"
},
"product_reference": "glib2-0:2.56.4-158.el8_6.2.ppc64le",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.56.4-158.el8_6.2.s390x as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:glib2-0:2.56.4-158.el8_6.2.s390x"
},
"product_reference": "glib2-0:2.56.4-158.el8_6.2.s390x",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.56.4-158.el8_6.2.src as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:glib2-0:2.56.4-158.el8_6.2.src"
},
"product_reference": "glib2-0:2.56.4-158.el8_6.2.src",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.56.4-158.el8_6.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:glib2-0:2.56.4-158.el8_6.2.x86_64"
},
"product_reference": "glib2-0:2.56.4-158.el8_6.2.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.56.4-158.el8_6.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:glib2-debuginfo-0:2.56.4-158.el8_6.2.aarch64"
},
"product_reference": "glib2-debuginfo-0:2.56.4-158.el8_6.2.aarch64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.56.4-158.el8_6.2.i686 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:glib2-debuginfo-0:2.56.4-158.el8_6.2.i686"
},
"product_reference": "glib2-debuginfo-0:2.56.4-158.el8_6.2.i686",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.56.4-158.el8_6.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:glib2-debuginfo-0:2.56.4-158.el8_6.2.ppc64le"
},
"product_reference": "glib2-debuginfo-0:2.56.4-158.el8_6.2.ppc64le",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.56.4-158.el8_6.2.s390x as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:glib2-debuginfo-0:2.56.4-158.el8_6.2.s390x"
},
"product_reference": "glib2-debuginfo-0:2.56.4-158.el8_6.2.s390x",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.56.4-158.el8_6.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:glib2-debuginfo-0:2.56.4-158.el8_6.2.x86_64"
},
"product_reference": "glib2-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.56.4-158.el8_6.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:glib2-debugsource-0:2.56.4-158.el8_6.2.aarch64"
},
"product_reference": "glib2-debugsource-0:2.56.4-158.el8_6.2.aarch64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.56.4-158.el8_6.2.i686 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:glib2-debugsource-0:2.56.4-158.el8_6.2.i686"
},
"product_reference": "glib2-debugsource-0:2.56.4-158.el8_6.2.i686",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.56.4-158.el8_6.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:glib2-debugsource-0:2.56.4-158.el8_6.2.ppc64le"
},
"product_reference": "glib2-debugsource-0:2.56.4-158.el8_6.2.ppc64le",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.56.4-158.el8_6.2.s390x as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:glib2-debugsource-0:2.56.4-158.el8_6.2.s390x"
},
"product_reference": "glib2-debugsource-0:2.56.4-158.el8_6.2.s390x",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.56.4-158.el8_6.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:glib2-debugsource-0:2.56.4-158.el8_6.2.x86_64"
},
"product_reference": "glib2-debugsource-0:2.56.4-158.el8_6.2.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.56.4-158.el8_6.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:glib2-devel-0:2.56.4-158.el8_6.2.aarch64"
},
"product_reference": "glib2-devel-0:2.56.4-158.el8_6.2.aarch64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.56.4-158.el8_6.2.i686 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:glib2-devel-0:2.56.4-158.el8_6.2.i686"
},
"product_reference": "glib2-devel-0:2.56.4-158.el8_6.2.i686",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.56.4-158.el8_6.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:glib2-devel-0:2.56.4-158.el8_6.2.ppc64le"
},
"product_reference": "glib2-devel-0:2.56.4-158.el8_6.2.ppc64le",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.56.4-158.el8_6.2.s390x as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:glib2-devel-0:2.56.4-158.el8_6.2.s390x"
},
"product_reference": "glib2-devel-0:2.56.4-158.el8_6.2.s390x",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.56.4-158.el8_6.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:glib2-devel-0:2.56.4-158.el8_6.2.x86_64"
},
"product_reference": "glib2-devel-0:2.56.4-158.el8_6.2.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.aarch64"
},
"product_reference": "glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.aarch64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.i686 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.i686"
},
"product_reference": "glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.i686",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.ppc64le"
},
"product_reference": "glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.ppc64le",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.s390x as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.s390x"
},
"product_reference": "glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.s390x",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.x86_64"
},
"product_reference": "glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-fam-0:2.56.4-158.el8_6.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:glib2-fam-0:2.56.4-158.el8_6.2.aarch64"
},
"product_reference": "glib2-fam-0:2.56.4-158.el8_6.2.aarch64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-fam-0:2.56.4-158.el8_6.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:glib2-fam-0:2.56.4-158.el8_6.2.ppc64le"
},
"product_reference": "glib2-fam-0:2.56.4-158.el8_6.2.ppc64le",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-fam-0:2.56.4-158.el8_6.2.s390x as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:glib2-fam-0:2.56.4-158.el8_6.2.s390x"
},
"product_reference": "glib2-fam-0:2.56.4-158.el8_6.2.s390x",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-fam-0:2.56.4-158.el8_6.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:glib2-fam-0:2.56.4-158.el8_6.2.x86_64"
},
"product_reference": "glib2-fam-0:2.56.4-158.el8_6.2.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.aarch64"
},
"product_reference": "glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.aarch64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.i686 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.i686"
},
"product_reference": "glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.i686",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.ppc64le"
},
"product_reference": "glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.ppc64le",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.s390x as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.s390x"
},
"product_reference": "glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.s390x",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.x86_64"
},
"product_reference": "glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-0:2.56.4-158.el8_6.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:glib2-tests-0:2.56.4-158.el8_6.2.aarch64"
},
"product_reference": "glib2-tests-0:2.56.4-158.el8_6.2.aarch64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-0:2.56.4-158.el8_6.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:glib2-tests-0:2.56.4-158.el8_6.2.ppc64le"
},
"product_reference": "glib2-tests-0:2.56.4-158.el8_6.2.ppc64le",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-0:2.56.4-158.el8_6.2.s390x as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:glib2-tests-0:2.56.4-158.el8_6.2.s390x"
},
"product_reference": "glib2-tests-0:2.56.4-158.el8_6.2.s390x",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-0:2.56.4-158.el8_6.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:glib2-tests-0:2.56.4-158.el8_6.2.x86_64"
},
"product_reference": "glib2-tests-0:2.56.4-158.el8_6.2.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.aarch64"
},
"product_reference": "glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.aarch64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.i686 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.i686"
},
"product_reference": "glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.i686",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.ppc64le"
},
"product_reference": "glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.ppc64le",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.s390x as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.s390x"
},
"product_reference": "glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.s390x",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.x86_64"
},
"product_reference": "glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.56.4-158.el8_6.2.i686 as a component of Red Hat Enterprise Linux BaseOS TUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.TUS:glib2-0:2.56.4-158.el8_6.2.i686"
},
"product_reference": "glib2-0:2.56.4-158.el8_6.2.i686",
"relates_to_product_reference": "BaseOS-8.6.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.56.4-158.el8_6.2.src as a component of Red Hat Enterprise Linux BaseOS TUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.TUS:glib2-0:2.56.4-158.el8_6.2.src"
},
"product_reference": "glib2-0:2.56.4-158.el8_6.2.src",
"relates_to_product_reference": "BaseOS-8.6.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.56.4-158.el8_6.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS TUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.TUS:glib2-0:2.56.4-158.el8_6.2.x86_64"
},
"product_reference": "glib2-0:2.56.4-158.el8_6.2.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.56.4-158.el8_6.2.i686 as a component of Red Hat Enterprise Linux BaseOS TUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.TUS:glib2-debuginfo-0:2.56.4-158.el8_6.2.i686"
},
"product_reference": "glib2-debuginfo-0:2.56.4-158.el8_6.2.i686",
"relates_to_product_reference": "BaseOS-8.6.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.56.4-158.el8_6.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS TUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.TUS:glib2-debuginfo-0:2.56.4-158.el8_6.2.x86_64"
},
"product_reference": "glib2-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.56.4-158.el8_6.2.i686 as a component of Red Hat Enterprise Linux BaseOS TUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.TUS:glib2-debugsource-0:2.56.4-158.el8_6.2.i686"
},
"product_reference": "glib2-debugsource-0:2.56.4-158.el8_6.2.i686",
"relates_to_product_reference": "BaseOS-8.6.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.56.4-158.el8_6.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS TUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.TUS:glib2-debugsource-0:2.56.4-158.el8_6.2.x86_64"
},
"product_reference": "glib2-debugsource-0:2.56.4-158.el8_6.2.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.56.4-158.el8_6.2.i686 as a component of Red Hat Enterprise Linux BaseOS TUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.TUS:glib2-devel-0:2.56.4-158.el8_6.2.i686"
},
"product_reference": "glib2-devel-0:2.56.4-158.el8_6.2.i686",
"relates_to_product_reference": "BaseOS-8.6.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.56.4-158.el8_6.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS TUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.TUS:glib2-devel-0:2.56.4-158.el8_6.2.x86_64"
},
"product_reference": "glib2-devel-0:2.56.4-158.el8_6.2.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.i686 as a component of Red Hat Enterprise Linux BaseOS TUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.TUS:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.i686"
},
"product_reference": "glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.i686",
"relates_to_product_reference": "BaseOS-8.6.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS TUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.TUS:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.x86_64"
},
"product_reference": "glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-fam-0:2.56.4-158.el8_6.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS TUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.TUS:glib2-fam-0:2.56.4-158.el8_6.2.x86_64"
},
"product_reference": "glib2-fam-0:2.56.4-158.el8_6.2.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.i686 as a component of Red Hat Enterprise Linux BaseOS TUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.TUS:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.i686"
},
"product_reference": "glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.i686",
"relates_to_product_reference": "BaseOS-8.6.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS TUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.TUS:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.x86_64"
},
"product_reference": "glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-0:2.56.4-158.el8_6.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS TUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.TUS:glib2-tests-0:2.56.4-158.el8_6.2.x86_64"
},
"product_reference": "glib2-tests-0:2.56.4-158.el8_6.2.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.i686 as a component of Red Hat Enterprise Linux BaseOS TUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.TUS:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.i686"
},
"product_reference": "glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.i686",
"relates_to_product_reference": "BaseOS-8.6.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS TUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.TUS:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.x86_64"
},
"product_reference": "glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.TUS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-34397",
"cwe": {
"id": "CWE-940",
"name": "Improper Verification of Source of a Communication Channel"
},
"discovery_date": "2024-05-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2279632"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in GNOME GLib. When a GDBus-based client subscribes to signals from a trusted system service such as NetworkManager on a shared computer, other users of the same computer can send spoofed D-Bus signals that the GDBus-based client will wrongly interpret as having been sent by the trusted system service. This issue could lead to the GDBus-based client behaving incorrectly with an application-dependent impact.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "glib2: Signal subscription vulnerabilities",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.6.0.Z.AUS:glib2-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.AUS:glib2-0:2.56.4-158.el8_6.2.src",
"BaseOS-8.6.0.Z.AUS:glib2-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.AUS:glib2-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-debugsource-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.AUS:glib2-debugsource-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-devel-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.AUS:glib2-devel-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.AUS:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-fam-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.AUS:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-tests-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.AUS:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.E4S:glib2-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-0:2.56.4-158.el8_6.2.src",
"BaseOS-8.6.0.Z.E4S:glib2-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-debuginfo-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.E4S:glib2-debuginfo-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-debuginfo-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-debugsource-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-debugsource-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.E4S:glib2-debugsource-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-debugsource-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-debugsource-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-devel-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-devel-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.E4S:glib2-devel-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-devel-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-devel-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-fam-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-fam-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-fam-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-fam-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-tests-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-tests-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-tests-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-tests-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.TUS:glib2-0:2.56.4-158.el8_6.2.src",
"BaseOS-8.6.0.Z.TUS:glib2-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.TUS:glib2-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-debugsource-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.TUS:glib2-debugsource-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-devel-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.TUS:glib2-devel-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.TUS:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-fam-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.TUS:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-tests-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.TUS:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-34397"
},
{
"category": "external",
"summary": "RHBZ#2279632",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2279632"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-34397",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34397"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-34397",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-34397"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/GNOME/glib/-/issues/3268",
"url": "https://gitlab.gnome.org/GNOME/glib/-/issues/3268"
},
{
"category": "external",
"summary": "https://www.openwall.com/lists/oss-security/2024/05/07/5",
"url": "https://www.openwall.com/lists/oss-security/2024/05/07/5"
}
],
"release_date": "2024-05-07T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-02T02:53:04+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.6.0.Z.AUS:glib2-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.AUS:glib2-0:2.56.4-158.el8_6.2.src",
"BaseOS-8.6.0.Z.AUS:glib2-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.AUS:glib2-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-debugsource-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.AUS:glib2-debugsource-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-devel-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.AUS:glib2-devel-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.AUS:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-fam-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.AUS:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-tests-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.AUS:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.E4S:glib2-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-0:2.56.4-158.el8_6.2.src",
"BaseOS-8.6.0.Z.E4S:glib2-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-debuginfo-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.E4S:glib2-debuginfo-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-debuginfo-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-debugsource-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-debugsource-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.E4S:glib2-debugsource-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-debugsource-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-debugsource-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-devel-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-devel-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.E4S:glib2-devel-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-devel-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-devel-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-fam-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-fam-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-fam-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-fam-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-tests-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-tests-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-tests-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-tests-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.TUS:glib2-0:2.56.4-158.el8_6.2.src",
"BaseOS-8.6.0.Z.TUS:glib2-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.TUS:glib2-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-debugsource-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.TUS:glib2-debugsource-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-devel-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.TUS:glib2-devel-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.TUS:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-fam-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.TUS:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-tests-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.TUS:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:14988"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 3.8,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"BaseOS-8.6.0.Z.AUS:glib2-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.AUS:glib2-0:2.56.4-158.el8_6.2.src",
"BaseOS-8.6.0.Z.AUS:glib2-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.AUS:glib2-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-debugsource-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.AUS:glib2-debugsource-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-devel-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.AUS:glib2-devel-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.AUS:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-fam-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.AUS:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-tests-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.AUS:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.E4S:glib2-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-0:2.56.4-158.el8_6.2.src",
"BaseOS-8.6.0.Z.E4S:glib2-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-debuginfo-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.E4S:glib2-debuginfo-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-debuginfo-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-debugsource-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-debugsource-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.E4S:glib2-debugsource-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-debugsource-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-debugsource-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-devel-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-devel-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.E4S:glib2-devel-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-devel-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-devel-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-fam-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-fam-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-fam-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-fam-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-tests-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-tests-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-tests-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-tests-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.TUS:glib2-0:2.56.4-158.el8_6.2.src",
"BaseOS-8.6.0.Z.TUS:glib2-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.TUS:glib2-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-debugsource-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.TUS:glib2-debugsource-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-devel-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.TUS:glib2-devel-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.TUS:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-fam-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.TUS:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-tests-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.TUS:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "glib2: Signal subscription vulnerabilities"
},
{
"cve": "CVE-2024-52533",
"cwe": {
"id": "CWE-193",
"name": "Off-by-one Error"
},
"discovery_date": "2024-11-11T23:00:48.125765+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2325340"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Glib library. A buffer overflow condition can be triggered in certain conditions due to an off-by-one error in SOCKS4_CONN_MSG_LEN. This issue may lead to an application crash or other undefined behavior.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "glib: buffer overflow in set_connect_msg()",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.6.0.Z.AUS:glib2-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.AUS:glib2-0:2.56.4-158.el8_6.2.src",
"BaseOS-8.6.0.Z.AUS:glib2-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.AUS:glib2-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-debugsource-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.AUS:glib2-debugsource-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-devel-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.AUS:glib2-devel-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.AUS:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-fam-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.AUS:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-tests-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.AUS:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.E4S:glib2-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-0:2.56.4-158.el8_6.2.src",
"BaseOS-8.6.0.Z.E4S:glib2-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-debuginfo-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.E4S:glib2-debuginfo-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-debuginfo-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-debugsource-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-debugsource-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.E4S:glib2-debugsource-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-debugsource-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-debugsource-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-devel-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-devel-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.E4S:glib2-devel-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-devel-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-devel-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-fam-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-fam-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-fam-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-fam-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-tests-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-tests-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-tests-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-tests-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.TUS:glib2-0:2.56.4-158.el8_6.2.src",
"BaseOS-8.6.0.Z.TUS:glib2-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.TUS:glib2-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-debugsource-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.TUS:glib2-debugsource-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-devel-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.TUS:glib2-devel-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.TUS:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-fam-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.TUS:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-tests-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.TUS:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-52533"
},
{
"category": "external",
"summary": "RHBZ#2325340",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2325340"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-52533",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-52533"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-52533",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-52533"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/GNOME/glib/-/issues/3461",
"url": "https://gitlab.gnome.org/GNOME/glib/-/issues/3461"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/GNOME/glib/-/releases/2.82.1",
"url": "https://gitlab.gnome.org/GNOME/glib/-/releases/2.82.1"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/Teams/Releng/security/-/wikis/home",
"url": "https://gitlab.gnome.org/Teams/Releng/security/-/wikis/home"
}
],
"release_date": "2024-11-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-02T02:53:04+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.6.0.Z.AUS:glib2-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.AUS:glib2-0:2.56.4-158.el8_6.2.src",
"BaseOS-8.6.0.Z.AUS:glib2-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.AUS:glib2-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-debugsource-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.AUS:glib2-debugsource-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-devel-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.AUS:glib2-devel-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.AUS:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-fam-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.AUS:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-tests-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.AUS:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.E4S:glib2-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-0:2.56.4-158.el8_6.2.src",
"BaseOS-8.6.0.Z.E4S:glib2-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-debuginfo-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.E4S:glib2-debuginfo-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-debuginfo-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-debugsource-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-debugsource-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.E4S:glib2-debugsource-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-debugsource-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-debugsource-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-devel-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-devel-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.E4S:glib2-devel-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-devel-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-devel-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-fam-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-fam-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-fam-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-fam-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-tests-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-tests-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-tests-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-tests-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.TUS:glib2-0:2.56.4-158.el8_6.2.src",
"BaseOS-8.6.0.Z.TUS:glib2-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.TUS:glib2-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-debugsource-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.TUS:glib2-debugsource-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-devel-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.TUS:glib2-devel-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.TUS:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-fam-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.TUS:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-tests-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.TUS:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:14988"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"BaseOS-8.6.0.Z.AUS:glib2-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.AUS:glib2-0:2.56.4-158.el8_6.2.src",
"BaseOS-8.6.0.Z.AUS:glib2-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.AUS:glib2-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-debugsource-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.AUS:glib2-debugsource-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-devel-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.AUS:glib2-devel-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.AUS:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-fam-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.AUS:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-tests-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.AUS:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.E4S:glib2-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-0:2.56.4-158.el8_6.2.src",
"BaseOS-8.6.0.Z.E4S:glib2-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-debuginfo-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.E4S:glib2-debuginfo-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-debuginfo-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-debugsource-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-debugsource-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.E4S:glib2-debugsource-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-debugsource-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-debugsource-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-devel-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-devel-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.E4S:glib2-devel-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-devel-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-devel-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-fam-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-fam-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-fam-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-fam-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-tests-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-tests-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-tests-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-tests-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.TUS:glib2-0:2.56.4-158.el8_6.2.src",
"BaseOS-8.6.0.Z.TUS:glib2-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.TUS:glib2-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-debugsource-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.TUS:glib2-debugsource-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-devel-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.TUS:glib2-devel-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.TUS:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-fam-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.TUS:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-tests-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.TUS:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.6.0.Z.AUS:glib2-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.AUS:glib2-0:2.56.4-158.el8_6.2.src",
"BaseOS-8.6.0.Z.AUS:glib2-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.AUS:glib2-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-debugsource-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.AUS:glib2-debugsource-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-devel-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.AUS:glib2-devel-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.AUS:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-fam-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.AUS:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-tests-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.AUS:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.E4S:glib2-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-0:2.56.4-158.el8_6.2.src",
"BaseOS-8.6.0.Z.E4S:glib2-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-debuginfo-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.E4S:glib2-debuginfo-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-debuginfo-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-debugsource-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-debugsource-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.E4S:glib2-debugsource-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-debugsource-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-debugsource-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-devel-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-devel-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.E4S:glib2-devel-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-devel-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-devel-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-fam-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-fam-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-fam-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-fam-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-tests-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-tests-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-tests-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-tests-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.TUS:glib2-0:2.56.4-158.el8_6.2.src",
"BaseOS-8.6.0.Z.TUS:glib2-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.TUS:glib2-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-debugsource-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.TUS:glib2-debugsource-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-devel-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.TUS:glib2-devel-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.TUS:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-fam-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.TUS:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-tests-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.TUS:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "glib: buffer overflow in set_connect_msg()"
},
{
"cve": "CVE-2025-4373",
"cwe": {
"id": "CWE-124",
"name": "Buffer Underwrite (\u0027Buffer Underflow\u0027)"
},
"discovery_date": "2025-05-06T00:33:30.003000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2364265"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in GLib, which is vulnerable to an integer overflow in the g_string_insert_unichar() function. When the position at which to insert the character is large, the position will overflow, leading to a buffer underwrite.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "glib: Buffer Underflow on GLib through glib/gstring.c via function g_string_insert_unichar",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Within regulated environments, a combination of the following controls acts as a significant barrier to the successful exploitation of a CWE-124: Buffer Underwrite (\u0027Buffer Underflow\u0027) vulnerability and therefore downgrades the severity of this particular CVE from Moderate to Low.\n\nSecure baseline configurations enforce strict memory handling policies, while change controls ensure any deviations are reviewed and approved. Least functionality reduces the attack surface by disabling unnecessary features that could introduce memory risks. Process isolation contains faults within individual workloads, minimizing broader impact. Real-time monitoring and malicious code protection detect and respond to abnormal memory behavior or exploitation attempts. Hardened configuration settings restrict low-level memory access, lowering the likelihood of unsafe operations. Finally, the platform uses memory protection mechanisms such as Data Execution Prevention (DEP) and Address Space Layout Randomization (ASLR) to strengthen resilience against buffer underwrite exploits.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.6.0.Z.AUS:glib2-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.AUS:glib2-0:2.56.4-158.el8_6.2.src",
"BaseOS-8.6.0.Z.AUS:glib2-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.AUS:glib2-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-debugsource-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.AUS:glib2-debugsource-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-devel-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.AUS:glib2-devel-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.AUS:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-fam-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.AUS:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-tests-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.AUS:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.E4S:glib2-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-0:2.56.4-158.el8_6.2.src",
"BaseOS-8.6.0.Z.E4S:glib2-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-debuginfo-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.E4S:glib2-debuginfo-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-debuginfo-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-debugsource-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-debugsource-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.E4S:glib2-debugsource-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-debugsource-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-debugsource-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-devel-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-devel-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.E4S:glib2-devel-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-devel-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-devel-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-fam-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-fam-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-fam-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-fam-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-tests-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-tests-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-tests-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-tests-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.TUS:glib2-0:2.56.4-158.el8_6.2.src",
"BaseOS-8.6.0.Z.TUS:glib2-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.TUS:glib2-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-debugsource-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.TUS:glib2-debugsource-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-devel-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.TUS:glib2-devel-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.TUS:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-fam-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.TUS:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-tests-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.TUS:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-4373"
},
{
"category": "external",
"summary": "RHBZ#2364265",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2364265"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-4373",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4373"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-4373",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-4373"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/GNOME/glib/-/issues/3677",
"url": "https://gitlab.gnome.org/GNOME/glib/-/issues/3677"
}
],
"release_date": "2025-05-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-02T02:53:04+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.6.0.Z.AUS:glib2-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.AUS:glib2-0:2.56.4-158.el8_6.2.src",
"BaseOS-8.6.0.Z.AUS:glib2-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.AUS:glib2-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-debugsource-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.AUS:glib2-debugsource-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-devel-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.AUS:glib2-devel-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.AUS:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-fam-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.AUS:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-tests-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.AUS:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.E4S:glib2-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-0:2.56.4-158.el8_6.2.src",
"BaseOS-8.6.0.Z.E4S:glib2-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-debuginfo-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.E4S:glib2-debuginfo-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-debuginfo-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-debugsource-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-debugsource-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.E4S:glib2-debugsource-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-debugsource-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-debugsource-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-devel-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-devel-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.E4S:glib2-devel-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-devel-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-devel-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-fam-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-fam-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-fam-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-fam-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-tests-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-tests-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-tests-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-tests-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.TUS:glib2-0:2.56.4-158.el8_6.2.src",
"BaseOS-8.6.0.Z.TUS:glib2-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.TUS:glib2-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-debugsource-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.TUS:glib2-debugsource-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-devel-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.TUS:glib2-devel-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.TUS:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-fam-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.TUS:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-tests-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.TUS:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:14988"
},
{
"category": "workaround",
"details": "Currently, no mitigation is available for this vulnerability.",
"product_ids": [
"BaseOS-8.6.0.Z.AUS:glib2-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.AUS:glib2-0:2.56.4-158.el8_6.2.src",
"BaseOS-8.6.0.Z.AUS:glib2-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.AUS:glib2-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-debugsource-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.AUS:glib2-debugsource-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-devel-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.AUS:glib2-devel-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.AUS:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-fam-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.AUS:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-tests-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.AUS:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.E4S:glib2-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-0:2.56.4-158.el8_6.2.src",
"BaseOS-8.6.0.Z.E4S:glib2-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-debuginfo-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.E4S:glib2-debuginfo-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-debuginfo-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-debugsource-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-debugsource-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.E4S:glib2-debugsource-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-debugsource-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-debugsource-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-devel-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-devel-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.E4S:glib2-devel-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-devel-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-devel-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-fam-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-fam-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-fam-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-fam-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-tests-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-tests-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-tests-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-tests-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.TUS:glib2-0:2.56.4-158.el8_6.2.src",
"BaseOS-8.6.0.Z.TUS:glib2-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.TUS:glib2-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-debugsource-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.TUS:glib2-debugsource-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-devel-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.TUS:glib2-devel-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.TUS:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-fam-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.TUS:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-tests-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.TUS:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"BaseOS-8.6.0.Z.AUS:glib2-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.AUS:glib2-0:2.56.4-158.el8_6.2.src",
"BaseOS-8.6.0.Z.AUS:glib2-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.AUS:glib2-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-debugsource-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.AUS:glib2-debugsource-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-devel-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.AUS:glib2-devel-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.AUS:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-fam-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.AUS:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-tests-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.AUS:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.AUS:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.E4S:glib2-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-0:2.56.4-158.el8_6.2.src",
"BaseOS-8.6.0.Z.E4S:glib2-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-debuginfo-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.E4S:glib2-debuginfo-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-debuginfo-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-debugsource-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-debugsource-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.E4S:glib2-debugsource-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-debugsource-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-debugsource-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-devel-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-devel-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.E4S:glib2-devel-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-devel-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-devel-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-fam-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-fam-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-fam-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-fam-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-tests-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-tests-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-tests-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-tests-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.aarch64",
"BaseOS-8.6.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.ppc64le",
"BaseOS-8.6.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.s390x",
"BaseOS-8.6.0.Z.E4S:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.TUS:glib2-0:2.56.4-158.el8_6.2.src",
"BaseOS-8.6.0.Z.TUS:glib2-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.TUS:glib2-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-debugsource-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.TUS:glib2-debugsource-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-devel-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.TUS:glib2-devel-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.TUS:glib2-devel-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-fam-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.TUS:glib2-fam-debuginfo-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-tests-0:2.56.4-158.el8_6.2.x86_64",
"BaseOS-8.6.0.Z.TUS:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.i686",
"BaseOS-8.6.0.Z.TUS:glib2-tests-debuginfo-0:2.56.4-158.el8_6.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "glib: Buffer Underflow on GLib through glib/gstring.c via function g_string_insert_unichar"
}
]
}
rhsa-2025:14990
Vulnerability from csaf_redhat
Published
2025-09-02 01:42
Modified
2025-10-10 00:20
Summary
Red Hat Security Advisory: glib2 security update
Notes
Topic
An update for glib2 is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support and Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
GLib provides the core application building blocks for libraries and applications written in C. It provides the core object system used in GNOME, the main loop implementation, and a large set of utility functions for strings and common data structures.
Security Fix(es):
* glib2: Signal subscription vulnerabilities (CVE-2024-34397)
* glib: buffer overflow in set_connect_msg() (CVE-2024-52533)
* glib: Buffer Underflow on GLib through glib/gstring.c via function g_string_insert_unichar (CVE-2025-4373)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for glib2 is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support and Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "GLib provides the core application building blocks for libraries and applications written in C. It provides the core object system used in GNOME, the main loop implementation, and a large set of utility functions for strings and common data structures.\n\nSecurity Fix(es):\n\n* glib2: Signal subscription vulnerabilities (CVE-2024-34397)\n\n* glib: buffer overflow in set_connect_msg() (CVE-2024-52533)\n\n* glib: Buffer Underflow on GLib through glib/gstring.c via function g_string_insert_unichar (CVE-2025-4373)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:14990",
"url": "https://access.redhat.com/errata/RHSA-2025:14990"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "2279632",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2279632"
},
{
"category": "external",
"summary": "2325340",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2325340"
},
{
"category": "external",
"summary": "2364265",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2364265"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_14990.json"
}
],
"title": "Red Hat Security Advisory: glib2 security update",
"tracking": {
"current_release_date": "2025-10-10T00:20:27+00:00",
"generator": {
"date": "2025-10-10T00:20:27+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.9"
}
},
"id": "RHSA-2025:14990",
"initial_release_date": "2025-09-02T01:42:29+00:00",
"revision_history": [
{
"date": "2025-09-02T01:42:29+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-09-02T01:42:29+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-10T00:20:27+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product": {
"name": "Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_aus:8.4::baseos"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product": {
"name": "Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_eus_long_life:8.4::baseos"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "glib2-0:2.56.4-10.el8_4.2.src",
"product": {
"name": "glib2-0:2.56.4-10.el8_4.2.src",
"product_id": "glib2-0:2.56.4-10.el8_4.2.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2@2.56.4-10.el8_4.2?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "glib2-0:2.56.4-10.el8_4.2.i686",
"product": {
"name": "glib2-0:2.56.4-10.el8_4.2.i686",
"product_id": "glib2-0:2.56.4-10.el8_4.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2@2.56.4-10.el8_4.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "glib2-devel-0:2.56.4-10.el8_4.2.i686",
"product": {
"name": "glib2-devel-0:2.56.4-10.el8_4.2.i686",
"product_id": "glib2-devel-0:2.56.4-10.el8_4.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel@2.56.4-10.el8_4.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "glib2-debugsource-0:2.56.4-10.el8_4.2.i686",
"product": {
"name": "glib2-debugsource-0:2.56.4-10.el8_4.2.i686",
"product_id": "glib2-debugsource-0:2.56.4-10.el8_4.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debugsource@2.56.4-10.el8_4.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "glib2-debuginfo-0:2.56.4-10.el8_4.2.i686",
"product": {
"name": "glib2-debuginfo-0:2.56.4-10.el8_4.2.i686",
"product_id": "glib2-debuginfo-0:2.56.4-10.el8_4.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debuginfo@2.56.4-10.el8_4.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "glib2-devel-debuginfo-0:2.56.4-10.el8_4.2.i686",
"product": {
"name": "glib2-devel-debuginfo-0:2.56.4-10.el8_4.2.i686",
"product_id": "glib2-devel-debuginfo-0:2.56.4-10.el8_4.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel-debuginfo@2.56.4-10.el8_4.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "glib2-fam-debuginfo-0:2.56.4-10.el8_4.2.i686",
"product": {
"name": "glib2-fam-debuginfo-0:2.56.4-10.el8_4.2.i686",
"product_id": "glib2-fam-debuginfo-0:2.56.4-10.el8_4.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-fam-debuginfo@2.56.4-10.el8_4.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "glib2-tests-debuginfo-0:2.56.4-10.el8_4.2.i686",
"product": {
"name": "glib2-tests-debuginfo-0:2.56.4-10.el8_4.2.i686",
"product_id": "glib2-tests-debuginfo-0:2.56.4-10.el8_4.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-tests-debuginfo@2.56.4-10.el8_4.2?arch=i686"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "glib2-0:2.56.4-10.el8_4.2.x86_64",
"product": {
"name": "glib2-0:2.56.4-10.el8_4.2.x86_64",
"product_id": "glib2-0:2.56.4-10.el8_4.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2@2.56.4-10.el8_4.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glib2-devel-0:2.56.4-10.el8_4.2.x86_64",
"product": {
"name": "glib2-devel-0:2.56.4-10.el8_4.2.x86_64",
"product_id": "glib2-devel-0:2.56.4-10.el8_4.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel@2.56.4-10.el8_4.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glib2-fam-0:2.56.4-10.el8_4.2.x86_64",
"product": {
"name": "glib2-fam-0:2.56.4-10.el8_4.2.x86_64",
"product_id": "glib2-fam-0:2.56.4-10.el8_4.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-fam@2.56.4-10.el8_4.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glib2-tests-0:2.56.4-10.el8_4.2.x86_64",
"product": {
"name": "glib2-tests-0:2.56.4-10.el8_4.2.x86_64",
"product_id": "glib2-tests-0:2.56.4-10.el8_4.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-tests@2.56.4-10.el8_4.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glib2-debugsource-0:2.56.4-10.el8_4.2.x86_64",
"product": {
"name": "glib2-debugsource-0:2.56.4-10.el8_4.2.x86_64",
"product_id": "glib2-debugsource-0:2.56.4-10.el8_4.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debugsource@2.56.4-10.el8_4.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glib2-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"product": {
"name": "glib2-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"product_id": "glib2-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debuginfo@2.56.4-10.el8_4.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glib2-devel-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"product": {
"name": "glib2-devel-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"product_id": "glib2-devel-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel-debuginfo@2.56.4-10.el8_4.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glib2-fam-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"product": {
"name": "glib2-fam-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"product_id": "glib2-fam-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-fam-debuginfo@2.56.4-10.el8_4.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glib2-tests-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"product": {
"name": "glib2-tests-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"product_id": "glib2-tests-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-tests-debuginfo@2.56.4-10.el8_4.2?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.56.4-10.el8_4.2.i686 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:glib2-0:2.56.4-10.el8_4.2.i686"
},
"product_reference": "glib2-0:2.56.4-10.el8_4.2.i686",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.56.4-10.el8_4.2.src as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:glib2-0:2.56.4-10.el8_4.2.src"
},
"product_reference": "glib2-0:2.56.4-10.el8_4.2.src",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.56.4-10.el8_4.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:glib2-0:2.56.4-10.el8_4.2.x86_64"
},
"product_reference": "glib2-0:2.56.4-10.el8_4.2.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.56.4-10.el8_4.2.i686 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:glib2-debuginfo-0:2.56.4-10.el8_4.2.i686"
},
"product_reference": "glib2-debuginfo-0:2.56.4-10.el8_4.2.i686",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.56.4-10.el8_4.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:glib2-debuginfo-0:2.56.4-10.el8_4.2.x86_64"
},
"product_reference": "glib2-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.56.4-10.el8_4.2.i686 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:glib2-debugsource-0:2.56.4-10.el8_4.2.i686"
},
"product_reference": "glib2-debugsource-0:2.56.4-10.el8_4.2.i686",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.56.4-10.el8_4.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:glib2-debugsource-0:2.56.4-10.el8_4.2.x86_64"
},
"product_reference": "glib2-debugsource-0:2.56.4-10.el8_4.2.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.56.4-10.el8_4.2.i686 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:glib2-devel-0:2.56.4-10.el8_4.2.i686"
},
"product_reference": "glib2-devel-0:2.56.4-10.el8_4.2.i686",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.56.4-10.el8_4.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:glib2-devel-0:2.56.4-10.el8_4.2.x86_64"
},
"product_reference": "glib2-devel-0:2.56.4-10.el8_4.2.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.56.4-10.el8_4.2.i686 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:glib2-devel-debuginfo-0:2.56.4-10.el8_4.2.i686"
},
"product_reference": "glib2-devel-debuginfo-0:2.56.4-10.el8_4.2.i686",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.56.4-10.el8_4.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:glib2-devel-debuginfo-0:2.56.4-10.el8_4.2.x86_64"
},
"product_reference": "glib2-devel-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-fam-0:2.56.4-10.el8_4.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:glib2-fam-0:2.56.4-10.el8_4.2.x86_64"
},
"product_reference": "glib2-fam-0:2.56.4-10.el8_4.2.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-fam-debuginfo-0:2.56.4-10.el8_4.2.i686 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:glib2-fam-debuginfo-0:2.56.4-10.el8_4.2.i686"
},
"product_reference": "glib2-fam-debuginfo-0:2.56.4-10.el8_4.2.i686",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-fam-debuginfo-0:2.56.4-10.el8_4.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:glib2-fam-debuginfo-0:2.56.4-10.el8_4.2.x86_64"
},
"product_reference": "glib2-fam-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-0:2.56.4-10.el8_4.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:glib2-tests-0:2.56.4-10.el8_4.2.x86_64"
},
"product_reference": "glib2-tests-0:2.56.4-10.el8_4.2.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.56.4-10.el8_4.2.i686 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:glib2-tests-debuginfo-0:2.56.4-10.el8_4.2.i686"
},
"product_reference": "glib2-tests-debuginfo-0:2.56.4-10.el8_4.2.i686",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.56.4-10.el8_4.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:glib2-tests-debuginfo-0:2.56.4-10.el8_4.2.x86_64"
},
"product_reference": "glib2-tests-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.56.4-10.el8_4.2.i686 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-0:2.56.4-10.el8_4.2.i686"
},
"product_reference": "glib2-0:2.56.4-10.el8_4.2.i686",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.56.4-10.el8_4.2.src as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-0:2.56.4-10.el8_4.2.src"
},
"product_reference": "glib2-0:2.56.4-10.el8_4.2.src",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.56.4-10.el8_4.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-0:2.56.4-10.el8_4.2.x86_64"
},
"product_reference": "glib2-0:2.56.4-10.el8_4.2.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.56.4-10.el8_4.2.i686 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-debuginfo-0:2.56.4-10.el8_4.2.i686"
},
"product_reference": "glib2-debuginfo-0:2.56.4-10.el8_4.2.i686",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.56.4-10.el8_4.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-debuginfo-0:2.56.4-10.el8_4.2.x86_64"
},
"product_reference": "glib2-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.56.4-10.el8_4.2.i686 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-debugsource-0:2.56.4-10.el8_4.2.i686"
},
"product_reference": "glib2-debugsource-0:2.56.4-10.el8_4.2.i686",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.56.4-10.el8_4.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-debugsource-0:2.56.4-10.el8_4.2.x86_64"
},
"product_reference": "glib2-debugsource-0:2.56.4-10.el8_4.2.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.56.4-10.el8_4.2.i686 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-devel-0:2.56.4-10.el8_4.2.i686"
},
"product_reference": "glib2-devel-0:2.56.4-10.el8_4.2.i686",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.56.4-10.el8_4.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-devel-0:2.56.4-10.el8_4.2.x86_64"
},
"product_reference": "glib2-devel-0:2.56.4-10.el8_4.2.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.56.4-10.el8_4.2.i686 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-devel-debuginfo-0:2.56.4-10.el8_4.2.i686"
},
"product_reference": "glib2-devel-debuginfo-0:2.56.4-10.el8_4.2.i686",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.56.4-10.el8_4.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-devel-debuginfo-0:2.56.4-10.el8_4.2.x86_64"
},
"product_reference": "glib2-devel-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-fam-0:2.56.4-10.el8_4.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-fam-0:2.56.4-10.el8_4.2.x86_64"
},
"product_reference": "glib2-fam-0:2.56.4-10.el8_4.2.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-fam-debuginfo-0:2.56.4-10.el8_4.2.i686 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-fam-debuginfo-0:2.56.4-10.el8_4.2.i686"
},
"product_reference": "glib2-fam-debuginfo-0:2.56.4-10.el8_4.2.i686",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-fam-debuginfo-0:2.56.4-10.el8_4.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-fam-debuginfo-0:2.56.4-10.el8_4.2.x86_64"
},
"product_reference": "glib2-fam-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-0:2.56.4-10.el8_4.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-tests-0:2.56.4-10.el8_4.2.x86_64"
},
"product_reference": "glib2-tests-0:2.56.4-10.el8_4.2.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.56.4-10.el8_4.2.i686 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-tests-debuginfo-0:2.56.4-10.el8_4.2.i686"
},
"product_reference": "glib2-tests-debuginfo-0:2.56.4-10.el8_4.2.i686",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.56.4-10.el8_4.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-tests-debuginfo-0:2.56.4-10.el8_4.2.x86_64"
},
"product_reference": "glib2-tests-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-34397",
"cwe": {
"id": "CWE-940",
"name": "Improper Verification of Source of a Communication Channel"
},
"discovery_date": "2024-05-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2279632"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in GNOME GLib. When a GDBus-based client subscribes to signals from a trusted system service such as NetworkManager on a shared computer, other users of the same computer can send spoofed D-Bus signals that the GDBus-based client will wrongly interpret as having been sent by the trusted system service. This issue could lead to the GDBus-based client behaving incorrectly with an application-dependent impact.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "glib2: Signal subscription vulnerabilities",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.4.0.Z.AUS:glib2-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.AUS:glib2-0:2.56.4-10.el8_4.2.src",
"BaseOS-8.4.0.Z.AUS:glib2-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.AUS:glib2-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-debugsource-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.AUS:glib2-debugsource-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-devel-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.AUS:glib2-devel-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-devel-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.AUS:glib2-devel-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-fam-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-fam-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.AUS:glib2-fam-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-tests-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-tests-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.AUS:glib2-tests-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-0:2.56.4-10.el8_4.2.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-debugsource-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-debugsource-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-devel-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-devel-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-devel-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-devel-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-fam-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-fam-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-fam-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-tests-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-tests-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-tests-debuginfo-0:2.56.4-10.el8_4.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-34397"
},
{
"category": "external",
"summary": "RHBZ#2279632",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2279632"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-34397",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34397"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-34397",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-34397"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/GNOME/glib/-/issues/3268",
"url": "https://gitlab.gnome.org/GNOME/glib/-/issues/3268"
},
{
"category": "external",
"summary": "https://www.openwall.com/lists/oss-security/2024/05/07/5",
"url": "https://www.openwall.com/lists/oss-security/2024/05/07/5"
}
],
"release_date": "2024-05-07T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-02T01:42:29+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.4.0.Z.AUS:glib2-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.AUS:glib2-0:2.56.4-10.el8_4.2.src",
"BaseOS-8.4.0.Z.AUS:glib2-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.AUS:glib2-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-debugsource-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.AUS:glib2-debugsource-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-devel-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.AUS:glib2-devel-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-devel-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.AUS:glib2-devel-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-fam-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-fam-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.AUS:glib2-fam-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-tests-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-tests-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.AUS:glib2-tests-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-0:2.56.4-10.el8_4.2.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-debugsource-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-debugsource-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-devel-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-devel-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-devel-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-devel-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-fam-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-fam-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-fam-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-tests-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-tests-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-tests-debuginfo-0:2.56.4-10.el8_4.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:14990"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 3.8,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"BaseOS-8.4.0.Z.AUS:glib2-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.AUS:glib2-0:2.56.4-10.el8_4.2.src",
"BaseOS-8.4.0.Z.AUS:glib2-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.AUS:glib2-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-debugsource-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.AUS:glib2-debugsource-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-devel-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.AUS:glib2-devel-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-devel-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.AUS:glib2-devel-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-fam-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-fam-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.AUS:glib2-fam-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-tests-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-tests-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.AUS:glib2-tests-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-0:2.56.4-10.el8_4.2.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-debugsource-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-debugsource-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-devel-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-devel-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-devel-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-devel-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-fam-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-fam-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-fam-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-tests-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-tests-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-tests-debuginfo-0:2.56.4-10.el8_4.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "glib2: Signal subscription vulnerabilities"
},
{
"cve": "CVE-2024-52533",
"cwe": {
"id": "CWE-193",
"name": "Off-by-one Error"
},
"discovery_date": "2024-11-11T23:00:48.125765+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2325340"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Glib library. A buffer overflow condition can be triggered in certain conditions due to an off-by-one error in SOCKS4_CONN_MSG_LEN. This issue may lead to an application crash or other undefined behavior.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "glib: buffer overflow in set_connect_msg()",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.4.0.Z.AUS:glib2-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.AUS:glib2-0:2.56.4-10.el8_4.2.src",
"BaseOS-8.4.0.Z.AUS:glib2-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.AUS:glib2-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-debugsource-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.AUS:glib2-debugsource-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-devel-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.AUS:glib2-devel-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-devel-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.AUS:glib2-devel-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-fam-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-fam-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.AUS:glib2-fam-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-tests-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-tests-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.AUS:glib2-tests-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-0:2.56.4-10.el8_4.2.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-debugsource-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-debugsource-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-devel-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-devel-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-devel-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-devel-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-fam-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-fam-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-fam-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-tests-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-tests-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-tests-debuginfo-0:2.56.4-10.el8_4.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-52533"
},
{
"category": "external",
"summary": "RHBZ#2325340",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2325340"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-52533",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-52533"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-52533",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-52533"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/GNOME/glib/-/issues/3461",
"url": "https://gitlab.gnome.org/GNOME/glib/-/issues/3461"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/GNOME/glib/-/releases/2.82.1",
"url": "https://gitlab.gnome.org/GNOME/glib/-/releases/2.82.1"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/Teams/Releng/security/-/wikis/home",
"url": "https://gitlab.gnome.org/Teams/Releng/security/-/wikis/home"
}
],
"release_date": "2024-11-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-02T01:42:29+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.4.0.Z.AUS:glib2-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.AUS:glib2-0:2.56.4-10.el8_4.2.src",
"BaseOS-8.4.0.Z.AUS:glib2-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.AUS:glib2-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-debugsource-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.AUS:glib2-debugsource-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-devel-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.AUS:glib2-devel-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-devel-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.AUS:glib2-devel-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-fam-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-fam-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.AUS:glib2-fam-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-tests-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-tests-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.AUS:glib2-tests-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-0:2.56.4-10.el8_4.2.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-debugsource-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-debugsource-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-devel-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-devel-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-devel-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-devel-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-fam-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-fam-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-fam-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-tests-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-tests-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-tests-debuginfo-0:2.56.4-10.el8_4.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:14990"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"BaseOS-8.4.0.Z.AUS:glib2-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.AUS:glib2-0:2.56.4-10.el8_4.2.src",
"BaseOS-8.4.0.Z.AUS:glib2-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.AUS:glib2-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-debugsource-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.AUS:glib2-debugsource-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-devel-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.AUS:glib2-devel-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-devel-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.AUS:glib2-devel-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-fam-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-fam-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.AUS:glib2-fam-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-tests-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-tests-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.AUS:glib2-tests-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-0:2.56.4-10.el8_4.2.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-debugsource-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-debugsource-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-devel-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-devel-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-devel-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-devel-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-fam-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-fam-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-fam-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-tests-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-tests-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-tests-debuginfo-0:2.56.4-10.el8_4.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.4.0.Z.AUS:glib2-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.AUS:glib2-0:2.56.4-10.el8_4.2.src",
"BaseOS-8.4.0.Z.AUS:glib2-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.AUS:glib2-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-debugsource-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.AUS:glib2-debugsource-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-devel-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.AUS:glib2-devel-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-devel-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.AUS:glib2-devel-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-fam-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-fam-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.AUS:glib2-fam-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-tests-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-tests-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.AUS:glib2-tests-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-0:2.56.4-10.el8_4.2.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-debugsource-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-debugsource-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-devel-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-devel-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-devel-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-devel-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-fam-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-fam-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-fam-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-tests-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-tests-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-tests-debuginfo-0:2.56.4-10.el8_4.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "glib: buffer overflow in set_connect_msg()"
},
{
"cve": "CVE-2025-4373",
"cwe": {
"id": "CWE-124",
"name": "Buffer Underwrite (\u0027Buffer Underflow\u0027)"
},
"discovery_date": "2025-05-06T00:33:30.003000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2364265"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in GLib, which is vulnerable to an integer overflow in the g_string_insert_unichar() function. When the position at which to insert the character is large, the position will overflow, leading to a buffer underwrite.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "glib: Buffer Underflow on GLib through glib/gstring.c via function g_string_insert_unichar",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Within regulated environments, a combination of the following controls acts as a significant barrier to the successful exploitation of a CWE-124: Buffer Underwrite (\u0027Buffer Underflow\u0027) vulnerability and therefore downgrades the severity of this particular CVE from Moderate to Low.\n\nSecure baseline configurations enforce strict memory handling policies, while change controls ensure any deviations are reviewed and approved. Least functionality reduces the attack surface by disabling unnecessary features that could introduce memory risks. Process isolation contains faults within individual workloads, minimizing broader impact. Real-time monitoring and malicious code protection detect and respond to abnormal memory behavior or exploitation attempts. Hardened configuration settings restrict low-level memory access, lowering the likelihood of unsafe operations. Finally, the platform uses memory protection mechanisms such as Data Execution Prevention (DEP) and Address Space Layout Randomization (ASLR) to strengthen resilience against buffer underwrite exploits.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.4.0.Z.AUS:glib2-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.AUS:glib2-0:2.56.4-10.el8_4.2.src",
"BaseOS-8.4.0.Z.AUS:glib2-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.AUS:glib2-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-debugsource-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.AUS:glib2-debugsource-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-devel-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.AUS:glib2-devel-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-devel-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.AUS:glib2-devel-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-fam-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-fam-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.AUS:glib2-fam-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-tests-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-tests-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.AUS:glib2-tests-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-0:2.56.4-10.el8_4.2.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-debugsource-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-debugsource-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-devel-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-devel-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-devel-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-devel-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-fam-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-fam-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-fam-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-tests-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-tests-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-tests-debuginfo-0:2.56.4-10.el8_4.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-4373"
},
{
"category": "external",
"summary": "RHBZ#2364265",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2364265"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-4373",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4373"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-4373",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-4373"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/GNOME/glib/-/issues/3677",
"url": "https://gitlab.gnome.org/GNOME/glib/-/issues/3677"
}
],
"release_date": "2025-05-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-02T01:42:29+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.4.0.Z.AUS:glib2-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.AUS:glib2-0:2.56.4-10.el8_4.2.src",
"BaseOS-8.4.0.Z.AUS:glib2-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.AUS:glib2-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-debugsource-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.AUS:glib2-debugsource-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-devel-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.AUS:glib2-devel-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-devel-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.AUS:glib2-devel-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-fam-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-fam-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.AUS:glib2-fam-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-tests-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-tests-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.AUS:glib2-tests-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-0:2.56.4-10.el8_4.2.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-debugsource-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-debugsource-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-devel-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-devel-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-devel-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-devel-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-fam-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-fam-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-fam-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-tests-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-tests-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-tests-debuginfo-0:2.56.4-10.el8_4.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:14990"
},
{
"category": "workaround",
"details": "Currently, no mitigation is available for this vulnerability.",
"product_ids": [
"BaseOS-8.4.0.Z.AUS:glib2-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.AUS:glib2-0:2.56.4-10.el8_4.2.src",
"BaseOS-8.4.0.Z.AUS:glib2-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.AUS:glib2-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-debugsource-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.AUS:glib2-debugsource-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-devel-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.AUS:glib2-devel-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-devel-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.AUS:glib2-devel-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-fam-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-fam-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.AUS:glib2-fam-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-tests-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-tests-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.AUS:glib2-tests-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-0:2.56.4-10.el8_4.2.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-debugsource-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-debugsource-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-devel-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-devel-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-devel-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-devel-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-fam-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-fam-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-fam-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-tests-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-tests-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-tests-debuginfo-0:2.56.4-10.el8_4.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"BaseOS-8.4.0.Z.AUS:glib2-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.AUS:glib2-0:2.56.4-10.el8_4.2.src",
"BaseOS-8.4.0.Z.AUS:glib2-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.AUS:glib2-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-debugsource-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.AUS:glib2-debugsource-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-devel-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.AUS:glib2-devel-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-devel-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.AUS:glib2-devel-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-fam-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-fam-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.AUS:glib2-fam-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-tests-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.AUS:glib2-tests-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.AUS:glib2-tests-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-0:2.56.4-10.el8_4.2.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-debugsource-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-debugsource-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-devel-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-devel-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-devel-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-devel-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-fam-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-fam-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-fam-debuginfo-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-tests-0:2.56.4-10.el8_4.2.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-tests-debuginfo-0:2.56.4-10.el8_4.2.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:glib2-tests-debuginfo-0:2.56.4-10.el8_4.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "glib: Buffer Underflow on GLib through glib/gstring.c via function g_string_insert_unichar"
}
]
}
rhsa-2025:11662
Vulnerability from csaf_redhat
Published
2025-07-23 16:11
Modified
2025-10-10 00:20
Summary
Red Hat Security Advisory: Red Hat OpenShift distributed tracing platform (Jaeger) 3.5.1 release
Notes
Topic
Red Hat OpenShift distributed tracing platform (Jaeger) 3.5.1 has been released
Details
This release of the Red Hat OpenShift distributed tracing platform (Jaeger) provides security improvements.
Breaking changes:
* Nothing
Deprecations:
* Nothing
Technology Preview features:
* Nothing
Enhancements:
* Nothing
Bug fixes:
* https://access.redhat.com/security/cve/CVE-2025-4373
* https://access.redhat.com/security/cve/CVE-2024-34397
* https://access.redhat.com/security/cve/CVE-2024-52533
Known issues:
* Nothing
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat OpenShift distributed tracing platform (Jaeger) 3.5.1 has been released",
"title": "Topic"
},
{
"category": "general",
"text": "This release of the Red Hat OpenShift distributed tracing platform (Jaeger) provides security improvements.\n\nBreaking changes:\n* Nothing\n\nDeprecations:\n* Nothing\n\nTechnology Preview features:\n* Nothing\n\nEnhancements:\n* Nothing\n\nBug fixes:\n* https://access.redhat.com/security/cve/CVE-2025-4373\n* https://access.redhat.com/security/cve/CVE-2024-34397\n* https://access.redhat.com/security/cve/CVE-2024-52533\n\nKnown issues:\n* Nothing",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:11662",
"url": "https://access.redhat.com/errata/RHSA-2025:11662"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-34397",
"url": "https://access.redhat.com/security/cve/CVE-2024-34397"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-52533",
"url": "https://access.redhat.com/security/cve/CVE-2024-52533"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-4373",
"url": "https://access.redhat.com/security/cve/CVE-2025-4373"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/openshift_container_platform/latest/html/distributed_tracing/distributed-tracing-platform-jaeger",
"url": "https://docs.redhat.com/en/documentation/openshift_container_platform/latest/html/distributed_tracing/distributed-tracing-platform-jaeger"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_11662.json"
}
],
"title": "Red Hat Security Advisory: Red Hat OpenShift distributed tracing platform (Jaeger) 3.5.1 release",
"tracking": {
"current_release_date": "2025-10-10T00:20:27+00:00",
"generator": {
"date": "2025-10-10T00:20:27+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.9"
}
},
"id": "RHSA-2025:11662",
"initial_release_date": "2025-07-23T16:11:26+00:00",
"revision_history": [
{
"date": "2025-07-23T16:11:26+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-07-23T16:11:31+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-10T00:20:27+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift distributed tracing 3.6.1",
"product": {
"name": "Red Hat OpenShift distributed tracing 3.6.1",
"product_id": "Red Hat OpenShift distributed tracing 3.6.1",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift_distributed_tracing:3.6::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift distributed tracing"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:389b9cbd0f05d3d773edc2c06aa73818307cbb25048bddf4f192a992670b6fb4_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:389b9cbd0f05d3d773edc2c06aa73818307cbb25048bddf4f192a992670b6fb4_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:389b9cbd0f05d3d773edc2c06aa73818307cbb25048bddf4f192a992670b6fb4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-agent-rhel8@sha256%3A389b9cbd0f05d3d773edc2c06aa73818307cbb25048bddf4f192a992670b6fb4?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt\u0026tag=rhosdt-3.6-1753265330"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3b00e2fec645e140fa304e5823bcb1d0fcd1ddac7f4cbf6e9a9c0fbeaf29682d_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3b00e2fec645e140fa304e5823bcb1d0fcd1ddac7f4cbf6e9a9c0fbeaf29682d_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3b00e2fec645e140fa304e5823bcb1d0fcd1ddac7f4cbf6e9a9c0fbeaf29682d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-all-in-one-rhel8@sha256%3A3b00e2fec645e140fa304e5823bcb1d0fcd1ddac7f4cbf6e9a9c0fbeaf29682d?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt\u0026tag=rhosdt-3.6-1753265394"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:be3feca3b19ac609e5ef829887b6d03ca3c504163ed0f9e10b2410cdfb175b72_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:be3feca3b19ac609e5ef829887b6d03ca3c504163ed0f9e10b2410cdfb175b72_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:be3feca3b19ac609e5ef829887b6d03ca3c504163ed0f9e10b2410cdfb175b72_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-operator-bundle@sha256%3Abe3feca3b19ac609e5ef829887b6d03ca3c504163ed0f9e10b2410cdfb175b72?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt\u0026tag=rhosdt-3.6-1753269432"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:3dc773cc4a48041bfe69b516db58d2a5060059725351fc1dbcece64778a35b3a_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:3dc773cc4a48041bfe69b516db58d2a5060059725351fc1dbcece64778a35b3a_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:3dc773cc4a48041bfe69b516db58d2a5060059725351fc1dbcece64778a35b3a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-collector-rhel8@sha256%3A3dc773cc4a48041bfe69b516db58d2a5060059725351fc1dbcece64778a35b3a?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt\u0026tag=rhosdt-3.6-1753265332"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:3d98512aaa924e0e1c9f3b5ab6b405cb4f4a3f3b5225aefa54f1b2abfbe3d769_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:3d98512aaa924e0e1c9f3b5ab6b405cb4f4a3f3b5225aefa54f1b2abfbe3d769_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:3d98512aaa924e0e1c9f3b5ab6b405cb4f4a3f3b5225aefa54f1b2abfbe3d769_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-index-cleaner-rhel8@sha256%3A3d98512aaa924e0e1c9f3b5ab6b405cb4f4a3f3b5225aefa54f1b2abfbe3d769?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt\u0026tag=rhosdt-3.6-1753265435"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:b91fe4769ad1e0cf809e3db4d494a5526608b2fa2114fc5e28624372858bb203_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:b91fe4769ad1e0cf809e3db4d494a5526608b2fa2114fc5e28624372858bb203_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:b91fe4769ad1e0cf809e3db4d494a5526608b2fa2114fc5e28624372858bb203_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-rollover-rhel8@sha256%3Ab91fe4769ad1e0cf809e3db4d494a5526608b2fa2114fc5e28624372858bb203?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt\u0026tag=rhosdt-3.6-1753265342"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:2e6d535aa3208ca8ae1bc588393c8bc499c4bfb452aceca047523502ddffa0ed_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:2e6d535aa3208ca8ae1bc588393c8bc499c4bfb452aceca047523502ddffa0ed_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:2e6d535aa3208ca8ae1bc588393c8bc499c4bfb452aceca047523502ddffa0ed_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-ingester-rhel8@sha256%3A2e6d535aa3208ca8ae1bc588393c8bc499c4bfb452aceca047523502ddffa0ed?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt\u0026tag=rhosdt-3.6-1753265332"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:6f3b7f23a515ac140bdad844d60d96fecc79835a75b1d29a70f66df737f1b50c_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:6f3b7f23a515ac140bdad844d60d96fecc79835a75b1d29a70f66df737f1b50c_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:6f3b7f23a515ac140bdad844d60d96fecc79835a75b1d29a70f66df737f1b50c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-rhel8-operator@sha256%3A6f3b7f23a515ac140bdad844d60d96fecc79835a75b1d29a70f66df737f1b50c?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt\u0026tag=rhosdt-3.6-1753265314"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8fce6e29d98acc1dd0a832cdb5c913af3edd65b81b2968fbdbf8ab434d82fe1e_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8fce6e29d98acc1dd0a832cdb5c913af3edd65b81b2968fbdbf8ab434d82fe1e_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8fce6e29d98acc1dd0a832cdb5c913af3edd65b81b2968fbdbf8ab434d82fe1e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-query-rhel8@sha256%3A8fce6e29d98acc1dd0a832cdb5c913af3edd65b81b2968fbdbf8ab434d82fe1e?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt\u0026tag=rhosdt-3.6-1753265411"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a891aa3f77d70d9d7966dfc71ff9087f45deb95d3025072da96a3ec5220db1f3_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a891aa3f77d70d9d7966dfc71ff9087f45deb95d3025072da96a3ec5220db1f3_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a891aa3f77d70d9d7966dfc71ff9087f45deb95d3025072da96a3ec5220db1f3_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-agent-rhel8@sha256%3Aa891aa3f77d70d9d7966dfc71ff9087f45deb95d3025072da96a3ec5220db1f3?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt\u0026tag=rhosdt-3.6-1753265330"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:9ec57ba506861f7037198253c6463991fa548b8e9f5a3d2c78e1f1257d31aeab_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:9ec57ba506861f7037198253c6463991fa548b8e9f5a3d2c78e1f1257d31aeab_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:9ec57ba506861f7037198253c6463991fa548b8e9f5a3d2c78e1f1257d31aeab_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-all-in-one-rhel8@sha256%3A9ec57ba506861f7037198253c6463991fa548b8e9f5a3d2c78e1f1257d31aeab?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt\u0026tag=rhosdt-3.6-1753265394"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:a15009fde9c0a63168d82fb07363d2c6ce05f2096dc1a9992a09fe1d76bcf4a7_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:a15009fde9c0a63168d82fb07363d2c6ce05f2096dc1a9992a09fe1d76bcf4a7_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:a15009fde9c0a63168d82fb07363d2c6ce05f2096dc1a9992a09fe1d76bcf4a7_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-collector-rhel8@sha256%3Aa15009fde9c0a63168d82fb07363d2c6ce05f2096dc1a9992a09fe1d76bcf4a7?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt\u0026tag=rhosdt-3.6-1753265332"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:d0ee4c371754848f57e6b7c5fcf716a7d830cd72b65b8aeb30e78a8e26b40548_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:d0ee4c371754848f57e6b7c5fcf716a7d830cd72b65b8aeb30e78a8e26b40548_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:d0ee4c371754848f57e6b7c5fcf716a7d830cd72b65b8aeb30e78a8e26b40548_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-index-cleaner-rhel8@sha256%3Ad0ee4c371754848f57e6b7c5fcf716a7d830cd72b65b8aeb30e78a8e26b40548?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt\u0026tag=rhosdt-3.6-1753265435"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:1c4617b035c66b6b34e9b19f618f72a19da5fce644d79e24eb262f14c848bc81_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:1c4617b035c66b6b34e9b19f618f72a19da5fce644d79e24eb262f14c848bc81_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:1c4617b035c66b6b34e9b19f618f72a19da5fce644d79e24eb262f14c848bc81_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-rollover-rhel8@sha256%3A1c4617b035c66b6b34e9b19f618f72a19da5fce644d79e24eb262f14c848bc81?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt\u0026tag=rhosdt-3.6-1753265342"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:03f466002ae14ef14dd0e82e0ab75c5287295f77598eed8aca6d1ac6aaa11928_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:03f466002ae14ef14dd0e82e0ab75c5287295f77598eed8aca6d1ac6aaa11928_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:03f466002ae14ef14dd0e82e0ab75c5287295f77598eed8aca6d1ac6aaa11928_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-ingester-rhel8@sha256%3A03f466002ae14ef14dd0e82e0ab75c5287295f77598eed8aca6d1ac6aaa11928?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt\u0026tag=rhosdt-3.6-1753265332"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:8d7c966e19b03dc4b7f123c9f4096ed4267be5596d08958f4c75a88b3bc541da_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:8d7c966e19b03dc4b7f123c9f4096ed4267be5596d08958f4c75a88b3bc541da_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:8d7c966e19b03dc4b7f123c9f4096ed4267be5596d08958f4c75a88b3bc541da_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-rhel8-operator@sha256%3A8d7c966e19b03dc4b7f123c9f4096ed4267be5596d08958f4c75a88b3bc541da?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt\u0026tag=rhosdt-3.6-1753265314"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:03f040cf94f7d8125f2e68bde45faa956dc9e70fef6307313e42af5de9bbfda0_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:03f040cf94f7d8125f2e68bde45faa956dc9e70fef6307313e42af5de9bbfda0_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:03f040cf94f7d8125f2e68bde45faa956dc9e70fef6307313e42af5de9bbfda0_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-query-rhel8@sha256%3A03f040cf94f7d8125f2e68bde45faa956dc9e70fef6307313e42af5de9bbfda0?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt\u0026tag=rhosdt-3.6-1753265411"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:31e117f467424af472a05c52c52397e949cf7838bce643a3d9d24c0f57a06458_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:31e117f467424af472a05c52c52397e949cf7838bce643a3d9d24c0f57a06458_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:31e117f467424af472a05c52c52397e949cf7838bce643a3d9d24c0f57a06458_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-agent-rhel8@sha256%3A31e117f467424af472a05c52c52397e949cf7838bce643a3d9d24c0f57a06458?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt\u0026tag=rhosdt-3.6-1753265330"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ef03839a45320399533becb174479f9ea4f26f381202707936d576ec6fc9ba84_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ef03839a45320399533becb174479f9ea4f26f381202707936d576ec6fc9ba84_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ef03839a45320399533becb174479f9ea4f26f381202707936d576ec6fc9ba84_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-all-in-one-rhel8@sha256%3Aef03839a45320399533becb174479f9ea4f26f381202707936d576ec6fc9ba84?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt\u0026tag=rhosdt-3.6-1753265394"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:438037a860968172a29c12ef14353081a5fd45ffe2e5dcccd3ab5486a5824578_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:438037a860968172a29c12ef14353081a5fd45ffe2e5dcccd3ab5486a5824578_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:438037a860968172a29c12ef14353081a5fd45ffe2e5dcccd3ab5486a5824578_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-collector-rhel8@sha256%3A438037a860968172a29c12ef14353081a5fd45ffe2e5dcccd3ab5486a5824578?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt\u0026tag=rhosdt-3.6-1753265332"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:d4ef54ac8de0eaf22e294dad8852ea8b5c20f85deb19629a3a4e0020851266c3_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:d4ef54ac8de0eaf22e294dad8852ea8b5c20f85deb19629a3a4e0020851266c3_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:d4ef54ac8de0eaf22e294dad8852ea8b5c20f85deb19629a3a4e0020851266c3_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-index-cleaner-rhel8@sha256%3Ad4ef54ac8de0eaf22e294dad8852ea8b5c20f85deb19629a3a4e0020851266c3?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt\u0026tag=rhosdt-3.6-1753265435"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fe1c8fe5bdc4114a4718812d718fc6b913465e23fd39cf6aa05acb352bd80874_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fe1c8fe5bdc4114a4718812d718fc6b913465e23fd39cf6aa05acb352bd80874_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fe1c8fe5bdc4114a4718812d718fc6b913465e23fd39cf6aa05acb352bd80874_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-rollover-rhel8@sha256%3Afe1c8fe5bdc4114a4718812d718fc6b913465e23fd39cf6aa05acb352bd80874?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt\u0026tag=rhosdt-3.6-1753265342"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:8c5dddd29d08fe8234edbbcda055fe6b0f9a7d7a0edfc3cd130797fdf78cce5c_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:8c5dddd29d08fe8234edbbcda055fe6b0f9a7d7a0edfc3cd130797fdf78cce5c_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:8c5dddd29d08fe8234edbbcda055fe6b0f9a7d7a0edfc3cd130797fdf78cce5c_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-ingester-rhel8@sha256%3A8c5dddd29d08fe8234edbbcda055fe6b0f9a7d7a0edfc3cd130797fdf78cce5c?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt\u0026tag=rhosdt-3.6-1753265332"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:8fb68adefecd8ccb94404399ac6c8038c064c85287f4f980a0855da1cbd0dcb7_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:8fb68adefecd8ccb94404399ac6c8038c064c85287f4f980a0855da1cbd0dcb7_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:8fb68adefecd8ccb94404399ac6c8038c064c85287f4f980a0855da1cbd0dcb7_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-rhel8-operator@sha256%3A8fb68adefecd8ccb94404399ac6c8038c064c85287f4f980a0855da1cbd0dcb7?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt\u0026tag=rhosdt-3.6-1753265314"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:3d37f30462f237f5087ef8ac90e39f5cd2cbaf5c143f7cae9d6155eb574726f2_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:3d37f30462f237f5087ef8ac90e39f5cd2cbaf5c143f7cae9d6155eb574726f2_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:3d37f30462f237f5087ef8ac90e39f5cd2cbaf5c143f7cae9d6155eb574726f2_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-query-rhel8@sha256%3A3d37f30462f237f5087ef8ac90e39f5cd2cbaf5c143f7cae9d6155eb574726f2?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt\u0026tag=rhosdt-3.6-1753265411"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6a121606c51dfdbc691ede3d4ba9e97f7e200ae422fef0802a579c601b1b3ee6_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6a121606c51dfdbc691ede3d4ba9e97f7e200ae422fef0802a579c601b1b3ee6_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6a121606c51dfdbc691ede3d4ba9e97f7e200ae422fef0802a579c601b1b3ee6_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-agent-rhel8@sha256%3A6a121606c51dfdbc691ede3d4ba9e97f7e200ae422fef0802a579c601b1b3ee6?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt\u0026tag=rhosdt-3.6-1753265330"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:d9ca4a9ec5bc8de23e4550387f822f19949cdfbc4aeeab20e07b206d92f4a426_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:d9ca4a9ec5bc8de23e4550387f822f19949cdfbc4aeeab20e07b206d92f4a426_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:d9ca4a9ec5bc8de23e4550387f822f19949cdfbc4aeeab20e07b206d92f4a426_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-all-in-one-rhel8@sha256%3Ad9ca4a9ec5bc8de23e4550387f822f19949cdfbc4aeeab20e07b206d92f4a426?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt\u0026tag=rhosdt-3.6-1753265394"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:addf7b49ce99777a3bbf12c2e6678b604f3cfaf91feaaeb4192d75e902e46458_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:addf7b49ce99777a3bbf12c2e6678b604f3cfaf91feaaeb4192d75e902e46458_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:addf7b49ce99777a3bbf12c2e6678b604f3cfaf91feaaeb4192d75e902e46458_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-collector-rhel8@sha256%3Aaddf7b49ce99777a3bbf12c2e6678b604f3cfaf91feaaeb4192d75e902e46458?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt\u0026tag=rhosdt-3.6-1753265332"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:caadc05a8195f41d48d502458183cef05a1011c6edee343ac212b873ae98c763_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:caadc05a8195f41d48d502458183cef05a1011c6edee343ac212b873ae98c763_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:caadc05a8195f41d48d502458183cef05a1011c6edee343ac212b873ae98c763_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-index-cleaner-rhel8@sha256%3Acaadc05a8195f41d48d502458183cef05a1011c6edee343ac212b873ae98c763?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt\u0026tag=rhosdt-3.6-1753265435"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:57d3bf93431295f0d3c8747fe376cdb0a06dc344dd1d6b0c838f732bd920c73e_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:57d3bf93431295f0d3c8747fe376cdb0a06dc344dd1d6b0c838f732bd920c73e_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:57d3bf93431295f0d3c8747fe376cdb0a06dc344dd1d6b0c838f732bd920c73e_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-rollover-rhel8@sha256%3A57d3bf93431295f0d3c8747fe376cdb0a06dc344dd1d6b0c838f732bd920c73e?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt\u0026tag=rhosdt-3.6-1753265342"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:1784f71c94bd42380b88033411db9bb912ad2f321a8a6d8d7c49e029263ef714_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:1784f71c94bd42380b88033411db9bb912ad2f321a8a6d8d7c49e029263ef714_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:1784f71c94bd42380b88033411db9bb912ad2f321a8a6d8d7c49e029263ef714_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-ingester-rhel8@sha256%3A1784f71c94bd42380b88033411db9bb912ad2f321a8a6d8d7c49e029263ef714?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt\u0026tag=rhosdt-3.6-1753265332"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b29bd499f9889e6de6728e4f8e5d18bf59ed8bd46c6fb598bf6fee150bf49449_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b29bd499f9889e6de6728e4f8e5d18bf59ed8bd46c6fb598bf6fee150bf49449_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b29bd499f9889e6de6728e4f8e5d18bf59ed8bd46c6fb598bf6fee150bf49449_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-rhel8-operator@sha256%3Ab29bd499f9889e6de6728e4f8e5d18bf59ed8bd46c6fb598bf6fee150bf49449?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt\u0026tag=rhosdt-3.6-1753265314"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:201d1bd33f7e22c463aaf94b4f84e4610f129affd8a96efb8722aabfbc612bfd_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:201d1bd33f7e22c463aaf94b4f84e4610f129affd8a96efb8722aabfbc612bfd_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:201d1bd33f7e22c463aaf94b4f84e4610f129affd8a96efb8722aabfbc612bfd_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-query-rhel8@sha256%3A201d1bd33f7e22c463aaf94b4f84e4610f129affd8a96efb8722aabfbc612bfd?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt\u0026tag=rhosdt-3.6-1753265411"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:31e117f467424af472a05c52c52397e949cf7838bce643a3d9d24c0f57a06458_ppc64le as a component of Red Hat OpenShift distributed tracing 3.6.1",
"product_id": "Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:31e117f467424af472a05c52c52397e949cf7838bce643a3d9d24c0f57a06458_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:31e117f467424af472a05c52c52397e949cf7838bce643a3d9d24c0f57a06458_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:389b9cbd0f05d3d773edc2c06aa73818307cbb25048bddf4f192a992670b6fb4_amd64 as a component of Red Hat OpenShift distributed tracing 3.6.1",
"product_id": "Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:389b9cbd0f05d3d773edc2c06aa73818307cbb25048bddf4f192a992670b6fb4_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:389b9cbd0f05d3d773edc2c06aa73818307cbb25048bddf4f192a992670b6fb4_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6a121606c51dfdbc691ede3d4ba9e97f7e200ae422fef0802a579c601b1b3ee6_s390x as a component of Red Hat OpenShift distributed tracing 3.6.1",
"product_id": "Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6a121606c51dfdbc691ede3d4ba9e97f7e200ae422fef0802a579c601b1b3ee6_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6a121606c51dfdbc691ede3d4ba9e97f7e200ae422fef0802a579c601b1b3ee6_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a891aa3f77d70d9d7966dfc71ff9087f45deb95d3025072da96a3ec5220db1f3_arm64 as a component of Red Hat OpenShift distributed tracing 3.6.1",
"product_id": "Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a891aa3f77d70d9d7966dfc71ff9087f45deb95d3025072da96a3ec5220db1f3_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a891aa3f77d70d9d7966dfc71ff9087f45deb95d3025072da96a3ec5220db1f3_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3b00e2fec645e140fa304e5823bcb1d0fcd1ddac7f4cbf6e9a9c0fbeaf29682d_amd64 as a component of Red Hat OpenShift distributed tracing 3.6.1",
"product_id": "Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3b00e2fec645e140fa304e5823bcb1d0fcd1ddac7f4cbf6e9a9c0fbeaf29682d_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3b00e2fec645e140fa304e5823bcb1d0fcd1ddac7f4cbf6e9a9c0fbeaf29682d_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:9ec57ba506861f7037198253c6463991fa548b8e9f5a3d2c78e1f1257d31aeab_arm64 as a component of Red Hat OpenShift distributed tracing 3.6.1",
"product_id": "Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:9ec57ba506861f7037198253c6463991fa548b8e9f5a3d2c78e1f1257d31aeab_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:9ec57ba506861f7037198253c6463991fa548b8e9f5a3d2c78e1f1257d31aeab_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:d9ca4a9ec5bc8de23e4550387f822f19949cdfbc4aeeab20e07b206d92f4a426_s390x as a component of Red Hat OpenShift distributed tracing 3.6.1",
"product_id": "Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:d9ca4a9ec5bc8de23e4550387f822f19949cdfbc4aeeab20e07b206d92f4a426_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:d9ca4a9ec5bc8de23e4550387f822f19949cdfbc4aeeab20e07b206d92f4a426_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ef03839a45320399533becb174479f9ea4f26f381202707936d576ec6fc9ba84_ppc64le as a component of Red Hat OpenShift distributed tracing 3.6.1",
"product_id": "Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ef03839a45320399533becb174479f9ea4f26f381202707936d576ec6fc9ba84_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ef03839a45320399533becb174479f9ea4f26f381202707936d576ec6fc9ba84_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:3dc773cc4a48041bfe69b516db58d2a5060059725351fc1dbcece64778a35b3a_amd64 as a component of Red Hat OpenShift distributed tracing 3.6.1",
"product_id": "Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:3dc773cc4a48041bfe69b516db58d2a5060059725351fc1dbcece64778a35b3a_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:3dc773cc4a48041bfe69b516db58d2a5060059725351fc1dbcece64778a35b3a_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:438037a860968172a29c12ef14353081a5fd45ffe2e5dcccd3ab5486a5824578_ppc64le as a component of Red Hat OpenShift distributed tracing 3.6.1",
"product_id": "Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:438037a860968172a29c12ef14353081a5fd45ffe2e5dcccd3ab5486a5824578_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:438037a860968172a29c12ef14353081a5fd45ffe2e5dcccd3ab5486a5824578_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:a15009fde9c0a63168d82fb07363d2c6ce05f2096dc1a9992a09fe1d76bcf4a7_arm64 as a component of Red Hat OpenShift distributed tracing 3.6.1",
"product_id": "Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:a15009fde9c0a63168d82fb07363d2c6ce05f2096dc1a9992a09fe1d76bcf4a7_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:a15009fde9c0a63168d82fb07363d2c6ce05f2096dc1a9992a09fe1d76bcf4a7_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:addf7b49ce99777a3bbf12c2e6678b604f3cfaf91feaaeb4192d75e902e46458_s390x as a component of Red Hat OpenShift distributed tracing 3.6.1",
"product_id": "Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:addf7b49ce99777a3bbf12c2e6678b604f3cfaf91feaaeb4192d75e902e46458_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:addf7b49ce99777a3bbf12c2e6678b604f3cfaf91feaaeb4192d75e902e46458_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:3d98512aaa924e0e1c9f3b5ab6b405cb4f4a3f3b5225aefa54f1b2abfbe3d769_amd64 as a component of Red Hat OpenShift distributed tracing 3.6.1",
"product_id": "Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:3d98512aaa924e0e1c9f3b5ab6b405cb4f4a3f3b5225aefa54f1b2abfbe3d769_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:3d98512aaa924e0e1c9f3b5ab6b405cb4f4a3f3b5225aefa54f1b2abfbe3d769_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:caadc05a8195f41d48d502458183cef05a1011c6edee343ac212b873ae98c763_s390x as a component of Red Hat OpenShift distributed tracing 3.6.1",
"product_id": "Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:caadc05a8195f41d48d502458183cef05a1011c6edee343ac212b873ae98c763_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:caadc05a8195f41d48d502458183cef05a1011c6edee343ac212b873ae98c763_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:d0ee4c371754848f57e6b7c5fcf716a7d830cd72b65b8aeb30e78a8e26b40548_arm64 as a component of Red Hat OpenShift distributed tracing 3.6.1",
"product_id": "Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:d0ee4c371754848f57e6b7c5fcf716a7d830cd72b65b8aeb30e78a8e26b40548_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:d0ee4c371754848f57e6b7c5fcf716a7d830cd72b65b8aeb30e78a8e26b40548_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:d4ef54ac8de0eaf22e294dad8852ea8b5c20f85deb19629a3a4e0020851266c3_ppc64le as a component of Red Hat OpenShift distributed tracing 3.6.1",
"product_id": "Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:d4ef54ac8de0eaf22e294dad8852ea8b5c20f85deb19629a3a4e0020851266c3_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:d4ef54ac8de0eaf22e294dad8852ea8b5c20f85deb19629a3a4e0020851266c3_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:1c4617b035c66b6b34e9b19f618f72a19da5fce644d79e24eb262f14c848bc81_arm64 as a component of Red Hat OpenShift distributed tracing 3.6.1",
"product_id": "Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:1c4617b035c66b6b34e9b19f618f72a19da5fce644d79e24eb262f14c848bc81_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:1c4617b035c66b6b34e9b19f618f72a19da5fce644d79e24eb262f14c848bc81_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:57d3bf93431295f0d3c8747fe376cdb0a06dc344dd1d6b0c838f732bd920c73e_s390x as a component of Red Hat OpenShift distributed tracing 3.6.1",
"product_id": "Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:57d3bf93431295f0d3c8747fe376cdb0a06dc344dd1d6b0c838f732bd920c73e_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:57d3bf93431295f0d3c8747fe376cdb0a06dc344dd1d6b0c838f732bd920c73e_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:b91fe4769ad1e0cf809e3db4d494a5526608b2fa2114fc5e28624372858bb203_amd64 as a component of Red Hat OpenShift distributed tracing 3.6.1",
"product_id": "Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:b91fe4769ad1e0cf809e3db4d494a5526608b2fa2114fc5e28624372858bb203_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:b91fe4769ad1e0cf809e3db4d494a5526608b2fa2114fc5e28624372858bb203_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fe1c8fe5bdc4114a4718812d718fc6b913465e23fd39cf6aa05acb352bd80874_ppc64le as a component of Red Hat OpenShift distributed tracing 3.6.1",
"product_id": "Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fe1c8fe5bdc4114a4718812d718fc6b913465e23fd39cf6aa05acb352bd80874_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fe1c8fe5bdc4114a4718812d718fc6b913465e23fd39cf6aa05acb352bd80874_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:03f466002ae14ef14dd0e82e0ab75c5287295f77598eed8aca6d1ac6aaa11928_arm64 as a component of Red Hat OpenShift distributed tracing 3.6.1",
"product_id": "Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:03f466002ae14ef14dd0e82e0ab75c5287295f77598eed8aca6d1ac6aaa11928_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:03f466002ae14ef14dd0e82e0ab75c5287295f77598eed8aca6d1ac6aaa11928_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:1784f71c94bd42380b88033411db9bb912ad2f321a8a6d8d7c49e029263ef714_s390x as a component of Red Hat OpenShift distributed tracing 3.6.1",
"product_id": "Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:1784f71c94bd42380b88033411db9bb912ad2f321a8a6d8d7c49e029263ef714_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:1784f71c94bd42380b88033411db9bb912ad2f321a8a6d8d7c49e029263ef714_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:2e6d535aa3208ca8ae1bc588393c8bc499c4bfb452aceca047523502ddffa0ed_amd64 as a component of Red Hat OpenShift distributed tracing 3.6.1",
"product_id": "Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:2e6d535aa3208ca8ae1bc588393c8bc499c4bfb452aceca047523502ddffa0ed_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:2e6d535aa3208ca8ae1bc588393c8bc499c4bfb452aceca047523502ddffa0ed_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:8c5dddd29d08fe8234edbbcda055fe6b0f9a7d7a0edfc3cd130797fdf78cce5c_ppc64le as a component of Red Hat OpenShift distributed tracing 3.6.1",
"product_id": "Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:8c5dddd29d08fe8234edbbcda055fe6b0f9a7d7a0edfc3cd130797fdf78cce5c_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:8c5dddd29d08fe8234edbbcda055fe6b0f9a7d7a0edfc3cd130797fdf78cce5c_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:be3feca3b19ac609e5ef829887b6d03ca3c504163ed0f9e10b2410cdfb175b72_amd64 as a component of Red Hat OpenShift distributed tracing 3.6.1",
"product_id": "Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:be3feca3b19ac609e5ef829887b6d03ca3c504163ed0f9e10b2410cdfb175b72_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:be3feca3b19ac609e5ef829887b6d03ca3c504163ed0f9e10b2410cdfb175b72_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:03f040cf94f7d8125f2e68bde45faa956dc9e70fef6307313e42af5de9bbfda0_arm64 as a component of Red Hat OpenShift distributed tracing 3.6.1",
"product_id": "Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:03f040cf94f7d8125f2e68bde45faa956dc9e70fef6307313e42af5de9bbfda0_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:03f040cf94f7d8125f2e68bde45faa956dc9e70fef6307313e42af5de9bbfda0_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:201d1bd33f7e22c463aaf94b4f84e4610f129affd8a96efb8722aabfbc612bfd_s390x as a component of Red Hat OpenShift distributed tracing 3.6.1",
"product_id": "Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:201d1bd33f7e22c463aaf94b4f84e4610f129affd8a96efb8722aabfbc612bfd_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:201d1bd33f7e22c463aaf94b4f84e4610f129affd8a96efb8722aabfbc612bfd_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:3d37f30462f237f5087ef8ac90e39f5cd2cbaf5c143f7cae9d6155eb574726f2_ppc64le as a component of Red Hat OpenShift distributed tracing 3.6.1",
"product_id": "Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:3d37f30462f237f5087ef8ac90e39f5cd2cbaf5c143f7cae9d6155eb574726f2_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:3d37f30462f237f5087ef8ac90e39f5cd2cbaf5c143f7cae9d6155eb574726f2_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8fce6e29d98acc1dd0a832cdb5c913af3edd65b81b2968fbdbf8ab434d82fe1e_amd64 as a component of Red Hat OpenShift distributed tracing 3.6.1",
"product_id": "Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8fce6e29d98acc1dd0a832cdb5c913af3edd65b81b2968fbdbf8ab434d82fe1e_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8fce6e29d98acc1dd0a832cdb5c913af3edd65b81b2968fbdbf8ab434d82fe1e_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:6f3b7f23a515ac140bdad844d60d96fecc79835a75b1d29a70f66df737f1b50c_amd64 as a component of Red Hat OpenShift distributed tracing 3.6.1",
"product_id": "Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:6f3b7f23a515ac140bdad844d60d96fecc79835a75b1d29a70f66df737f1b50c_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:6f3b7f23a515ac140bdad844d60d96fecc79835a75b1d29a70f66df737f1b50c_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:8d7c966e19b03dc4b7f123c9f4096ed4267be5596d08958f4c75a88b3bc541da_arm64 as a component of Red Hat OpenShift distributed tracing 3.6.1",
"product_id": "Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:8d7c966e19b03dc4b7f123c9f4096ed4267be5596d08958f4c75a88b3bc541da_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:8d7c966e19b03dc4b7f123c9f4096ed4267be5596d08958f4c75a88b3bc541da_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:8fb68adefecd8ccb94404399ac6c8038c064c85287f4f980a0855da1cbd0dcb7_ppc64le as a component of Red Hat OpenShift distributed tracing 3.6.1",
"product_id": "Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:8fb68adefecd8ccb94404399ac6c8038c064c85287f4f980a0855da1cbd0dcb7_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:8fb68adefecd8ccb94404399ac6c8038c064c85287f4f980a0855da1cbd0dcb7_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b29bd499f9889e6de6728e4f8e5d18bf59ed8bd46c6fb598bf6fee150bf49449_s390x as a component of Red Hat OpenShift distributed tracing 3.6.1",
"product_id": "Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b29bd499f9889e6de6728e4f8e5d18bf59ed8bd46c6fb598bf6fee150bf49449_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b29bd499f9889e6de6728e4f8e5d18bf59ed8bd46c6fb598bf6fee150bf49449_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.6.1"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-34397",
"cwe": {
"id": "CWE-940",
"name": "Improper Verification of Source of a Communication Channel"
},
"discovery_date": "2024-05-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2279632"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in GNOME GLib. When a GDBus-based client subscribes to signals from a trusted system service such as NetworkManager on a shared computer, other users of the same computer can send spoofed D-Bus signals that the GDBus-based client will wrongly interpret as having been sent by the trusted system service. This issue could lead to the GDBus-based client behaving incorrectly with an application-dependent impact.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "glib2: Signal subscription vulnerabilities",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:31e117f467424af472a05c52c52397e949cf7838bce643a3d9d24c0f57a06458_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:389b9cbd0f05d3d773edc2c06aa73818307cbb25048bddf4f192a992670b6fb4_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6a121606c51dfdbc691ede3d4ba9e97f7e200ae422fef0802a579c601b1b3ee6_s390x",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a891aa3f77d70d9d7966dfc71ff9087f45deb95d3025072da96a3ec5220db1f3_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3b00e2fec645e140fa304e5823bcb1d0fcd1ddac7f4cbf6e9a9c0fbeaf29682d_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:9ec57ba506861f7037198253c6463991fa548b8e9f5a3d2c78e1f1257d31aeab_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:d9ca4a9ec5bc8de23e4550387f822f19949cdfbc4aeeab20e07b206d92f4a426_s390x",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ef03839a45320399533becb174479f9ea4f26f381202707936d576ec6fc9ba84_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:3dc773cc4a48041bfe69b516db58d2a5060059725351fc1dbcece64778a35b3a_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:438037a860968172a29c12ef14353081a5fd45ffe2e5dcccd3ab5486a5824578_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:a15009fde9c0a63168d82fb07363d2c6ce05f2096dc1a9992a09fe1d76bcf4a7_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:addf7b49ce99777a3bbf12c2e6678b604f3cfaf91feaaeb4192d75e902e46458_s390x",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:3d98512aaa924e0e1c9f3b5ab6b405cb4f4a3f3b5225aefa54f1b2abfbe3d769_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:caadc05a8195f41d48d502458183cef05a1011c6edee343ac212b873ae98c763_s390x",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:d0ee4c371754848f57e6b7c5fcf716a7d830cd72b65b8aeb30e78a8e26b40548_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:d4ef54ac8de0eaf22e294dad8852ea8b5c20f85deb19629a3a4e0020851266c3_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:1c4617b035c66b6b34e9b19f618f72a19da5fce644d79e24eb262f14c848bc81_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:57d3bf93431295f0d3c8747fe376cdb0a06dc344dd1d6b0c838f732bd920c73e_s390x",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:b91fe4769ad1e0cf809e3db4d494a5526608b2fa2114fc5e28624372858bb203_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fe1c8fe5bdc4114a4718812d718fc6b913465e23fd39cf6aa05acb352bd80874_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:03f466002ae14ef14dd0e82e0ab75c5287295f77598eed8aca6d1ac6aaa11928_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:1784f71c94bd42380b88033411db9bb912ad2f321a8a6d8d7c49e029263ef714_s390x",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:2e6d535aa3208ca8ae1bc588393c8bc499c4bfb452aceca047523502ddffa0ed_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:8c5dddd29d08fe8234edbbcda055fe6b0f9a7d7a0edfc3cd130797fdf78cce5c_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:be3feca3b19ac609e5ef829887b6d03ca3c504163ed0f9e10b2410cdfb175b72_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:03f040cf94f7d8125f2e68bde45faa956dc9e70fef6307313e42af5de9bbfda0_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:201d1bd33f7e22c463aaf94b4f84e4610f129affd8a96efb8722aabfbc612bfd_s390x",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:3d37f30462f237f5087ef8ac90e39f5cd2cbaf5c143f7cae9d6155eb574726f2_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8fce6e29d98acc1dd0a832cdb5c913af3edd65b81b2968fbdbf8ab434d82fe1e_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:6f3b7f23a515ac140bdad844d60d96fecc79835a75b1d29a70f66df737f1b50c_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:8d7c966e19b03dc4b7f123c9f4096ed4267be5596d08958f4c75a88b3bc541da_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:8fb68adefecd8ccb94404399ac6c8038c064c85287f4f980a0855da1cbd0dcb7_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b29bd499f9889e6de6728e4f8e5d18bf59ed8bd46c6fb598bf6fee150bf49449_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-34397"
},
{
"category": "external",
"summary": "RHBZ#2279632",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2279632"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-34397",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34397"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-34397",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-34397"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/GNOME/glib/-/issues/3268",
"url": "https://gitlab.gnome.org/GNOME/glib/-/issues/3268"
},
{
"category": "external",
"summary": "https://www.openwall.com/lists/oss-security/2024/05/07/5",
"url": "https://www.openwall.com/lists/oss-security/2024/05/07/5"
}
],
"release_date": "2024-05-07T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-07-23T16:11:26+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/latest/html/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:31e117f467424af472a05c52c52397e949cf7838bce643a3d9d24c0f57a06458_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:389b9cbd0f05d3d773edc2c06aa73818307cbb25048bddf4f192a992670b6fb4_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6a121606c51dfdbc691ede3d4ba9e97f7e200ae422fef0802a579c601b1b3ee6_s390x",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a891aa3f77d70d9d7966dfc71ff9087f45deb95d3025072da96a3ec5220db1f3_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3b00e2fec645e140fa304e5823bcb1d0fcd1ddac7f4cbf6e9a9c0fbeaf29682d_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:9ec57ba506861f7037198253c6463991fa548b8e9f5a3d2c78e1f1257d31aeab_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:d9ca4a9ec5bc8de23e4550387f822f19949cdfbc4aeeab20e07b206d92f4a426_s390x",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ef03839a45320399533becb174479f9ea4f26f381202707936d576ec6fc9ba84_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:3dc773cc4a48041bfe69b516db58d2a5060059725351fc1dbcece64778a35b3a_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:438037a860968172a29c12ef14353081a5fd45ffe2e5dcccd3ab5486a5824578_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:a15009fde9c0a63168d82fb07363d2c6ce05f2096dc1a9992a09fe1d76bcf4a7_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:addf7b49ce99777a3bbf12c2e6678b604f3cfaf91feaaeb4192d75e902e46458_s390x",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:3d98512aaa924e0e1c9f3b5ab6b405cb4f4a3f3b5225aefa54f1b2abfbe3d769_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:caadc05a8195f41d48d502458183cef05a1011c6edee343ac212b873ae98c763_s390x",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:d0ee4c371754848f57e6b7c5fcf716a7d830cd72b65b8aeb30e78a8e26b40548_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:d4ef54ac8de0eaf22e294dad8852ea8b5c20f85deb19629a3a4e0020851266c3_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:1c4617b035c66b6b34e9b19f618f72a19da5fce644d79e24eb262f14c848bc81_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:57d3bf93431295f0d3c8747fe376cdb0a06dc344dd1d6b0c838f732bd920c73e_s390x",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:b91fe4769ad1e0cf809e3db4d494a5526608b2fa2114fc5e28624372858bb203_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fe1c8fe5bdc4114a4718812d718fc6b913465e23fd39cf6aa05acb352bd80874_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:03f466002ae14ef14dd0e82e0ab75c5287295f77598eed8aca6d1ac6aaa11928_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:1784f71c94bd42380b88033411db9bb912ad2f321a8a6d8d7c49e029263ef714_s390x",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:2e6d535aa3208ca8ae1bc588393c8bc499c4bfb452aceca047523502ddffa0ed_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:8c5dddd29d08fe8234edbbcda055fe6b0f9a7d7a0edfc3cd130797fdf78cce5c_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:be3feca3b19ac609e5ef829887b6d03ca3c504163ed0f9e10b2410cdfb175b72_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:03f040cf94f7d8125f2e68bde45faa956dc9e70fef6307313e42af5de9bbfda0_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:201d1bd33f7e22c463aaf94b4f84e4610f129affd8a96efb8722aabfbc612bfd_s390x",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:3d37f30462f237f5087ef8ac90e39f5cd2cbaf5c143f7cae9d6155eb574726f2_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8fce6e29d98acc1dd0a832cdb5c913af3edd65b81b2968fbdbf8ab434d82fe1e_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:6f3b7f23a515ac140bdad844d60d96fecc79835a75b1d29a70f66df737f1b50c_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:8d7c966e19b03dc4b7f123c9f4096ed4267be5596d08958f4c75a88b3bc541da_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:8fb68adefecd8ccb94404399ac6c8038c064c85287f4f980a0855da1cbd0dcb7_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b29bd499f9889e6de6728e4f8e5d18bf59ed8bd46c6fb598bf6fee150bf49449_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:11662"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 3.8,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:31e117f467424af472a05c52c52397e949cf7838bce643a3d9d24c0f57a06458_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:389b9cbd0f05d3d773edc2c06aa73818307cbb25048bddf4f192a992670b6fb4_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6a121606c51dfdbc691ede3d4ba9e97f7e200ae422fef0802a579c601b1b3ee6_s390x",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a891aa3f77d70d9d7966dfc71ff9087f45deb95d3025072da96a3ec5220db1f3_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3b00e2fec645e140fa304e5823bcb1d0fcd1ddac7f4cbf6e9a9c0fbeaf29682d_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:9ec57ba506861f7037198253c6463991fa548b8e9f5a3d2c78e1f1257d31aeab_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:d9ca4a9ec5bc8de23e4550387f822f19949cdfbc4aeeab20e07b206d92f4a426_s390x",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ef03839a45320399533becb174479f9ea4f26f381202707936d576ec6fc9ba84_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:3dc773cc4a48041bfe69b516db58d2a5060059725351fc1dbcece64778a35b3a_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:438037a860968172a29c12ef14353081a5fd45ffe2e5dcccd3ab5486a5824578_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:a15009fde9c0a63168d82fb07363d2c6ce05f2096dc1a9992a09fe1d76bcf4a7_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:addf7b49ce99777a3bbf12c2e6678b604f3cfaf91feaaeb4192d75e902e46458_s390x",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:3d98512aaa924e0e1c9f3b5ab6b405cb4f4a3f3b5225aefa54f1b2abfbe3d769_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:caadc05a8195f41d48d502458183cef05a1011c6edee343ac212b873ae98c763_s390x",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:d0ee4c371754848f57e6b7c5fcf716a7d830cd72b65b8aeb30e78a8e26b40548_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:d4ef54ac8de0eaf22e294dad8852ea8b5c20f85deb19629a3a4e0020851266c3_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:1c4617b035c66b6b34e9b19f618f72a19da5fce644d79e24eb262f14c848bc81_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:57d3bf93431295f0d3c8747fe376cdb0a06dc344dd1d6b0c838f732bd920c73e_s390x",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:b91fe4769ad1e0cf809e3db4d494a5526608b2fa2114fc5e28624372858bb203_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fe1c8fe5bdc4114a4718812d718fc6b913465e23fd39cf6aa05acb352bd80874_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:03f466002ae14ef14dd0e82e0ab75c5287295f77598eed8aca6d1ac6aaa11928_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:1784f71c94bd42380b88033411db9bb912ad2f321a8a6d8d7c49e029263ef714_s390x",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:2e6d535aa3208ca8ae1bc588393c8bc499c4bfb452aceca047523502ddffa0ed_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:8c5dddd29d08fe8234edbbcda055fe6b0f9a7d7a0edfc3cd130797fdf78cce5c_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:be3feca3b19ac609e5ef829887b6d03ca3c504163ed0f9e10b2410cdfb175b72_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:03f040cf94f7d8125f2e68bde45faa956dc9e70fef6307313e42af5de9bbfda0_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:201d1bd33f7e22c463aaf94b4f84e4610f129affd8a96efb8722aabfbc612bfd_s390x",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:3d37f30462f237f5087ef8ac90e39f5cd2cbaf5c143f7cae9d6155eb574726f2_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8fce6e29d98acc1dd0a832cdb5c913af3edd65b81b2968fbdbf8ab434d82fe1e_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:6f3b7f23a515ac140bdad844d60d96fecc79835a75b1d29a70f66df737f1b50c_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:8d7c966e19b03dc4b7f123c9f4096ed4267be5596d08958f4c75a88b3bc541da_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:8fb68adefecd8ccb94404399ac6c8038c064c85287f4f980a0855da1cbd0dcb7_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b29bd499f9889e6de6728e4f8e5d18bf59ed8bd46c6fb598bf6fee150bf49449_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "glib2: Signal subscription vulnerabilities"
},
{
"cve": "CVE-2024-52533",
"cwe": {
"id": "CWE-193",
"name": "Off-by-one Error"
},
"discovery_date": "2024-11-11T23:00:48.125765+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2325340"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Glib library. A buffer overflow condition can be triggered in certain conditions due to an off-by-one error in SOCKS4_CONN_MSG_LEN. This issue may lead to an application crash or other undefined behavior.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "glib: buffer overflow in set_connect_msg()",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:31e117f467424af472a05c52c52397e949cf7838bce643a3d9d24c0f57a06458_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:389b9cbd0f05d3d773edc2c06aa73818307cbb25048bddf4f192a992670b6fb4_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6a121606c51dfdbc691ede3d4ba9e97f7e200ae422fef0802a579c601b1b3ee6_s390x",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a891aa3f77d70d9d7966dfc71ff9087f45deb95d3025072da96a3ec5220db1f3_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3b00e2fec645e140fa304e5823bcb1d0fcd1ddac7f4cbf6e9a9c0fbeaf29682d_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:9ec57ba506861f7037198253c6463991fa548b8e9f5a3d2c78e1f1257d31aeab_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:d9ca4a9ec5bc8de23e4550387f822f19949cdfbc4aeeab20e07b206d92f4a426_s390x",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ef03839a45320399533becb174479f9ea4f26f381202707936d576ec6fc9ba84_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:3dc773cc4a48041bfe69b516db58d2a5060059725351fc1dbcece64778a35b3a_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:438037a860968172a29c12ef14353081a5fd45ffe2e5dcccd3ab5486a5824578_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:a15009fde9c0a63168d82fb07363d2c6ce05f2096dc1a9992a09fe1d76bcf4a7_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:addf7b49ce99777a3bbf12c2e6678b604f3cfaf91feaaeb4192d75e902e46458_s390x",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:3d98512aaa924e0e1c9f3b5ab6b405cb4f4a3f3b5225aefa54f1b2abfbe3d769_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:caadc05a8195f41d48d502458183cef05a1011c6edee343ac212b873ae98c763_s390x",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:d0ee4c371754848f57e6b7c5fcf716a7d830cd72b65b8aeb30e78a8e26b40548_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:d4ef54ac8de0eaf22e294dad8852ea8b5c20f85deb19629a3a4e0020851266c3_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:1c4617b035c66b6b34e9b19f618f72a19da5fce644d79e24eb262f14c848bc81_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:57d3bf93431295f0d3c8747fe376cdb0a06dc344dd1d6b0c838f732bd920c73e_s390x",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:b91fe4769ad1e0cf809e3db4d494a5526608b2fa2114fc5e28624372858bb203_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fe1c8fe5bdc4114a4718812d718fc6b913465e23fd39cf6aa05acb352bd80874_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:03f466002ae14ef14dd0e82e0ab75c5287295f77598eed8aca6d1ac6aaa11928_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:1784f71c94bd42380b88033411db9bb912ad2f321a8a6d8d7c49e029263ef714_s390x",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:2e6d535aa3208ca8ae1bc588393c8bc499c4bfb452aceca047523502ddffa0ed_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:8c5dddd29d08fe8234edbbcda055fe6b0f9a7d7a0edfc3cd130797fdf78cce5c_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:be3feca3b19ac609e5ef829887b6d03ca3c504163ed0f9e10b2410cdfb175b72_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:03f040cf94f7d8125f2e68bde45faa956dc9e70fef6307313e42af5de9bbfda0_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:201d1bd33f7e22c463aaf94b4f84e4610f129affd8a96efb8722aabfbc612bfd_s390x",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:3d37f30462f237f5087ef8ac90e39f5cd2cbaf5c143f7cae9d6155eb574726f2_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8fce6e29d98acc1dd0a832cdb5c913af3edd65b81b2968fbdbf8ab434d82fe1e_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:6f3b7f23a515ac140bdad844d60d96fecc79835a75b1d29a70f66df737f1b50c_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:8d7c966e19b03dc4b7f123c9f4096ed4267be5596d08958f4c75a88b3bc541da_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:8fb68adefecd8ccb94404399ac6c8038c064c85287f4f980a0855da1cbd0dcb7_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b29bd499f9889e6de6728e4f8e5d18bf59ed8bd46c6fb598bf6fee150bf49449_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-52533"
},
{
"category": "external",
"summary": "RHBZ#2325340",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2325340"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-52533",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-52533"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-52533",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-52533"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/GNOME/glib/-/issues/3461",
"url": "https://gitlab.gnome.org/GNOME/glib/-/issues/3461"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/GNOME/glib/-/releases/2.82.1",
"url": "https://gitlab.gnome.org/GNOME/glib/-/releases/2.82.1"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/Teams/Releng/security/-/wikis/home",
"url": "https://gitlab.gnome.org/Teams/Releng/security/-/wikis/home"
}
],
"release_date": "2024-11-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-07-23T16:11:26+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/latest/html/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:31e117f467424af472a05c52c52397e949cf7838bce643a3d9d24c0f57a06458_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:389b9cbd0f05d3d773edc2c06aa73818307cbb25048bddf4f192a992670b6fb4_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6a121606c51dfdbc691ede3d4ba9e97f7e200ae422fef0802a579c601b1b3ee6_s390x",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a891aa3f77d70d9d7966dfc71ff9087f45deb95d3025072da96a3ec5220db1f3_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3b00e2fec645e140fa304e5823bcb1d0fcd1ddac7f4cbf6e9a9c0fbeaf29682d_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:9ec57ba506861f7037198253c6463991fa548b8e9f5a3d2c78e1f1257d31aeab_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:d9ca4a9ec5bc8de23e4550387f822f19949cdfbc4aeeab20e07b206d92f4a426_s390x",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ef03839a45320399533becb174479f9ea4f26f381202707936d576ec6fc9ba84_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:3dc773cc4a48041bfe69b516db58d2a5060059725351fc1dbcece64778a35b3a_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:438037a860968172a29c12ef14353081a5fd45ffe2e5dcccd3ab5486a5824578_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:a15009fde9c0a63168d82fb07363d2c6ce05f2096dc1a9992a09fe1d76bcf4a7_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:addf7b49ce99777a3bbf12c2e6678b604f3cfaf91feaaeb4192d75e902e46458_s390x",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:3d98512aaa924e0e1c9f3b5ab6b405cb4f4a3f3b5225aefa54f1b2abfbe3d769_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:caadc05a8195f41d48d502458183cef05a1011c6edee343ac212b873ae98c763_s390x",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:d0ee4c371754848f57e6b7c5fcf716a7d830cd72b65b8aeb30e78a8e26b40548_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:d4ef54ac8de0eaf22e294dad8852ea8b5c20f85deb19629a3a4e0020851266c3_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:1c4617b035c66b6b34e9b19f618f72a19da5fce644d79e24eb262f14c848bc81_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:57d3bf93431295f0d3c8747fe376cdb0a06dc344dd1d6b0c838f732bd920c73e_s390x",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:b91fe4769ad1e0cf809e3db4d494a5526608b2fa2114fc5e28624372858bb203_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fe1c8fe5bdc4114a4718812d718fc6b913465e23fd39cf6aa05acb352bd80874_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:03f466002ae14ef14dd0e82e0ab75c5287295f77598eed8aca6d1ac6aaa11928_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:1784f71c94bd42380b88033411db9bb912ad2f321a8a6d8d7c49e029263ef714_s390x",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:2e6d535aa3208ca8ae1bc588393c8bc499c4bfb452aceca047523502ddffa0ed_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:8c5dddd29d08fe8234edbbcda055fe6b0f9a7d7a0edfc3cd130797fdf78cce5c_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:be3feca3b19ac609e5ef829887b6d03ca3c504163ed0f9e10b2410cdfb175b72_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:03f040cf94f7d8125f2e68bde45faa956dc9e70fef6307313e42af5de9bbfda0_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:201d1bd33f7e22c463aaf94b4f84e4610f129affd8a96efb8722aabfbc612bfd_s390x",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:3d37f30462f237f5087ef8ac90e39f5cd2cbaf5c143f7cae9d6155eb574726f2_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8fce6e29d98acc1dd0a832cdb5c913af3edd65b81b2968fbdbf8ab434d82fe1e_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:6f3b7f23a515ac140bdad844d60d96fecc79835a75b1d29a70f66df737f1b50c_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:8d7c966e19b03dc4b7f123c9f4096ed4267be5596d08958f4c75a88b3bc541da_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:8fb68adefecd8ccb94404399ac6c8038c064c85287f4f980a0855da1cbd0dcb7_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b29bd499f9889e6de6728e4f8e5d18bf59ed8bd46c6fb598bf6fee150bf49449_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:11662"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:31e117f467424af472a05c52c52397e949cf7838bce643a3d9d24c0f57a06458_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:389b9cbd0f05d3d773edc2c06aa73818307cbb25048bddf4f192a992670b6fb4_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6a121606c51dfdbc691ede3d4ba9e97f7e200ae422fef0802a579c601b1b3ee6_s390x",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a891aa3f77d70d9d7966dfc71ff9087f45deb95d3025072da96a3ec5220db1f3_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3b00e2fec645e140fa304e5823bcb1d0fcd1ddac7f4cbf6e9a9c0fbeaf29682d_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:9ec57ba506861f7037198253c6463991fa548b8e9f5a3d2c78e1f1257d31aeab_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:d9ca4a9ec5bc8de23e4550387f822f19949cdfbc4aeeab20e07b206d92f4a426_s390x",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ef03839a45320399533becb174479f9ea4f26f381202707936d576ec6fc9ba84_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:3dc773cc4a48041bfe69b516db58d2a5060059725351fc1dbcece64778a35b3a_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:438037a860968172a29c12ef14353081a5fd45ffe2e5dcccd3ab5486a5824578_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:a15009fde9c0a63168d82fb07363d2c6ce05f2096dc1a9992a09fe1d76bcf4a7_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:addf7b49ce99777a3bbf12c2e6678b604f3cfaf91feaaeb4192d75e902e46458_s390x",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:3d98512aaa924e0e1c9f3b5ab6b405cb4f4a3f3b5225aefa54f1b2abfbe3d769_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:caadc05a8195f41d48d502458183cef05a1011c6edee343ac212b873ae98c763_s390x",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:d0ee4c371754848f57e6b7c5fcf716a7d830cd72b65b8aeb30e78a8e26b40548_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:d4ef54ac8de0eaf22e294dad8852ea8b5c20f85deb19629a3a4e0020851266c3_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:1c4617b035c66b6b34e9b19f618f72a19da5fce644d79e24eb262f14c848bc81_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:57d3bf93431295f0d3c8747fe376cdb0a06dc344dd1d6b0c838f732bd920c73e_s390x",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:b91fe4769ad1e0cf809e3db4d494a5526608b2fa2114fc5e28624372858bb203_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fe1c8fe5bdc4114a4718812d718fc6b913465e23fd39cf6aa05acb352bd80874_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:03f466002ae14ef14dd0e82e0ab75c5287295f77598eed8aca6d1ac6aaa11928_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:1784f71c94bd42380b88033411db9bb912ad2f321a8a6d8d7c49e029263ef714_s390x",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:2e6d535aa3208ca8ae1bc588393c8bc499c4bfb452aceca047523502ddffa0ed_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:8c5dddd29d08fe8234edbbcda055fe6b0f9a7d7a0edfc3cd130797fdf78cce5c_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:be3feca3b19ac609e5ef829887b6d03ca3c504163ed0f9e10b2410cdfb175b72_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:03f040cf94f7d8125f2e68bde45faa956dc9e70fef6307313e42af5de9bbfda0_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:201d1bd33f7e22c463aaf94b4f84e4610f129affd8a96efb8722aabfbc612bfd_s390x",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:3d37f30462f237f5087ef8ac90e39f5cd2cbaf5c143f7cae9d6155eb574726f2_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8fce6e29d98acc1dd0a832cdb5c913af3edd65b81b2968fbdbf8ab434d82fe1e_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:6f3b7f23a515ac140bdad844d60d96fecc79835a75b1d29a70f66df737f1b50c_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:8d7c966e19b03dc4b7f123c9f4096ed4267be5596d08958f4c75a88b3bc541da_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:8fb68adefecd8ccb94404399ac6c8038c064c85287f4f980a0855da1cbd0dcb7_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b29bd499f9889e6de6728e4f8e5d18bf59ed8bd46c6fb598bf6fee150bf49449_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:31e117f467424af472a05c52c52397e949cf7838bce643a3d9d24c0f57a06458_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:389b9cbd0f05d3d773edc2c06aa73818307cbb25048bddf4f192a992670b6fb4_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6a121606c51dfdbc691ede3d4ba9e97f7e200ae422fef0802a579c601b1b3ee6_s390x",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a891aa3f77d70d9d7966dfc71ff9087f45deb95d3025072da96a3ec5220db1f3_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3b00e2fec645e140fa304e5823bcb1d0fcd1ddac7f4cbf6e9a9c0fbeaf29682d_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:9ec57ba506861f7037198253c6463991fa548b8e9f5a3d2c78e1f1257d31aeab_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:d9ca4a9ec5bc8de23e4550387f822f19949cdfbc4aeeab20e07b206d92f4a426_s390x",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ef03839a45320399533becb174479f9ea4f26f381202707936d576ec6fc9ba84_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:3dc773cc4a48041bfe69b516db58d2a5060059725351fc1dbcece64778a35b3a_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:438037a860968172a29c12ef14353081a5fd45ffe2e5dcccd3ab5486a5824578_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:a15009fde9c0a63168d82fb07363d2c6ce05f2096dc1a9992a09fe1d76bcf4a7_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:addf7b49ce99777a3bbf12c2e6678b604f3cfaf91feaaeb4192d75e902e46458_s390x",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:3d98512aaa924e0e1c9f3b5ab6b405cb4f4a3f3b5225aefa54f1b2abfbe3d769_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:caadc05a8195f41d48d502458183cef05a1011c6edee343ac212b873ae98c763_s390x",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:d0ee4c371754848f57e6b7c5fcf716a7d830cd72b65b8aeb30e78a8e26b40548_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:d4ef54ac8de0eaf22e294dad8852ea8b5c20f85deb19629a3a4e0020851266c3_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:1c4617b035c66b6b34e9b19f618f72a19da5fce644d79e24eb262f14c848bc81_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:57d3bf93431295f0d3c8747fe376cdb0a06dc344dd1d6b0c838f732bd920c73e_s390x",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:b91fe4769ad1e0cf809e3db4d494a5526608b2fa2114fc5e28624372858bb203_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fe1c8fe5bdc4114a4718812d718fc6b913465e23fd39cf6aa05acb352bd80874_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:03f466002ae14ef14dd0e82e0ab75c5287295f77598eed8aca6d1ac6aaa11928_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:1784f71c94bd42380b88033411db9bb912ad2f321a8a6d8d7c49e029263ef714_s390x",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:2e6d535aa3208ca8ae1bc588393c8bc499c4bfb452aceca047523502ddffa0ed_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:8c5dddd29d08fe8234edbbcda055fe6b0f9a7d7a0edfc3cd130797fdf78cce5c_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:be3feca3b19ac609e5ef829887b6d03ca3c504163ed0f9e10b2410cdfb175b72_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:03f040cf94f7d8125f2e68bde45faa956dc9e70fef6307313e42af5de9bbfda0_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:201d1bd33f7e22c463aaf94b4f84e4610f129affd8a96efb8722aabfbc612bfd_s390x",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:3d37f30462f237f5087ef8ac90e39f5cd2cbaf5c143f7cae9d6155eb574726f2_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8fce6e29d98acc1dd0a832cdb5c913af3edd65b81b2968fbdbf8ab434d82fe1e_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:6f3b7f23a515ac140bdad844d60d96fecc79835a75b1d29a70f66df737f1b50c_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:8d7c966e19b03dc4b7f123c9f4096ed4267be5596d08958f4c75a88b3bc541da_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:8fb68adefecd8ccb94404399ac6c8038c064c85287f4f980a0855da1cbd0dcb7_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b29bd499f9889e6de6728e4f8e5d18bf59ed8bd46c6fb598bf6fee150bf49449_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "glib: buffer overflow in set_connect_msg()"
},
{
"cve": "CVE-2025-4373",
"cwe": {
"id": "CWE-124",
"name": "Buffer Underwrite (\u0027Buffer Underflow\u0027)"
},
"discovery_date": "2025-05-06T00:33:30.003000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2364265"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in GLib, which is vulnerable to an integer overflow in the g_string_insert_unichar() function. When the position at which to insert the character is large, the position will overflow, leading to a buffer underwrite.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "glib: Buffer Underflow on GLib through glib/gstring.c via function g_string_insert_unichar",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Within regulated environments, a combination of the following controls acts as a significant barrier to the successful exploitation of a CWE-124: Buffer Underwrite (\u0027Buffer Underflow\u0027) vulnerability and therefore downgrades the severity of this particular CVE from Moderate to Low.\n\nSecure baseline configurations enforce strict memory handling policies, while change controls ensure any deviations are reviewed and approved. Least functionality reduces the attack surface by disabling unnecessary features that could introduce memory risks. Process isolation contains faults within individual workloads, minimizing broader impact. Real-time monitoring and malicious code protection detect and respond to abnormal memory behavior or exploitation attempts. Hardened configuration settings restrict low-level memory access, lowering the likelihood of unsafe operations. Finally, the platform uses memory protection mechanisms such as Data Execution Prevention (DEP) and Address Space Layout Randomization (ASLR) to strengthen resilience against buffer underwrite exploits.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:31e117f467424af472a05c52c52397e949cf7838bce643a3d9d24c0f57a06458_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:389b9cbd0f05d3d773edc2c06aa73818307cbb25048bddf4f192a992670b6fb4_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6a121606c51dfdbc691ede3d4ba9e97f7e200ae422fef0802a579c601b1b3ee6_s390x",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a891aa3f77d70d9d7966dfc71ff9087f45deb95d3025072da96a3ec5220db1f3_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3b00e2fec645e140fa304e5823bcb1d0fcd1ddac7f4cbf6e9a9c0fbeaf29682d_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:9ec57ba506861f7037198253c6463991fa548b8e9f5a3d2c78e1f1257d31aeab_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:d9ca4a9ec5bc8de23e4550387f822f19949cdfbc4aeeab20e07b206d92f4a426_s390x",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ef03839a45320399533becb174479f9ea4f26f381202707936d576ec6fc9ba84_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:3dc773cc4a48041bfe69b516db58d2a5060059725351fc1dbcece64778a35b3a_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:438037a860968172a29c12ef14353081a5fd45ffe2e5dcccd3ab5486a5824578_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:a15009fde9c0a63168d82fb07363d2c6ce05f2096dc1a9992a09fe1d76bcf4a7_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:addf7b49ce99777a3bbf12c2e6678b604f3cfaf91feaaeb4192d75e902e46458_s390x",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:3d98512aaa924e0e1c9f3b5ab6b405cb4f4a3f3b5225aefa54f1b2abfbe3d769_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:caadc05a8195f41d48d502458183cef05a1011c6edee343ac212b873ae98c763_s390x",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:d0ee4c371754848f57e6b7c5fcf716a7d830cd72b65b8aeb30e78a8e26b40548_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:d4ef54ac8de0eaf22e294dad8852ea8b5c20f85deb19629a3a4e0020851266c3_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:1c4617b035c66b6b34e9b19f618f72a19da5fce644d79e24eb262f14c848bc81_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:57d3bf93431295f0d3c8747fe376cdb0a06dc344dd1d6b0c838f732bd920c73e_s390x",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:b91fe4769ad1e0cf809e3db4d494a5526608b2fa2114fc5e28624372858bb203_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fe1c8fe5bdc4114a4718812d718fc6b913465e23fd39cf6aa05acb352bd80874_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:03f466002ae14ef14dd0e82e0ab75c5287295f77598eed8aca6d1ac6aaa11928_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:1784f71c94bd42380b88033411db9bb912ad2f321a8a6d8d7c49e029263ef714_s390x",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:2e6d535aa3208ca8ae1bc588393c8bc499c4bfb452aceca047523502ddffa0ed_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:8c5dddd29d08fe8234edbbcda055fe6b0f9a7d7a0edfc3cd130797fdf78cce5c_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:be3feca3b19ac609e5ef829887b6d03ca3c504163ed0f9e10b2410cdfb175b72_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:03f040cf94f7d8125f2e68bde45faa956dc9e70fef6307313e42af5de9bbfda0_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:201d1bd33f7e22c463aaf94b4f84e4610f129affd8a96efb8722aabfbc612bfd_s390x",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:3d37f30462f237f5087ef8ac90e39f5cd2cbaf5c143f7cae9d6155eb574726f2_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8fce6e29d98acc1dd0a832cdb5c913af3edd65b81b2968fbdbf8ab434d82fe1e_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:6f3b7f23a515ac140bdad844d60d96fecc79835a75b1d29a70f66df737f1b50c_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:8d7c966e19b03dc4b7f123c9f4096ed4267be5596d08958f4c75a88b3bc541da_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:8fb68adefecd8ccb94404399ac6c8038c064c85287f4f980a0855da1cbd0dcb7_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b29bd499f9889e6de6728e4f8e5d18bf59ed8bd46c6fb598bf6fee150bf49449_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-4373"
},
{
"category": "external",
"summary": "RHBZ#2364265",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2364265"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-4373",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4373"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-4373",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-4373"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/GNOME/glib/-/issues/3677",
"url": "https://gitlab.gnome.org/GNOME/glib/-/issues/3677"
}
],
"release_date": "2025-05-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-07-23T16:11:26+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/latest/html/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:31e117f467424af472a05c52c52397e949cf7838bce643a3d9d24c0f57a06458_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:389b9cbd0f05d3d773edc2c06aa73818307cbb25048bddf4f192a992670b6fb4_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6a121606c51dfdbc691ede3d4ba9e97f7e200ae422fef0802a579c601b1b3ee6_s390x",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a891aa3f77d70d9d7966dfc71ff9087f45deb95d3025072da96a3ec5220db1f3_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3b00e2fec645e140fa304e5823bcb1d0fcd1ddac7f4cbf6e9a9c0fbeaf29682d_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:9ec57ba506861f7037198253c6463991fa548b8e9f5a3d2c78e1f1257d31aeab_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:d9ca4a9ec5bc8de23e4550387f822f19949cdfbc4aeeab20e07b206d92f4a426_s390x",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ef03839a45320399533becb174479f9ea4f26f381202707936d576ec6fc9ba84_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:3dc773cc4a48041bfe69b516db58d2a5060059725351fc1dbcece64778a35b3a_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:438037a860968172a29c12ef14353081a5fd45ffe2e5dcccd3ab5486a5824578_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:a15009fde9c0a63168d82fb07363d2c6ce05f2096dc1a9992a09fe1d76bcf4a7_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:addf7b49ce99777a3bbf12c2e6678b604f3cfaf91feaaeb4192d75e902e46458_s390x",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:3d98512aaa924e0e1c9f3b5ab6b405cb4f4a3f3b5225aefa54f1b2abfbe3d769_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:caadc05a8195f41d48d502458183cef05a1011c6edee343ac212b873ae98c763_s390x",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:d0ee4c371754848f57e6b7c5fcf716a7d830cd72b65b8aeb30e78a8e26b40548_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:d4ef54ac8de0eaf22e294dad8852ea8b5c20f85deb19629a3a4e0020851266c3_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:1c4617b035c66b6b34e9b19f618f72a19da5fce644d79e24eb262f14c848bc81_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:57d3bf93431295f0d3c8747fe376cdb0a06dc344dd1d6b0c838f732bd920c73e_s390x",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:b91fe4769ad1e0cf809e3db4d494a5526608b2fa2114fc5e28624372858bb203_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fe1c8fe5bdc4114a4718812d718fc6b913465e23fd39cf6aa05acb352bd80874_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:03f466002ae14ef14dd0e82e0ab75c5287295f77598eed8aca6d1ac6aaa11928_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:1784f71c94bd42380b88033411db9bb912ad2f321a8a6d8d7c49e029263ef714_s390x",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:2e6d535aa3208ca8ae1bc588393c8bc499c4bfb452aceca047523502ddffa0ed_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:8c5dddd29d08fe8234edbbcda055fe6b0f9a7d7a0edfc3cd130797fdf78cce5c_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:be3feca3b19ac609e5ef829887b6d03ca3c504163ed0f9e10b2410cdfb175b72_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:03f040cf94f7d8125f2e68bde45faa956dc9e70fef6307313e42af5de9bbfda0_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:201d1bd33f7e22c463aaf94b4f84e4610f129affd8a96efb8722aabfbc612bfd_s390x",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:3d37f30462f237f5087ef8ac90e39f5cd2cbaf5c143f7cae9d6155eb574726f2_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8fce6e29d98acc1dd0a832cdb5c913af3edd65b81b2968fbdbf8ab434d82fe1e_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:6f3b7f23a515ac140bdad844d60d96fecc79835a75b1d29a70f66df737f1b50c_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:8d7c966e19b03dc4b7f123c9f4096ed4267be5596d08958f4c75a88b3bc541da_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:8fb68adefecd8ccb94404399ac6c8038c064c85287f4f980a0855da1cbd0dcb7_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b29bd499f9889e6de6728e4f8e5d18bf59ed8bd46c6fb598bf6fee150bf49449_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:11662"
},
{
"category": "workaround",
"details": "Currently, no mitigation is available for this vulnerability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:31e117f467424af472a05c52c52397e949cf7838bce643a3d9d24c0f57a06458_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:389b9cbd0f05d3d773edc2c06aa73818307cbb25048bddf4f192a992670b6fb4_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6a121606c51dfdbc691ede3d4ba9e97f7e200ae422fef0802a579c601b1b3ee6_s390x",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a891aa3f77d70d9d7966dfc71ff9087f45deb95d3025072da96a3ec5220db1f3_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3b00e2fec645e140fa304e5823bcb1d0fcd1ddac7f4cbf6e9a9c0fbeaf29682d_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:9ec57ba506861f7037198253c6463991fa548b8e9f5a3d2c78e1f1257d31aeab_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:d9ca4a9ec5bc8de23e4550387f822f19949cdfbc4aeeab20e07b206d92f4a426_s390x",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ef03839a45320399533becb174479f9ea4f26f381202707936d576ec6fc9ba84_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:3dc773cc4a48041bfe69b516db58d2a5060059725351fc1dbcece64778a35b3a_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:438037a860968172a29c12ef14353081a5fd45ffe2e5dcccd3ab5486a5824578_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:a15009fde9c0a63168d82fb07363d2c6ce05f2096dc1a9992a09fe1d76bcf4a7_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:addf7b49ce99777a3bbf12c2e6678b604f3cfaf91feaaeb4192d75e902e46458_s390x",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:3d98512aaa924e0e1c9f3b5ab6b405cb4f4a3f3b5225aefa54f1b2abfbe3d769_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:caadc05a8195f41d48d502458183cef05a1011c6edee343ac212b873ae98c763_s390x",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:d0ee4c371754848f57e6b7c5fcf716a7d830cd72b65b8aeb30e78a8e26b40548_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:d4ef54ac8de0eaf22e294dad8852ea8b5c20f85deb19629a3a4e0020851266c3_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:1c4617b035c66b6b34e9b19f618f72a19da5fce644d79e24eb262f14c848bc81_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:57d3bf93431295f0d3c8747fe376cdb0a06dc344dd1d6b0c838f732bd920c73e_s390x",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:b91fe4769ad1e0cf809e3db4d494a5526608b2fa2114fc5e28624372858bb203_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fe1c8fe5bdc4114a4718812d718fc6b913465e23fd39cf6aa05acb352bd80874_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:03f466002ae14ef14dd0e82e0ab75c5287295f77598eed8aca6d1ac6aaa11928_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:1784f71c94bd42380b88033411db9bb912ad2f321a8a6d8d7c49e029263ef714_s390x",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:2e6d535aa3208ca8ae1bc588393c8bc499c4bfb452aceca047523502ddffa0ed_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:8c5dddd29d08fe8234edbbcda055fe6b0f9a7d7a0edfc3cd130797fdf78cce5c_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:be3feca3b19ac609e5ef829887b6d03ca3c504163ed0f9e10b2410cdfb175b72_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:03f040cf94f7d8125f2e68bde45faa956dc9e70fef6307313e42af5de9bbfda0_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:201d1bd33f7e22c463aaf94b4f84e4610f129affd8a96efb8722aabfbc612bfd_s390x",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:3d37f30462f237f5087ef8ac90e39f5cd2cbaf5c143f7cae9d6155eb574726f2_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8fce6e29d98acc1dd0a832cdb5c913af3edd65b81b2968fbdbf8ab434d82fe1e_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:6f3b7f23a515ac140bdad844d60d96fecc79835a75b1d29a70f66df737f1b50c_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:8d7c966e19b03dc4b7f123c9f4096ed4267be5596d08958f4c75a88b3bc541da_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:8fb68adefecd8ccb94404399ac6c8038c064c85287f4f980a0855da1cbd0dcb7_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b29bd499f9889e6de6728e4f8e5d18bf59ed8bd46c6fb598bf6fee150bf49449_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:31e117f467424af472a05c52c52397e949cf7838bce643a3d9d24c0f57a06458_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:389b9cbd0f05d3d773edc2c06aa73818307cbb25048bddf4f192a992670b6fb4_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6a121606c51dfdbc691ede3d4ba9e97f7e200ae422fef0802a579c601b1b3ee6_s390x",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a891aa3f77d70d9d7966dfc71ff9087f45deb95d3025072da96a3ec5220db1f3_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3b00e2fec645e140fa304e5823bcb1d0fcd1ddac7f4cbf6e9a9c0fbeaf29682d_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:9ec57ba506861f7037198253c6463991fa548b8e9f5a3d2c78e1f1257d31aeab_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:d9ca4a9ec5bc8de23e4550387f822f19949cdfbc4aeeab20e07b206d92f4a426_s390x",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ef03839a45320399533becb174479f9ea4f26f381202707936d576ec6fc9ba84_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:3dc773cc4a48041bfe69b516db58d2a5060059725351fc1dbcece64778a35b3a_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:438037a860968172a29c12ef14353081a5fd45ffe2e5dcccd3ab5486a5824578_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:a15009fde9c0a63168d82fb07363d2c6ce05f2096dc1a9992a09fe1d76bcf4a7_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:addf7b49ce99777a3bbf12c2e6678b604f3cfaf91feaaeb4192d75e902e46458_s390x",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:3d98512aaa924e0e1c9f3b5ab6b405cb4f4a3f3b5225aefa54f1b2abfbe3d769_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:caadc05a8195f41d48d502458183cef05a1011c6edee343ac212b873ae98c763_s390x",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:d0ee4c371754848f57e6b7c5fcf716a7d830cd72b65b8aeb30e78a8e26b40548_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:d4ef54ac8de0eaf22e294dad8852ea8b5c20f85deb19629a3a4e0020851266c3_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:1c4617b035c66b6b34e9b19f618f72a19da5fce644d79e24eb262f14c848bc81_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:57d3bf93431295f0d3c8747fe376cdb0a06dc344dd1d6b0c838f732bd920c73e_s390x",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:b91fe4769ad1e0cf809e3db4d494a5526608b2fa2114fc5e28624372858bb203_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fe1c8fe5bdc4114a4718812d718fc6b913465e23fd39cf6aa05acb352bd80874_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:03f466002ae14ef14dd0e82e0ab75c5287295f77598eed8aca6d1ac6aaa11928_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:1784f71c94bd42380b88033411db9bb912ad2f321a8a6d8d7c49e029263ef714_s390x",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:2e6d535aa3208ca8ae1bc588393c8bc499c4bfb452aceca047523502ddffa0ed_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:8c5dddd29d08fe8234edbbcda055fe6b0f9a7d7a0edfc3cd130797fdf78cce5c_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:be3feca3b19ac609e5ef829887b6d03ca3c504163ed0f9e10b2410cdfb175b72_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:03f040cf94f7d8125f2e68bde45faa956dc9e70fef6307313e42af5de9bbfda0_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:201d1bd33f7e22c463aaf94b4f84e4610f129affd8a96efb8722aabfbc612bfd_s390x",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:3d37f30462f237f5087ef8ac90e39f5cd2cbaf5c143f7cae9d6155eb574726f2_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8fce6e29d98acc1dd0a832cdb5c913af3edd65b81b2968fbdbf8ab434d82fe1e_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:6f3b7f23a515ac140bdad844d60d96fecc79835a75b1d29a70f66df737f1b50c_amd64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:8d7c966e19b03dc4b7f123c9f4096ed4267be5596d08958f4c75a88b3bc541da_arm64",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:8fb68adefecd8ccb94404399ac6c8038c064c85287f4f980a0855da1cbd0dcb7_ppc64le",
"Red Hat OpenShift distributed tracing 3.6.1:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b29bd499f9889e6de6728e4f8e5d18bf59ed8bd46c6fb598bf6fee150bf49449_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "glib: Buffer Underflow on GLib through glib/gstring.c via function g_string_insert_unichar"
}
]
}
rhsa-2025:11374
Vulnerability from csaf_redhat
Published
2025-07-17 09:55
Modified
2025-10-10 00:28
Summary
Red Hat Security Advisory: glib2 security update
Notes
Topic
An update for glib2 is now available for Red Hat Enterprise Linux 9.4 Extended Update Support.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
GLib provides the core application building blocks for libraries and applications written in C. It provides the core object system used in GNOME, the main loop implementation, and a large set of utility functions for strings and common data structures.
Security Fix(es):
* glib: buffer overflow in set_connect_msg() (CVE-2024-52533)
* glib: Buffer Underflow on GLib through glib/gstring.c via function g_string_insert_unichar (CVE-2025-4373)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for glib2 is now available for Red Hat Enterprise Linux 9.4 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "GLib provides the core application building blocks for libraries and applications written in C. It provides the core object system used in GNOME, the main loop implementation, and a large set of utility functions for strings and common data structures.\n\nSecurity Fix(es):\n\n* glib: buffer overflow in set_connect_msg() (CVE-2024-52533)\n\n* glib: Buffer Underflow on GLib through glib/gstring.c via function g_string_insert_unichar (CVE-2025-4373)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:11374",
"url": "https://access.redhat.com/errata/RHSA-2025:11374"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "2325340",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2325340"
},
{
"category": "external",
"summary": "2364265",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2364265"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_11374.json"
}
],
"title": "Red Hat Security Advisory: glib2 security update",
"tracking": {
"current_release_date": "2025-10-10T00:28:35+00:00",
"generator": {
"date": "2025-10-10T00:28:35+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.9"
}
},
"id": "RHSA-2025:11374",
"initial_release_date": "2025-07-17T09:55:15+00:00",
"revision_history": [
{
"date": "2025-07-17T09:55:15+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-07-17T09:55:15+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-10T00:28:35+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product": {
"name": "Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_eus:9.4::appstream"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product": {
"name": "Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_eus:9.4::baseos"
}
}
},
{
"category": "product_name",
"name": "Red Hat CodeReady Linux Builder EUS (v.9.4)",
"product": {
"name": "Red Hat CodeReady Linux Builder EUS (v.9.4)",
"product_id": "CRB-9.4.0.Z.EUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_eus:9.4::crb"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "glib2-devel-0:2.68.4-14.el9_4.3.aarch64",
"product": {
"name": "glib2-devel-0:2.68.4-14.el9_4.3.aarch64",
"product_id": "glib2-devel-0:2.68.4-14.el9_4.3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel@2.68.4-14.el9_4.3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "glib2-tests-0:2.68.4-14.el9_4.3.aarch64",
"product": {
"name": "glib2-tests-0:2.68.4-14.el9_4.3.aarch64",
"product_id": "glib2-tests-0:2.68.4-14.el9_4.3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-tests@2.68.4-14.el9_4.3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "glib2-debugsource-0:2.68.4-14.el9_4.3.aarch64",
"product": {
"name": "glib2-debugsource-0:2.68.4-14.el9_4.3.aarch64",
"product_id": "glib2-debugsource-0:2.68.4-14.el9_4.3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debugsource@2.68.4-14.el9_4.3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "glib2-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"product": {
"name": "glib2-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"product_id": "glib2-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debuginfo@2.68.4-14.el9_4.3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"product": {
"name": "glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"product_id": "glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel-debuginfo@2.68.4-14.el9_4.3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"product": {
"name": "glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"product_id": "glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-tests-debuginfo@2.68.4-14.el9_4.3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "glib2-0:2.68.4-14.el9_4.3.aarch64",
"product": {
"name": "glib2-0:2.68.4-14.el9_4.3.aarch64",
"product_id": "glib2-0:2.68.4-14.el9_4.3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2@2.68.4-14.el9_4.3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "glib2-static-0:2.68.4-14.el9_4.3.aarch64",
"product": {
"name": "glib2-static-0:2.68.4-14.el9_4.3.aarch64",
"product_id": "glib2-static-0:2.68.4-14.el9_4.3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-static@2.68.4-14.el9_4.3?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "glib2-devel-0:2.68.4-14.el9_4.3.ppc64le",
"product": {
"name": "glib2-devel-0:2.68.4-14.el9_4.3.ppc64le",
"product_id": "glib2-devel-0:2.68.4-14.el9_4.3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel@2.68.4-14.el9_4.3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "glib2-tests-0:2.68.4-14.el9_4.3.ppc64le",
"product": {
"name": "glib2-tests-0:2.68.4-14.el9_4.3.ppc64le",
"product_id": "glib2-tests-0:2.68.4-14.el9_4.3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-tests@2.68.4-14.el9_4.3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "glib2-debugsource-0:2.68.4-14.el9_4.3.ppc64le",
"product": {
"name": "glib2-debugsource-0:2.68.4-14.el9_4.3.ppc64le",
"product_id": "glib2-debugsource-0:2.68.4-14.el9_4.3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debugsource@2.68.4-14.el9_4.3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "glib2-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"product": {
"name": "glib2-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"product_id": "glib2-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debuginfo@2.68.4-14.el9_4.3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"product": {
"name": "glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"product_id": "glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel-debuginfo@2.68.4-14.el9_4.3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"product": {
"name": "glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"product_id": "glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-tests-debuginfo@2.68.4-14.el9_4.3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "glib2-0:2.68.4-14.el9_4.3.ppc64le",
"product": {
"name": "glib2-0:2.68.4-14.el9_4.3.ppc64le",
"product_id": "glib2-0:2.68.4-14.el9_4.3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2@2.68.4-14.el9_4.3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "glib2-static-0:2.68.4-14.el9_4.3.ppc64le",
"product": {
"name": "glib2-static-0:2.68.4-14.el9_4.3.ppc64le",
"product_id": "glib2-static-0:2.68.4-14.el9_4.3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-static@2.68.4-14.el9_4.3?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "glib2-devel-0:2.68.4-14.el9_4.3.i686",
"product": {
"name": "glib2-devel-0:2.68.4-14.el9_4.3.i686",
"product_id": "glib2-devel-0:2.68.4-14.el9_4.3.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel@2.68.4-14.el9_4.3?arch=i686"
}
}
},
{
"category": "product_version",
"name": "glib2-debugsource-0:2.68.4-14.el9_4.3.i686",
"product": {
"name": "glib2-debugsource-0:2.68.4-14.el9_4.3.i686",
"product_id": "glib2-debugsource-0:2.68.4-14.el9_4.3.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debugsource@2.68.4-14.el9_4.3?arch=i686"
}
}
},
{
"category": "product_version",
"name": "glib2-debuginfo-0:2.68.4-14.el9_4.3.i686",
"product": {
"name": "glib2-debuginfo-0:2.68.4-14.el9_4.3.i686",
"product_id": "glib2-debuginfo-0:2.68.4-14.el9_4.3.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debuginfo@2.68.4-14.el9_4.3?arch=i686"
}
}
},
{
"category": "product_version",
"name": "glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.i686",
"product": {
"name": "glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.i686",
"product_id": "glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel-debuginfo@2.68.4-14.el9_4.3?arch=i686"
}
}
},
{
"category": "product_version",
"name": "glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.i686",
"product": {
"name": "glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.i686",
"product_id": "glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-tests-debuginfo@2.68.4-14.el9_4.3?arch=i686"
}
}
},
{
"category": "product_version",
"name": "glib2-0:2.68.4-14.el9_4.3.i686",
"product": {
"name": "glib2-0:2.68.4-14.el9_4.3.i686",
"product_id": "glib2-0:2.68.4-14.el9_4.3.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2@2.68.4-14.el9_4.3?arch=i686"
}
}
},
{
"category": "product_version",
"name": "glib2-static-0:2.68.4-14.el9_4.3.i686",
"product": {
"name": "glib2-static-0:2.68.4-14.el9_4.3.i686",
"product_id": "glib2-static-0:2.68.4-14.el9_4.3.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-static@2.68.4-14.el9_4.3?arch=i686"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "glib2-devel-0:2.68.4-14.el9_4.3.x86_64",
"product": {
"name": "glib2-devel-0:2.68.4-14.el9_4.3.x86_64",
"product_id": "glib2-devel-0:2.68.4-14.el9_4.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel@2.68.4-14.el9_4.3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glib2-tests-0:2.68.4-14.el9_4.3.x86_64",
"product": {
"name": "glib2-tests-0:2.68.4-14.el9_4.3.x86_64",
"product_id": "glib2-tests-0:2.68.4-14.el9_4.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-tests@2.68.4-14.el9_4.3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glib2-debugsource-0:2.68.4-14.el9_4.3.x86_64",
"product": {
"name": "glib2-debugsource-0:2.68.4-14.el9_4.3.x86_64",
"product_id": "glib2-debugsource-0:2.68.4-14.el9_4.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debugsource@2.68.4-14.el9_4.3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glib2-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"product": {
"name": "glib2-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"product_id": "glib2-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debuginfo@2.68.4-14.el9_4.3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"product": {
"name": "glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"product_id": "glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel-debuginfo@2.68.4-14.el9_4.3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"product": {
"name": "glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"product_id": "glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-tests-debuginfo@2.68.4-14.el9_4.3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glib2-0:2.68.4-14.el9_4.3.x86_64",
"product": {
"name": "glib2-0:2.68.4-14.el9_4.3.x86_64",
"product_id": "glib2-0:2.68.4-14.el9_4.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2@2.68.4-14.el9_4.3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glib2-static-0:2.68.4-14.el9_4.3.x86_64",
"product": {
"name": "glib2-static-0:2.68.4-14.el9_4.3.x86_64",
"product_id": "glib2-static-0:2.68.4-14.el9_4.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-static@2.68.4-14.el9_4.3?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "glib2-devel-0:2.68.4-14.el9_4.3.s390x",
"product": {
"name": "glib2-devel-0:2.68.4-14.el9_4.3.s390x",
"product_id": "glib2-devel-0:2.68.4-14.el9_4.3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel@2.68.4-14.el9_4.3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "glib2-tests-0:2.68.4-14.el9_4.3.s390x",
"product": {
"name": "glib2-tests-0:2.68.4-14.el9_4.3.s390x",
"product_id": "glib2-tests-0:2.68.4-14.el9_4.3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-tests@2.68.4-14.el9_4.3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "glib2-debugsource-0:2.68.4-14.el9_4.3.s390x",
"product": {
"name": "glib2-debugsource-0:2.68.4-14.el9_4.3.s390x",
"product_id": "glib2-debugsource-0:2.68.4-14.el9_4.3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debugsource@2.68.4-14.el9_4.3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "glib2-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"product": {
"name": "glib2-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"product_id": "glib2-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debuginfo@2.68.4-14.el9_4.3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"product": {
"name": "glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"product_id": "glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel-debuginfo@2.68.4-14.el9_4.3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"product": {
"name": "glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"product_id": "glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-tests-debuginfo@2.68.4-14.el9_4.3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "glib2-0:2.68.4-14.el9_4.3.s390x",
"product": {
"name": "glib2-0:2.68.4-14.el9_4.3.s390x",
"product_id": "glib2-0:2.68.4-14.el9_4.3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2@2.68.4-14.el9_4.3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "glib2-static-0:2.68.4-14.el9_4.3.s390x",
"product": {
"name": "glib2-static-0:2.68.4-14.el9_4.3.s390x",
"product_id": "glib2-static-0:2.68.4-14.el9_4.3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-static@2.68.4-14.el9_4.3?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "glib2-doc-0:2.68.4-14.el9_4.3.noarch",
"product": {
"name": "glib2-doc-0:2.68.4-14.el9_4.3.noarch",
"product_id": "glib2-doc-0:2.68.4-14.el9_4.3.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-doc@2.68.4-14.el9_4.3?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "glib2-0:2.68.4-14.el9_4.3.src",
"product": {
"name": "glib2-0:2.68.4-14.el9_4.3.src",
"product_id": "glib2-0:2.68.4-14.el9_4.3.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2@2.68.4-14.el9_4.3?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.68.4-14.el9_4.3.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.aarch64"
},
"product_reference": "glib2-0:2.68.4-14.el9_4.3.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.68.4-14.el9_4.3.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.i686"
},
"product_reference": "glib2-0:2.68.4-14.el9_4.3.i686",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.68.4-14.el9_4.3.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.ppc64le"
},
"product_reference": "glib2-0:2.68.4-14.el9_4.3.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.68.4-14.el9_4.3.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.s390x"
},
"product_reference": "glib2-0:2.68.4-14.el9_4.3.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.68.4-14.el9_4.3.src as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.src"
},
"product_reference": "glib2-0:2.68.4-14.el9_4.3.src",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.68.4-14.el9_4.3.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.x86_64"
},
"product_reference": "glib2-0:2.68.4-14.el9_4.3.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.68.4-14.el9_4.3.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.aarch64"
},
"product_reference": "glib2-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.68.4-14.el9_4.3.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.i686"
},
"product_reference": "glib2-debuginfo-0:2.68.4-14.el9_4.3.i686",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.68.4-14.el9_4.3.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.ppc64le"
},
"product_reference": "glib2-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.68.4-14.el9_4.3.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.s390x"
},
"product_reference": "glib2-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.68.4-14.el9_4.3.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.x86_64"
},
"product_reference": "glib2-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.68.4-14.el9_4.3.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.aarch64"
},
"product_reference": "glib2-debugsource-0:2.68.4-14.el9_4.3.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.68.4-14.el9_4.3.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.i686"
},
"product_reference": "glib2-debugsource-0:2.68.4-14.el9_4.3.i686",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.68.4-14.el9_4.3.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.ppc64le"
},
"product_reference": "glib2-debugsource-0:2.68.4-14.el9_4.3.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.68.4-14.el9_4.3.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.s390x"
},
"product_reference": "glib2-debugsource-0:2.68.4-14.el9_4.3.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.68.4-14.el9_4.3.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.x86_64"
},
"product_reference": "glib2-debugsource-0:2.68.4-14.el9_4.3.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.68.4-14.el9_4.3.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.aarch64"
},
"product_reference": "glib2-devel-0:2.68.4-14.el9_4.3.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.68.4-14.el9_4.3.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.i686"
},
"product_reference": "glib2-devel-0:2.68.4-14.el9_4.3.i686",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.68.4-14.el9_4.3.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.ppc64le"
},
"product_reference": "glib2-devel-0:2.68.4-14.el9_4.3.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.68.4-14.el9_4.3.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.s390x"
},
"product_reference": "glib2-devel-0:2.68.4-14.el9_4.3.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.68.4-14.el9_4.3.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.x86_64"
},
"product_reference": "glib2-devel-0:2.68.4-14.el9_4.3.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.aarch64"
},
"product_reference": "glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.i686"
},
"product_reference": "glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.i686",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.ppc64le"
},
"product_reference": "glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.s390x"
},
"product_reference": "glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.x86_64"
},
"product_reference": "glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-doc-0:2.68.4-14.el9_4.3.noarch as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:glib2-doc-0:2.68.4-14.el9_4.3.noarch"
},
"product_reference": "glib2-doc-0:2.68.4-14.el9_4.3.noarch",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-static-0:2.68.4-14.el9_4.3.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.aarch64"
},
"product_reference": "glib2-static-0:2.68.4-14.el9_4.3.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-static-0:2.68.4-14.el9_4.3.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.i686"
},
"product_reference": "glib2-static-0:2.68.4-14.el9_4.3.i686",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-static-0:2.68.4-14.el9_4.3.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.ppc64le"
},
"product_reference": "glib2-static-0:2.68.4-14.el9_4.3.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-static-0:2.68.4-14.el9_4.3.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.s390x"
},
"product_reference": "glib2-static-0:2.68.4-14.el9_4.3.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-static-0:2.68.4-14.el9_4.3.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.x86_64"
},
"product_reference": "glib2-static-0:2.68.4-14.el9_4.3.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-0:2.68.4-14.el9_4.3.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.aarch64"
},
"product_reference": "glib2-tests-0:2.68.4-14.el9_4.3.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-0:2.68.4-14.el9_4.3.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.ppc64le"
},
"product_reference": "glib2-tests-0:2.68.4-14.el9_4.3.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-0:2.68.4-14.el9_4.3.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.s390x"
},
"product_reference": "glib2-tests-0:2.68.4-14.el9_4.3.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-0:2.68.4-14.el9_4.3.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.x86_64"
},
"product_reference": "glib2-tests-0:2.68.4-14.el9_4.3.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.aarch64"
},
"product_reference": "glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.i686"
},
"product_reference": "glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.i686",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.ppc64le"
},
"product_reference": "glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.s390x"
},
"product_reference": "glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.x86_64"
},
"product_reference": "glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.68.4-14.el9_4.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.aarch64"
},
"product_reference": "glib2-0:2.68.4-14.el9_4.3.aarch64",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.68.4-14.el9_4.3.i686 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.i686"
},
"product_reference": "glib2-0:2.68.4-14.el9_4.3.i686",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.68.4-14.el9_4.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.ppc64le"
},
"product_reference": "glib2-0:2.68.4-14.el9_4.3.ppc64le",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.68.4-14.el9_4.3.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.s390x"
},
"product_reference": "glib2-0:2.68.4-14.el9_4.3.s390x",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.68.4-14.el9_4.3.src as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.src"
},
"product_reference": "glib2-0:2.68.4-14.el9_4.3.src",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.68.4-14.el9_4.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.x86_64"
},
"product_reference": "glib2-0:2.68.4-14.el9_4.3.x86_64",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.68.4-14.el9_4.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.aarch64"
},
"product_reference": "glib2-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.68.4-14.el9_4.3.i686 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.i686"
},
"product_reference": "glib2-debuginfo-0:2.68.4-14.el9_4.3.i686",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.68.4-14.el9_4.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.ppc64le"
},
"product_reference": "glib2-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.68.4-14.el9_4.3.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.s390x"
},
"product_reference": "glib2-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.68.4-14.el9_4.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.x86_64"
},
"product_reference": "glib2-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.68.4-14.el9_4.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.aarch64"
},
"product_reference": "glib2-debugsource-0:2.68.4-14.el9_4.3.aarch64",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.68.4-14.el9_4.3.i686 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.i686"
},
"product_reference": "glib2-debugsource-0:2.68.4-14.el9_4.3.i686",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.68.4-14.el9_4.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.ppc64le"
},
"product_reference": "glib2-debugsource-0:2.68.4-14.el9_4.3.ppc64le",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.68.4-14.el9_4.3.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.s390x"
},
"product_reference": "glib2-debugsource-0:2.68.4-14.el9_4.3.s390x",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.68.4-14.el9_4.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.x86_64"
},
"product_reference": "glib2-debugsource-0:2.68.4-14.el9_4.3.x86_64",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.68.4-14.el9_4.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.aarch64"
},
"product_reference": "glib2-devel-0:2.68.4-14.el9_4.3.aarch64",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.68.4-14.el9_4.3.i686 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.i686"
},
"product_reference": "glib2-devel-0:2.68.4-14.el9_4.3.i686",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.68.4-14.el9_4.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.ppc64le"
},
"product_reference": "glib2-devel-0:2.68.4-14.el9_4.3.ppc64le",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.68.4-14.el9_4.3.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.s390x"
},
"product_reference": "glib2-devel-0:2.68.4-14.el9_4.3.s390x",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.68.4-14.el9_4.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.x86_64"
},
"product_reference": "glib2-devel-0:2.68.4-14.el9_4.3.x86_64",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.aarch64"
},
"product_reference": "glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.i686 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.i686"
},
"product_reference": "glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.i686",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.ppc64le"
},
"product_reference": "glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.s390x"
},
"product_reference": "glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.x86_64"
},
"product_reference": "glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-doc-0:2.68.4-14.el9_4.3.noarch as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:glib2-doc-0:2.68.4-14.el9_4.3.noarch"
},
"product_reference": "glib2-doc-0:2.68.4-14.el9_4.3.noarch",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-static-0:2.68.4-14.el9_4.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.aarch64"
},
"product_reference": "glib2-static-0:2.68.4-14.el9_4.3.aarch64",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-static-0:2.68.4-14.el9_4.3.i686 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.i686"
},
"product_reference": "glib2-static-0:2.68.4-14.el9_4.3.i686",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-static-0:2.68.4-14.el9_4.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.ppc64le"
},
"product_reference": "glib2-static-0:2.68.4-14.el9_4.3.ppc64le",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-static-0:2.68.4-14.el9_4.3.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.s390x"
},
"product_reference": "glib2-static-0:2.68.4-14.el9_4.3.s390x",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-static-0:2.68.4-14.el9_4.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.x86_64"
},
"product_reference": "glib2-static-0:2.68.4-14.el9_4.3.x86_64",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-0:2.68.4-14.el9_4.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.aarch64"
},
"product_reference": "glib2-tests-0:2.68.4-14.el9_4.3.aarch64",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-0:2.68.4-14.el9_4.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.ppc64le"
},
"product_reference": "glib2-tests-0:2.68.4-14.el9_4.3.ppc64le",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-0:2.68.4-14.el9_4.3.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.s390x"
},
"product_reference": "glib2-tests-0:2.68.4-14.el9_4.3.s390x",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-0:2.68.4-14.el9_4.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.x86_64"
},
"product_reference": "glib2-tests-0:2.68.4-14.el9_4.3.x86_64",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.aarch64"
},
"product_reference": "glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.i686 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.i686"
},
"product_reference": "glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.i686",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.ppc64le"
},
"product_reference": "glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.s390x"
},
"product_reference": "glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.x86_64"
},
"product_reference": "glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.68.4-14.el9_4.3.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.4)",
"product_id": "CRB-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.aarch64"
},
"product_reference": "glib2-0:2.68.4-14.el9_4.3.aarch64",
"relates_to_product_reference": "CRB-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.68.4-14.el9_4.3.i686 as a component of Red Hat CodeReady Linux Builder EUS (v.9.4)",
"product_id": "CRB-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.i686"
},
"product_reference": "glib2-0:2.68.4-14.el9_4.3.i686",
"relates_to_product_reference": "CRB-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.68.4-14.el9_4.3.ppc64le as a component of Red Hat CodeReady Linux Builder EUS (v.9.4)",
"product_id": "CRB-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.ppc64le"
},
"product_reference": "glib2-0:2.68.4-14.el9_4.3.ppc64le",
"relates_to_product_reference": "CRB-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.68.4-14.el9_4.3.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.4)",
"product_id": "CRB-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.s390x"
},
"product_reference": "glib2-0:2.68.4-14.el9_4.3.s390x",
"relates_to_product_reference": "CRB-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.68.4-14.el9_4.3.src as a component of Red Hat CodeReady Linux Builder EUS (v.9.4)",
"product_id": "CRB-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.src"
},
"product_reference": "glib2-0:2.68.4-14.el9_4.3.src",
"relates_to_product_reference": "CRB-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.68.4-14.el9_4.3.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.4)",
"product_id": "CRB-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.x86_64"
},
"product_reference": "glib2-0:2.68.4-14.el9_4.3.x86_64",
"relates_to_product_reference": "CRB-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.68.4-14.el9_4.3.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.4)",
"product_id": "CRB-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.aarch64"
},
"product_reference": "glib2-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"relates_to_product_reference": "CRB-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.68.4-14.el9_4.3.i686 as a component of Red Hat CodeReady Linux Builder EUS (v.9.4)",
"product_id": "CRB-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.i686"
},
"product_reference": "glib2-debuginfo-0:2.68.4-14.el9_4.3.i686",
"relates_to_product_reference": "CRB-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.68.4-14.el9_4.3.ppc64le as a component of Red Hat CodeReady Linux Builder EUS (v.9.4)",
"product_id": "CRB-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.ppc64le"
},
"product_reference": "glib2-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"relates_to_product_reference": "CRB-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.68.4-14.el9_4.3.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.4)",
"product_id": "CRB-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.s390x"
},
"product_reference": "glib2-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"relates_to_product_reference": "CRB-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.68.4-14.el9_4.3.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.4)",
"product_id": "CRB-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.x86_64"
},
"product_reference": "glib2-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"relates_to_product_reference": "CRB-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.68.4-14.el9_4.3.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.4)",
"product_id": "CRB-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.aarch64"
},
"product_reference": "glib2-debugsource-0:2.68.4-14.el9_4.3.aarch64",
"relates_to_product_reference": "CRB-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.68.4-14.el9_4.3.i686 as a component of Red Hat CodeReady Linux Builder EUS (v.9.4)",
"product_id": "CRB-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.i686"
},
"product_reference": "glib2-debugsource-0:2.68.4-14.el9_4.3.i686",
"relates_to_product_reference": "CRB-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.68.4-14.el9_4.3.ppc64le as a component of Red Hat CodeReady Linux Builder EUS (v.9.4)",
"product_id": "CRB-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.ppc64le"
},
"product_reference": "glib2-debugsource-0:2.68.4-14.el9_4.3.ppc64le",
"relates_to_product_reference": "CRB-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.68.4-14.el9_4.3.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.4)",
"product_id": "CRB-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.s390x"
},
"product_reference": "glib2-debugsource-0:2.68.4-14.el9_4.3.s390x",
"relates_to_product_reference": "CRB-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.68.4-14.el9_4.3.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.4)",
"product_id": "CRB-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.x86_64"
},
"product_reference": "glib2-debugsource-0:2.68.4-14.el9_4.3.x86_64",
"relates_to_product_reference": "CRB-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.68.4-14.el9_4.3.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.4)",
"product_id": "CRB-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.aarch64"
},
"product_reference": "glib2-devel-0:2.68.4-14.el9_4.3.aarch64",
"relates_to_product_reference": "CRB-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.68.4-14.el9_4.3.i686 as a component of Red Hat CodeReady Linux Builder EUS (v.9.4)",
"product_id": "CRB-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.i686"
},
"product_reference": "glib2-devel-0:2.68.4-14.el9_4.3.i686",
"relates_to_product_reference": "CRB-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.68.4-14.el9_4.3.ppc64le as a component of Red Hat CodeReady Linux Builder EUS (v.9.4)",
"product_id": "CRB-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.ppc64le"
},
"product_reference": "glib2-devel-0:2.68.4-14.el9_4.3.ppc64le",
"relates_to_product_reference": "CRB-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.68.4-14.el9_4.3.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.4)",
"product_id": "CRB-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.s390x"
},
"product_reference": "glib2-devel-0:2.68.4-14.el9_4.3.s390x",
"relates_to_product_reference": "CRB-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.68.4-14.el9_4.3.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.4)",
"product_id": "CRB-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.x86_64"
},
"product_reference": "glib2-devel-0:2.68.4-14.el9_4.3.x86_64",
"relates_to_product_reference": "CRB-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.4)",
"product_id": "CRB-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.aarch64"
},
"product_reference": "glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"relates_to_product_reference": "CRB-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.i686 as a component of Red Hat CodeReady Linux Builder EUS (v.9.4)",
"product_id": "CRB-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.i686"
},
"product_reference": "glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.i686",
"relates_to_product_reference": "CRB-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.ppc64le as a component of Red Hat CodeReady Linux Builder EUS (v.9.4)",
"product_id": "CRB-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.ppc64le"
},
"product_reference": "glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"relates_to_product_reference": "CRB-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.4)",
"product_id": "CRB-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.s390x"
},
"product_reference": "glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"relates_to_product_reference": "CRB-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.4)",
"product_id": "CRB-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.x86_64"
},
"product_reference": "glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"relates_to_product_reference": "CRB-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-doc-0:2.68.4-14.el9_4.3.noarch as a component of Red Hat CodeReady Linux Builder EUS (v.9.4)",
"product_id": "CRB-9.4.0.Z.EUS:glib2-doc-0:2.68.4-14.el9_4.3.noarch"
},
"product_reference": "glib2-doc-0:2.68.4-14.el9_4.3.noarch",
"relates_to_product_reference": "CRB-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-static-0:2.68.4-14.el9_4.3.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.4)",
"product_id": "CRB-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.aarch64"
},
"product_reference": "glib2-static-0:2.68.4-14.el9_4.3.aarch64",
"relates_to_product_reference": "CRB-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-static-0:2.68.4-14.el9_4.3.i686 as a component of Red Hat CodeReady Linux Builder EUS (v.9.4)",
"product_id": "CRB-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.i686"
},
"product_reference": "glib2-static-0:2.68.4-14.el9_4.3.i686",
"relates_to_product_reference": "CRB-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-static-0:2.68.4-14.el9_4.3.ppc64le as a component of Red Hat CodeReady Linux Builder EUS (v.9.4)",
"product_id": "CRB-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.ppc64le"
},
"product_reference": "glib2-static-0:2.68.4-14.el9_4.3.ppc64le",
"relates_to_product_reference": "CRB-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-static-0:2.68.4-14.el9_4.3.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.4)",
"product_id": "CRB-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.s390x"
},
"product_reference": "glib2-static-0:2.68.4-14.el9_4.3.s390x",
"relates_to_product_reference": "CRB-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-static-0:2.68.4-14.el9_4.3.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.4)",
"product_id": "CRB-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.x86_64"
},
"product_reference": "glib2-static-0:2.68.4-14.el9_4.3.x86_64",
"relates_to_product_reference": "CRB-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-0:2.68.4-14.el9_4.3.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.4)",
"product_id": "CRB-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.aarch64"
},
"product_reference": "glib2-tests-0:2.68.4-14.el9_4.3.aarch64",
"relates_to_product_reference": "CRB-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-0:2.68.4-14.el9_4.3.ppc64le as a component of Red Hat CodeReady Linux Builder EUS (v.9.4)",
"product_id": "CRB-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.ppc64le"
},
"product_reference": "glib2-tests-0:2.68.4-14.el9_4.3.ppc64le",
"relates_to_product_reference": "CRB-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-0:2.68.4-14.el9_4.3.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.4)",
"product_id": "CRB-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.s390x"
},
"product_reference": "glib2-tests-0:2.68.4-14.el9_4.3.s390x",
"relates_to_product_reference": "CRB-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-0:2.68.4-14.el9_4.3.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.4)",
"product_id": "CRB-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.x86_64"
},
"product_reference": "glib2-tests-0:2.68.4-14.el9_4.3.x86_64",
"relates_to_product_reference": "CRB-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.4)",
"product_id": "CRB-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.aarch64"
},
"product_reference": "glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"relates_to_product_reference": "CRB-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.i686 as a component of Red Hat CodeReady Linux Builder EUS (v.9.4)",
"product_id": "CRB-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.i686"
},
"product_reference": "glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.i686",
"relates_to_product_reference": "CRB-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.ppc64le as a component of Red Hat CodeReady Linux Builder EUS (v.9.4)",
"product_id": "CRB-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.ppc64le"
},
"product_reference": "glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"relates_to_product_reference": "CRB-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.4)",
"product_id": "CRB-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.s390x"
},
"product_reference": "glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"relates_to_product_reference": "CRB-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.4)",
"product_id": "CRB-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.x86_64"
},
"product_reference": "glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"relates_to_product_reference": "CRB-9.4.0.Z.EUS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-52533",
"cwe": {
"id": "CWE-193",
"name": "Off-by-one Error"
},
"discovery_date": "2024-11-11T23:00:48.125765+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2325340"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Glib library. A buffer overflow condition can be triggered in certain conditions due to an off-by-one error in SOCKS4_CONN_MSG_LEN. This issue may lead to an application crash or other undefined behavior.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "glib: buffer overflow in set_connect_msg()",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.i686",
"AppStream-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.src",
"AppStream-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.i686",
"AppStream-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.i686",
"AppStream-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.i686",
"AppStream-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.i686",
"AppStream-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:glib2-doc-0:2.68.4-14.el9_4.3.noarch",
"AppStream-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.i686",
"AppStream-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.i686",
"AppStream-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"BaseOS-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.aarch64",
"BaseOS-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.i686",
"BaseOS-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.ppc64le",
"BaseOS-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.s390x",
"BaseOS-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.src",
"BaseOS-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.x86_64",
"BaseOS-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"BaseOS-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.i686",
"BaseOS-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"BaseOS-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"BaseOS-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"BaseOS-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.aarch64",
"BaseOS-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.i686",
"BaseOS-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.ppc64le",
"BaseOS-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.s390x",
"BaseOS-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.x86_64",
"BaseOS-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.aarch64",
"BaseOS-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.i686",
"BaseOS-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.ppc64le",
"BaseOS-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.s390x",
"BaseOS-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.x86_64",
"BaseOS-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"BaseOS-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.i686",
"BaseOS-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"BaseOS-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"BaseOS-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"BaseOS-9.4.0.Z.EUS:glib2-doc-0:2.68.4-14.el9_4.3.noarch",
"BaseOS-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.aarch64",
"BaseOS-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.i686",
"BaseOS-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.ppc64le",
"BaseOS-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.s390x",
"BaseOS-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.x86_64",
"BaseOS-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.aarch64",
"BaseOS-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.ppc64le",
"BaseOS-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.s390x",
"BaseOS-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.x86_64",
"BaseOS-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"BaseOS-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.i686",
"BaseOS-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"BaseOS-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"BaseOS-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"CRB-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.aarch64",
"CRB-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.i686",
"CRB-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.ppc64le",
"CRB-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.s390x",
"CRB-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.src",
"CRB-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.x86_64",
"CRB-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"CRB-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.i686",
"CRB-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"CRB-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"CRB-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"CRB-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.aarch64",
"CRB-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.i686",
"CRB-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.ppc64le",
"CRB-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.s390x",
"CRB-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.x86_64",
"CRB-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.aarch64",
"CRB-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.i686",
"CRB-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.ppc64le",
"CRB-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.s390x",
"CRB-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.x86_64",
"CRB-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"CRB-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.i686",
"CRB-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"CRB-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"CRB-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"CRB-9.4.0.Z.EUS:glib2-doc-0:2.68.4-14.el9_4.3.noarch",
"CRB-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.aarch64",
"CRB-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.i686",
"CRB-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.ppc64le",
"CRB-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.s390x",
"CRB-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.x86_64",
"CRB-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.aarch64",
"CRB-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.ppc64le",
"CRB-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.s390x",
"CRB-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.x86_64",
"CRB-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"CRB-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.i686",
"CRB-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"CRB-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"CRB-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-52533"
},
{
"category": "external",
"summary": "RHBZ#2325340",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2325340"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-52533",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-52533"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-52533",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-52533"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/GNOME/glib/-/issues/3461",
"url": "https://gitlab.gnome.org/GNOME/glib/-/issues/3461"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/GNOME/glib/-/releases/2.82.1",
"url": "https://gitlab.gnome.org/GNOME/glib/-/releases/2.82.1"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/Teams/Releng/security/-/wikis/home",
"url": "https://gitlab.gnome.org/Teams/Releng/security/-/wikis/home"
}
],
"release_date": "2024-11-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-07-17T09:55:15+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.i686",
"AppStream-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.src",
"AppStream-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.i686",
"AppStream-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.i686",
"AppStream-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.i686",
"AppStream-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.i686",
"AppStream-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:glib2-doc-0:2.68.4-14.el9_4.3.noarch",
"AppStream-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.i686",
"AppStream-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.i686",
"AppStream-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"BaseOS-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.aarch64",
"BaseOS-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.i686",
"BaseOS-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.ppc64le",
"BaseOS-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.s390x",
"BaseOS-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.src",
"BaseOS-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.x86_64",
"BaseOS-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"BaseOS-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.i686",
"BaseOS-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"BaseOS-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"BaseOS-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"BaseOS-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.aarch64",
"BaseOS-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.i686",
"BaseOS-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.ppc64le",
"BaseOS-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.s390x",
"BaseOS-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.x86_64",
"BaseOS-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.aarch64",
"BaseOS-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.i686",
"BaseOS-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.ppc64le",
"BaseOS-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.s390x",
"BaseOS-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.x86_64",
"BaseOS-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"BaseOS-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.i686",
"BaseOS-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"BaseOS-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"BaseOS-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"BaseOS-9.4.0.Z.EUS:glib2-doc-0:2.68.4-14.el9_4.3.noarch",
"BaseOS-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.aarch64",
"BaseOS-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.i686",
"BaseOS-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.ppc64le",
"BaseOS-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.s390x",
"BaseOS-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.x86_64",
"BaseOS-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.aarch64",
"BaseOS-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.ppc64le",
"BaseOS-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.s390x",
"BaseOS-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.x86_64",
"BaseOS-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"BaseOS-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.i686",
"BaseOS-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"BaseOS-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"BaseOS-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"CRB-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.aarch64",
"CRB-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.i686",
"CRB-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.ppc64le",
"CRB-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.s390x",
"CRB-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.src",
"CRB-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.x86_64",
"CRB-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"CRB-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.i686",
"CRB-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"CRB-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"CRB-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"CRB-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.aarch64",
"CRB-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.i686",
"CRB-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.ppc64le",
"CRB-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.s390x",
"CRB-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.x86_64",
"CRB-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.aarch64",
"CRB-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.i686",
"CRB-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.ppc64le",
"CRB-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.s390x",
"CRB-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.x86_64",
"CRB-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"CRB-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.i686",
"CRB-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"CRB-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"CRB-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"CRB-9.4.0.Z.EUS:glib2-doc-0:2.68.4-14.el9_4.3.noarch",
"CRB-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.aarch64",
"CRB-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.i686",
"CRB-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.ppc64le",
"CRB-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.s390x",
"CRB-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.x86_64",
"CRB-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.aarch64",
"CRB-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.ppc64le",
"CRB-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.s390x",
"CRB-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.x86_64",
"CRB-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"CRB-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.i686",
"CRB-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"CRB-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"CRB-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:11374"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.i686",
"AppStream-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.src",
"AppStream-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.i686",
"AppStream-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.i686",
"AppStream-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.i686",
"AppStream-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.i686",
"AppStream-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:glib2-doc-0:2.68.4-14.el9_4.3.noarch",
"AppStream-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.i686",
"AppStream-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.i686",
"AppStream-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"BaseOS-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.aarch64",
"BaseOS-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.i686",
"BaseOS-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.ppc64le",
"BaseOS-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.s390x",
"BaseOS-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.src",
"BaseOS-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.x86_64",
"BaseOS-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"BaseOS-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.i686",
"BaseOS-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"BaseOS-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"BaseOS-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"BaseOS-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.aarch64",
"BaseOS-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.i686",
"BaseOS-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.ppc64le",
"BaseOS-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.s390x",
"BaseOS-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.x86_64",
"BaseOS-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.aarch64",
"BaseOS-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.i686",
"BaseOS-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.ppc64le",
"BaseOS-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.s390x",
"BaseOS-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.x86_64",
"BaseOS-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"BaseOS-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.i686",
"BaseOS-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"BaseOS-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"BaseOS-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"BaseOS-9.4.0.Z.EUS:glib2-doc-0:2.68.4-14.el9_4.3.noarch",
"BaseOS-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.aarch64",
"BaseOS-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.i686",
"BaseOS-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.ppc64le",
"BaseOS-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.s390x",
"BaseOS-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.x86_64",
"BaseOS-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.aarch64",
"BaseOS-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.ppc64le",
"BaseOS-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.s390x",
"BaseOS-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.x86_64",
"BaseOS-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"BaseOS-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.i686",
"BaseOS-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"BaseOS-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"BaseOS-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"CRB-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.aarch64",
"CRB-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.i686",
"CRB-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.ppc64le",
"CRB-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.s390x",
"CRB-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.src",
"CRB-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.x86_64",
"CRB-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"CRB-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.i686",
"CRB-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"CRB-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"CRB-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"CRB-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.aarch64",
"CRB-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.i686",
"CRB-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.ppc64le",
"CRB-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.s390x",
"CRB-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.x86_64",
"CRB-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.aarch64",
"CRB-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.i686",
"CRB-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.ppc64le",
"CRB-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.s390x",
"CRB-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.x86_64",
"CRB-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"CRB-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.i686",
"CRB-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"CRB-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"CRB-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"CRB-9.4.0.Z.EUS:glib2-doc-0:2.68.4-14.el9_4.3.noarch",
"CRB-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.aarch64",
"CRB-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.i686",
"CRB-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.ppc64le",
"CRB-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.s390x",
"CRB-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.x86_64",
"CRB-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.aarch64",
"CRB-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.ppc64le",
"CRB-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.s390x",
"CRB-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.x86_64",
"CRB-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"CRB-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.i686",
"CRB-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"CRB-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"CRB-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.i686",
"AppStream-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.src",
"AppStream-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.i686",
"AppStream-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.i686",
"AppStream-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.i686",
"AppStream-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.i686",
"AppStream-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:glib2-doc-0:2.68.4-14.el9_4.3.noarch",
"AppStream-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.i686",
"AppStream-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.i686",
"AppStream-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"BaseOS-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.aarch64",
"BaseOS-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.i686",
"BaseOS-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.ppc64le",
"BaseOS-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.s390x",
"BaseOS-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.src",
"BaseOS-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.x86_64",
"BaseOS-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"BaseOS-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.i686",
"BaseOS-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"BaseOS-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"BaseOS-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"BaseOS-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.aarch64",
"BaseOS-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.i686",
"BaseOS-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.ppc64le",
"BaseOS-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.s390x",
"BaseOS-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.x86_64",
"BaseOS-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.aarch64",
"BaseOS-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.i686",
"BaseOS-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.ppc64le",
"BaseOS-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.s390x",
"BaseOS-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.x86_64",
"BaseOS-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"BaseOS-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.i686",
"BaseOS-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"BaseOS-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"BaseOS-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"BaseOS-9.4.0.Z.EUS:glib2-doc-0:2.68.4-14.el9_4.3.noarch",
"BaseOS-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.aarch64",
"BaseOS-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.i686",
"BaseOS-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.ppc64le",
"BaseOS-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.s390x",
"BaseOS-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.x86_64",
"BaseOS-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.aarch64",
"BaseOS-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.ppc64le",
"BaseOS-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.s390x",
"BaseOS-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.x86_64",
"BaseOS-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"BaseOS-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.i686",
"BaseOS-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"BaseOS-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"BaseOS-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"CRB-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.aarch64",
"CRB-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.i686",
"CRB-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.ppc64le",
"CRB-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.s390x",
"CRB-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.src",
"CRB-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.x86_64",
"CRB-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"CRB-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.i686",
"CRB-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"CRB-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"CRB-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"CRB-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.aarch64",
"CRB-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.i686",
"CRB-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.ppc64le",
"CRB-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.s390x",
"CRB-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.x86_64",
"CRB-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.aarch64",
"CRB-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.i686",
"CRB-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.ppc64le",
"CRB-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.s390x",
"CRB-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.x86_64",
"CRB-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"CRB-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.i686",
"CRB-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"CRB-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"CRB-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"CRB-9.4.0.Z.EUS:glib2-doc-0:2.68.4-14.el9_4.3.noarch",
"CRB-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.aarch64",
"CRB-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.i686",
"CRB-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.ppc64le",
"CRB-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.s390x",
"CRB-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.x86_64",
"CRB-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.aarch64",
"CRB-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.ppc64le",
"CRB-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.s390x",
"CRB-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.x86_64",
"CRB-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"CRB-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.i686",
"CRB-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"CRB-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"CRB-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "glib: buffer overflow in set_connect_msg()"
},
{
"cve": "CVE-2025-4373",
"cwe": {
"id": "CWE-124",
"name": "Buffer Underwrite (\u0027Buffer Underflow\u0027)"
},
"discovery_date": "2025-05-06T00:33:30.003000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2364265"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in GLib, which is vulnerable to an integer overflow in the g_string_insert_unichar() function. When the position at which to insert the character is large, the position will overflow, leading to a buffer underwrite.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "glib: Buffer Underflow on GLib through glib/gstring.c via function g_string_insert_unichar",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Within regulated environments, a combination of the following controls acts as a significant barrier to the successful exploitation of a CWE-124: Buffer Underwrite (\u0027Buffer Underflow\u0027) vulnerability and therefore downgrades the severity of this particular CVE from Moderate to Low.\n\nSecure baseline configurations enforce strict memory handling policies, while change controls ensure any deviations are reviewed and approved. Least functionality reduces the attack surface by disabling unnecessary features that could introduce memory risks. Process isolation contains faults within individual workloads, minimizing broader impact. Real-time monitoring and malicious code protection detect and respond to abnormal memory behavior or exploitation attempts. Hardened configuration settings restrict low-level memory access, lowering the likelihood of unsafe operations. Finally, the platform uses memory protection mechanisms such as Data Execution Prevention (DEP) and Address Space Layout Randomization (ASLR) to strengthen resilience against buffer underwrite exploits.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.i686",
"AppStream-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.src",
"AppStream-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.i686",
"AppStream-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.i686",
"AppStream-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.i686",
"AppStream-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.i686",
"AppStream-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:glib2-doc-0:2.68.4-14.el9_4.3.noarch",
"AppStream-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.i686",
"AppStream-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.i686",
"AppStream-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"BaseOS-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.aarch64",
"BaseOS-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.i686",
"BaseOS-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.ppc64le",
"BaseOS-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.s390x",
"BaseOS-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.src",
"BaseOS-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.x86_64",
"BaseOS-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"BaseOS-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.i686",
"BaseOS-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"BaseOS-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"BaseOS-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"BaseOS-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.aarch64",
"BaseOS-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.i686",
"BaseOS-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.ppc64le",
"BaseOS-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.s390x",
"BaseOS-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.x86_64",
"BaseOS-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.aarch64",
"BaseOS-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.i686",
"BaseOS-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.ppc64le",
"BaseOS-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.s390x",
"BaseOS-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.x86_64",
"BaseOS-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"BaseOS-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.i686",
"BaseOS-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"BaseOS-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"BaseOS-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"BaseOS-9.4.0.Z.EUS:glib2-doc-0:2.68.4-14.el9_4.3.noarch",
"BaseOS-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.aarch64",
"BaseOS-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.i686",
"BaseOS-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.ppc64le",
"BaseOS-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.s390x",
"BaseOS-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.x86_64",
"BaseOS-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.aarch64",
"BaseOS-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.ppc64le",
"BaseOS-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.s390x",
"BaseOS-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.x86_64",
"BaseOS-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"BaseOS-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.i686",
"BaseOS-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"BaseOS-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"BaseOS-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"CRB-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.aarch64",
"CRB-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.i686",
"CRB-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.ppc64le",
"CRB-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.s390x",
"CRB-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.src",
"CRB-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.x86_64",
"CRB-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"CRB-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.i686",
"CRB-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"CRB-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"CRB-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"CRB-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.aarch64",
"CRB-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.i686",
"CRB-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.ppc64le",
"CRB-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.s390x",
"CRB-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.x86_64",
"CRB-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.aarch64",
"CRB-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.i686",
"CRB-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.ppc64le",
"CRB-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.s390x",
"CRB-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.x86_64",
"CRB-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"CRB-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.i686",
"CRB-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"CRB-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"CRB-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"CRB-9.4.0.Z.EUS:glib2-doc-0:2.68.4-14.el9_4.3.noarch",
"CRB-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.aarch64",
"CRB-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.i686",
"CRB-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.ppc64le",
"CRB-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.s390x",
"CRB-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.x86_64",
"CRB-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.aarch64",
"CRB-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.ppc64le",
"CRB-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.s390x",
"CRB-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.x86_64",
"CRB-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"CRB-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.i686",
"CRB-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"CRB-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"CRB-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-4373"
},
{
"category": "external",
"summary": "RHBZ#2364265",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2364265"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-4373",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4373"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-4373",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-4373"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/GNOME/glib/-/issues/3677",
"url": "https://gitlab.gnome.org/GNOME/glib/-/issues/3677"
}
],
"release_date": "2025-05-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-07-17T09:55:15+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.i686",
"AppStream-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.src",
"AppStream-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.i686",
"AppStream-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.i686",
"AppStream-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.i686",
"AppStream-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.i686",
"AppStream-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:glib2-doc-0:2.68.4-14.el9_4.3.noarch",
"AppStream-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.i686",
"AppStream-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.i686",
"AppStream-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"BaseOS-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.aarch64",
"BaseOS-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.i686",
"BaseOS-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.ppc64le",
"BaseOS-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.s390x",
"BaseOS-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.src",
"BaseOS-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.x86_64",
"BaseOS-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"BaseOS-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.i686",
"BaseOS-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"BaseOS-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"BaseOS-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"BaseOS-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.aarch64",
"BaseOS-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.i686",
"BaseOS-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.ppc64le",
"BaseOS-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.s390x",
"BaseOS-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.x86_64",
"BaseOS-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.aarch64",
"BaseOS-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.i686",
"BaseOS-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.ppc64le",
"BaseOS-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.s390x",
"BaseOS-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.x86_64",
"BaseOS-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"BaseOS-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.i686",
"BaseOS-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"BaseOS-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"BaseOS-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"BaseOS-9.4.0.Z.EUS:glib2-doc-0:2.68.4-14.el9_4.3.noarch",
"BaseOS-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.aarch64",
"BaseOS-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.i686",
"BaseOS-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.ppc64le",
"BaseOS-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.s390x",
"BaseOS-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.x86_64",
"BaseOS-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.aarch64",
"BaseOS-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.ppc64le",
"BaseOS-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.s390x",
"BaseOS-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.x86_64",
"BaseOS-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"BaseOS-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.i686",
"BaseOS-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"BaseOS-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"BaseOS-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"CRB-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.aarch64",
"CRB-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.i686",
"CRB-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.ppc64le",
"CRB-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.s390x",
"CRB-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.src",
"CRB-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.x86_64",
"CRB-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"CRB-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.i686",
"CRB-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"CRB-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"CRB-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"CRB-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.aarch64",
"CRB-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.i686",
"CRB-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.ppc64le",
"CRB-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.s390x",
"CRB-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.x86_64",
"CRB-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.aarch64",
"CRB-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.i686",
"CRB-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.ppc64le",
"CRB-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.s390x",
"CRB-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.x86_64",
"CRB-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"CRB-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.i686",
"CRB-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"CRB-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"CRB-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"CRB-9.4.0.Z.EUS:glib2-doc-0:2.68.4-14.el9_4.3.noarch",
"CRB-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.aarch64",
"CRB-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.i686",
"CRB-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.ppc64le",
"CRB-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.s390x",
"CRB-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.x86_64",
"CRB-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.aarch64",
"CRB-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.ppc64le",
"CRB-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.s390x",
"CRB-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.x86_64",
"CRB-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"CRB-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.i686",
"CRB-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"CRB-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"CRB-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:11374"
},
{
"category": "workaround",
"details": "Currently, no mitigation is available for this vulnerability.",
"product_ids": [
"AppStream-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.i686",
"AppStream-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.src",
"AppStream-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.i686",
"AppStream-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.i686",
"AppStream-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.i686",
"AppStream-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.i686",
"AppStream-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:glib2-doc-0:2.68.4-14.el9_4.3.noarch",
"AppStream-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.i686",
"AppStream-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.i686",
"AppStream-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"BaseOS-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.aarch64",
"BaseOS-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.i686",
"BaseOS-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.ppc64le",
"BaseOS-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.s390x",
"BaseOS-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.src",
"BaseOS-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.x86_64",
"BaseOS-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"BaseOS-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.i686",
"BaseOS-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"BaseOS-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"BaseOS-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"BaseOS-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.aarch64",
"BaseOS-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.i686",
"BaseOS-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.ppc64le",
"BaseOS-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.s390x",
"BaseOS-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.x86_64",
"BaseOS-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.aarch64",
"BaseOS-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.i686",
"BaseOS-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.ppc64le",
"BaseOS-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.s390x",
"BaseOS-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.x86_64",
"BaseOS-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"BaseOS-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.i686",
"BaseOS-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"BaseOS-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"BaseOS-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"BaseOS-9.4.0.Z.EUS:glib2-doc-0:2.68.4-14.el9_4.3.noarch",
"BaseOS-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.aarch64",
"BaseOS-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.i686",
"BaseOS-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.ppc64le",
"BaseOS-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.s390x",
"BaseOS-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.x86_64",
"BaseOS-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.aarch64",
"BaseOS-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.ppc64le",
"BaseOS-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.s390x",
"BaseOS-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.x86_64",
"BaseOS-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"BaseOS-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.i686",
"BaseOS-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"BaseOS-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"BaseOS-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"CRB-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.aarch64",
"CRB-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.i686",
"CRB-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.ppc64le",
"CRB-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.s390x",
"CRB-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.src",
"CRB-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.x86_64",
"CRB-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"CRB-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.i686",
"CRB-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"CRB-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"CRB-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"CRB-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.aarch64",
"CRB-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.i686",
"CRB-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.ppc64le",
"CRB-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.s390x",
"CRB-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.x86_64",
"CRB-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.aarch64",
"CRB-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.i686",
"CRB-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.ppc64le",
"CRB-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.s390x",
"CRB-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.x86_64",
"CRB-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"CRB-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.i686",
"CRB-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"CRB-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"CRB-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"CRB-9.4.0.Z.EUS:glib2-doc-0:2.68.4-14.el9_4.3.noarch",
"CRB-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.aarch64",
"CRB-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.i686",
"CRB-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.ppc64le",
"CRB-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.s390x",
"CRB-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.x86_64",
"CRB-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.aarch64",
"CRB-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.ppc64le",
"CRB-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.s390x",
"CRB-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.x86_64",
"CRB-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"CRB-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.i686",
"CRB-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"CRB-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"CRB-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"AppStream-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.i686",
"AppStream-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.src",
"AppStream-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.i686",
"AppStream-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.i686",
"AppStream-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.i686",
"AppStream-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.i686",
"AppStream-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:glib2-doc-0:2.68.4-14.el9_4.3.noarch",
"AppStream-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.i686",
"AppStream-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.i686",
"AppStream-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"BaseOS-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.aarch64",
"BaseOS-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.i686",
"BaseOS-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.ppc64le",
"BaseOS-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.s390x",
"BaseOS-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.src",
"BaseOS-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.x86_64",
"BaseOS-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"BaseOS-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.i686",
"BaseOS-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"BaseOS-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"BaseOS-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"BaseOS-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.aarch64",
"BaseOS-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.i686",
"BaseOS-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.ppc64le",
"BaseOS-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.s390x",
"BaseOS-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.x86_64",
"BaseOS-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.aarch64",
"BaseOS-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.i686",
"BaseOS-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.ppc64le",
"BaseOS-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.s390x",
"BaseOS-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.x86_64",
"BaseOS-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"BaseOS-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.i686",
"BaseOS-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"BaseOS-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"BaseOS-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"BaseOS-9.4.0.Z.EUS:glib2-doc-0:2.68.4-14.el9_4.3.noarch",
"BaseOS-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.aarch64",
"BaseOS-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.i686",
"BaseOS-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.ppc64le",
"BaseOS-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.s390x",
"BaseOS-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.x86_64",
"BaseOS-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.aarch64",
"BaseOS-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.ppc64le",
"BaseOS-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.s390x",
"BaseOS-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.x86_64",
"BaseOS-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"BaseOS-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.i686",
"BaseOS-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"BaseOS-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"BaseOS-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"CRB-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.aarch64",
"CRB-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.i686",
"CRB-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.ppc64le",
"CRB-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.s390x",
"CRB-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.src",
"CRB-9.4.0.Z.EUS:glib2-0:2.68.4-14.el9_4.3.x86_64",
"CRB-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"CRB-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.i686",
"CRB-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"CRB-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"CRB-9.4.0.Z.EUS:glib2-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"CRB-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.aarch64",
"CRB-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.i686",
"CRB-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.ppc64le",
"CRB-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.s390x",
"CRB-9.4.0.Z.EUS:glib2-debugsource-0:2.68.4-14.el9_4.3.x86_64",
"CRB-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.aarch64",
"CRB-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.i686",
"CRB-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.ppc64le",
"CRB-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.s390x",
"CRB-9.4.0.Z.EUS:glib2-devel-0:2.68.4-14.el9_4.3.x86_64",
"CRB-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"CRB-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.i686",
"CRB-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"CRB-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"CRB-9.4.0.Z.EUS:glib2-devel-debuginfo-0:2.68.4-14.el9_4.3.x86_64",
"CRB-9.4.0.Z.EUS:glib2-doc-0:2.68.4-14.el9_4.3.noarch",
"CRB-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.aarch64",
"CRB-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.i686",
"CRB-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.ppc64le",
"CRB-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.s390x",
"CRB-9.4.0.Z.EUS:glib2-static-0:2.68.4-14.el9_4.3.x86_64",
"CRB-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.aarch64",
"CRB-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.ppc64le",
"CRB-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.s390x",
"CRB-9.4.0.Z.EUS:glib2-tests-0:2.68.4-14.el9_4.3.x86_64",
"CRB-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.aarch64",
"CRB-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.i686",
"CRB-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.ppc64le",
"CRB-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.s390x",
"CRB-9.4.0.Z.EUS:glib2-tests-debuginfo-0:2.68.4-14.el9_4.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "glib: Buffer Underflow on GLib through glib/gstring.c via function g_string_insert_unichar"
}
]
}
rhsa-2025:14991
Vulnerability from csaf_redhat
Published
2025-09-02 02:10
Modified
2025-10-10 00:20
Summary
Red Hat Security Advisory: glib2 security update
Notes
Topic
An update for glib2 is now available for Red Hat Enterprise Linux 8.2 Advanced Update Support.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
GLib provides the core application building blocks for libraries and applications written in C. It provides the core object system used in GNOME, the main loop implementation, and a large set of utility functions for strings and common data structures.
Security Fix(es):
* glib2: Signal subscription vulnerabilities (CVE-2024-34397)
* glib: buffer overflow in set_connect_msg() (CVE-2024-52533)
* glib: Buffer Underflow on GLib through glib/gstring.c via function g_string_insert_unichar (CVE-2025-4373)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for glib2 is now available for Red Hat Enterprise Linux 8.2 Advanced Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "GLib provides the core application building blocks for libraries and applications written in C. It provides the core object system used in GNOME, the main loop implementation, and a large set of utility functions for strings and common data structures.\n\nSecurity Fix(es):\n\n* glib2: Signal subscription vulnerabilities (CVE-2024-34397)\n\n* glib: buffer overflow in set_connect_msg() (CVE-2024-52533)\n\n* glib: Buffer Underflow on GLib through glib/gstring.c via function g_string_insert_unichar (CVE-2025-4373)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:14991",
"url": "https://access.redhat.com/errata/RHSA-2025:14991"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "2279632",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2279632"
},
{
"category": "external",
"summary": "2325340",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2325340"
},
{
"category": "external",
"summary": "2364265",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2364265"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_14991.json"
}
],
"title": "Red Hat Security Advisory: glib2 security update",
"tracking": {
"current_release_date": "2025-10-10T00:20:27+00:00",
"generator": {
"date": "2025-10-10T00:20:27+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.9"
}
},
"id": "RHSA-2025:14991",
"initial_release_date": "2025-09-02T02:10:04+00:00",
"revision_history": [
{
"date": "2025-09-02T02:10:04+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-09-02T02:10:04+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-10T00:20:27+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux BaseOS AUS (v. 8.2)",
"product": {
"name": "Red Hat Enterprise Linux BaseOS AUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.AUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_aus:8.2::baseos"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "glib2-0:2.56.4-8.el8_2.2.src",
"product": {
"name": "glib2-0:2.56.4-8.el8_2.2.src",
"product_id": "glib2-0:2.56.4-8.el8_2.2.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2@2.56.4-8.el8_2.2?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "glib2-0:2.56.4-8.el8_2.2.i686",
"product": {
"name": "glib2-0:2.56.4-8.el8_2.2.i686",
"product_id": "glib2-0:2.56.4-8.el8_2.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2@2.56.4-8.el8_2.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "glib2-devel-0:2.56.4-8.el8_2.2.i686",
"product": {
"name": "glib2-devel-0:2.56.4-8.el8_2.2.i686",
"product_id": "glib2-devel-0:2.56.4-8.el8_2.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel@2.56.4-8.el8_2.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "glib2-debugsource-0:2.56.4-8.el8_2.2.i686",
"product": {
"name": "glib2-debugsource-0:2.56.4-8.el8_2.2.i686",
"product_id": "glib2-debugsource-0:2.56.4-8.el8_2.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debugsource@2.56.4-8.el8_2.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "glib2-debuginfo-0:2.56.4-8.el8_2.2.i686",
"product": {
"name": "glib2-debuginfo-0:2.56.4-8.el8_2.2.i686",
"product_id": "glib2-debuginfo-0:2.56.4-8.el8_2.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debuginfo@2.56.4-8.el8_2.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "glib2-devel-debuginfo-0:2.56.4-8.el8_2.2.i686",
"product": {
"name": "glib2-devel-debuginfo-0:2.56.4-8.el8_2.2.i686",
"product_id": "glib2-devel-debuginfo-0:2.56.4-8.el8_2.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel-debuginfo@2.56.4-8.el8_2.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "glib2-fam-debuginfo-0:2.56.4-8.el8_2.2.i686",
"product": {
"name": "glib2-fam-debuginfo-0:2.56.4-8.el8_2.2.i686",
"product_id": "glib2-fam-debuginfo-0:2.56.4-8.el8_2.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-fam-debuginfo@2.56.4-8.el8_2.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "glib2-tests-debuginfo-0:2.56.4-8.el8_2.2.i686",
"product": {
"name": "glib2-tests-debuginfo-0:2.56.4-8.el8_2.2.i686",
"product_id": "glib2-tests-debuginfo-0:2.56.4-8.el8_2.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-tests-debuginfo@2.56.4-8.el8_2.2?arch=i686"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "glib2-0:2.56.4-8.el8_2.2.x86_64",
"product": {
"name": "glib2-0:2.56.4-8.el8_2.2.x86_64",
"product_id": "glib2-0:2.56.4-8.el8_2.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2@2.56.4-8.el8_2.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glib2-devel-0:2.56.4-8.el8_2.2.x86_64",
"product": {
"name": "glib2-devel-0:2.56.4-8.el8_2.2.x86_64",
"product_id": "glib2-devel-0:2.56.4-8.el8_2.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel@2.56.4-8.el8_2.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glib2-fam-0:2.56.4-8.el8_2.2.x86_64",
"product": {
"name": "glib2-fam-0:2.56.4-8.el8_2.2.x86_64",
"product_id": "glib2-fam-0:2.56.4-8.el8_2.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-fam@2.56.4-8.el8_2.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glib2-tests-0:2.56.4-8.el8_2.2.x86_64",
"product": {
"name": "glib2-tests-0:2.56.4-8.el8_2.2.x86_64",
"product_id": "glib2-tests-0:2.56.4-8.el8_2.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-tests@2.56.4-8.el8_2.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glib2-debugsource-0:2.56.4-8.el8_2.2.x86_64",
"product": {
"name": "glib2-debugsource-0:2.56.4-8.el8_2.2.x86_64",
"product_id": "glib2-debugsource-0:2.56.4-8.el8_2.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debugsource@2.56.4-8.el8_2.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glib2-debuginfo-0:2.56.4-8.el8_2.2.x86_64",
"product": {
"name": "glib2-debuginfo-0:2.56.4-8.el8_2.2.x86_64",
"product_id": "glib2-debuginfo-0:2.56.4-8.el8_2.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debuginfo@2.56.4-8.el8_2.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glib2-devel-debuginfo-0:2.56.4-8.el8_2.2.x86_64",
"product": {
"name": "glib2-devel-debuginfo-0:2.56.4-8.el8_2.2.x86_64",
"product_id": "glib2-devel-debuginfo-0:2.56.4-8.el8_2.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel-debuginfo@2.56.4-8.el8_2.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glib2-fam-debuginfo-0:2.56.4-8.el8_2.2.x86_64",
"product": {
"name": "glib2-fam-debuginfo-0:2.56.4-8.el8_2.2.x86_64",
"product_id": "glib2-fam-debuginfo-0:2.56.4-8.el8_2.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-fam-debuginfo@2.56.4-8.el8_2.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glib2-tests-debuginfo-0:2.56.4-8.el8_2.2.x86_64",
"product": {
"name": "glib2-tests-debuginfo-0:2.56.4-8.el8_2.2.x86_64",
"product_id": "glib2-tests-debuginfo-0:2.56.4-8.el8_2.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-tests-debuginfo@2.56.4-8.el8_2.2?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.56.4-8.el8_2.2.i686 as a component of Red Hat Enterprise Linux BaseOS AUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.AUS:glib2-0:2.56.4-8.el8_2.2.i686"
},
"product_reference": "glib2-0:2.56.4-8.el8_2.2.i686",
"relates_to_product_reference": "BaseOS-8.2.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.56.4-8.el8_2.2.src as a component of Red Hat Enterprise Linux BaseOS AUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.AUS:glib2-0:2.56.4-8.el8_2.2.src"
},
"product_reference": "glib2-0:2.56.4-8.el8_2.2.src",
"relates_to_product_reference": "BaseOS-8.2.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.56.4-8.el8_2.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.AUS:glib2-0:2.56.4-8.el8_2.2.x86_64"
},
"product_reference": "glib2-0:2.56.4-8.el8_2.2.x86_64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.56.4-8.el8_2.2.i686 as a component of Red Hat Enterprise Linux BaseOS AUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.AUS:glib2-debuginfo-0:2.56.4-8.el8_2.2.i686"
},
"product_reference": "glib2-debuginfo-0:2.56.4-8.el8_2.2.i686",
"relates_to_product_reference": "BaseOS-8.2.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.56.4-8.el8_2.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.AUS:glib2-debuginfo-0:2.56.4-8.el8_2.2.x86_64"
},
"product_reference": "glib2-debuginfo-0:2.56.4-8.el8_2.2.x86_64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.56.4-8.el8_2.2.i686 as a component of Red Hat Enterprise Linux BaseOS AUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.AUS:glib2-debugsource-0:2.56.4-8.el8_2.2.i686"
},
"product_reference": "glib2-debugsource-0:2.56.4-8.el8_2.2.i686",
"relates_to_product_reference": "BaseOS-8.2.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.56.4-8.el8_2.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.AUS:glib2-debugsource-0:2.56.4-8.el8_2.2.x86_64"
},
"product_reference": "glib2-debugsource-0:2.56.4-8.el8_2.2.x86_64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.56.4-8.el8_2.2.i686 as a component of Red Hat Enterprise Linux BaseOS AUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.AUS:glib2-devel-0:2.56.4-8.el8_2.2.i686"
},
"product_reference": "glib2-devel-0:2.56.4-8.el8_2.2.i686",
"relates_to_product_reference": "BaseOS-8.2.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.56.4-8.el8_2.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.AUS:glib2-devel-0:2.56.4-8.el8_2.2.x86_64"
},
"product_reference": "glib2-devel-0:2.56.4-8.el8_2.2.x86_64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.56.4-8.el8_2.2.i686 as a component of Red Hat Enterprise Linux BaseOS AUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.AUS:glib2-devel-debuginfo-0:2.56.4-8.el8_2.2.i686"
},
"product_reference": "glib2-devel-debuginfo-0:2.56.4-8.el8_2.2.i686",
"relates_to_product_reference": "BaseOS-8.2.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.56.4-8.el8_2.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.AUS:glib2-devel-debuginfo-0:2.56.4-8.el8_2.2.x86_64"
},
"product_reference": "glib2-devel-debuginfo-0:2.56.4-8.el8_2.2.x86_64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-fam-0:2.56.4-8.el8_2.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.AUS:glib2-fam-0:2.56.4-8.el8_2.2.x86_64"
},
"product_reference": "glib2-fam-0:2.56.4-8.el8_2.2.x86_64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-fam-debuginfo-0:2.56.4-8.el8_2.2.i686 as a component of Red Hat Enterprise Linux BaseOS AUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.AUS:glib2-fam-debuginfo-0:2.56.4-8.el8_2.2.i686"
},
"product_reference": "glib2-fam-debuginfo-0:2.56.4-8.el8_2.2.i686",
"relates_to_product_reference": "BaseOS-8.2.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-fam-debuginfo-0:2.56.4-8.el8_2.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.AUS:glib2-fam-debuginfo-0:2.56.4-8.el8_2.2.x86_64"
},
"product_reference": "glib2-fam-debuginfo-0:2.56.4-8.el8_2.2.x86_64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-0:2.56.4-8.el8_2.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.AUS:glib2-tests-0:2.56.4-8.el8_2.2.x86_64"
},
"product_reference": "glib2-tests-0:2.56.4-8.el8_2.2.x86_64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.56.4-8.el8_2.2.i686 as a component of Red Hat Enterprise Linux BaseOS AUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.AUS:glib2-tests-debuginfo-0:2.56.4-8.el8_2.2.i686"
},
"product_reference": "glib2-tests-debuginfo-0:2.56.4-8.el8_2.2.i686",
"relates_to_product_reference": "BaseOS-8.2.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.56.4-8.el8_2.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.AUS:glib2-tests-debuginfo-0:2.56.4-8.el8_2.2.x86_64"
},
"product_reference": "glib2-tests-debuginfo-0:2.56.4-8.el8_2.2.x86_64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.AUS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-34397",
"cwe": {
"id": "CWE-940",
"name": "Improper Verification of Source of a Communication Channel"
},
"discovery_date": "2024-05-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2279632"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in GNOME GLib. When a GDBus-based client subscribes to signals from a trusted system service such as NetworkManager on a shared computer, other users of the same computer can send spoofed D-Bus signals that the GDBus-based client will wrongly interpret as having been sent by the trusted system service. This issue could lead to the GDBus-based client behaving incorrectly with an application-dependent impact.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "glib2: Signal subscription vulnerabilities",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.2.0.Z.AUS:glib2-0:2.56.4-8.el8_2.2.i686",
"BaseOS-8.2.0.Z.AUS:glib2-0:2.56.4-8.el8_2.2.src",
"BaseOS-8.2.0.Z.AUS:glib2-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-debuginfo-0:2.56.4-8.el8_2.2.i686",
"BaseOS-8.2.0.Z.AUS:glib2-debuginfo-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-debugsource-0:2.56.4-8.el8_2.2.i686",
"BaseOS-8.2.0.Z.AUS:glib2-debugsource-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-devel-0:2.56.4-8.el8_2.2.i686",
"BaseOS-8.2.0.Z.AUS:glib2-devel-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-devel-debuginfo-0:2.56.4-8.el8_2.2.i686",
"BaseOS-8.2.0.Z.AUS:glib2-devel-debuginfo-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-fam-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-fam-debuginfo-0:2.56.4-8.el8_2.2.i686",
"BaseOS-8.2.0.Z.AUS:glib2-fam-debuginfo-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-tests-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-tests-debuginfo-0:2.56.4-8.el8_2.2.i686",
"BaseOS-8.2.0.Z.AUS:glib2-tests-debuginfo-0:2.56.4-8.el8_2.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-34397"
},
{
"category": "external",
"summary": "RHBZ#2279632",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2279632"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-34397",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34397"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-34397",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-34397"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/GNOME/glib/-/issues/3268",
"url": "https://gitlab.gnome.org/GNOME/glib/-/issues/3268"
},
{
"category": "external",
"summary": "https://www.openwall.com/lists/oss-security/2024/05/07/5",
"url": "https://www.openwall.com/lists/oss-security/2024/05/07/5"
}
],
"release_date": "2024-05-07T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-02T02:10:04+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.2.0.Z.AUS:glib2-0:2.56.4-8.el8_2.2.i686",
"BaseOS-8.2.0.Z.AUS:glib2-0:2.56.4-8.el8_2.2.src",
"BaseOS-8.2.0.Z.AUS:glib2-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-debuginfo-0:2.56.4-8.el8_2.2.i686",
"BaseOS-8.2.0.Z.AUS:glib2-debuginfo-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-debugsource-0:2.56.4-8.el8_2.2.i686",
"BaseOS-8.2.0.Z.AUS:glib2-debugsource-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-devel-0:2.56.4-8.el8_2.2.i686",
"BaseOS-8.2.0.Z.AUS:glib2-devel-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-devel-debuginfo-0:2.56.4-8.el8_2.2.i686",
"BaseOS-8.2.0.Z.AUS:glib2-devel-debuginfo-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-fam-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-fam-debuginfo-0:2.56.4-8.el8_2.2.i686",
"BaseOS-8.2.0.Z.AUS:glib2-fam-debuginfo-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-tests-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-tests-debuginfo-0:2.56.4-8.el8_2.2.i686",
"BaseOS-8.2.0.Z.AUS:glib2-tests-debuginfo-0:2.56.4-8.el8_2.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:14991"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 3.8,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"BaseOS-8.2.0.Z.AUS:glib2-0:2.56.4-8.el8_2.2.i686",
"BaseOS-8.2.0.Z.AUS:glib2-0:2.56.4-8.el8_2.2.src",
"BaseOS-8.2.0.Z.AUS:glib2-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-debuginfo-0:2.56.4-8.el8_2.2.i686",
"BaseOS-8.2.0.Z.AUS:glib2-debuginfo-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-debugsource-0:2.56.4-8.el8_2.2.i686",
"BaseOS-8.2.0.Z.AUS:glib2-debugsource-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-devel-0:2.56.4-8.el8_2.2.i686",
"BaseOS-8.2.0.Z.AUS:glib2-devel-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-devel-debuginfo-0:2.56.4-8.el8_2.2.i686",
"BaseOS-8.2.0.Z.AUS:glib2-devel-debuginfo-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-fam-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-fam-debuginfo-0:2.56.4-8.el8_2.2.i686",
"BaseOS-8.2.0.Z.AUS:glib2-fam-debuginfo-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-tests-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-tests-debuginfo-0:2.56.4-8.el8_2.2.i686",
"BaseOS-8.2.0.Z.AUS:glib2-tests-debuginfo-0:2.56.4-8.el8_2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "glib2: Signal subscription vulnerabilities"
},
{
"cve": "CVE-2024-52533",
"cwe": {
"id": "CWE-193",
"name": "Off-by-one Error"
},
"discovery_date": "2024-11-11T23:00:48.125765+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2325340"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Glib library. A buffer overflow condition can be triggered in certain conditions due to an off-by-one error in SOCKS4_CONN_MSG_LEN. This issue may lead to an application crash or other undefined behavior.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "glib: buffer overflow in set_connect_msg()",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.2.0.Z.AUS:glib2-0:2.56.4-8.el8_2.2.i686",
"BaseOS-8.2.0.Z.AUS:glib2-0:2.56.4-8.el8_2.2.src",
"BaseOS-8.2.0.Z.AUS:glib2-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-debuginfo-0:2.56.4-8.el8_2.2.i686",
"BaseOS-8.2.0.Z.AUS:glib2-debuginfo-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-debugsource-0:2.56.4-8.el8_2.2.i686",
"BaseOS-8.2.0.Z.AUS:glib2-debugsource-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-devel-0:2.56.4-8.el8_2.2.i686",
"BaseOS-8.2.0.Z.AUS:glib2-devel-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-devel-debuginfo-0:2.56.4-8.el8_2.2.i686",
"BaseOS-8.2.0.Z.AUS:glib2-devel-debuginfo-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-fam-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-fam-debuginfo-0:2.56.4-8.el8_2.2.i686",
"BaseOS-8.2.0.Z.AUS:glib2-fam-debuginfo-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-tests-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-tests-debuginfo-0:2.56.4-8.el8_2.2.i686",
"BaseOS-8.2.0.Z.AUS:glib2-tests-debuginfo-0:2.56.4-8.el8_2.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-52533"
},
{
"category": "external",
"summary": "RHBZ#2325340",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2325340"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-52533",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-52533"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-52533",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-52533"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/GNOME/glib/-/issues/3461",
"url": "https://gitlab.gnome.org/GNOME/glib/-/issues/3461"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/GNOME/glib/-/releases/2.82.1",
"url": "https://gitlab.gnome.org/GNOME/glib/-/releases/2.82.1"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/Teams/Releng/security/-/wikis/home",
"url": "https://gitlab.gnome.org/Teams/Releng/security/-/wikis/home"
}
],
"release_date": "2024-11-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-02T02:10:04+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.2.0.Z.AUS:glib2-0:2.56.4-8.el8_2.2.i686",
"BaseOS-8.2.0.Z.AUS:glib2-0:2.56.4-8.el8_2.2.src",
"BaseOS-8.2.0.Z.AUS:glib2-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-debuginfo-0:2.56.4-8.el8_2.2.i686",
"BaseOS-8.2.0.Z.AUS:glib2-debuginfo-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-debugsource-0:2.56.4-8.el8_2.2.i686",
"BaseOS-8.2.0.Z.AUS:glib2-debugsource-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-devel-0:2.56.4-8.el8_2.2.i686",
"BaseOS-8.2.0.Z.AUS:glib2-devel-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-devel-debuginfo-0:2.56.4-8.el8_2.2.i686",
"BaseOS-8.2.0.Z.AUS:glib2-devel-debuginfo-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-fam-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-fam-debuginfo-0:2.56.4-8.el8_2.2.i686",
"BaseOS-8.2.0.Z.AUS:glib2-fam-debuginfo-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-tests-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-tests-debuginfo-0:2.56.4-8.el8_2.2.i686",
"BaseOS-8.2.0.Z.AUS:glib2-tests-debuginfo-0:2.56.4-8.el8_2.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:14991"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"BaseOS-8.2.0.Z.AUS:glib2-0:2.56.4-8.el8_2.2.i686",
"BaseOS-8.2.0.Z.AUS:glib2-0:2.56.4-8.el8_2.2.src",
"BaseOS-8.2.0.Z.AUS:glib2-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-debuginfo-0:2.56.4-8.el8_2.2.i686",
"BaseOS-8.2.0.Z.AUS:glib2-debuginfo-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-debugsource-0:2.56.4-8.el8_2.2.i686",
"BaseOS-8.2.0.Z.AUS:glib2-debugsource-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-devel-0:2.56.4-8.el8_2.2.i686",
"BaseOS-8.2.0.Z.AUS:glib2-devel-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-devel-debuginfo-0:2.56.4-8.el8_2.2.i686",
"BaseOS-8.2.0.Z.AUS:glib2-devel-debuginfo-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-fam-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-fam-debuginfo-0:2.56.4-8.el8_2.2.i686",
"BaseOS-8.2.0.Z.AUS:glib2-fam-debuginfo-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-tests-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-tests-debuginfo-0:2.56.4-8.el8_2.2.i686",
"BaseOS-8.2.0.Z.AUS:glib2-tests-debuginfo-0:2.56.4-8.el8_2.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.2.0.Z.AUS:glib2-0:2.56.4-8.el8_2.2.i686",
"BaseOS-8.2.0.Z.AUS:glib2-0:2.56.4-8.el8_2.2.src",
"BaseOS-8.2.0.Z.AUS:glib2-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-debuginfo-0:2.56.4-8.el8_2.2.i686",
"BaseOS-8.2.0.Z.AUS:glib2-debuginfo-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-debugsource-0:2.56.4-8.el8_2.2.i686",
"BaseOS-8.2.0.Z.AUS:glib2-debugsource-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-devel-0:2.56.4-8.el8_2.2.i686",
"BaseOS-8.2.0.Z.AUS:glib2-devel-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-devel-debuginfo-0:2.56.4-8.el8_2.2.i686",
"BaseOS-8.2.0.Z.AUS:glib2-devel-debuginfo-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-fam-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-fam-debuginfo-0:2.56.4-8.el8_2.2.i686",
"BaseOS-8.2.0.Z.AUS:glib2-fam-debuginfo-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-tests-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-tests-debuginfo-0:2.56.4-8.el8_2.2.i686",
"BaseOS-8.2.0.Z.AUS:glib2-tests-debuginfo-0:2.56.4-8.el8_2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "glib: buffer overflow in set_connect_msg()"
},
{
"cve": "CVE-2025-4373",
"cwe": {
"id": "CWE-124",
"name": "Buffer Underwrite (\u0027Buffer Underflow\u0027)"
},
"discovery_date": "2025-05-06T00:33:30.003000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2364265"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in GLib, which is vulnerable to an integer overflow in the g_string_insert_unichar() function. When the position at which to insert the character is large, the position will overflow, leading to a buffer underwrite.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "glib: Buffer Underflow on GLib through glib/gstring.c via function g_string_insert_unichar",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Within regulated environments, a combination of the following controls acts as a significant barrier to the successful exploitation of a CWE-124: Buffer Underwrite (\u0027Buffer Underflow\u0027) vulnerability and therefore downgrades the severity of this particular CVE from Moderate to Low.\n\nSecure baseline configurations enforce strict memory handling policies, while change controls ensure any deviations are reviewed and approved. Least functionality reduces the attack surface by disabling unnecessary features that could introduce memory risks. Process isolation contains faults within individual workloads, minimizing broader impact. Real-time monitoring and malicious code protection detect and respond to abnormal memory behavior or exploitation attempts. Hardened configuration settings restrict low-level memory access, lowering the likelihood of unsafe operations. Finally, the platform uses memory protection mechanisms such as Data Execution Prevention (DEP) and Address Space Layout Randomization (ASLR) to strengthen resilience against buffer underwrite exploits.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.2.0.Z.AUS:glib2-0:2.56.4-8.el8_2.2.i686",
"BaseOS-8.2.0.Z.AUS:glib2-0:2.56.4-8.el8_2.2.src",
"BaseOS-8.2.0.Z.AUS:glib2-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-debuginfo-0:2.56.4-8.el8_2.2.i686",
"BaseOS-8.2.0.Z.AUS:glib2-debuginfo-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-debugsource-0:2.56.4-8.el8_2.2.i686",
"BaseOS-8.2.0.Z.AUS:glib2-debugsource-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-devel-0:2.56.4-8.el8_2.2.i686",
"BaseOS-8.2.0.Z.AUS:glib2-devel-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-devel-debuginfo-0:2.56.4-8.el8_2.2.i686",
"BaseOS-8.2.0.Z.AUS:glib2-devel-debuginfo-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-fam-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-fam-debuginfo-0:2.56.4-8.el8_2.2.i686",
"BaseOS-8.2.0.Z.AUS:glib2-fam-debuginfo-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-tests-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-tests-debuginfo-0:2.56.4-8.el8_2.2.i686",
"BaseOS-8.2.0.Z.AUS:glib2-tests-debuginfo-0:2.56.4-8.el8_2.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-4373"
},
{
"category": "external",
"summary": "RHBZ#2364265",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2364265"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-4373",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4373"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-4373",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-4373"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/GNOME/glib/-/issues/3677",
"url": "https://gitlab.gnome.org/GNOME/glib/-/issues/3677"
}
],
"release_date": "2025-05-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-02T02:10:04+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"BaseOS-8.2.0.Z.AUS:glib2-0:2.56.4-8.el8_2.2.i686",
"BaseOS-8.2.0.Z.AUS:glib2-0:2.56.4-8.el8_2.2.src",
"BaseOS-8.2.0.Z.AUS:glib2-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-debuginfo-0:2.56.4-8.el8_2.2.i686",
"BaseOS-8.2.0.Z.AUS:glib2-debuginfo-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-debugsource-0:2.56.4-8.el8_2.2.i686",
"BaseOS-8.2.0.Z.AUS:glib2-debugsource-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-devel-0:2.56.4-8.el8_2.2.i686",
"BaseOS-8.2.0.Z.AUS:glib2-devel-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-devel-debuginfo-0:2.56.4-8.el8_2.2.i686",
"BaseOS-8.2.0.Z.AUS:glib2-devel-debuginfo-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-fam-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-fam-debuginfo-0:2.56.4-8.el8_2.2.i686",
"BaseOS-8.2.0.Z.AUS:glib2-fam-debuginfo-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-tests-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-tests-debuginfo-0:2.56.4-8.el8_2.2.i686",
"BaseOS-8.2.0.Z.AUS:glib2-tests-debuginfo-0:2.56.4-8.el8_2.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:14991"
},
{
"category": "workaround",
"details": "Currently, no mitigation is available for this vulnerability.",
"product_ids": [
"BaseOS-8.2.0.Z.AUS:glib2-0:2.56.4-8.el8_2.2.i686",
"BaseOS-8.2.0.Z.AUS:glib2-0:2.56.4-8.el8_2.2.src",
"BaseOS-8.2.0.Z.AUS:glib2-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-debuginfo-0:2.56.4-8.el8_2.2.i686",
"BaseOS-8.2.0.Z.AUS:glib2-debuginfo-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-debugsource-0:2.56.4-8.el8_2.2.i686",
"BaseOS-8.2.0.Z.AUS:glib2-debugsource-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-devel-0:2.56.4-8.el8_2.2.i686",
"BaseOS-8.2.0.Z.AUS:glib2-devel-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-devel-debuginfo-0:2.56.4-8.el8_2.2.i686",
"BaseOS-8.2.0.Z.AUS:glib2-devel-debuginfo-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-fam-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-fam-debuginfo-0:2.56.4-8.el8_2.2.i686",
"BaseOS-8.2.0.Z.AUS:glib2-fam-debuginfo-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-tests-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-tests-debuginfo-0:2.56.4-8.el8_2.2.i686",
"BaseOS-8.2.0.Z.AUS:glib2-tests-debuginfo-0:2.56.4-8.el8_2.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"BaseOS-8.2.0.Z.AUS:glib2-0:2.56.4-8.el8_2.2.i686",
"BaseOS-8.2.0.Z.AUS:glib2-0:2.56.4-8.el8_2.2.src",
"BaseOS-8.2.0.Z.AUS:glib2-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-debuginfo-0:2.56.4-8.el8_2.2.i686",
"BaseOS-8.2.0.Z.AUS:glib2-debuginfo-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-debugsource-0:2.56.4-8.el8_2.2.i686",
"BaseOS-8.2.0.Z.AUS:glib2-debugsource-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-devel-0:2.56.4-8.el8_2.2.i686",
"BaseOS-8.2.0.Z.AUS:glib2-devel-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-devel-debuginfo-0:2.56.4-8.el8_2.2.i686",
"BaseOS-8.2.0.Z.AUS:glib2-devel-debuginfo-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-fam-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-fam-debuginfo-0:2.56.4-8.el8_2.2.i686",
"BaseOS-8.2.0.Z.AUS:glib2-fam-debuginfo-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-tests-0:2.56.4-8.el8_2.2.x86_64",
"BaseOS-8.2.0.Z.AUS:glib2-tests-debuginfo-0:2.56.4-8.el8_2.2.i686",
"BaseOS-8.2.0.Z.AUS:glib2-tests-debuginfo-0:2.56.4-8.el8_2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "glib: Buffer Underflow on GLib through glib/gstring.c via function g_string_insert_unichar"
}
]
}
rhsa-2025:11373
Vulnerability from csaf_redhat
Published
2025-07-17 09:12
Modified
2025-10-10 00:28
Summary
Red Hat Security Advisory: glib2 security update
Notes
Topic
An update for glib2 is now available for Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
GLib provides the core application building blocks for libraries and applications written in C. It provides the core object system used in GNOME, the main loop implementation, and a large set of utility functions for strings and common data structures.
Security Fix(es):
* glib: buffer overflow in set_connect_msg() (CVE-2024-52533)
* glib: Buffer Underflow on GLib through glib/gstring.c via function g_string_insert_unichar (CVE-2025-4373)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for glib2 is now available for Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "GLib provides the core application building blocks for libraries and applications written in C. It provides the core object system used in GNOME, the main loop implementation, and a large set of utility functions for strings and common data structures.\n\nSecurity Fix(es):\n\n* glib: buffer overflow in set_connect_msg() (CVE-2024-52533)\n\n* glib: Buffer Underflow on GLib through glib/gstring.c via function g_string_insert_unichar (CVE-2025-4373)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:11373",
"url": "https://access.redhat.com/errata/RHSA-2025:11373"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "2325340",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2325340"
},
{
"category": "external",
"summary": "2364265",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2364265"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_11373.json"
}
],
"title": "Red Hat Security Advisory: glib2 security update",
"tracking": {
"current_release_date": "2025-10-10T00:28:35+00:00",
"generator": {
"date": "2025-10-10T00:28:35+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.9"
}
},
"id": "RHSA-2025:11373",
"initial_release_date": "2025-07-17T09:12:15+00:00",
"revision_history": [
{
"date": "2025-07-17T09:12:15+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-07-17T09:12:15+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-10T00:28:35+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product": {
"name": "Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_e4s:9.2::appstream"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product": {
"name": "Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_e4s:9.2::baseos"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "glib2-0:2.68.4-7.el9_2.2.src",
"product": {
"name": "glib2-0:2.68.4-7.el9_2.2.src",
"product_id": "glib2-0:2.68.4-7.el9_2.2.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2@2.68.4-7.el9_2.2?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "glib2-0:2.68.4-7.el9_2.2.aarch64",
"product": {
"name": "glib2-0:2.68.4-7.el9_2.2.aarch64",
"product_id": "glib2-0:2.68.4-7.el9_2.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2@2.68.4-7.el9_2.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "glib2-debugsource-0:2.68.4-7.el9_2.2.aarch64",
"product": {
"name": "glib2-debugsource-0:2.68.4-7.el9_2.2.aarch64",
"product_id": "glib2-debugsource-0:2.68.4-7.el9_2.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debugsource@2.68.4-7.el9_2.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "glib2-debuginfo-0:2.68.4-7.el9_2.2.aarch64",
"product": {
"name": "glib2-debuginfo-0:2.68.4-7.el9_2.2.aarch64",
"product_id": "glib2-debuginfo-0:2.68.4-7.el9_2.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debuginfo@2.68.4-7.el9_2.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.aarch64",
"product": {
"name": "glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.aarch64",
"product_id": "glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel-debuginfo@2.68.4-7.el9_2.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.aarch64",
"product": {
"name": "glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.aarch64",
"product_id": "glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-tests-debuginfo@2.68.4-7.el9_2.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "glib2-devel-0:2.68.4-7.el9_2.2.aarch64",
"product": {
"name": "glib2-devel-0:2.68.4-7.el9_2.2.aarch64",
"product_id": "glib2-devel-0:2.68.4-7.el9_2.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel@2.68.4-7.el9_2.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "glib2-tests-0:2.68.4-7.el9_2.2.aarch64",
"product": {
"name": "glib2-tests-0:2.68.4-7.el9_2.2.aarch64",
"product_id": "glib2-tests-0:2.68.4-7.el9_2.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-tests@2.68.4-7.el9_2.2?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "glib2-0:2.68.4-7.el9_2.2.ppc64le",
"product": {
"name": "glib2-0:2.68.4-7.el9_2.2.ppc64le",
"product_id": "glib2-0:2.68.4-7.el9_2.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2@2.68.4-7.el9_2.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "glib2-debugsource-0:2.68.4-7.el9_2.2.ppc64le",
"product": {
"name": "glib2-debugsource-0:2.68.4-7.el9_2.2.ppc64le",
"product_id": "glib2-debugsource-0:2.68.4-7.el9_2.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debugsource@2.68.4-7.el9_2.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "glib2-debuginfo-0:2.68.4-7.el9_2.2.ppc64le",
"product": {
"name": "glib2-debuginfo-0:2.68.4-7.el9_2.2.ppc64le",
"product_id": "glib2-debuginfo-0:2.68.4-7.el9_2.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debuginfo@2.68.4-7.el9_2.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.ppc64le",
"product": {
"name": "glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.ppc64le",
"product_id": "glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel-debuginfo@2.68.4-7.el9_2.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.ppc64le",
"product": {
"name": "glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.ppc64le",
"product_id": "glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-tests-debuginfo@2.68.4-7.el9_2.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "glib2-devel-0:2.68.4-7.el9_2.2.ppc64le",
"product": {
"name": "glib2-devel-0:2.68.4-7.el9_2.2.ppc64le",
"product_id": "glib2-devel-0:2.68.4-7.el9_2.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel@2.68.4-7.el9_2.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "glib2-tests-0:2.68.4-7.el9_2.2.ppc64le",
"product": {
"name": "glib2-tests-0:2.68.4-7.el9_2.2.ppc64le",
"product_id": "glib2-tests-0:2.68.4-7.el9_2.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-tests@2.68.4-7.el9_2.2?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "glib2-0:2.68.4-7.el9_2.2.i686",
"product": {
"name": "glib2-0:2.68.4-7.el9_2.2.i686",
"product_id": "glib2-0:2.68.4-7.el9_2.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2@2.68.4-7.el9_2.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "glib2-debugsource-0:2.68.4-7.el9_2.2.i686",
"product": {
"name": "glib2-debugsource-0:2.68.4-7.el9_2.2.i686",
"product_id": "glib2-debugsource-0:2.68.4-7.el9_2.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debugsource@2.68.4-7.el9_2.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "glib2-debuginfo-0:2.68.4-7.el9_2.2.i686",
"product": {
"name": "glib2-debuginfo-0:2.68.4-7.el9_2.2.i686",
"product_id": "glib2-debuginfo-0:2.68.4-7.el9_2.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debuginfo@2.68.4-7.el9_2.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.i686",
"product": {
"name": "glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.i686",
"product_id": "glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel-debuginfo@2.68.4-7.el9_2.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.i686",
"product": {
"name": "glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.i686",
"product_id": "glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-tests-debuginfo@2.68.4-7.el9_2.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "glib2-devel-0:2.68.4-7.el9_2.2.i686",
"product": {
"name": "glib2-devel-0:2.68.4-7.el9_2.2.i686",
"product_id": "glib2-devel-0:2.68.4-7.el9_2.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel@2.68.4-7.el9_2.2?arch=i686"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "glib2-0:2.68.4-7.el9_2.2.x86_64",
"product": {
"name": "glib2-0:2.68.4-7.el9_2.2.x86_64",
"product_id": "glib2-0:2.68.4-7.el9_2.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2@2.68.4-7.el9_2.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glib2-debugsource-0:2.68.4-7.el9_2.2.x86_64",
"product": {
"name": "glib2-debugsource-0:2.68.4-7.el9_2.2.x86_64",
"product_id": "glib2-debugsource-0:2.68.4-7.el9_2.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debugsource@2.68.4-7.el9_2.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glib2-debuginfo-0:2.68.4-7.el9_2.2.x86_64",
"product": {
"name": "glib2-debuginfo-0:2.68.4-7.el9_2.2.x86_64",
"product_id": "glib2-debuginfo-0:2.68.4-7.el9_2.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debuginfo@2.68.4-7.el9_2.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.x86_64",
"product": {
"name": "glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.x86_64",
"product_id": "glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel-debuginfo@2.68.4-7.el9_2.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.x86_64",
"product": {
"name": "glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.x86_64",
"product_id": "glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-tests-debuginfo@2.68.4-7.el9_2.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glib2-devel-0:2.68.4-7.el9_2.2.x86_64",
"product": {
"name": "glib2-devel-0:2.68.4-7.el9_2.2.x86_64",
"product_id": "glib2-devel-0:2.68.4-7.el9_2.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel@2.68.4-7.el9_2.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glib2-tests-0:2.68.4-7.el9_2.2.x86_64",
"product": {
"name": "glib2-tests-0:2.68.4-7.el9_2.2.x86_64",
"product_id": "glib2-tests-0:2.68.4-7.el9_2.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-tests@2.68.4-7.el9_2.2?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "glib2-0:2.68.4-7.el9_2.2.s390x",
"product": {
"name": "glib2-0:2.68.4-7.el9_2.2.s390x",
"product_id": "glib2-0:2.68.4-7.el9_2.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2@2.68.4-7.el9_2.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "glib2-debugsource-0:2.68.4-7.el9_2.2.s390x",
"product": {
"name": "glib2-debugsource-0:2.68.4-7.el9_2.2.s390x",
"product_id": "glib2-debugsource-0:2.68.4-7.el9_2.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debugsource@2.68.4-7.el9_2.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "glib2-debuginfo-0:2.68.4-7.el9_2.2.s390x",
"product": {
"name": "glib2-debuginfo-0:2.68.4-7.el9_2.2.s390x",
"product_id": "glib2-debuginfo-0:2.68.4-7.el9_2.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debuginfo@2.68.4-7.el9_2.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.s390x",
"product": {
"name": "glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.s390x",
"product_id": "glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel-debuginfo@2.68.4-7.el9_2.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.s390x",
"product": {
"name": "glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.s390x",
"product_id": "glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-tests-debuginfo@2.68.4-7.el9_2.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "glib2-devel-0:2.68.4-7.el9_2.2.s390x",
"product": {
"name": "glib2-devel-0:2.68.4-7.el9_2.2.s390x",
"product_id": "glib2-devel-0:2.68.4-7.el9_2.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel@2.68.4-7.el9_2.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "glib2-tests-0:2.68.4-7.el9_2.2.s390x",
"product": {
"name": "glib2-tests-0:2.68.4-7.el9_2.2.s390x",
"product_id": "glib2-tests-0:2.68.4-7.el9_2.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-tests@2.68.4-7.el9_2.2?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "glib2-doc-0:2.68.4-7.el9_2.2.noarch",
"product": {
"name": "glib2-doc-0:2.68.4-7.el9_2.2.noarch",
"product_id": "glib2-doc-0:2.68.4-7.el9_2.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-doc@2.68.4-7.el9_2.2?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.68.4-7.el9_2.2.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.aarch64"
},
"product_reference": "glib2-0:2.68.4-7.el9_2.2.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.68.4-7.el9_2.2.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.i686"
},
"product_reference": "glib2-0:2.68.4-7.el9_2.2.i686",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.68.4-7.el9_2.2.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.ppc64le"
},
"product_reference": "glib2-0:2.68.4-7.el9_2.2.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.68.4-7.el9_2.2.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.s390x"
},
"product_reference": "glib2-0:2.68.4-7.el9_2.2.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.68.4-7.el9_2.2.src as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.src"
},
"product_reference": "glib2-0:2.68.4-7.el9_2.2.src",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.68.4-7.el9_2.2.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.x86_64"
},
"product_reference": "glib2-0:2.68.4-7.el9_2.2.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.68.4-7.el9_2.2.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.aarch64"
},
"product_reference": "glib2-debuginfo-0:2.68.4-7.el9_2.2.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.68.4-7.el9_2.2.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.i686"
},
"product_reference": "glib2-debuginfo-0:2.68.4-7.el9_2.2.i686",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.68.4-7.el9_2.2.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.ppc64le"
},
"product_reference": "glib2-debuginfo-0:2.68.4-7.el9_2.2.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.68.4-7.el9_2.2.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.s390x"
},
"product_reference": "glib2-debuginfo-0:2.68.4-7.el9_2.2.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.68.4-7.el9_2.2.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.x86_64"
},
"product_reference": "glib2-debuginfo-0:2.68.4-7.el9_2.2.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.68.4-7.el9_2.2.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.aarch64"
},
"product_reference": "glib2-debugsource-0:2.68.4-7.el9_2.2.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.68.4-7.el9_2.2.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.i686"
},
"product_reference": "glib2-debugsource-0:2.68.4-7.el9_2.2.i686",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.68.4-7.el9_2.2.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.ppc64le"
},
"product_reference": "glib2-debugsource-0:2.68.4-7.el9_2.2.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.68.4-7.el9_2.2.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.s390x"
},
"product_reference": "glib2-debugsource-0:2.68.4-7.el9_2.2.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.68.4-7.el9_2.2.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.x86_64"
},
"product_reference": "glib2-debugsource-0:2.68.4-7.el9_2.2.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.68.4-7.el9_2.2.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.aarch64"
},
"product_reference": "glib2-devel-0:2.68.4-7.el9_2.2.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.68.4-7.el9_2.2.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.i686"
},
"product_reference": "glib2-devel-0:2.68.4-7.el9_2.2.i686",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.68.4-7.el9_2.2.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.ppc64le"
},
"product_reference": "glib2-devel-0:2.68.4-7.el9_2.2.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.68.4-7.el9_2.2.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.s390x"
},
"product_reference": "glib2-devel-0:2.68.4-7.el9_2.2.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.68.4-7.el9_2.2.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.x86_64"
},
"product_reference": "glib2-devel-0:2.68.4-7.el9_2.2.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.aarch64"
},
"product_reference": "glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.i686"
},
"product_reference": "glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.i686",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.ppc64le"
},
"product_reference": "glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.s390x"
},
"product_reference": "glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.x86_64"
},
"product_reference": "glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-doc-0:2.68.4-7.el9_2.2.noarch as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:glib2-doc-0:2.68.4-7.el9_2.2.noarch"
},
"product_reference": "glib2-doc-0:2.68.4-7.el9_2.2.noarch",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-0:2.68.4-7.el9_2.2.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:glib2-tests-0:2.68.4-7.el9_2.2.aarch64"
},
"product_reference": "glib2-tests-0:2.68.4-7.el9_2.2.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-0:2.68.4-7.el9_2.2.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:glib2-tests-0:2.68.4-7.el9_2.2.ppc64le"
},
"product_reference": "glib2-tests-0:2.68.4-7.el9_2.2.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-0:2.68.4-7.el9_2.2.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:glib2-tests-0:2.68.4-7.el9_2.2.s390x"
},
"product_reference": "glib2-tests-0:2.68.4-7.el9_2.2.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-0:2.68.4-7.el9_2.2.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:glib2-tests-0:2.68.4-7.el9_2.2.x86_64"
},
"product_reference": "glib2-tests-0:2.68.4-7.el9_2.2.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.aarch64"
},
"product_reference": "glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.i686"
},
"product_reference": "glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.i686",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.ppc64le"
},
"product_reference": "glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.s390x"
},
"product_reference": "glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.x86_64"
},
"product_reference": "glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.68.4-7.el9_2.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.aarch64"
},
"product_reference": "glib2-0:2.68.4-7.el9_2.2.aarch64",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.68.4-7.el9_2.2.i686 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.i686"
},
"product_reference": "glib2-0:2.68.4-7.el9_2.2.i686",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.68.4-7.el9_2.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.ppc64le"
},
"product_reference": "glib2-0:2.68.4-7.el9_2.2.ppc64le",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.68.4-7.el9_2.2.s390x as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.s390x"
},
"product_reference": "glib2-0:2.68.4-7.el9_2.2.s390x",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.68.4-7.el9_2.2.src as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.src"
},
"product_reference": "glib2-0:2.68.4-7.el9_2.2.src",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.68.4-7.el9_2.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.x86_64"
},
"product_reference": "glib2-0:2.68.4-7.el9_2.2.x86_64",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.68.4-7.el9_2.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.aarch64"
},
"product_reference": "glib2-debuginfo-0:2.68.4-7.el9_2.2.aarch64",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.68.4-7.el9_2.2.i686 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.i686"
},
"product_reference": "glib2-debuginfo-0:2.68.4-7.el9_2.2.i686",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.68.4-7.el9_2.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.ppc64le"
},
"product_reference": "glib2-debuginfo-0:2.68.4-7.el9_2.2.ppc64le",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.68.4-7.el9_2.2.s390x as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.s390x"
},
"product_reference": "glib2-debuginfo-0:2.68.4-7.el9_2.2.s390x",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.68.4-7.el9_2.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.x86_64"
},
"product_reference": "glib2-debuginfo-0:2.68.4-7.el9_2.2.x86_64",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.68.4-7.el9_2.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.aarch64"
},
"product_reference": "glib2-debugsource-0:2.68.4-7.el9_2.2.aarch64",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.68.4-7.el9_2.2.i686 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.i686"
},
"product_reference": "glib2-debugsource-0:2.68.4-7.el9_2.2.i686",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.68.4-7.el9_2.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.ppc64le"
},
"product_reference": "glib2-debugsource-0:2.68.4-7.el9_2.2.ppc64le",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.68.4-7.el9_2.2.s390x as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.s390x"
},
"product_reference": "glib2-debugsource-0:2.68.4-7.el9_2.2.s390x",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.68.4-7.el9_2.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.x86_64"
},
"product_reference": "glib2-debugsource-0:2.68.4-7.el9_2.2.x86_64",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.68.4-7.el9_2.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.aarch64"
},
"product_reference": "glib2-devel-0:2.68.4-7.el9_2.2.aarch64",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.68.4-7.el9_2.2.i686 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.i686"
},
"product_reference": "glib2-devel-0:2.68.4-7.el9_2.2.i686",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.68.4-7.el9_2.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.ppc64le"
},
"product_reference": "glib2-devel-0:2.68.4-7.el9_2.2.ppc64le",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.68.4-7.el9_2.2.s390x as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.s390x"
},
"product_reference": "glib2-devel-0:2.68.4-7.el9_2.2.s390x",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.68.4-7.el9_2.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.x86_64"
},
"product_reference": "glib2-devel-0:2.68.4-7.el9_2.2.x86_64",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.aarch64"
},
"product_reference": "glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.aarch64",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.i686 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.i686"
},
"product_reference": "glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.i686",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.ppc64le"
},
"product_reference": "glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.ppc64le",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.s390x as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.s390x"
},
"product_reference": "glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.s390x",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.x86_64"
},
"product_reference": "glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.x86_64",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-doc-0:2.68.4-7.el9_2.2.noarch as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:glib2-doc-0:2.68.4-7.el9_2.2.noarch"
},
"product_reference": "glib2-doc-0:2.68.4-7.el9_2.2.noarch",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-0:2.68.4-7.el9_2.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:glib2-tests-0:2.68.4-7.el9_2.2.aarch64"
},
"product_reference": "glib2-tests-0:2.68.4-7.el9_2.2.aarch64",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-0:2.68.4-7.el9_2.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:glib2-tests-0:2.68.4-7.el9_2.2.ppc64le"
},
"product_reference": "glib2-tests-0:2.68.4-7.el9_2.2.ppc64le",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-0:2.68.4-7.el9_2.2.s390x as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:glib2-tests-0:2.68.4-7.el9_2.2.s390x"
},
"product_reference": "glib2-tests-0:2.68.4-7.el9_2.2.s390x",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-0:2.68.4-7.el9_2.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:glib2-tests-0:2.68.4-7.el9_2.2.x86_64"
},
"product_reference": "glib2-tests-0:2.68.4-7.el9_2.2.x86_64",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.aarch64"
},
"product_reference": "glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.aarch64",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.i686 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.i686"
},
"product_reference": "glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.i686",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.ppc64le"
},
"product_reference": "glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.ppc64le",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.s390x as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.s390x"
},
"product_reference": "glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.s390x",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.x86_64"
},
"product_reference": "glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.x86_64",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-52533",
"cwe": {
"id": "CWE-193",
"name": "Off-by-one Error"
},
"discovery_date": "2024-11-11T23:00:48.125765+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2325340"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Glib library. A buffer overflow condition can be triggered in certain conditions due to an off-by-one error in SOCKS4_CONN_MSG_LEN. This issue may lead to an application crash or other undefined behavior.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "glib: buffer overflow in set_connect_msg()",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.src",
"AppStream-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:glib2-doc-0:2.68.4-7.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:glib2-tests-0:2.68.4-7.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:glib2-tests-0:2.68.4-7.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:glib2-tests-0:2.68.4-7.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:glib2-tests-0:2.68.4-7.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.src",
"BaseOS-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:glib2-doc-0:2.68.4-7.el9_2.2.noarch",
"BaseOS-9.2.0.Z.E4S:glib2-tests-0:2.68.4-7.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:glib2-tests-0:2.68.4-7.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:glib2-tests-0:2.68.4-7.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:glib2-tests-0:2.68.4-7.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-52533"
},
{
"category": "external",
"summary": "RHBZ#2325340",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2325340"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-52533",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-52533"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-52533",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-52533"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/GNOME/glib/-/issues/3461",
"url": "https://gitlab.gnome.org/GNOME/glib/-/issues/3461"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/GNOME/glib/-/releases/2.82.1",
"url": "https://gitlab.gnome.org/GNOME/glib/-/releases/2.82.1"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/Teams/Releng/security/-/wikis/home",
"url": "https://gitlab.gnome.org/Teams/Releng/security/-/wikis/home"
}
],
"release_date": "2024-11-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-07-17T09:12:15+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.src",
"AppStream-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:glib2-doc-0:2.68.4-7.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:glib2-tests-0:2.68.4-7.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:glib2-tests-0:2.68.4-7.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:glib2-tests-0:2.68.4-7.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:glib2-tests-0:2.68.4-7.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.src",
"BaseOS-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:glib2-doc-0:2.68.4-7.el9_2.2.noarch",
"BaseOS-9.2.0.Z.E4S:glib2-tests-0:2.68.4-7.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:glib2-tests-0:2.68.4-7.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:glib2-tests-0:2.68.4-7.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:glib2-tests-0:2.68.4-7.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:11373"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.src",
"AppStream-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:glib2-doc-0:2.68.4-7.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:glib2-tests-0:2.68.4-7.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:glib2-tests-0:2.68.4-7.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:glib2-tests-0:2.68.4-7.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:glib2-tests-0:2.68.4-7.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.src",
"BaseOS-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:glib2-doc-0:2.68.4-7.el9_2.2.noarch",
"BaseOS-9.2.0.Z.E4S:glib2-tests-0:2.68.4-7.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:glib2-tests-0:2.68.4-7.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:glib2-tests-0:2.68.4-7.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:glib2-tests-0:2.68.4-7.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.src",
"AppStream-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:glib2-doc-0:2.68.4-7.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:glib2-tests-0:2.68.4-7.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:glib2-tests-0:2.68.4-7.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:glib2-tests-0:2.68.4-7.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:glib2-tests-0:2.68.4-7.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.src",
"BaseOS-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:glib2-doc-0:2.68.4-7.el9_2.2.noarch",
"BaseOS-9.2.0.Z.E4S:glib2-tests-0:2.68.4-7.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:glib2-tests-0:2.68.4-7.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:glib2-tests-0:2.68.4-7.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:glib2-tests-0:2.68.4-7.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "glib: buffer overflow in set_connect_msg()"
},
{
"cve": "CVE-2025-4373",
"cwe": {
"id": "CWE-124",
"name": "Buffer Underwrite (\u0027Buffer Underflow\u0027)"
},
"discovery_date": "2025-05-06T00:33:30.003000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2364265"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in GLib, which is vulnerable to an integer overflow in the g_string_insert_unichar() function. When the position at which to insert the character is large, the position will overflow, leading to a buffer underwrite.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "glib: Buffer Underflow on GLib through glib/gstring.c via function g_string_insert_unichar",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Within regulated environments, a combination of the following controls acts as a significant barrier to the successful exploitation of a CWE-124: Buffer Underwrite (\u0027Buffer Underflow\u0027) vulnerability and therefore downgrades the severity of this particular CVE from Moderate to Low.\n\nSecure baseline configurations enforce strict memory handling policies, while change controls ensure any deviations are reviewed and approved. Least functionality reduces the attack surface by disabling unnecessary features that could introduce memory risks. Process isolation contains faults within individual workloads, minimizing broader impact. Real-time monitoring and malicious code protection detect and respond to abnormal memory behavior or exploitation attempts. Hardened configuration settings restrict low-level memory access, lowering the likelihood of unsafe operations. Finally, the platform uses memory protection mechanisms such as Data Execution Prevention (DEP) and Address Space Layout Randomization (ASLR) to strengthen resilience against buffer underwrite exploits.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.src",
"AppStream-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:glib2-doc-0:2.68.4-7.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:glib2-tests-0:2.68.4-7.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:glib2-tests-0:2.68.4-7.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:glib2-tests-0:2.68.4-7.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:glib2-tests-0:2.68.4-7.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.src",
"BaseOS-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:glib2-doc-0:2.68.4-7.el9_2.2.noarch",
"BaseOS-9.2.0.Z.E4S:glib2-tests-0:2.68.4-7.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:glib2-tests-0:2.68.4-7.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:glib2-tests-0:2.68.4-7.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:glib2-tests-0:2.68.4-7.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-4373"
},
{
"category": "external",
"summary": "RHBZ#2364265",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2364265"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-4373",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4373"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-4373",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-4373"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/GNOME/glib/-/issues/3677",
"url": "https://gitlab.gnome.org/GNOME/glib/-/issues/3677"
}
],
"release_date": "2025-05-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-07-17T09:12:15+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.src",
"AppStream-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:glib2-doc-0:2.68.4-7.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:glib2-tests-0:2.68.4-7.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:glib2-tests-0:2.68.4-7.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:glib2-tests-0:2.68.4-7.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:glib2-tests-0:2.68.4-7.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.src",
"BaseOS-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:glib2-doc-0:2.68.4-7.el9_2.2.noarch",
"BaseOS-9.2.0.Z.E4S:glib2-tests-0:2.68.4-7.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:glib2-tests-0:2.68.4-7.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:glib2-tests-0:2.68.4-7.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:glib2-tests-0:2.68.4-7.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:11373"
},
{
"category": "workaround",
"details": "Currently, no mitigation is available for this vulnerability.",
"product_ids": [
"AppStream-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.src",
"AppStream-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:glib2-doc-0:2.68.4-7.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:glib2-tests-0:2.68.4-7.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:glib2-tests-0:2.68.4-7.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:glib2-tests-0:2.68.4-7.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:glib2-tests-0:2.68.4-7.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.src",
"BaseOS-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:glib2-doc-0:2.68.4-7.el9_2.2.noarch",
"BaseOS-9.2.0.Z.E4S:glib2-tests-0:2.68.4-7.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:glib2-tests-0:2.68.4-7.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:glib2-tests-0:2.68.4-7.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:glib2-tests-0:2.68.4-7.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"AppStream-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.src",
"AppStream-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:glib2-doc-0:2.68.4-7.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:glib2-tests-0:2.68.4-7.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:glib2-tests-0:2.68.4-7.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:glib2-tests-0:2.68.4-7.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:glib2-tests-0:2.68.4-7.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.src",
"BaseOS-9.2.0.Z.E4S:glib2-0:2.68.4-7.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:glib2-debuginfo-0:2.68.4-7.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:glib2-debugsource-0:2.68.4-7.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:glib2-devel-0:2.68.4-7.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-7.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:glib2-doc-0:2.68.4-7.el9_2.2.noarch",
"BaseOS-9.2.0.Z.E4S:glib2-tests-0:2.68.4-7.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:glib2-tests-0:2.68.4-7.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:glib2-tests-0:2.68.4-7.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:glib2-tests-0:2.68.4-7.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-7.el9_2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "glib: Buffer Underflow on GLib through glib/gstring.c via function g_string_insert_unichar"
}
]
}
rhsa-2025:10855
Vulnerability from csaf_redhat
Published
2025-07-14 08:38
Modified
2025-10-10 00:28
Summary
Red Hat Security Advisory: glib2 security update
Notes
Topic
An update for glib2 is now available for Red Hat Enterprise Linux 10.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
GLib provides the core application building blocks for libraries and applications written in C. It provides the core object system used in GNOME, the main loop implementation, and a large set of utility functions for strings and common data structures.
Security Fix(es):
* glib: buffer overflow in set_connect_msg() (CVE-2024-52533)
* glib: Buffer Underflow on GLib through glib/gstring.c via function g_string_insert_unichar (CVE-2025-4373)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for glib2 is now available for Red Hat Enterprise Linux 10.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "GLib provides the core application building blocks for libraries and applications written in C. It provides the core object system used in GNOME, the main loop implementation, and a large set of utility functions for strings and common data structures.\n\nSecurity Fix(es):\n\n* glib: buffer overflow in set_connect_msg() (CVE-2024-52533)\n\n* glib: Buffer Underflow on GLib through glib/gstring.c via function g_string_insert_unichar (CVE-2025-4373)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:10855",
"url": "https://access.redhat.com/errata/RHSA-2025:10855"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "2325340",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2325340"
},
{
"category": "external",
"summary": "2364265",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2364265"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_10855.json"
}
],
"title": "Red Hat Security Advisory: glib2 security update",
"tracking": {
"current_release_date": "2025-10-10T00:28:34+00:00",
"generator": {
"date": "2025-10-10T00:28:34+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.9"
}
},
"id": "RHSA-2025:10855",
"initial_release_date": "2025-07-14T08:38:21+00:00",
"revision_history": [
{
"date": "2025-07-14T08:38:21+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-07-14T08:38:21+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-10T00:28:34+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream (v. 10)",
"product": {
"name": "Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:10.0"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux BaseOS (v. 10)",
"product": {
"name": "Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:10.0"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)",
"product": {
"name": "Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)",
"product_id": "CRB-10.0.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:10.0"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "glib2-0:2.80.4-4.el10_0.6.src",
"product": {
"name": "glib2-0:2.80.4-4.el10_0.6.src",
"product_id": "glib2-0:2.80.4-4.el10_0.6.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2@2.80.4-4.el10_0.6?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "glib2-0:2.80.4-4.el10_0.6.aarch64",
"product": {
"name": "glib2-0:2.80.4-4.el10_0.6.aarch64",
"product_id": "glib2-0:2.80.4-4.el10_0.6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2@2.80.4-4.el10_0.6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "glib2-debugsource-0:2.80.4-4.el10_0.6.aarch64",
"product": {
"name": "glib2-debugsource-0:2.80.4-4.el10_0.6.aarch64",
"product_id": "glib2-debugsource-0:2.80.4-4.el10_0.6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debugsource@2.80.4-4.el10_0.6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "glib2-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"product": {
"name": "glib2-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"product_id": "glib2-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debuginfo@2.80.4-4.el10_0.6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"product": {
"name": "glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"product_id": "glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel-debuginfo@2.80.4-4.el10_0.6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"product": {
"name": "glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"product_id": "glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-tests-debuginfo@2.80.4-4.el10_0.6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "glib2-devel-0:2.80.4-4.el10_0.6.aarch64",
"product": {
"name": "glib2-devel-0:2.80.4-4.el10_0.6.aarch64",
"product_id": "glib2-devel-0:2.80.4-4.el10_0.6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel@2.80.4-4.el10_0.6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "glib2-tests-0:2.80.4-4.el10_0.6.aarch64",
"product": {
"name": "glib2-tests-0:2.80.4-4.el10_0.6.aarch64",
"product_id": "glib2-tests-0:2.80.4-4.el10_0.6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-tests@2.80.4-4.el10_0.6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "glib2-doc-0:2.80.4-4.el10_0.6.aarch64",
"product": {
"name": "glib2-doc-0:2.80.4-4.el10_0.6.aarch64",
"product_id": "glib2-doc-0:2.80.4-4.el10_0.6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-doc@2.80.4-4.el10_0.6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "glib2-static-0:2.80.4-4.el10_0.6.aarch64",
"product": {
"name": "glib2-static-0:2.80.4-4.el10_0.6.aarch64",
"product_id": "glib2-static-0:2.80.4-4.el10_0.6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-static@2.80.4-4.el10_0.6?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "glib2-0:2.80.4-4.el10_0.6.ppc64le",
"product": {
"name": "glib2-0:2.80.4-4.el10_0.6.ppc64le",
"product_id": "glib2-0:2.80.4-4.el10_0.6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2@2.80.4-4.el10_0.6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "glib2-debugsource-0:2.80.4-4.el10_0.6.ppc64le",
"product": {
"name": "glib2-debugsource-0:2.80.4-4.el10_0.6.ppc64le",
"product_id": "glib2-debugsource-0:2.80.4-4.el10_0.6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debugsource@2.80.4-4.el10_0.6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "glib2-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"product": {
"name": "glib2-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"product_id": "glib2-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debuginfo@2.80.4-4.el10_0.6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"product": {
"name": "glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"product_id": "glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel-debuginfo@2.80.4-4.el10_0.6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"product": {
"name": "glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"product_id": "glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-tests-debuginfo@2.80.4-4.el10_0.6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "glib2-devel-0:2.80.4-4.el10_0.6.ppc64le",
"product": {
"name": "glib2-devel-0:2.80.4-4.el10_0.6.ppc64le",
"product_id": "glib2-devel-0:2.80.4-4.el10_0.6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel@2.80.4-4.el10_0.6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "glib2-tests-0:2.80.4-4.el10_0.6.ppc64le",
"product": {
"name": "glib2-tests-0:2.80.4-4.el10_0.6.ppc64le",
"product_id": "glib2-tests-0:2.80.4-4.el10_0.6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-tests@2.80.4-4.el10_0.6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "glib2-doc-0:2.80.4-4.el10_0.6.ppc64le",
"product": {
"name": "glib2-doc-0:2.80.4-4.el10_0.6.ppc64le",
"product_id": "glib2-doc-0:2.80.4-4.el10_0.6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-doc@2.80.4-4.el10_0.6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "glib2-static-0:2.80.4-4.el10_0.6.ppc64le",
"product": {
"name": "glib2-static-0:2.80.4-4.el10_0.6.ppc64le",
"product_id": "glib2-static-0:2.80.4-4.el10_0.6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-static@2.80.4-4.el10_0.6?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "glib2-0:2.80.4-4.el10_0.6.x86_64",
"product": {
"name": "glib2-0:2.80.4-4.el10_0.6.x86_64",
"product_id": "glib2-0:2.80.4-4.el10_0.6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2@2.80.4-4.el10_0.6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glib2-debugsource-0:2.80.4-4.el10_0.6.x86_64",
"product": {
"name": "glib2-debugsource-0:2.80.4-4.el10_0.6.x86_64",
"product_id": "glib2-debugsource-0:2.80.4-4.el10_0.6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debugsource@2.80.4-4.el10_0.6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glib2-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"product": {
"name": "glib2-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"product_id": "glib2-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debuginfo@2.80.4-4.el10_0.6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"product": {
"name": "glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"product_id": "glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel-debuginfo@2.80.4-4.el10_0.6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"product": {
"name": "glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"product_id": "glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-tests-debuginfo@2.80.4-4.el10_0.6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glib2-devel-0:2.80.4-4.el10_0.6.x86_64",
"product": {
"name": "glib2-devel-0:2.80.4-4.el10_0.6.x86_64",
"product_id": "glib2-devel-0:2.80.4-4.el10_0.6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel@2.80.4-4.el10_0.6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glib2-tests-0:2.80.4-4.el10_0.6.x86_64",
"product": {
"name": "glib2-tests-0:2.80.4-4.el10_0.6.x86_64",
"product_id": "glib2-tests-0:2.80.4-4.el10_0.6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-tests@2.80.4-4.el10_0.6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glib2-doc-0:2.80.4-4.el10_0.6.x86_64",
"product": {
"name": "glib2-doc-0:2.80.4-4.el10_0.6.x86_64",
"product_id": "glib2-doc-0:2.80.4-4.el10_0.6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-doc@2.80.4-4.el10_0.6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glib2-static-0:2.80.4-4.el10_0.6.x86_64",
"product": {
"name": "glib2-static-0:2.80.4-4.el10_0.6.x86_64",
"product_id": "glib2-static-0:2.80.4-4.el10_0.6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-static@2.80.4-4.el10_0.6?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "glib2-0:2.80.4-4.el10_0.6.s390x",
"product": {
"name": "glib2-0:2.80.4-4.el10_0.6.s390x",
"product_id": "glib2-0:2.80.4-4.el10_0.6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2@2.80.4-4.el10_0.6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "glib2-debugsource-0:2.80.4-4.el10_0.6.s390x",
"product": {
"name": "glib2-debugsource-0:2.80.4-4.el10_0.6.s390x",
"product_id": "glib2-debugsource-0:2.80.4-4.el10_0.6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debugsource@2.80.4-4.el10_0.6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "glib2-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"product": {
"name": "glib2-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"product_id": "glib2-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debuginfo@2.80.4-4.el10_0.6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"product": {
"name": "glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"product_id": "glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel-debuginfo@2.80.4-4.el10_0.6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"product": {
"name": "glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"product_id": "glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-tests-debuginfo@2.80.4-4.el10_0.6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "glib2-devel-0:2.80.4-4.el10_0.6.s390x",
"product": {
"name": "glib2-devel-0:2.80.4-4.el10_0.6.s390x",
"product_id": "glib2-devel-0:2.80.4-4.el10_0.6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel@2.80.4-4.el10_0.6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "glib2-tests-0:2.80.4-4.el10_0.6.s390x",
"product": {
"name": "glib2-tests-0:2.80.4-4.el10_0.6.s390x",
"product_id": "glib2-tests-0:2.80.4-4.el10_0.6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-tests@2.80.4-4.el10_0.6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "glib2-doc-0:2.80.4-4.el10_0.6.s390x",
"product": {
"name": "glib2-doc-0:2.80.4-4.el10_0.6.s390x",
"product_id": "glib2-doc-0:2.80.4-4.el10_0.6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-doc@2.80.4-4.el10_0.6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "glib2-static-0:2.80.4-4.el10_0.6.s390x",
"product": {
"name": "glib2-static-0:2.80.4-4.el10_0.6.s390x",
"product_id": "glib2-static-0:2.80.4-4.el10_0.6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-static@2.80.4-4.el10_0.6?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.80.4-4.el10_0.6.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:glib2-0:2.80.4-4.el10_0.6.aarch64"
},
"product_reference": "glib2-0:2.80.4-4.el10_0.6.aarch64",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.80.4-4.el10_0.6.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:glib2-0:2.80.4-4.el10_0.6.ppc64le"
},
"product_reference": "glib2-0:2.80.4-4.el10_0.6.ppc64le",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.80.4-4.el10_0.6.s390x as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:glib2-0:2.80.4-4.el10_0.6.s390x"
},
"product_reference": "glib2-0:2.80.4-4.el10_0.6.s390x",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.80.4-4.el10_0.6.src as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:glib2-0:2.80.4-4.el10_0.6.src"
},
"product_reference": "glib2-0:2.80.4-4.el10_0.6.src",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.80.4-4.el10_0.6.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:glib2-0:2.80.4-4.el10_0.6.x86_64"
},
"product_reference": "glib2-0:2.80.4-4.el10_0.6.x86_64",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.80.4-4.el10_0.6.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.aarch64"
},
"product_reference": "glib2-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.80.4-4.el10_0.6.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.ppc64le"
},
"product_reference": "glib2-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.80.4-4.el10_0.6.s390x as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.s390x"
},
"product_reference": "glib2-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.80.4-4.el10_0.6.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.x86_64"
},
"product_reference": "glib2-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.80.4-4.el10_0.6.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.aarch64"
},
"product_reference": "glib2-debugsource-0:2.80.4-4.el10_0.6.aarch64",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.80.4-4.el10_0.6.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.ppc64le"
},
"product_reference": "glib2-debugsource-0:2.80.4-4.el10_0.6.ppc64le",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.80.4-4.el10_0.6.s390x as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.s390x"
},
"product_reference": "glib2-debugsource-0:2.80.4-4.el10_0.6.s390x",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.80.4-4.el10_0.6.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.x86_64"
},
"product_reference": "glib2-debugsource-0:2.80.4-4.el10_0.6.x86_64",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.80.4-4.el10_0.6.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.aarch64"
},
"product_reference": "glib2-devel-0:2.80.4-4.el10_0.6.aarch64",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.80.4-4.el10_0.6.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.ppc64le"
},
"product_reference": "glib2-devel-0:2.80.4-4.el10_0.6.ppc64le",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.80.4-4.el10_0.6.s390x as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.s390x"
},
"product_reference": "glib2-devel-0:2.80.4-4.el10_0.6.s390x",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.80.4-4.el10_0.6.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.x86_64"
},
"product_reference": "glib2-devel-0:2.80.4-4.el10_0.6.x86_64",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.aarch64"
},
"product_reference": "glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.ppc64le"
},
"product_reference": "glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.s390x as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.s390x"
},
"product_reference": "glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.x86_64"
},
"product_reference": "glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-doc-0:2.80.4-4.el10_0.6.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.aarch64"
},
"product_reference": "glib2-doc-0:2.80.4-4.el10_0.6.aarch64",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-doc-0:2.80.4-4.el10_0.6.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.ppc64le"
},
"product_reference": "glib2-doc-0:2.80.4-4.el10_0.6.ppc64le",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-doc-0:2.80.4-4.el10_0.6.s390x as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.s390x"
},
"product_reference": "glib2-doc-0:2.80.4-4.el10_0.6.s390x",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-doc-0:2.80.4-4.el10_0.6.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.x86_64"
},
"product_reference": "glib2-doc-0:2.80.4-4.el10_0.6.x86_64",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-static-0:2.80.4-4.el10_0.6.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.aarch64"
},
"product_reference": "glib2-static-0:2.80.4-4.el10_0.6.aarch64",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-static-0:2.80.4-4.el10_0.6.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.ppc64le"
},
"product_reference": "glib2-static-0:2.80.4-4.el10_0.6.ppc64le",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-static-0:2.80.4-4.el10_0.6.s390x as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.s390x"
},
"product_reference": "glib2-static-0:2.80.4-4.el10_0.6.s390x",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-static-0:2.80.4-4.el10_0.6.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.x86_64"
},
"product_reference": "glib2-static-0:2.80.4-4.el10_0.6.x86_64",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-0:2.80.4-4.el10_0.6.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.aarch64"
},
"product_reference": "glib2-tests-0:2.80.4-4.el10_0.6.aarch64",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-0:2.80.4-4.el10_0.6.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.ppc64le"
},
"product_reference": "glib2-tests-0:2.80.4-4.el10_0.6.ppc64le",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-0:2.80.4-4.el10_0.6.s390x as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.s390x"
},
"product_reference": "glib2-tests-0:2.80.4-4.el10_0.6.s390x",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-0:2.80.4-4.el10_0.6.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.x86_64"
},
"product_reference": "glib2-tests-0:2.80.4-4.el10_0.6.x86_64",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.aarch64"
},
"product_reference": "glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.ppc64le"
},
"product_reference": "glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.s390x as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.s390x"
},
"product_reference": "glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.x86_64"
},
"product_reference": "glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.80.4-4.el10_0.6.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:glib2-0:2.80.4-4.el10_0.6.aarch64"
},
"product_reference": "glib2-0:2.80.4-4.el10_0.6.aarch64",
"relates_to_product_reference": "BaseOS-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.80.4-4.el10_0.6.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:glib2-0:2.80.4-4.el10_0.6.ppc64le"
},
"product_reference": "glib2-0:2.80.4-4.el10_0.6.ppc64le",
"relates_to_product_reference": "BaseOS-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.80.4-4.el10_0.6.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:glib2-0:2.80.4-4.el10_0.6.s390x"
},
"product_reference": "glib2-0:2.80.4-4.el10_0.6.s390x",
"relates_to_product_reference": "BaseOS-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.80.4-4.el10_0.6.src as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:glib2-0:2.80.4-4.el10_0.6.src"
},
"product_reference": "glib2-0:2.80.4-4.el10_0.6.src",
"relates_to_product_reference": "BaseOS-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.80.4-4.el10_0.6.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:glib2-0:2.80.4-4.el10_0.6.x86_64"
},
"product_reference": "glib2-0:2.80.4-4.el10_0.6.x86_64",
"relates_to_product_reference": "BaseOS-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.80.4-4.el10_0.6.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.aarch64"
},
"product_reference": "glib2-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"relates_to_product_reference": "BaseOS-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.80.4-4.el10_0.6.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.ppc64le"
},
"product_reference": "glib2-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"relates_to_product_reference": "BaseOS-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.80.4-4.el10_0.6.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.s390x"
},
"product_reference": "glib2-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"relates_to_product_reference": "BaseOS-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.80.4-4.el10_0.6.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.x86_64"
},
"product_reference": "glib2-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"relates_to_product_reference": "BaseOS-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.80.4-4.el10_0.6.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.aarch64"
},
"product_reference": "glib2-debugsource-0:2.80.4-4.el10_0.6.aarch64",
"relates_to_product_reference": "BaseOS-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.80.4-4.el10_0.6.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.ppc64le"
},
"product_reference": "glib2-debugsource-0:2.80.4-4.el10_0.6.ppc64le",
"relates_to_product_reference": "BaseOS-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.80.4-4.el10_0.6.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.s390x"
},
"product_reference": "glib2-debugsource-0:2.80.4-4.el10_0.6.s390x",
"relates_to_product_reference": "BaseOS-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.80.4-4.el10_0.6.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.x86_64"
},
"product_reference": "glib2-debugsource-0:2.80.4-4.el10_0.6.x86_64",
"relates_to_product_reference": "BaseOS-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.80.4-4.el10_0.6.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.aarch64"
},
"product_reference": "glib2-devel-0:2.80.4-4.el10_0.6.aarch64",
"relates_to_product_reference": "BaseOS-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.80.4-4.el10_0.6.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.ppc64le"
},
"product_reference": "glib2-devel-0:2.80.4-4.el10_0.6.ppc64le",
"relates_to_product_reference": "BaseOS-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.80.4-4.el10_0.6.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.s390x"
},
"product_reference": "glib2-devel-0:2.80.4-4.el10_0.6.s390x",
"relates_to_product_reference": "BaseOS-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.80.4-4.el10_0.6.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.x86_64"
},
"product_reference": "glib2-devel-0:2.80.4-4.el10_0.6.x86_64",
"relates_to_product_reference": "BaseOS-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.aarch64"
},
"product_reference": "glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"relates_to_product_reference": "BaseOS-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.ppc64le"
},
"product_reference": "glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"relates_to_product_reference": "BaseOS-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.s390x"
},
"product_reference": "glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"relates_to_product_reference": "BaseOS-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.x86_64"
},
"product_reference": "glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"relates_to_product_reference": "BaseOS-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-doc-0:2.80.4-4.el10_0.6.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.aarch64"
},
"product_reference": "glib2-doc-0:2.80.4-4.el10_0.6.aarch64",
"relates_to_product_reference": "BaseOS-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-doc-0:2.80.4-4.el10_0.6.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.ppc64le"
},
"product_reference": "glib2-doc-0:2.80.4-4.el10_0.6.ppc64le",
"relates_to_product_reference": "BaseOS-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-doc-0:2.80.4-4.el10_0.6.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.s390x"
},
"product_reference": "glib2-doc-0:2.80.4-4.el10_0.6.s390x",
"relates_to_product_reference": "BaseOS-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-doc-0:2.80.4-4.el10_0.6.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.x86_64"
},
"product_reference": "glib2-doc-0:2.80.4-4.el10_0.6.x86_64",
"relates_to_product_reference": "BaseOS-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-static-0:2.80.4-4.el10_0.6.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.aarch64"
},
"product_reference": "glib2-static-0:2.80.4-4.el10_0.6.aarch64",
"relates_to_product_reference": "BaseOS-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-static-0:2.80.4-4.el10_0.6.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.ppc64le"
},
"product_reference": "glib2-static-0:2.80.4-4.el10_0.6.ppc64le",
"relates_to_product_reference": "BaseOS-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-static-0:2.80.4-4.el10_0.6.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.s390x"
},
"product_reference": "glib2-static-0:2.80.4-4.el10_0.6.s390x",
"relates_to_product_reference": "BaseOS-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-static-0:2.80.4-4.el10_0.6.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.x86_64"
},
"product_reference": "glib2-static-0:2.80.4-4.el10_0.6.x86_64",
"relates_to_product_reference": "BaseOS-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-0:2.80.4-4.el10_0.6.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.aarch64"
},
"product_reference": "glib2-tests-0:2.80.4-4.el10_0.6.aarch64",
"relates_to_product_reference": "BaseOS-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-0:2.80.4-4.el10_0.6.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.ppc64le"
},
"product_reference": "glib2-tests-0:2.80.4-4.el10_0.6.ppc64le",
"relates_to_product_reference": "BaseOS-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-0:2.80.4-4.el10_0.6.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.s390x"
},
"product_reference": "glib2-tests-0:2.80.4-4.el10_0.6.s390x",
"relates_to_product_reference": "BaseOS-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-0:2.80.4-4.el10_0.6.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.x86_64"
},
"product_reference": "glib2-tests-0:2.80.4-4.el10_0.6.x86_64",
"relates_to_product_reference": "BaseOS-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.aarch64"
},
"product_reference": "glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"relates_to_product_reference": "BaseOS-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.ppc64le"
},
"product_reference": "glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"relates_to_product_reference": "BaseOS-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.s390x"
},
"product_reference": "glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"relates_to_product_reference": "BaseOS-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.x86_64"
},
"product_reference": "glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"relates_to_product_reference": "BaseOS-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.80.4-4.el10_0.6.aarch64 as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)",
"product_id": "CRB-10.0.Z:glib2-0:2.80.4-4.el10_0.6.aarch64"
},
"product_reference": "glib2-0:2.80.4-4.el10_0.6.aarch64",
"relates_to_product_reference": "CRB-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.80.4-4.el10_0.6.ppc64le as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)",
"product_id": "CRB-10.0.Z:glib2-0:2.80.4-4.el10_0.6.ppc64le"
},
"product_reference": "glib2-0:2.80.4-4.el10_0.6.ppc64le",
"relates_to_product_reference": "CRB-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.80.4-4.el10_0.6.s390x as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)",
"product_id": "CRB-10.0.Z:glib2-0:2.80.4-4.el10_0.6.s390x"
},
"product_reference": "glib2-0:2.80.4-4.el10_0.6.s390x",
"relates_to_product_reference": "CRB-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.80.4-4.el10_0.6.src as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)",
"product_id": "CRB-10.0.Z:glib2-0:2.80.4-4.el10_0.6.src"
},
"product_reference": "glib2-0:2.80.4-4.el10_0.6.src",
"relates_to_product_reference": "CRB-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.80.4-4.el10_0.6.x86_64 as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)",
"product_id": "CRB-10.0.Z:glib2-0:2.80.4-4.el10_0.6.x86_64"
},
"product_reference": "glib2-0:2.80.4-4.el10_0.6.x86_64",
"relates_to_product_reference": "CRB-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.80.4-4.el10_0.6.aarch64 as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)",
"product_id": "CRB-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.aarch64"
},
"product_reference": "glib2-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"relates_to_product_reference": "CRB-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.80.4-4.el10_0.6.ppc64le as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)",
"product_id": "CRB-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.ppc64le"
},
"product_reference": "glib2-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"relates_to_product_reference": "CRB-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.80.4-4.el10_0.6.s390x as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)",
"product_id": "CRB-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.s390x"
},
"product_reference": "glib2-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"relates_to_product_reference": "CRB-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.80.4-4.el10_0.6.x86_64 as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)",
"product_id": "CRB-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.x86_64"
},
"product_reference": "glib2-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"relates_to_product_reference": "CRB-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.80.4-4.el10_0.6.aarch64 as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)",
"product_id": "CRB-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.aarch64"
},
"product_reference": "glib2-debugsource-0:2.80.4-4.el10_0.6.aarch64",
"relates_to_product_reference": "CRB-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.80.4-4.el10_0.6.ppc64le as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)",
"product_id": "CRB-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.ppc64le"
},
"product_reference": "glib2-debugsource-0:2.80.4-4.el10_0.6.ppc64le",
"relates_to_product_reference": "CRB-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.80.4-4.el10_0.6.s390x as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)",
"product_id": "CRB-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.s390x"
},
"product_reference": "glib2-debugsource-0:2.80.4-4.el10_0.6.s390x",
"relates_to_product_reference": "CRB-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.80.4-4.el10_0.6.x86_64 as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)",
"product_id": "CRB-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.x86_64"
},
"product_reference": "glib2-debugsource-0:2.80.4-4.el10_0.6.x86_64",
"relates_to_product_reference": "CRB-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.80.4-4.el10_0.6.aarch64 as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)",
"product_id": "CRB-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.aarch64"
},
"product_reference": "glib2-devel-0:2.80.4-4.el10_0.6.aarch64",
"relates_to_product_reference": "CRB-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.80.4-4.el10_0.6.ppc64le as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)",
"product_id": "CRB-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.ppc64le"
},
"product_reference": "glib2-devel-0:2.80.4-4.el10_0.6.ppc64le",
"relates_to_product_reference": "CRB-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.80.4-4.el10_0.6.s390x as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)",
"product_id": "CRB-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.s390x"
},
"product_reference": "glib2-devel-0:2.80.4-4.el10_0.6.s390x",
"relates_to_product_reference": "CRB-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.80.4-4.el10_0.6.x86_64 as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)",
"product_id": "CRB-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.x86_64"
},
"product_reference": "glib2-devel-0:2.80.4-4.el10_0.6.x86_64",
"relates_to_product_reference": "CRB-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.aarch64 as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)",
"product_id": "CRB-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.aarch64"
},
"product_reference": "glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"relates_to_product_reference": "CRB-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.ppc64le as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)",
"product_id": "CRB-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.ppc64le"
},
"product_reference": "glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"relates_to_product_reference": "CRB-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.s390x as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)",
"product_id": "CRB-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.s390x"
},
"product_reference": "glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"relates_to_product_reference": "CRB-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.x86_64 as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)",
"product_id": "CRB-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.x86_64"
},
"product_reference": "glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"relates_to_product_reference": "CRB-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-doc-0:2.80.4-4.el10_0.6.aarch64 as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)",
"product_id": "CRB-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.aarch64"
},
"product_reference": "glib2-doc-0:2.80.4-4.el10_0.6.aarch64",
"relates_to_product_reference": "CRB-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-doc-0:2.80.4-4.el10_0.6.ppc64le as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)",
"product_id": "CRB-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.ppc64le"
},
"product_reference": "glib2-doc-0:2.80.4-4.el10_0.6.ppc64le",
"relates_to_product_reference": "CRB-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-doc-0:2.80.4-4.el10_0.6.s390x as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)",
"product_id": "CRB-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.s390x"
},
"product_reference": "glib2-doc-0:2.80.4-4.el10_0.6.s390x",
"relates_to_product_reference": "CRB-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-doc-0:2.80.4-4.el10_0.6.x86_64 as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)",
"product_id": "CRB-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.x86_64"
},
"product_reference": "glib2-doc-0:2.80.4-4.el10_0.6.x86_64",
"relates_to_product_reference": "CRB-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-static-0:2.80.4-4.el10_0.6.aarch64 as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)",
"product_id": "CRB-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.aarch64"
},
"product_reference": "glib2-static-0:2.80.4-4.el10_0.6.aarch64",
"relates_to_product_reference": "CRB-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-static-0:2.80.4-4.el10_0.6.ppc64le as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)",
"product_id": "CRB-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.ppc64le"
},
"product_reference": "glib2-static-0:2.80.4-4.el10_0.6.ppc64le",
"relates_to_product_reference": "CRB-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-static-0:2.80.4-4.el10_0.6.s390x as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)",
"product_id": "CRB-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.s390x"
},
"product_reference": "glib2-static-0:2.80.4-4.el10_0.6.s390x",
"relates_to_product_reference": "CRB-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-static-0:2.80.4-4.el10_0.6.x86_64 as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)",
"product_id": "CRB-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.x86_64"
},
"product_reference": "glib2-static-0:2.80.4-4.el10_0.6.x86_64",
"relates_to_product_reference": "CRB-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-0:2.80.4-4.el10_0.6.aarch64 as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)",
"product_id": "CRB-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.aarch64"
},
"product_reference": "glib2-tests-0:2.80.4-4.el10_0.6.aarch64",
"relates_to_product_reference": "CRB-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-0:2.80.4-4.el10_0.6.ppc64le as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)",
"product_id": "CRB-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.ppc64le"
},
"product_reference": "glib2-tests-0:2.80.4-4.el10_0.6.ppc64le",
"relates_to_product_reference": "CRB-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-0:2.80.4-4.el10_0.6.s390x as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)",
"product_id": "CRB-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.s390x"
},
"product_reference": "glib2-tests-0:2.80.4-4.el10_0.6.s390x",
"relates_to_product_reference": "CRB-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-0:2.80.4-4.el10_0.6.x86_64 as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)",
"product_id": "CRB-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.x86_64"
},
"product_reference": "glib2-tests-0:2.80.4-4.el10_0.6.x86_64",
"relates_to_product_reference": "CRB-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.aarch64 as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)",
"product_id": "CRB-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.aarch64"
},
"product_reference": "glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"relates_to_product_reference": "CRB-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.ppc64le as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)",
"product_id": "CRB-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.ppc64le"
},
"product_reference": "glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"relates_to_product_reference": "CRB-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.s390x as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)",
"product_id": "CRB-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.s390x"
},
"product_reference": "glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"relates_to_product_reference": "CRB-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.x86_64 as a component of Red Hat Enterprise Linux CodeReady Linux Builder (v. 10)",
"product_id": "CRB-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.x86_64"
},
"product_reference": "glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"relates_to_product_reference": "CRB-10.0.Z"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-52533",
"cwe": {
"id": "CWE-193",
"name": "Off-by-one Error"
},
"discovery_date": "2024-11-11T23:00:48.125765+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2325340"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Glib library. A buffer overflow condition can be triggered in certain conditions due to an off-by-one error in SOCKS4_CONN_MSG_LEN. This issue may lead to an application crash or other undefined behavior.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "glib: buffer overflow in set_connect_msg()",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-10.0.Z:glib2-0:2.80.4-4.el10_0.6.aarch64",
"AppStream-10.0.Z:glib2-0:2.80.4-4.el10_0.6.ppc64le",
"AppStream-10.0.Z:glib2-0:2.80.4-4.el10_0.6.s390x",
"AppStream-10.0.Z:glib2-0:2.80.4-4.el10_0.6.src",
"AppStream-10.0.Z:glib2-0:2.80.4-4.el10_0.6.x86_64",
"AppStream-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"AppStream-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"AppStream-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"AppStream-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"AppStream-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.aarch64",
"AppStream-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.ppc64le",
"AppStream-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.s390x",
"AppStream-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.x86_64",
"AppStream-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.aarch64",
"AppStream-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.ppc64le",
"AppStream-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.s390x",
"AppStream-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.x86_64",
"AppStream-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"AppStream-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"AppStream-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"AppStream-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"AppStream-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.aarch64",
"AppStream-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.ppc64le",
"AppStream-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.s390x",
"AppStream-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.x86_64",
"AppStream-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.aarch64",
"AppStream-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.ppc64le",
"AppStream-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.s390x",
"AppStream-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.x86_64",
"AppStream-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.aarch64",
"AppStream-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.ppc64le",
"AppStream-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.s390x",
"AppStream-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.x86_64",
"AppStream-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"AppStream-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"AppStream-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"AppStream-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"BaseOS-10.0.Z:glib2-0:2.80.4-4.el10_0.6.aarch64",
"BaseOS-10.0.Z:glib2-0:2.80.4-4.el10_0.6.ppc64le",
"BaseOS-10.0.Z:glib2-0:2.80.4-4.el10_0.6.s390x",
"BaseOS-10.0.Z:glib2-0:2.80.4-4.el10_0.6.src",
"BaseOS-10.0.Z:glib2-0:2.80.4-4.el10_0.6.x86_64",
"BaseOS-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"BaseOS-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"BaseOS-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"BaseOS-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"BaseOS-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.aarch64",
"BaseOS-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.ppc64le",
"BaseOS-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.s390x",
"BaseOS-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.x86_64",
"BaseOS-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.aarch64",
"BaseOS-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.ppc64le",
"BaseOS-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.s390x",
"BaseOS-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.x86_64",
"BaseOS-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"BaseOS-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"BaseOS-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"BaseOS-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"BaseOS-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.aarch64",
"BaseOS-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.ppc64le",
"BaseOS-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.s390x",
"BaseOS-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.x86_64",
"BaseOS-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.aarch64",
"BaseOS-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.ppc64le",
"BaseOS-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.s390x",
"BaseOS-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.x86_64",
"BaseOS-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.aarch64",
"BaseOS-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.ppc64le",
"BaseOS-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.s390x",
"BaseOS-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.x86_64",
"BaseOS-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"BaseOS-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"BaseOS-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"BaseOS-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"CRB-10.0.Z:glib2-0:2.80.4-4.el10_0.6.aarch64",
"CRB-10.0.Z:glib2-0:2.80.4-4.el10_0.6.ppc64le",
"CRB-10.0.Z:glib2-0:2.80.4-4.el10_0.6.s390x",
"CRB-10.0.Z:glib2-0:2.80.4-4.el10_0.6.src",
"CRB-10.0.Z:glib2-0:2.80.4-4.el10_0.6.x86_64",
"CRB-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"CRB-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"CRB-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"CRB-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"CRB-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.aarch64",
"CRB-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.ppc64le",
"CRB-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.s390x",
"CRB-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.x86_64",
"CRB-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.aarch64",
"CRB-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.ppc64le",
"CRB-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.s390x",
"CRB-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.x86_64",
"CRB-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"CRB-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"CRB-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"CRB-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"CRB-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.aarch64",
"CRB-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.ppc64le",
"CRB-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.s390x",
"CRB-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.x86_64",
"CRB-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.aarch64",
"CRB-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.ppc64le",
"CRB-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.s390x",
"CRB-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.x86_64",
"CRB-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.aarch64",
"CRB-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.ppc64le",
"CRB-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.s390x",
"CRB-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.x86_64",
"CRB-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"CRB-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"CRB-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"CRB-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-52533"
},
{
"category": "external",
"summary": "RHBZ#2325340",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2325340"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-52533",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-52533"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-52533",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-52533"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/GNOME/glib/-/issues/3461",
"url": "https://gitlab.gnome.org/GNOME/glib/-/issues/3461"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/GNOME/glib/-/releases/2.82.1",
"url": "https://gitlab.gnome.org/GNOME/glib/-/releases/2.82.1"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/Teams/Releng/security/-/wikis/home",
"url": "https://gitlab.gnome.org/Teams/Releng/security/-/wikis/home"
}
],
"release_date": "2024-11-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-07-14T08:38:21+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-10.0.Z:glib2-0:2.80.4-4.el10_0.6.aarch64",
"AppStream-10.0.Z:glib2-0:2.80.4-4.el10_0.6.ppc64le",
"AppStream-10.0.Z:glib2-0:2.80.4-4.el10_0.6.s390x",
"AppStream-10.0.Z:glib2-0:2.80.4-4.el10_0.6.src",
"AppStream-10.0.Z:glib2-0:2.80.4-4.el10_0.6.x86_64",
"AppStream-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"AppStream-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"AppStream-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"AppStream-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"AppStream-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.aarch64",
"AppStream-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.ppc64le",
"AppStream-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.s390x",
"AppStream-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.x86_64",
"AppStream-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.aarch64",
"AppStream-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.ppc64le",
"AppStream-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.s390x",
"AppStream-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.x86_64",
"AppStream-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"AppStream-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"AppStream-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"AppStream-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"AppStream-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.aarch64",
"AppStream-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.ppc64le",
"AppStream-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.s390x",
"AppStream-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.x86_64",
"AppStream-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.aarch64",
"AppStream-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.ppc64le",
"AppStream-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.s390x",
"AppStream-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.x86_64",
"AppStream-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.aarch64",
"AppStream-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.ppc64le",
"AppStream-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.s390x",
"AppStream-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.x86_64",
"AppStream-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"AppStream-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"AppStream-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"AppStream-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"BaseOS-10.0.Z:glib2-0:2.80.4-4.el10_0.6.aarch64",
"BaseOS-10.0.Z:glib2-0:2.80.4-4.el10_0.6.ppc64le",
"BaseOS-10.0.Z:glib2-0:2.80.4-4.el10_0.6.s390x",
"BaseOS-10.0.Z:glib2-0:2.80.4-4.el10_0.6.src",
"BaseOS-10.0.Z:glib2-0:2.80.4-4.el10_0.6.x86_64",
"BaseOS-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"BaseOS-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"BaseOS-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"BaseOS-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"BaseOS-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.aarch64",
"BaseOS-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.ppc64le",
"BaseOS-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.s390x",
"BaseOS-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.x86_64",
"BaseOS-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.aarch64",
"BaseOS-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.ppc64le",
"BaseOS-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.s390x",
"BaseOS-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.x86_64",
"BaseOS-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"BaseOS-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"BaseOS-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"BaseOS-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"BaseOS-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.aarch64",
"BaseOS-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.ppc64le",
"BaseOS-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.s390x",
"BaseOS-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.x86_64",
"BaseOS-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.aarch64",
"BaseOS-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.ppc64le",
"BaseOS-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.s390x",
"BaseOS-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.x86_64",
"BaseOS-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.aarch64",
"BaseOS-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.ppc64le",
"BaseOS-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.s390x",
"BaseOS-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.x86_64",
"BaseOS-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"BaseOS-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"BaseOS-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"BaseOS-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"CRB-10.0.Z:glib2-0:2.80.4-4.el10_0.6.aarch64",
"CRB-10.0.Z:glib2-0:2.80.4-4.el10_0.6.ppc64le",
"CRB-10.0.Z:glib2-0:2.80.4-4.el10_0.6.s390x",
"CRB-10.0.Z:glib2-0:2.80.4-4.el10_0.6.src",
"CRB-10.0.Z:glib2-0:2.80.4-4.el10_0.6.x86_64",
"CRB-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"CRB-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"CRB-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"CRB-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"CRB-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.aarch64",
"CRB-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.ppc64le",
"CRB-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.s390x",
"CRB-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.x86_64",
"CRB-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.aarch64",
"CRB-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.ppc64le",
"CRB-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.s390x",
"CRB-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.x86_64",
"CRB-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"CRB-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"CRB-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"CRB-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"CRB-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.aarch64",
"CRB-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.ppc64le",
"CRB-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.s390x",
"CRB-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.x86_64",
"CRB-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.aarch64",
"CRB-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.ppc64le",
"CRB-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.s390x",
"CRB-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.x86_64",
"CRB-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.aarch64",
"CRB-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.ppc64le",
"CRB-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.s390x",
"CRB-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.x86_64",
"CRB-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"CRB-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"CRB-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"CRB-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:10855"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-10.0.Z:glib2-0:2.80.4-4.el10_0.6.aarch64",
"AppStream-10.0.Z:glib2-0:2.80.4-4.el10_0.6.ppc64le",
"AppStream-10.0.Z:glib2-0:2.80.4-4.el10_0.6.s390x",
"AppStream-10.0.Z:glib2-0:2.80.4-4.el10_0.6.src",
"AppStream-10.0.Z:glib2-0:2.80.4-4.el10_0.6.x86_64",
"AppStream-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"AppStream-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"AppStream-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"AppStream-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"AppStream-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.aarch64",
"AppStream-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.ppc64le",
"AppStream-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.s390x",
"AppStream-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.x86_64",
"AppStream-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.aarch64",
"AppStream-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.ppc64le",
"AppStream-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.s390x",
"AppStream-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.x86_64",
"AppStream-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"AppStream-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"AppStream-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"AppStream-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"AppStream-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.aarch64",
"AppStream-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.ppc64le",
"AppStream-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.s390x",
"AppStream-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.x86_64",
"AppStream-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.aarch64",
"AppStream-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.ppc64le",
"AppStream-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.s390x",
"AppStream-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.x86_64",
"AppStream-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.aarch64",
"AppStream-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.ppc64le",
"AppStream-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.s390x",
"AppStream-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.x86_64",
"AppStream-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"AppStream-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"AppStream-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"AppStream-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"BaseOS-10.0.Z:glib2-0:2.80.4-4.el10_0.6.aarch64",
"BaseOS-10.0.Z:glib2-0:2.80.4-4.el10_0.6.ppc64le",
"BaseOS-10.0.Z:glib2-0:2.80.4-4.el10_0.6.s390x",
"BaseOS-10.0.Z:glib2-0:2.80.4-4.el10_0.6.src",
"BaseOS-10.0.Z:glib2-0:2.80.4-4.el10_0.6.x86_64",
"BaseOS-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"BaseOS-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"BaseOS-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"BaseOS-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"BaseOS-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.aarch64",
"BaseOS-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.ppc64le",
"BaseOS-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.s390x",
"BaseOS-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.x86_64",
"BaseOS-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.aarch64",
"BaseOS-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.ppc64le",
"BaseOS-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.s390x",
"BaseOS-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.x86_64",
"BaseOS-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"BaseOS-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"BaseOS-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"BaseOS-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"BaseOS-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.aarch64",
"BaseOS-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.ppc64le",
"BaseOS-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.s390x",
"BaseOS-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.x86_64",
"BaseOS-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.aarch64",
"BaseOS-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.ppc64le",
"BaseOS-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.s390x",
"BaseOS-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.x86_64",
"BaseOS-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.aarch64",
"BaseOS-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.ppc64le",
"BaseOS-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.s390x",
"BaseOS-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.x86_64",
"BaseOS-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"BaseOS-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"BaseOS-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"BaseOS-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"CRB-10.0.Z:glib2-0:2.80.4-4.el10_0.6.aarch64",
"CRB-10.0.Z:glib2-0:2.80.4-4.el10_0.6.ppc64le",
"CRB-10.0.Z:glib2-0:2.80.4-4.el10_0.6.s390x",
"CRB-10.0.Z:glib2-0:2.80.4-4.el10_0.6.src",
"CRB-10.0.Z:glib2-0:2.80.4-4.el10_0.6.x86_64",
"CRB-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"CRB-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"CRB-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"CRB-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"CRB-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.aarch64",
"CRB-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.ppc64le",
"CRB-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.s390x",
"CRB-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.x86_64",
"CRB-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.aarch64",
"CRB-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.ppc64le",
"CRB-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.s390x",
"CRB-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.x86_64",
"CRB-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"CRB-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"CRB-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"CRB-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"CRB-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.aarch64",
"CRB-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.ppc64le",
"CRB-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.s390x",
"CRB-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.x86_64",
"CRB-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.aarch64",
"CRB-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.ppc64le",
"CRB-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.s390x",
"CRB-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.x86_64",
"CRB-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.aarch64",
"CRB-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.ppc64le",
"CRB-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.s390x",
"CRB-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.x86_64",
"CRB-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"CRB-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"CRB-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"CRB-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"AppStream-10.0.Z:glib2-0:2.80.4-4.el10_0.6.aarch64",
"AppStream-10.0.Z:glib2-0:2.80.4-4.el10_0.6.ppc64le",
"AppStream-10.0.Z:glib2-0:2.80.4-4.el10_0.6.s390x",
"AppStream-10.0.Z:glib2-0:2.80.4-4.el10_0.6.src",
"AppStream-10.0.Z:glib2-0:2.80.4-4.el10_0.6.x86_64",
"AppStream-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"AppStream-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"AppStream-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"AppStream-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"AppStream-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.aarch64",
"AppStream-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.ppc64le",
"AppStream-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.s390x",
"AppStream-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.x86_64",
"AppStream-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.aarch64",
"AppStream-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.ppc64le",
"AppStream-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.s390x",
"AppStream-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.x86_64",
"AppStream-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"AppStream-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"AppStream-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"AppStream-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"AppStream-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.aarch64",
"AppStream-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.ppc64le",
"AppStream-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.s390x",
"AppStream-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.x86_64",
"AppStream-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.aarch64",
"AppStream-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.ppc64le",
"AppStream-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.s390x",
"AppStream-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.x86_64",
"AppStream-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.aarch64",
"AppStream-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.ppc64le",
"AppStream-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.s390x",
"AppStream-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.x86_64",
"AppStream-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"AppStream-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"AppStream-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"AppStream-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"BaseOS-10.0.Z:glib2-0:2.80.4-4.el10_0.6.aarch64",
"BaseOS-10.0.Z:glib2-0:2.80.4-4.el10_0.6.ppc64le",
"BaseOS-10.0.Z:glib2-0:2.80.4-4.el10_0.6.s390x",
"BaseOS-10.0.Z:glib2-0:2.80.4-4.el10_0.6.src",
"BaseOS-10.0.Z:glib2-0:2.80.4-4.el10_0.6.x86_64",
"BaseOS-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"BaseOS-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"BaseOS-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"BaseOS-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"BaseOS-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.aarch64",
"BaseOS-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.ppc64le",
"BaseOS-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.s390x",
"BaseOS-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.x86_64",
"BaseOS-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.aarch64",
"BaseOS-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.ppc64le",
"BaseOS-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.s390x",
"BaseOS-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.x86_64",
"BaseOS-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"BaseOS-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"BaseOS-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"BaseOS-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"BaseOS-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.aarch64",
"BaseOS-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.ppc64le",
"BaseOS-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.s390x",
"BaseOS-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.x86_64",
"BaseOS-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.aarch64",
"BaseOS-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.ppc64le",
"BaseOS-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.s390x",
"BaseOS-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.x86_64",
"BaseOS-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.aarch64",
"BaseOS-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.ppc64le",
"BaseOS-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.s390x",
"BaseOS-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.x86_64",
"BaseOS-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"BaseOS-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"BaseOS-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"BaseOS-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"CRB-10.0.Z:glib2-0:2.80.4-4.el10_0.6.aarch64",
"CRB-10.0.Z:glib2-0:2.80.4-4.el10_0.6.ppc64le",
"CRB-10.0.Z:glib2-0:2.80.4-4.el10_0.6.s390x",
"CRB-10.0.Z:glib2-0:2.80.4-4.el10_0.6.src",
"CRB-10.0.Z:glib2-0:2.80.4-4.el10_0.6.x86_64",
"CRB-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"CRB-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"CRB-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"CRB-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"CRB-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.aarch64",
"CRB-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.ppc64le",
"CRB-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.s390x",
"CRB-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.x86_64",
"CRB-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.aarch64",
"CRB-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.ppc64le",
"CRB-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.s390x",
"CRB-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.x86_64",
"CRB-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"CRB-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"CRB-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"CRB-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"CRB-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.aarch64",
"CRB-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.ppc64le",
"CRB-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.s390x",
"CRB-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.x86_64",
"CRB-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.aarch64",
"CRB-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.ppc64le",
"CRB-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.s390x",
"CRB-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.x86_64",
"CRB-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.aarch64",
"CRB-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.ppc64le",
"CRB-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.s390x",
"CRB-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.x86_64",
"CRB-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"CRB-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"CRB-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"CRB-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "glib: buffer overflow in set_connect_msg()"
},
{
"cve": "CVE-2025-4373",
"cwe": {
"id": "CWE-124",
"name": "Buffer Underwrite (\u0027Buffer Underflow\u0027)"
},
"discovery_date": "2025-05-06T00:33:30.003000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2364265"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in GLib, which is vulnerable to an integer overflow in the g_string_insert_unichar() function. When the position at which to insert the character is large, the position will overflow, leading to a buffer underwrite.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "glib: Buffer Underflow on GLib through glib/gstring.c via function g_string_insert_unichar",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Within regulated environments, a combination of the following controls acts as a significant barrier to the successful exploitation of a CWE-124: Buffer Underwrite (\u0027Buffer Underflow\u0027) vulnerability and therefore downgrades the severity of this particular CVE from Moderate to Low.\n\nSecure baseline configurations enforce strict memory handling policies, while change controls ensure any deviations are reviewed and approved. Least functionality reduces the attack surface by disabling unnecessary features that could introduce memory risks. Process isolation contains faults within individual workloads, minimizing broader impact. Real-time monitoring and malicious code protection detect and respond to abnormal memory behavior or exploitation attempts. Hardened configuration settings restrict low-level memory access, lowering the likelihood of unsafe operations. Finally, the platform uses memory protection mechanisms such as Data Execution Prevention (DEP) and Address Space Layout Randomization (ASLR) to strengthen resilience against buffer underwrite exploits.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-10.0.Z:glib2-0:2.80.4-4.el10_0.6.aarch64",
"AppStream-10.0.Z:glib2-0:2.80.4-4.el10_0.6.ppc64le",
"AppStream-10.0.Z:glib2-0:2.80.4-4.el10_0.6.s390x",
"AppStream-10.0.Z:glib2-0:2.80.4-4.el10_0.6.src",
"AppStream-10.0.Z:glib2-0:2.80.4-4.el10_0.6.x86_64",
"AppStream-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"AppStream-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"AppStream-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"AppStream-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"AppStream-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.aarch64",
"AppStream-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.ppc64le",
"AppStream-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.s390x",
"AppStream-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.x86_64",
"AppStream-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.aarch64",
"AppStream-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.ppc64le",
"AppStream-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.s390x",
"AppStream-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.x86_64",
"AppStream-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"AppStream-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"AppStream-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"AppStream-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"AppStream-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.aarch64",
"AppStream-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.ppc64le",
"AppStream-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.s390x",
"AppStream-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.x86_64",
"AppStream-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.aarch64",
"AppStream-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.ppc64le",
"AppStream-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.s390x",
"AppStream-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.x86_64",
"AppStream-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.aarch64",
"AppStream-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.ppc64le",
"AppStream-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.s390x",
"AppStream-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.x86_64",
"AppStream-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"AppStream-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"AppStream-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"AppStream-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"BaseOS-10.0.Z:glib2-0:2.80.4-4.el10_0.6.aarch64",
"BaseOS-10.0.Z:glib2-0:2.80.4-4.el10_0.6.ppc64le",
"BaseOS-10.0.Z:glib2-0:2.80.4-4.el10_0.6.s390x",
"BaseOS-10.0.Z:glib2-0:2.80.4-4.el10_0.6.src",
"BaseOS-10.0.Z:glib2-0:2.80.4-4.el10_0.6.x86_64",
"BaseOS-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"BaseOS-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"BaseOS-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"BaseOS-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"BaseOS-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.aarch64",
"BaseOS-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.ppc64le",
"BaseOS-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.s390x",
"BaseOS-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.x86_64",
"BaseOS-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.aarch64",
"BaseOS-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.ppc64le",
"BaseOS-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.s390x",
"BaseOS-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.x86_64",
"BaseOS-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"BaseOS-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"BaseOS-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"BaseOS-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"BaseOS-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.aarch64",
"BaseOS-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.ppc64le",
"BaseOS-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.s390x",
"BaseOS-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.x86_64",
"BaseOS-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.aarch64",
"BaseOS-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.ppc64le",
"BaseOS-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.s390x",
"BaseOS-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.x86_64",
"BaseOS-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.aarch64",
"BaseOS-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.ppc64le",
"BaseOS-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.s390x",
"BaseOS-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.x86_64",
"BaseOS-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"BaseOS-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"BaseOS-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"BaseOS-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"CRB-10.0.Z:glib2-0:2.80.4-4.el10_0.6.aarch64",
"CRB-10.0.Z:glib2-0:2.80.4-4.el10_0.6.ppc64le",
"CRB-10.0.Z:glib2-0:2.80.4-4.el10_0.6.s390x",
"CRB-10.0.Z:glib2-0:2.80.4-4.el10_0.6.src",
"CRB-10.0.Z:glib2-0:2.80.4-4.el10_0.6.x86_64",
"CRB-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"CRB-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"CRB-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"CRB-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"CRB-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.aarch64",
"CRB-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.ppc64le",
"CRB-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.s390x",
"CRB-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.x86_64",
"CRB-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.aarch64",
"CRB-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.ppc64le",
"CRB-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.s390x",
"CRB-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.x86_64",
"CRB-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"CRB-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"CRB-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"CRB-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"CRB-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.aarch64",
"CRB-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.ppc64le",
"CRB-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.s390x",
"CRB-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.x86_64",
"CRB-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.aarch64",
"CRB-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.ppc64le",
"CRB-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.s390x",
"CRB-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.x86_64",
"CRB-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.aarch64",
"CRB-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.ppc64le",
"CRB-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.s390x",
"CRB-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.x86_64",
"CRB-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"CRB-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"CRB-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"CRB-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-4373"
},
{
"category": "external",
"summary": "RHBZ#2364265",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2364265"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-4373",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4373"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-4373",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-4373"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/GNOME/glib/-/issues/3677",
"url": "https://gitlab.gnome.org/GNOME/glib/-/issues/3677"
}
],
"release_date": "2025-05-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-07-14T08:38:21+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-10.0.Z:glib2-0:2.80.4-4.el10_0.6.aarch64",
"AppStream-10.0.Z:glib2-0:2.80.4-4.el10_0.6.ppc64le",
"AppStream-10.0.Z:glib2-0:2.80.4-4.el10_0.6.s390x",
"AppStream-10.0.Z:glib2-0:2.80.4-4.el10_0.6.src",
"AppStream-10.0.Z:glib2-0:2.80.4-4.el10_0.6.x86_64",
"AppStream-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"AppStream-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"AppStream-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"AppStream-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"AppStream-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.aarch64",
"AppStream-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.ppc64le",
"AppStream-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.s390x",
"AppStream-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.x86_64",
"AppStream-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.aarch64",
"AppStream-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.ppc64le",
"AppStream-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.s390x",
"AppStream-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.x86_64",
"AppStream-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"AppStream-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"AppStream-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"AppStream-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"AppStream-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.aarch64",
"AppStream-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.ppc64le",
"AppStream-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.s390x",
"AppStream-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.x86_64",
"AppStream-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.aarch64",
"AppStream-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.ppc64le",
"AppStream-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.s390x",
"AppStream-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.x86_64",
"AppStream-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.aarch64",
"AppStream-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.ppc64le",
"AppStream-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.s390x",
"AppStream-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.x86_64",
"AppStream-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"AppStream-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"AppStream-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"AppStream-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"BaseOS-10.0.Z:glib2-0:2.80.4-4.el10_0.6.aarch64",
"BaseOS-10.0.Z:glib2-0:2.80.4-4.el10_0.6.ppc64le",
"BaseOS-10.0.Z:glib2-0:2.80.4-4.el10_0.6.s390x",
"BaseOS-10.0.Z:glib2-0:2.80.4-4.el10_0.6.src",
"BaseOS-10.0.Z:glib2-0:2.80.4-4.el10_0.6.x86_64",
"BaseOS-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"BaseOS-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"BaseOS-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"BaseOS-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"BaseOS-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.aarch64",
"BaseOS-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.ppc64le",
"BaseOS-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.s390x",
"BaseOS-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.x86_64",
"BaseOS-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.aarch64",
"BaseOS-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.ppc64le",
"BaseOS-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.s390x",
"BaseOS-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.x86_64",
"BaseOS-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"BaseOS-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"BaseOS-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"BaseOS-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"BaseOS-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.aarch64",
"BaseOS-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.ppc64le",
"BaseOS-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.s390x",
"BaseOS-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.x86_64",
"BaseOS-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.aarch64",
"BaseOS-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.ppc64le",
"BaseOS-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.s390x",
"BaseOS-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.x86_64",
"BaseOS-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.aarch64",
"BaseOS-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.ppc64le",
"BaseOS-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.s390x",
"BaseOS-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.x86_64",
"BaseOS-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"BaseOS-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"BaseOS-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"BaseOS-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"CRB-10.0.Z:glib2-0:2.80.4-4.el10_0.6.aarch64",
"CRB-10.0.Z:glib2-0:2.80.4-4.el10_0.6.ppc64le",
"CRB-10.0.Z:glib2-0:2.80.4-4.el10_0.6.s390x",
"CRB-10.0.Z:glib2-0:2.80.4-4.el10_0.6.src",
"CRB-10.0.Z:glib2-0:2.80.4-4.el10_0.6.x86_64",
"CRB-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"CRB-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"CRB-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"CRB-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"CRB-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.aarch64",
"CRB-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.ppc64le",
"CRB-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.s390x",
"CRB-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.x86_64",
"CRB-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.aarch64",
"CRB-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.ppc64le",
"CRB-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.s390x",
"CRB-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.x86_64",
"CRB-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"CRB-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"CRB-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"CRB-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"CRB-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.aarch64",
"CRB-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.ppc64le",
"CRB-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.s390x",
"CRB-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.x86_64",
"CRB-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.aarch64",
"CRB-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.ppc64le",
"CRB-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.s390x",
"CRB-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.x86_64",
"CRB-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.aarch64",
"CRB-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.ppc64le",
"CRB-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.s390x",
"CRB-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.x86_64",
"CRB-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"CRB-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"CRB-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"CRB-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:10855"
},
{
"category": "workaround",
"details": "Currently, no mitigation is available for this vulnerability.",
"product_ids": [
"AppStream-10.0.Z:glib2-0:2.80.4-4.el10_0.6.aarch64",
"AppStream-10.0.Z:glib2-0:2.80.4-4.el10_0.6.ppc64le",
"AppStream-10.0.Z:glib2-0:2.80.4-4.el10_0.6.s390x",
"AppStream-10.0.Z:glib2-0:2.80.4-4.el10_0.6.src",
"AppStream-10.0.Z:glib2-0:2.80.4-4.el10_0.6.x86_64",
"AppStream-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"AppStream-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"AppStream-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"AppStream-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"AppStream-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.aarch64",
"AppStream-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.ppc64le",
"AppStream-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.s390x",
"AppStream-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.x86_64",
"AppStream-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.aarch64",
"AppStream-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.ppc64le",
"AppStream-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.s390x",
"AppStream-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.x86_64",
"AppStream-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"AppStream-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"AppStream-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"AppStream-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"AppStream-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.aarch64",
"AppStream-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.ppc64le",
"AppStream-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.s390x",
"AppStream-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.x86_64",
"AppStream-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.aarch64",
"AppStream-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.ppc64le",
"AppStream-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.s390x",
"AppStream-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.x86_64",
"AppStream-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.aarch64",
"AppStream-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.ppc64le",
"AppStream-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.s390x",
"AppStream-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.x86_64",
"AppStream-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"AppStream-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"AppStream-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"AppStream-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"BaseOS-10.0.Z:glib2-0:2.80.4-4.el10_0.6.aarch64",
"BaseOS-10.0.Z:glib2-0:2.80.4-4.el10_0.6.ppc64le",
"BaseOS-10.0.Z:glib2-0:2.80.4-4.el10_0.6.s390x",
"BaseOS-10.0.Z:glib2-0:2.80.4-4.el10_0.6.src",
"BaseOS-10.0.Z:glib2-0:2.80.4-4.el10_0.6.x86_64",
"BaseOS-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"BaseOS-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"BaseOS-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"BaseOS-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"BaseOS-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.aarch64",
"BaseOS-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.ppc64le",
"BaseOS-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.s390x",
"BaseOS-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.x86_64",
"BaseOS-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.aarch64",
"BaseOS-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.ppc64le",
"BaseOS-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.s390x",
"BaseOS-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.x86_64",
"BaseOS-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"BaseOS-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"BaseOS-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"BaseOS-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"BaseOS-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.aarch64",
"BaseOS-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.ppc64le",
"BaseOS-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.s390x",
"BaseOS-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.x86_64",
"BaseOS-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.aarch64",
"BaseOS-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.ppc64le",
"BaseOS-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.s390x",
"BaseOS-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.x86_64",
"BaseOS-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.aarch64",
"BaseOS-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.ppc64le",
"BaseOS-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.s390x",
"BaseOS-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.x86_64",
"BaseOS-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"BaseOS-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"BaseOS-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"BaseOS-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"CRB-10.0.Z:glib2-0:2.80.4-4.el10_0.6.aarch64",
"CRB-10.0.Z:glib2-0:2.80.4-4.el10_0.6.ppc64le",
"CRB-10.0.Z:glib2-0:2.80.4-4.el10_0.6.s390x",
"CRB-10.0.Z:glib2-0:2.80.4-4.el10_0.6.src",
"CRB-10.0.Z:glib2-0:2.80.4-4.el10_0.6.x86_64",
"CRB-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"CRB-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"CRB-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"CRB-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"CRB-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.aarch64",
"CRB-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.ppc64le",
"CRB-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.s390x",
"CRB-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.x86_64",
"CRB-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.aarch64",
"CRB-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.ppc64le",
"CRB-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.s390x",
"CRB-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.x86_64",
"CRB-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"CRB-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"CRB-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"CRB-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"CRB-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.aarch64",
"CRB-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.ppc64le",
"CRB-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.s390x",
"CRB-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.x86_64",
"CRB-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.aarch64",
"CRB-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.ppc64le",
"CRB-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.s390x",
"CRB-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.x86_64",
"CRB-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.aarch64",
"CRB-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.ppc64le",
"CRB-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.s390x",
"CRB-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.x86_64",
"CRB-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"CRB-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"CRB-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"CRB-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"AppStream-10.0.Z:glib2-0:2.80.4-4.el10_0.6.aarch64",
"AppStream-10.0.Z:glib2-0:2.80.4-4.el10_0.6.ppc64le",
"AppStream-10.0.Z:glib2-0:2.80.4-4.el10_0.6.s390x",
"AppStream-10.0.Z:glib2-0:2.80.4-4.el10_0.6.src",
"AppStream-10.0.Z:glib2-0:2.80.4-4.el10_0.6.x86_64",
"AppStream-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"AppStream-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"AppStream-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"AppStream-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"AppStream-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.aarch64",
"AppStream-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.ppc64le",
"AppStream-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.s390x",
"AppStream-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.x86_64",
"AppStream-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.aarch64",
"AppStream-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.ppc64le",
"AppStream-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.s390x",
"AppStream-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.x86_64",
"AppStream-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"AppStream-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"AppStream-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"AppStream-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"AppStream-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.aarch64",
"AppStream-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.ppc64le",
"AppStream-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.s390x",
"AppStream-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.x86_64",
"AppStream-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.aarch64",
"AppStream-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.ppc64le",
"AppStream-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.s390x",
"AppStream-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.x86_64",
"AppStream-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.aarch64",
"AppStream-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.ppc64le",
"AppStream-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.s390x",
"AppStream-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.x86_64",
"AppStream-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"AppStream-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"AppStream-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"AppStream-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"BaseOS-10.0.Z:glib2-0:2.80.4-4.el10_0.6.aarch64",
"BaseOS-10.0.Z:glib2-0:2.80.4-4.el10_0.6.ppc64le",
"BaseOS-10.0.Z:glib2-0:2.80.4-4.el10_0.6.s390x",
"BaseOS-10.0.Z:glib2-0:2.80.4-4.el10_0.6.src",
"BaseOS-10.0.Z:glib2-0:2.80.4-4.el10_0.6.x86_64",
"BaseOS-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"BaseOS-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"BaseOS-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"BaseOS-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"BaseOS-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.aarch64",
"BaseOS-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.ppc64le",
"BaseOS-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.s390x",
"BaseOS-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.x86_64",
"BaseOS-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.aarch64",
"BaseOS-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.ppc64le",
"BaseOS-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.s390x",
"BaseOS-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.x86_64",
"BaseOS-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"BaseOS-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"BaseOS-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"BaseOS-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"BaseOS-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.aarch64",
"BaseOS-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.ppc64le",
"BaseOS-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.s390x",
"BaseOS-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.x86_64",
"BaseOS-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.aarch64",
"BaseOS-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.ppc64le",
"BaseOS-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.s390x",
"BaseOS-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.x86_64",
"BaseOS-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.aarch64",
"BaseOS-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.ppc64le",
"BaseOS-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.s390x",
"BaseOS-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.x86_64",
"BaseOS-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"BaseOS-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"BaseOS-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"BaseOS-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"CRB-10.0.Z:glib2-0:2.80.4-4.el10_0.6.aarch64",
"CRB-10.0.Z:glib2-0:2.80.4-4.el10_0.6.ppc64le",
"CRB-10.0.Z:glib2-0:2.80.4-4.el10_0.6.s390x",
"CRB-10.0.Z:glib2-0:2.80.4-4.el10_0.6.src",
"CRB-10.0.Z:glib2-0:2.80.4-4.el10_0.6.x86_64",
"CRB-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"CRB-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"CRB-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"CRB-10.0.Z:glib2-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"CRB-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.aarch64",
"CRB-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.ppc64le",
"CRB-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.s390x",
"CRB-10.0.Z:glib2-debugsource-0:2.80.4-4.el10_0.6.x86_64",
"CRB-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.aarch64",
"CRB-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.ppc64le",
"CRB-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.s390x",
"CRB-10.0.Z:glib2-devel-0:2.80.4-4.el10_0.6.x86_64",
"CRB-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"CRB-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"CRB-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"CRB-10.0.Z:glib2-devel-debuginfo-0:2.80.4-4.el10_0.6.x86_64",
"CRB-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.aarch64",
"CRB-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.ppc64le",
"CRB-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.s390x",
"CRB-10.0.Z:glib2-doc-0:2.80.4-4.el10_0.6.x86_64",
"CRB-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.aarch64",
"CRB-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.ppc64le",
"CRB-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.s390x",
"CRB-10.0.Z:glib2-static-0:2.80.4-4.el10_0.6.x86_64",
"CRB-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.aarch64",
"CRB-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.ppc64le",
"CRB-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.s390x",
"CRB-10.0.Z:glib2-tests-0:2.80.4-4.el10_0.6.x86_64",
"CRB-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.aarch64",
"CRB-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.ppc64le",
"CRB-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.s390x",
"CRB-10.0.Z:glib2-tests-debuginfo-0:2.80.4-4.el10_0.6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "glib: Buffer Underflow on GLib through glib/gstring.c via function g_string_insert_unichar"
}
]
}
rhsa-2025:12275
Vulnerability from csaf_redhat
Published
2025-07-30 09:25
Modified
2025-10-10 00:28
Summary
Red Hat Security Advisory: glib2 security update
Notes
Topic
An update for glib2 is now available for Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
GLib provides the core application building blocks for libraries and applications written in C. It provides the core object system used in GNOME, the main loop implementation, and a large set of utility functions for strings and common data structures.
Security Fix(es):
* glib: buffer overflow in set_connect_msg() (CVE-2024-52533)
* glib: Buffer Underflow on GLib through glib/gstring.c via function g_string_insert_unichar (CVE-2025-4373)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for glib2 is now available for Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "GLib provides the core application building blocks for libraries and applications written in C. It provides the core object system used in GNOME, the main loop implementation, and a large set of utility functions for strings and common data structures.\n\nSecurity Fix(es):\n\n* glib: buffer overflow in set_connect_msg() (CVE-2024-52533)\n\n* glib: Buffer Underflow on GLib through glib/gstring.c via function g_string_insert_unichar (CVE-2025-4373)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:12275",
"url": "https://access.redhat.com/errata/RHSA-2025:12275"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "2325340",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2325340"
},
{
"category": "external",
"summary": "2364265",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2364265"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_12275.json"
}
],
"title": "Red Hat Security Advisory: glib2 security update",
"tracking": {
"current_release_date": "2025-10-10T00:28:36+00:00",
"generator": {
"date": "2025-10-10T00:28:36+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.9"
}
},
"id": "RHSA-2025:12275",
"initial_release_date": "2025-07-30T09:25:37+00:00",
"revision_history": [
{
"date": "2025-07-30T09:25:37+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-07-30T09:25:37+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-10T00:28:36+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product": {
"name": "Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_e4s:9.0::appstream"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product": {
"name": "Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_e4s:9.0::baseos"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "glib2-0:2.68.4-5.el9_0.2.src",
"product": {
"name": "glib2-0:2.68.4-5.el9_0.2.src",
"product_id": "glib2-0:2.68.4-5.el9_0.2.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2@2.68.4-5.el9_0.2?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "glib2-0:2.68.4-5.el9_0.2.aarch64",
"product": {
"name": "glib2-0:2.68.4-5.el9_0.2.aarch64",
"product_id": "glib2-0:2.68.4-5.el9_0.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2@2.68.4-5.el9_0.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "glib2-debugsource-0:2.68.4-5.el9_0.2.aarch64",
"product": {
"name": "glib2-debugsource-0:2.68.4-5.el9_0.2.aarch64",
"product_id": "glib2-debugsource-0:2.68.4-5.el9_0.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debugsource@2.68.4-5.el9_0.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "glib2-debuginfo-0:2.68.4-5.el9_0.2.aarch64",
"product": {
"name": "glib2-debuginfo-0:2.68.4-5.el9_0.2.aarch64",
"product_id": "glib2-debuginfo-0:2.68.4-5.el9_0.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debuginfo@2.68.4-5.el9_0.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.aarch64",
"product": {
"name": "glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.aarch64",
"product_id": "glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel-debuginfo@2.68.4-5.el9_0.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.aarch64",
"product": {
"name": "glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.aarch64",
"product_id": "glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-tests-debuginfo@2.68.4-5.el9_0.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "glib2-devel-0:2.68.4-5.el9_0.2.aarch64",
"product": {
"name": "glib2-devel-0:2.68.4-5.el9_0.2.aarch64",
"product_id": "glib2-devel-0:2.68.4-5.el9_0.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel@2.68.4-5.el9_0.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "glib2-tests-0:2.68.4-5.el9_0.2.aarch64",
"product": {
"name": "glib2-tests-0:2.68.4-5.el9_0.2.aarch64",
"product_id": "glib2-tests-0:2.68.4-5.el9_0.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-tests@2.68.4-5.el9_0.2?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "glib2-0:2.68.4-5.el9_0.2.ppc64le",
"product": {
"name": "glib2-0:2.68.4-5.el9_0.2.ppc64le",
"product_id": "glib2-0:2.68.4-5.el9_0.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2@2.68.4-5.el9_0.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "glib2-debugsource-0:2.68.4-5.el9_0.2.ppc64le",
"product": {
"name": "glib2-debugsource-0:2.68.4-5.el9_0.2.ppc64le",
"product_id": "glib2-debugsource-0:2.68.4-5.el9_0.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debugsource@2.68.4-5.el9_0.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "glib2-debuginfo-0:2.68.4-5.el9_0.2.ppc64le",
"product": {
"name": "glib2-debuginfo-0:2.68.4-5.el9_0.2.ppc64le",
"product_id": "glib2-debuginfo-0:2.68.4-5.el9_0.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debuginfo@2.68.4-5.el9_0.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.ppc64le",
"product": {
"name": "glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.ppc64le",
"product_id": "glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel-debuginfo@2.68.4-5.el9_0.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.ppc64le",
"product": {
"name": "glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.ppc64le",
"product_id": "glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-tests-debuginfo@2.68.4-5.el9_0.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "glib2-devel-0:2.68.4-5.el9_0.2.ppc64le",
"product": {
"name": "glib2-devel-0:2.68.4-5.el9_0.2.ppc64le",
"product_id": "glib2-devel-0:2.68.4-5.el9_0.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel@2.68.4-5.el9_0.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "glib2-tests-0:2.68.4-5.el9_0.2.ppc64le",
"product": {
"name": "glib2-tests-0:2.68.4-5.el9_0.2.ppc64le",
"product_id": "glib2-tests-0:2.68.4-5.el9_0.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-tests@2.68.4-5.el9_0.2?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "glib2-0:2.68.4-5.el9_0.2.i686",
"product": {
"name": "glib2-0:2.68.4-5.el9_0.2.i686",
"product_id": "glib2-0:2.68.4-5.el9_0.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2@2.68.4-5.el9_0.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "glib2-debugsource-0:2.68.4-5.el9_0.2.i686",
"product": {
"name": "glib2-debugsource-0:2.68.4-5.el9_0.2.i686",
"product_id": "glib2-debugsource-0:2.68.4-5.el9_0.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debugsource@2.68.4-5.el9_0.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "glib2-debuginfo-0:2.68.4-5.el9_0.2.i686",
"product": {
"name": "glib2-debuginfo-0:2.68.4-5.el9_0.2.i686",
"product_id": "glib2-debuginfo-0:2.68.4-5.el9_0.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debuginfo@2.68.4-5.el9_0.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.i686",
"product": {
"name": "glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.i686",
"product_id": "glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel-debuginfo@2.68.4-5.el9_0.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.i686",
"product": {
"name": "glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.i686",
"product_id": "glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-tests-debuginfo@2.68.4-5.el9_0.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "glib2-devel-0:2.68.4-5.el9_0.2.i686",
"product": {
"name": "glib2-devel-0:2.68.4-5.el9_0.2.i686",
"product_id": "glib2-devel-0:2.68.4-5.el9_0.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel@2.68.4-5.el9_0.2?arch=i686"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "glib2-0:2.68.4-5.el9_0.2.x86_64",
"product": {
"name": "glib2-0:2.68.4-5.el9_0.2.x86_64",
"product_id": "glib2-0:2.68.4-5.el9_0.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2@2.68.4-5.el9_0.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glib2-debugsource-0:2.68.4-5.el9_0.2.x86_64",
"product": {
"name": "glib2-debugsource-0:2.68.4-5.el9_0.2.x86_64",
"product_id": "glib2-debugsource-0:2.68.4-5.el9_0.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debugsource@2.68.4-5.el9_0.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glib2-debuginfo-0:2.68.4-5.el9_0.2.x86_64",
"product": {
"name": "glib2-debuginfo-0:2.68.4-5.el9_0.2.x86_64",
"product_id": "glib2-debuginfo-0:2.68.4-5.el9_0.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debuginfo@2.68.4-5.el9_0.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.x86_64",
"product": {
"name": "glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.x86_64",
"product_id": "glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel-debuginfo@2.68.4-5.el9_0.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.x86_64",
"product": {
"name": "glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.x86_64",
"product_id": "glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-tests-debuginfo@2.68.4-5.el9_0.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glib2-devel-0:2.68.4-5.el9_0.2.x86_64",
"product": {
"name": "glib2-devel-0:2.68.4-5.el9_0.2.x86_64",
"product_id": "glib2-devel-0:2.68.4-5.el9_0.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel@2.68.4-5.el9_0.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glib2-tests-0:2.68.4-5.el9_0.2.x86_64",
"product": {
"name": "glib2-tests-0:2.68.4-5.el9_0.2.x86_64",
"product_id": "glib2-tests-0:2.68.4-5.el9_0.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-tests@2.68.4-5.el9_0.2?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "glib2-0:2.68.4-5.el9_0.2.s390x",
"product": {
"name": "glib2-0:2.68.4-5.el9_0.2.s390x",
"product_id": "glib2-0:2.68.4-5.el9_0.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2@2.68.4-5.el9_0.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "glib2-debugsource-0:2.68.4-5.el9_0.2.s390x",
"product": {
"name": "glib2-debugsource-0:2.68.4-5.el9_0.2.s390x",
"product_id": "glib2-debugsource-0:2.68.4-5.el9_0.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debugsource@2.68.4-5.el9_0.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "glib2-debuginfo-0:2.68.4-5.el9_0.2.s390x",
"product": {
"name": "glib2-debuginfo-0:2.68.4-5.el9_0.2.s390x",
"product_id": "glib2-debuginfo-0:2.68.4-5.el9_0.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-debuginfo@2.68.4-5.el9_0.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.s390x",
"product": {
"name": "glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.s390x",
"product_id": "glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel-debuginfo@2.68.4-5.el9_0.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.s390x",
"product": {
"name": "glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.s390x",
"product_id": "glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-tests-debuginfo@2.68.4-5.el9_0.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "glib2-devel-0:2.68.4-5.el9_0.2.s390x",
"product": {
"name": "glib2-devel-0:2.68.4-5.el9_0.2.s390x",
"product_id": "glib2-devel-0:2.68.4-5.el9_0.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-devel@2.68.4-5.el9_0.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "glib2-tests-0:2.68.4-5.el9_0.2.s390x",
"product": {
"name": "glib2-tests-0:2.68.4-5.el9_0.2.s390x",
"product_id": "glib2-tests-0:2.68.4-5.el9_0.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-tests@2.68.4-5.el9_0.2?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "glib2-doc-0:2.68.4-5.el9_0.2.noarch",
"product": {
"name": "glib2-doc-0:2.68.4-5.el9_0.2.noarch",
"product_id": "glib2-doc-0:2.68.4-5.el9_0.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glib2-doc@2.68.4-5.el9_0.2?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.68.4-5.el9_0.2.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.aarch64"
},
"product_reference": "glib2-0:2.68.4-5.el9_0.2.aarch64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.68.4-5.el9_0.2.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.i686"
},
"product_reference": "glib2-0:2.68.4-5.el9_0.2.i686",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.68.4-5.el9_0.2.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.ppc64le"
},
"product_reference": "glib2-0:2.68.4-5.el9_0.2.ppc64le",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.68.4-5.el9_0.2.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.s390x"
},
"product_reference": "glib2-0:2.68.4-5.el9_0.2.s390x",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.68.4-5.el9_0.2.src as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.src"
},
"product_reference": "glib2-0:2.68.4-5.el9_0.2.src",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.68.4-5.el9_0.2.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.x86_64"
},
"product_reference": "glib2-0:2.68.4-5.el9_0.2.x86_64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.68.4-5.el9_0.2.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.aarch64"
},
"product_reference": "glib2-debuginfo-0:2.68.4-5.el9_0.2.aarch64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.68.4-5.el9_0.2.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.i686"
},
"product_reference": "glib2-debuginfo-0:2.68.4-5.el9_0.2.i686",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.68.4-5.el9_0.2.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.ppc64le"
},
"product_reference": "glib2-debuginfo-0:2.68.4-5.el9_0.2.ppc64le",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.68.4-5.el9_0.2.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.s390x"
},
"product_reference": "glib2-debuginfo-0:2.68.4-5.el9_0.2.s390x",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.68.4-5.el9_0.2.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.x86_64"
},
"product_reference": "glib2-debuginfo-0:2.68.4-5.el9_0.2.x86_64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.68.4-5.el9_0.2.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.aarch64"
},
"product_reference": "glib2-debugsource-0:2.68.4-5.el9_0.2.aarch64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.68.4-5.el9_0.2.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.i686"
},
"product_reference": "glib2-debugsource-0:2.68.4-5.el9_0.2.i686",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.68.4-5.el9_0.2.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.ppc64le"
},
"product_reference": "glib2-debugsource-0:2.68.4-5.el9_0.2.ppc64le",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.68.4-5.el9_0.2.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.s390x"
},
"product_reference": "glib2-debugsource-0:2.68.4-5.el9_0.2.s390x",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.68.4-5.el9_0.2.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.x86_64"
},
"product_reference": "glib2-debugsource-0:2.68.4-5.el9_0.2.x86_64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.68.4-5.el9_0.2.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.aarch64"
},
"product_reference": "glib2-devel-0:2.68.4-5.el9_0.2.aarch64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.68.4-5.el9_0.2.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.i686"
},
"product_reference": "glib2-devel-0:2.68.4-5.el9_0.2.i686",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.68.4-5.el9_0.2.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.ppc64le"
},
"product_reference": "glib2-devel-0:2.68.4-5.el9_0.2.ppc64le",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.68.4-5.el9_0.2.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.s390x"
},
"product_reference": "glib2-devel-0:2.68.4-5.el9_0.2.s390x",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.68.4-5.el9_0.2.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.x86_64"
},
"product_reference": "glib2-devel-0:2.68.4-5.el9_0.2.x86_64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.aarch64"
},
"product_reference": "glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.aarch64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.i686"
},
"product_reference": "glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.i686",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.ppc64le"
},
"product_reference": "glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.ppc64le",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.s390x"
},
"product_reference": "glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.s390x",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.x86_64"
},
"product_reference": "glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.x86_64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-doc-0:2.68.4-5.el9_0.2.noarch as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:glib2-doc-0:2.68.4-5.el9_0.2.noarch"
},
"product_reference": "glib2-doc-0:2.68.4-5.el9_0.2.noarch",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-0:2.68.4-5.el9_0.2.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:glib2-tests-0:2.68.4-5.el9_0.2.aarch64"
},
"product_reference": "glib2-tests-0:2.68.4-5.el9_0.2.aarch64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-0:2.68.4-5.el9_0.2.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:glib2-tests-0:2.68.4-5.el9_0.2.ppc64le"
},
"product_reference": "glib2-tests-0:2.68.4-5.el9_0.2.ppc64le",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-0:2.68.4-5.el9_0.2.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:glib2-tests-0:2.68.4-5.el9_0.2.s390x"
},
"product_reference": "glib2-tests-0:2.68.4-5.el9_0.2.s390x",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-0:2.68.4-5.el9_0.2.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:glib2-tests-0:2.68.4-5.el9_0.2.x86_64"
},
"product_reference": "glib2-tests-0:2.68.4-5.el9_0.2.x86_64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.aarch64"
},
"product_reference": "glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.aarch64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.i686"
},
"product_reference": "glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.i686",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.ppc64le"
},
"product_reference": "glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.ppc64le",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.s390x"
},
"product_reference": "glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.s390x",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.x86_64"
},
"product_reference": "glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.x86_64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.68.4-5.el9_0.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.aarch64"
},
"product_reference": "glib2-0:2.68.4-5.el9_0.2.aarch64",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.68.4-5.el9_0.2.i686 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.i686"
},
"product_reference": "glib2-0:2.68.4-5.el9_0.2.i686",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.68.4-5.el9_0.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.ppc64le"
},
"product_reference": "glib2-0:2.68.4-5.el9_0.2.ppc64le",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.68.4-5.el9_0.2.s390x as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.s390x"
},
"product_reference": "glib2-0:2.68.4-5.el9_0.2.s390x",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.68.4-5.el9_0.2.src as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.src"
},
"product_reference": "glib2-0:2.68.4-5.el9_0.2.src",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-0:2.68.4-5.el9_0.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.x86_64"
},
"product_reference": "glib2-0:2.68.4-5.el9_0.2.x86_64",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.68.4-5.el9_0.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.aarch64"
},
"product_reference": "glib2-debuginfo-0:2.68.4-5.el9_0.2.aarch64",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.68.4-5.el9_0.2.i686 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.i686"
},
"product_reference": "glib2-debuginfo-0:2.68.4-5.el9_0.2.i686",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.68.4-5.el9_0.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.ppc64le"
},
"product_reference": "glib2-debuginfo-0:2.68.4-5.el9_0.2.ppc64le",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.68.4-5.el9_0.2.s390x as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.s390x"
},
"product_reference": "glib2-debuginfo-0:2.68.4-5.el9_0.2.s390x",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debuginfo-0:2.68.4-5.el9_0.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.x86_64"
},
"product_reference": "glib2-debuginfo-0:2.68.4-5.el9_0.2.x86_64",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.68.4-5.el9_0.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.aarch64"
},
"product_reference": "glib2-debugsource-0:2.68.4-5.el9_0.2.aarch64",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.68.4-5.el9_0.2.i686 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.i686"
},
"product_reference": "glib2-debugsource-0:2.68.4-5.el9_0.2.i686",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.68.4-5.el9_0.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.ppc64le"
},
"product_reference": "glib2-debugsource-0:2.68.4-5.el9_0.2.ppc64le",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.68.4-5.el9_0.2.s390x as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.s390x"
},
"product_reference": "glib2-debugsource-0:2.68.4-5.el9_0.2.s390x",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-debugsource-0:2.68.4-5.el9_0.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.x86_64"
},
"product_reference": "glib2-debugsource-0:2.68.4-5.el9_0.2.x86_64",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.68.4-5.el9_0.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.aarch64"
},
"product_reference": "glib2-devel-0:2.68.4-5.el9_0.2.aarch64",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.68.4-5.el9_0.2.i686 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.i686"
},
"product_reference": "glib2-devel-0:2.68.4-5.el9_0.2.i686",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.68.4-5.el9_0.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.ppc64le"
},
"product_reference": "glib2-devel-0:2.68.4-5.el9_0.2.ppc64le",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.68.4-5.el9_0.2.s390x as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.s390x"
},
"product_reference": "glib2-devel-0:2.68.4-5.el9_0.2.s390x",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-0:2.68.4-5.el9_0.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.x86_64"
},
"product_reference": "glib2-devel-0:2.68.4-5.el9_0.2.x86_64",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.aarch64"
},
"product_reference": "glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.aarch64",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.i686 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.i686"
},
"product_reference": "glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.i686",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.ppc64le"
},
"product_reference": "glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.ppc64le",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.s390x as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.s390x"
},
"product_reference": "glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.s390x",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.x86_64"
},
"product_reference": "glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.x86_64",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-doc-0:2.68.4-5.el9_0.2.noarch as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:glib2-doc-0:2.68.4-5.el9_0.2.noarch"
},
"product_reference": "glib2-doc-0:2.68.4-5.el9_0.2.noarch",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-0:2.68.4-5.el9_0.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:glib2-tests-0:2.68.4-5.el9_0.2.aarch64"
},
"product_reference": "glib2-tests-0:2.68.4-5.el9_0.2.aarch64",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-0:2.68.4-5.el9_0.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:glib2-tests-0:2.68.4-5.el9_0.2.ppc64le"
},
"product_reference": "glib2-tests-0:2.68.4-5.el9_0.2.ppc64le",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-0:2.68.4-5.el9_0.2.s390x as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:glib2-tests-0:2.68.4-5.el9_0.2.s390x"
},
"product_reference": "glib2-tests-0:2.68.4-5.el9_0.2.s390x",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-0:2.68.4-5.el9_0.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:glib2-tests-0:2.68.4-5.el9_0.2.x86_64"
},
"product_reference": "glib2-tests-0:2.68.4-5.el9_0.2.x86_64",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.aarch64"
},
"product_reference": "glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.aarch64",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.i686 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.i686"
},
"product_reference": "glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.i686",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.ppc64le"
},
"product_reference": "glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.ppc64le",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.s390x as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.s390x"
},
"product_reference": "glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.s390x",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.x86_64"
},
"product_reference": "glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.x86_64",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-52533",
"cwe": {
"id": "CWE-193",
"name": "Off-by-one Error"
},
"discovery_date": "2024-11-11T23:00:48.125765+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2325340"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Glib library. A buffer overflow condition can be triggered in certain conditions due to an off-by-one error in SOCKS4_CONN_MSG_LEN. This issue may lead to an application crash or other undefined behavior.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "glib: buffer overflow in set_connect_msg()",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.aarch64",
"AppStream-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.i686",
"AppStream-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.ppc64le",
"AppStream-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.s390x",
"AppStream-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.src",
"AppStream-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.x86_64",
"AppStream-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.aarch64",
"AppStream-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.i686",
"AppStream-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.ppc64le",
"AppStream-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.s390x",
"AppStream-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.x86_64",
"AppStream-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.aarch64",
"AppStream-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.i686",
"AppStream-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.ppc64le",
"AppStream-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.s390x",
"AppStream-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.x86_64",
"AppStream-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.aarch64",
"AppStream-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.i686",
"AppStream-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.ppc64le",
"AppStream-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.s390x",
"AppStream-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.x86_64",
"AppStream-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.aarch64",
"AppStream-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.i686",
"AppStream-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.ppc64le",
"AppStream-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.s390x",
"AppStream-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.x86_64",
"AppStream-9.0.0.Z.E4S:glib2-doc-0:2.68.4-5.el9_0.2.noarch",
"AppStream-9.0.0.Z.E4S:glib2-tests-0:2.68.4-5.el9_0.2.aarch64",
"AppStream-9.0.0.Z.E4S:glib2-tests-0:2.68.4-5.el9_0.2.ppc64le",
"AppStream-9.0.0.Z.E4S:glib2-tests-0:2.68.4-5.el9_0.2.s390x",
"AppStream-9.0.0.Z.E4S:glib2-tests-0:2.68.4-5.el9_0.2.x86_64",
"AppStream-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.aarch64",
"AppStream-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.i686",
"AppStream-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.ppc64le",
"AppStream-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.s390x",
"AppStream-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.x86_64",
"BaseOS-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.aarch64",
"BaseOS-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.i686",
"BaseOS-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.ppc64le",
"BaseOS-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.s390x",
"BaseOS-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.src",
"BaseOS-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.x86_64",
"BaseOS-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.aarch64",
"BaseOS-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.i686",
"BaseOS-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.ppc64le",
"BaseOS-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.s390x",
"BaseOS-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.x86_64",
"BaseOS-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.aarch64",
"BaseOS-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.i686",
"BaseOS-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.ppc64le",
"BaseOS-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.s390x",
"BaseOS-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.x86_64",
"BaseOS-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.aarch64",
"BaseOS-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.i686",
"BaseOS-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.ppc64le",
"BaseOS-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.s390x",
"BaseOS-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.x86_64",
"BaseOS-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.aarch64",
"BaseOS-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.i686",
"BaseOS-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.ppc64le",
"BaseOS-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.s390x",
"BaseOS-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.x86_64",
"BaseOS-9.0.0.Z.E4S:glib2-doc-0:2.68.4-5.el9_0.2.noarch",
"BaseOS-9.0.0.Z.E4S:glib2-tests-0:2.68.4-5.el9_0.2.aarch64",
"BaseOS-9.0.0.Z.E4S:glib2-tests-0:2.68.4-5.el9_0.2.ppc64le",
"BaseOS-9.0.0.Z.E4S:glib2-tests-0:2.68.4-5.el9_0.2.s390x",
"BaseOS-9.0.0.Z.E4S:glib2-tests-0:2.68.4-5.el9_0.2.x86_64",
"BaseOS-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.aarch64",
"BaseOS-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.i686",
"BaseOS-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.ppc64le",
"BaseOS-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.s390x",
"BaseOS-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-52533"
},
{
"category": "external",
"summary": "RHBZ#2325340",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2325340"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-52533",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-52533"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-52533",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-52533"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/GNOME/glib/-/issues/3461",
"url": "https://gitlab.gnome.org/GNOME/glib/-/issues/3461"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/GNOME/glib/-/releases/2.82.1",
"url": "https://gitlab.gnome.org/GNOME/glib/-/releases/2.82.1"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/Teams/Releng/security/-/wikis/home",
"url": "https://gitlab.gnome.org/Teams/Releng/security/-/wikis/home"
}
],
"release_date": "2024-11-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-07-30T09:25:37+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.aarch64",
"AppStream-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.i686",
"AppStream-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.ppc64le",
"AppStream-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.s390x",
"AppStream-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.src",
"AppStream-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.x86_64",
"AppStream-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.aarch64",
"AppStream-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.i686",
"AppStream-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.ppc64le",
"AppStream-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.s390x",
"AppStream-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.x86_64",
"AppStream-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.aarch64",
"AppStream-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.i686",
"AppStream-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.ppc64le",
"AppStream-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.s390x",
"AppStream-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.x86_64",
"AppStream-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.aarch64",
"AppStream-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.i686",
"AppStream-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.ppc64le",
"AppStream-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.s390x",
"AppStream-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.x86_64",
"AppStream-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.aarch64",
"AppStream-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.i686",
"AppStream-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.ppc64le",
"AppStream-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.s390x",
"AppStream-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.x86_64",
"AppStream-9.0.0.Z.E4S:glib2-doc-0:2.68.4-5.el9_0.2.noarch",
"AppStream-9.0.0.Z.E4S:glib2-tests-0:2.68.4-5.el9_0.2.aarch64",
"AppStream-9.0.0.Z.E4S:glib2-tests-0:2.68.4-5.el9_0.2.ppc64le",
"AppStream-9.0.0.Z.E4S:glib2-tests-0:2.68.4-5.el9_0.2.s390x",
"AppStream-9.0.0.Z.E4S:glib2-tests-0:2.68.4-5.el9_0.2.x86_64",
"AppStream-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.aarch64",
"AppStream-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.i686",
"AppStream-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.ppc64le",
"AppStream-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.s390x",
"AppStream-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.x86_64",
"BaseOS-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.aarch64",
"BaseOS-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.i686",
"BaseOS-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.ppc64le",
"BaseOS-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.s390x",
"BaseOS-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.src",
"BaseOS-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.x86_64",
"BaseOS-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.aarch64",
"BaseOS-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.i686",
"BaseOS-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.ppc64le",
"BaseOS-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.s390x",
"BaseOS-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.x86_64",
"BaseOS-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.aarch64",
"BaseOS-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.i686",
"BaseOS-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.ppc64le",
"BaseOS-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.s390x",
"BaseOS-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.x86_64",
"BaseOS-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.aarch64",
"BaseOS-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.i686",
"BaseOS-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.ppc64le",
"BaseOS-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.s390x",
"BaseOS-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.x86_64",
"BaseOS-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.aarch64",
"BaseOS-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.i686",
"BaseOS-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.ppc64le",
"BaseOS-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.s390x",
"BaseOS-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.x86_64",
"BaseOS-9.0.0.Z.E4S:glib2-doc-0:2.68.4-5.el9_0.2.noarch",
"BaseOS-9.0.0.Z.E4S:glib2-tests-0:2.68.4-5.el9_0.2.aarch64",
"BaseOS-9.0.0.Z.E4S:glib2-tests-0:2.68.4-5.el9_0.2.ppc64le",
"BaseOS-9.0.0.Z.E4S:glib2-tests-0:2.68.4-5.el9_0.2.s390x",
"BaseOS-9.0.0.Z.E4S:glib2-tests-0:2.68.4-5.el9_0.2.x86_64",
"BaseOS-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.aarch64",
"BaseOS-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.i686",
"BaseOS-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.ppc64le",
"BaseOS-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.s390x",
"BaseOS-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:12275"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.aarch64",
"AppStream-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.i686",
"AppStream-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.ppc64le",
"AppStream-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.s390x",
"AppStream-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.src",
"AppStream-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.x86_64",
"AppStream-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.aarch64",
"AppStream-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.i686",
"AppStream-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.ppc64le",
"AppStream-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.s390x",
"AppStream-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.x86_64",
"AppStream-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.aarch64",
"AppStream-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.i686",
"AppStream-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.ppc64le",
"AppStream-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.s390x",
"AppStream-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.x86_64",
"AppStream-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.aarch64",
"AppStream-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.i686",
"AppStream-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.ppc64le",
"AppStream-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.s390x",
"AppStream-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.x86_64",
"AppStream-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.aarch64",
"AppStream-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.i686",
"AppStream-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.ppc64le",
"AppStream-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.s390x",
"AppStream-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.x86_64",
"AppStream-9.0.0.Z.E4S:glib2-doc-0:2.68.4-5.el9_0.2.noarch",
"AppStream-9.0.0.Z.E4S:glib2-tests-0:2.68.4-5.el9_0.2.aarch64",
"AppStream-9.0.0.Z.E4S:glib2-tests-0:2.68.4-5.el9_0.2.ppc64le",
"AppStream-9.0.0.Z.E4S:glib2-tests-0:2.68.4-5.el9_0.2.s390x",
"AppStream-9.0.0.Z.E4S:glib2-tests-0:2.68.4-5.el9_0.2.x86_64",
"AppStream-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.aarch64",
"AppStream-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.i686",
"AppStream-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.ppc64le",
"AppStream-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.s390x",
"AppStream-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.x86_64",
"BaseOS-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.aarch64",
"BaseOS-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.i686",
"BaseOS-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.ppc64le",
"BaseOS-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.s390x",
"BaseOS-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.src",
"BaseOS-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.x86_64",
"BaseOS-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.aarch64",
"BaseOS-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.i686",
"BaseOS-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.ppc64le",
"BaseOS-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.s390x",
"BaseOS-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.x86_64",
"BaseOS-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.aarch64",
"BaseOS-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.i686",
"BaseOS-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.ppc64le",
"BaseOS-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.s390x",
"BaseOS-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.x86_64",
"BaseOS-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.aarch64",
"BaseOS-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.i686",
"BaseOS-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.ppc64le",
"BaseOS-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.s390x",
"BaseOS-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.x86_64",
"BaseOS-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.aarch64",
"BaseOS-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.i686",
"BaseOS-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.ppc64le",
"BaseOS-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.s390x",
"BaseOS-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.x86_64",
"BaseOS-9.0.0.Z.E4S:glib2-doc-0:2.68.4-5.el9_0.2.noarch",
"BaseOS-9.0.0.Z.E4S:glib2-tests-0:2.68.4-5.el9_0.2.aarch64",
"BaseOS-9.0.0.Z.E4S:glib2-tests-0:2.68.4-5.el9_0.2.ppc64le",
"BaseOS-9.0.0.Z.E4S:glib2-tests-0:2.68.4-5.el9_0.2.s390x",
"BaseOS-9.0.0.Z.E4S:glib2-tests-0:2.68.4-5.el9_0.2.x86_64",
"BaseOS-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.aarch64",
"BaseOS-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.i686",
"BaseOS-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.ppc64le",
"BaseOS-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.s390x",
"BaseOS-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.aarch64",
"AppStream-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.i686",
"AppStream-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.ppc64le",
"AppStream-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.s390x",
"AppStream-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.src",
"AppStream-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.x86_64",
"AppStream-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.aarch64",
"AppStream-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.i686",
"AppStream-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.ppc64le",
"AppStream-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.s390x",
"AppStream-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.x86_64",
"AppStream-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.aarch64",
"AppStream-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.i686",
"AppStream-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.ppc64le",
"AppStream-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.s390x",
"AppStream-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.x86_64",
"AppStream-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.aarch64",
"AppStream-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.i686",
"AppStream-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.ppc64le",
"AppStream-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.s390x",
"AppStream-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.x86_64",
"AppStream-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.aarch64",
"AppStream-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.i686",
"AppStream-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.ppc64le",
"AppStream-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.s390x",
"AppStream-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.x86_64",
"AppStream-9.0.0.Z.E4S:glib2-doc-0:2.68.4-5.el9_0.2.noarch",
"AppStream-9.0.0.Z.E4S:glib2-tests-0:2.68.4-5.el9_0.2.aarch64",
"AppStream-9.0.0.Z.E4S:glib2-tests-0:2.68.4-5.el9_0.2.ppc64le",
"AppStream-9.0.0.Z.E4S:glib2-tests-0:2.68.4-5.el9_0.2.s390x",
"AppStream-9.0.0.Z.E4S:glib2-tests-0:2.68.4-5.el9_0.2.x86_64",
"AppStream-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.aarch64",
"AppStream-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.i686",
"AppStream-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.ppc64le",
"AppStream-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.s390x",
"AppStream-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.x86_64",
"BaseOS-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.aarch64",
"BaseOS-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.i686",
"BaseOS-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.ppc64le",
"BaseOS-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.s390x",
"BaseOS-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.src",
"BaseOS-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.x86_64",
"BaseOS-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.aarch64",
"BaseOS-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.i686",
"BaseOS-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.ppc64le",
"BaseOS-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.s390x",
"BaseOS-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.x86_64",
"BaseOS-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.aarch64",
"BaseOS-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.i686",
"BaseOS-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.ppc64le",
"BaseOS-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.s390x",
"BaseOS-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.x86_64",
"BaseOS-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.aarch64",
"BaseOS-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.i686",
"BaseOS-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.ppc64le",
"BaseOS-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.s390x",
"BaseOS-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.x86_64",
"BaseOS-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.aarch64",
"BaseOS-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.i686",
"BaseOS-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.ppc64le",
"BaseOS-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.s390x",
"BaseOS-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.x86_64",
"BaseOS-9.0.0.Z.E4S:glib2-doc-0:2.68.4-5.el9_0.2.noarch",
"BaseOS-9.0.0.Z.E4S:glib2-tests-0:2.68.4-5.el9_0.2.aarch64",
"BaseOS-9.0.0.Z.E4S:glib2-tests-0:2.68.4-5.el9_0.2.ppc64le",
"BaseOS-9.0.0.Z.E4S:glib2-tests-0:2.68.4-5.el9_0.2.s390x",
"BaseOS-9.0.0.Z.E4S:glib2-tests-0:2.68.4-5.el9_0.2.x86_64",
"BaseOS-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.aarch64",
"BaseOS-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.i686",
"BaseOS-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.ppc64le",
"BaseOS-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.s390x",
"BaseOS-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "glib: buffer overflow in set_connect_msg()"
},
{
"cve": "CVE-2025-4373",
"cwe": {
"id": "CWE-124",
"name": "Buffer Underwrite (\u0027Buffer Underflow\u0027)"
},
"discovery_date": "2025-05-06T00:33:30.003000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2364265"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in GLib, which is vulnerable to an integer overflow in the g_string_insert_unichar() function. When the position at which to insert the character is large, the position will overflow, leading to a buffer underwrite.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "glib: Buffer Underflow on GLib through glib/gstring.c via function g_string_insert_unichar",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Within regulated environments, a combination of the following controls acts as a significant barrier to the successful exploitation of a CWE-124: Buffer Underwrite (\u0027Buffer Underflow\u0027) vulnerability and therefore downgrades the severity of this particular CVE from Moderate to Low.\n\nSecure baseline configurations enforce strict memory handling policies, while change controls ensure any deviations are reviewed and approved. Least functionality reduces the attack surface by disabling unnecessary features that could introduce memory risks. Process isolation contains faults within individual workloads, minimizing broader impact. Real-time monitoring and malicious code protection detect and respond to abnormal memory behavior or exploitation attempts. Hardened configuration settings restrict low-level memory access, lowering the likelihood of unsafe operations. Finally, the platform uses memory protection mechanisms such as Data Execution Prevention (DEP) and Address Space Layout Randomization (ASLR) to strengthen resilience against buffer underwrite exploits.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.aarch64",
"AppStream-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.i686",
"AppStream-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.ppc64le",
"AppStream-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.s390x",
"AppStream-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.src",
"AppStream-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.x86_64",
"AppStream-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.aarch64",
"AppStream-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.i686",
"AppStream-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.ppc64le",
"AppStream-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.s390x",
"AppStream-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.x86_64",
"AppStream-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.aarch64",
"AppStream-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.i686",
"AppStream-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.ppc64le",
"AppStream-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.s390x",
"AppStream-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.x86_64",
"AppStream-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.aarch64",
"AppStream-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.i686",
"AppStream-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.ppc64le",
"AppStream-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.s390x",
"AppStream-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.x86_64",
"AppStream-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.aarch64",
"AppStream-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.i686",
"AppStream-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.ppc64le",
"AppStream-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.s390x",
"AppStream-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.x86_64",
"AppStream-9.0.0.Z.E4S:glib2-doc-0:2.68.4-5.el9_0.2.noarch",
"AppStream-9.0.0.Z.E4S:glib2-tests-0:2.68.4-5.el9_0.2.aarch64",
"AppStream-9.0.0.Z.E4S:glib2-tests-0:2.68.4-5.el9_0.2.ppc64le",
"AppStream-9.0.0.Z.E4S:glib2-tests-0:2.68.4-5.el9_0.2.s390x",
"AppStream-9.0.0.Z.E4S:glib2-tests-0:2.68.4-5.el9_0.2.x86_64",
"AppStream-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.aarch64",
"AppStream-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.i686",
"AppStream-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.ppc64le",
"AppStream-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.s390x",
"AppStream-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.x86_64",
"BaseOS-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.aarch64",
"BaseOS-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.i686",
"BaseOS-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.ppc64le",
"BaseOS-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.s390x",
"BaseOS-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.src",
"BaseOS-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.x86_64",
"BaseOS-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.aarch64",
"BaseOS-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.i686",
"BaseOS-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.ppc64le",
"BaseOS-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.s390x",
"BaseOS-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.x86_64",
"BaseOS-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.aarch64",
"BaseOS-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.i686",
"BaseOS-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.ppc64le",
"BaseOS-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.s390x",
"BaseOS-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.x86_64",
"BaseOS-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.aarch64",
"BaseOS-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.i686",
"BaseOS-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.ppc64le",
"BaseOS-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.s390x",
"BaseOS-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.x86_64",
"BaseOS-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.aarch64",
"BaseOS-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.i686",
"BaseOS-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.ppc64le",
"BaseOS-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.s390x",
"BaseOS-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.x86_64",
"BaseOS-9.0.0.Z.E4S:glib2-doc-0:2.68.4-5.el9_0.2.noarch",
"BaseOS-9.0.0.Z.E4S:glib2-tests-0:2.68.4-5.el9_0.2.aarch64",
"BaseOS-9.0.0.Z.E4S:glib2-tests-0:2.68.4-5.el9_0.2.ppc64le",
"BaseOS-9.0.0.Z.E4S:glib2-tests-0:2.68.4-5.el9_0.2.s390x",
"BaseOS-9.0.0.Z.E4S:glib2-tests-0:2.68.4-5.el9_0.2.x86_64",
"BaseOS-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.aarch64",
"BaseOS-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.i686",
"BaseOS-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.ppc64le",
"BaseOS-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.s390x",
"BaseOS-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-4373"
},
{
"category": "external",
"summary": "RHBZ#2364265",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2364265"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-4373",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4373"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-4373",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-4373"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/GNOME/glib/-/issues/3677",
"url": "https://gitlab.gnome.org/GNOME/glib/-/issues/3677"
}
],
"release_date": "2025-05-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-07-30T09:25:37+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.aarch64",
"AppStream-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.i686",
"AppStream-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.ppc64le",
"AppStream-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.s390x",
"AppStream-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.src",
"AppStream-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.x86_64",
"AppStream-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.aarch64",
"AppStream-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.i686",
"AppStream-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.ppc64le",
"AppStream-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.s390x",
"AppStream-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.x86_64",
"AppStream-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.aarch64",
"AppStream-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.i686",
"AppStream-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.ppc64le",
"AppStream-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.s390x",
"AppStream-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.x86_64",
"AppStream-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.aarch64",
"AppStream-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.i686",
"AppStream-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.ppc64le",
"AppStream-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.s390x",
"AppStream-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.x86_64",
"AppStream-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.aarch64",
"AppStream-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.i686",
"AppStream-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.ppc64le",
"AppStream-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.s390x",
"AppStream-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.x86_64",
"AppStream-9.0.0.Z.E4S:glib2-doc-0:2.68.4-5.el9_0.2.noarch",
"AppStream-9.0.0.Z.E4S:glib2-tests-0:2.68.4-5.el9_0.2.aarch64",
"AppStream-9.0.0.Z.E4S:glib2-tests-0:2.68.4-5.el9_0.2.ppc64le",
"AppStream-9.0.0.Z.E4S:glib2-tests-0:2.68.4-5.el9_0.2.s390x",
"AppStream-9.0.0.Z.E4S:glib2-tests-0:2.68.4-5.el9_0.2.x86_64",
"AppStream-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.aarch64",
"AppStream-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.i686",
"AppStream-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.ppc64le",
"AppStream-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.s390x",
"AppStream-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.x86_64",
"BaseOS-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.aarch64",
"BaseOS-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.i686",
"BaseOS-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.ppc64le",
"BaseOS-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.s390x",
"BaseOS-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.src",
"BaseOS-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.x86_64",
"BaseOS-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.aarch64",
"BaseOS-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.i686",
"BaseOS-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.ppc64le",
"BaseOS-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.s390x",
"BaseOS-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.x86_64",
"BaseOS-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.aarch64",
"BaseOS-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.i686",
"BaseOS-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.ppc64le",
"BaseOS-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.s390x",
"BaseOS-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.x86_64",
"BaseOS-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.aarch64",
"BaseOS-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.i686",
"BaseOS-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.ppc64le",
"BaseOS-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.s390x",
"BaseOS-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.x86_64",
"BaseOS-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.aarch64",
"BaseOS-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.i686",
"BaseOS-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.ppc64le",
"BaseOS-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.s390x",
"BaseOS-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.x86_64",
"BaseOS-9.0.0.Z.E4S:glib2-doc-0:2.68.4-5.el9_0.2.noarch",
"BaseOS-9.0.0.Z.E4S:glib2-tests-0:2.68.4-5.el9_0.2.aarch64",
"BaseOS-9.0.0.Z.E4S:glib2-tests-0:2.68.4-5.el9_0.2.ppc64le",
"BaseOS-9.0.0.Z.E4S:glib2-tests-0:2.68.4-5.el9_0.2.s390x",
"BaseOS-9.0.0.Z.E4S:glib2-tests-0:2.68.4-5.el9_0.2.x86_64",
"BaseOS-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.aarch64",
"BaseOS-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.i686",
"BaseOS-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.ppc64le",
"BaseOS-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.s390x",
"BaseOS-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:12275"
},
{
"category": "workaround",
"details": "Currently, no mitigation is available for this vulnerability.",
"product_ids": [
"AppStream-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.aarch64",
"AppStream-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.i686",
"AppStream-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.ppc64le",
"AppStream-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.s390x",
"AppStream-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.src",
"AppStream-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.x86_64",
"AppStream-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.aarch64",
"AppStream-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.i686",
"AppStream-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.ppc64le",
"AppStream-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.s390x",
"AppStream-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.x86_64",
"AppStream-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.aarch64",
"AppStream-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.i686",
"AppStream-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.ppc64le",
"AppStream-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.s390x",
"AppStream-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.x86_64",
"AppStream-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.aarch64",
"AppStream-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.i686",
"AppStream-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.ppc64le",
"AppStream-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.s390x",
"AppStream-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.x86_64",
"AppStream-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.aarch64",
"AppStream-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.i686",
"AppStream-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.ppc64le",
"AppStream-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.s390x",
"AppStream-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.x86_64",
"AppStream-9.0.0.Z.E4S:glib2-doc-0:2.68.4-5.el9_0.2.noarch",
"AppStream-9.0.0.Z.E4S:glib2-tests-0:2.68.4-5.el9_0.2.aarch64",
"AppStream-9.0.0.Z.E4S:glib2-tests-0:2.68.4-5.el9_0.2.ppc64le",
"AppStream-9.0.0.Z.E4S:glib2-tests-0:2.68.4-5.el9_0.2.s390x",
"AppStream-9.0.0.Z.E4S:glib2-tests-0:2.68.4-5.el9_0.2.x86_64",
"AppStream-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.aarch64",
"AppStream-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.i686",
"AppStream-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.ppc64le",
"AppStream-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.s390x",
"AppStream-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.x86_64",
"BaseOS-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.aarch64",
"BaseOS-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.i686",
"BaseOS-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.ppc64le",
"BaseOS-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.s390x",
"BaseOS-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.src",
"BaseOS-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.x86_64",
"BaseOS-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.aarch64",
"BaseOS-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.i686",
"BaseOS-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.ppc64le",
"BaseOS-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.s390x",
"BaseOS-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.x86_64",
"BaseOS-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.aarch64",
"BaseOS-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.i686",
"BaseOS-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.ppc64le",
"BaseOS-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.s390x",
"BaseOS-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.x86_64",
"BaseOS-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.aarch64",
"BaseOS-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.i686",
"BaseOS-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.ppc64le",
"BaseOS-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.s390x",
"BaseOS-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.x86_64",
"BaseOS-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.aarch64",
"BaseOS-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.i686",
"BaseOS-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.ppc64le",
"BaseOS-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.s390x",
"BaseOS-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.x86_64",
"BaseOS-9.0.0.Z.E4S:glib2-doc-0:2.68.4-5.el9_0.2.noarch",
"BaseOS-9.0.0.Z.E4S:glib2-tests-0:2.68.4-5.el9_0.2.aarch64",
"BaseOS-9.0.0.Z.E4S:glib2-tests-0:2.68.4-5.el9_0.2.ppc64le",
"BaseOS-9.0.0.Z.E4S:glib2-tests-0:2.68.4-5.el9_0.2.s390x",
"BaseOS-9.0.0.Z.E4S:glib2-tests-0:2.68.4-5.el9_0.2.x86_64",
"BaseOS-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.aarch64",
"BaseOS-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.i686",
"BaseOS-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.ppc64le",
"BaseOS-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.s390x",
"BaseOS-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"AppStream-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.aarch64",
"AppStream-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.i686",
"AppStream-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.ppc64le",
"AppStream-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.s390x",
"AppStream-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.src",
"AppStream-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.x86_64",
"AppStream-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.aarch64",
"AppStream-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.i686",
"AppStream-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.ppc64le",
"AppStream-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.s390x",
"AppStream-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.x86_64",
"AppStream-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.aarch64",
"AppStream-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.i686",
"AppStream-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.ppc64le",
"AppStream-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.s390x",
"AppStream-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.x86_64",
"AppStream-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.aarch64",
"AppStream-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.i686",
"AppStream-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.ppc64le",
"AppStream-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.s390x",
"AppStream-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.x86_64",
"AppStream-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.aarch64",
"AppStream-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.i686",
"AppStream-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.ppc64le",
"AppStream-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.s390x",
"AppStream-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.x86_64",
"AppStream-9.0.0.Z.E4S:glib2-doc-0:2.68.4-5.el9_0.2.noarch",
"AppStream-9.0.0.Z.E4S:glib2-tests-0:2.68.4-5.el9_0.2.aarch64",
"AppStream-9.0.0.Z.E4S:glib2-tests-0:2.68.4-5.el9_0.2.ppc64le",
"AppStream-9.0.0.Z.E4S:glib2-tests-0:2.68.4-5.el9_0.2.s390x",
"AppStream-9.0.0.Z.E4S:glib2-tests-0:2.68.4-5.el9_0.2.x86_64",
"AppStream-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.aarch64",
"AppStream-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.i686",
"AppStream-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.ppc64le",
"AppStream-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.s390x",
"AppStream-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.x86_64",
"BaseOS-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.aarch64",
"BaseOS-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.i686",
"BaseOS-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.ppc64le",
"BaseOS-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.s390x",
"BaseOS-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.src",
"BaseOS-9.0.0.Z.E4S:glib2-0:2.68.4-5.el9_0.2.x86_64",
"BaseOS-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.aarch64",
"BaseOS-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.i686",
"BaseOS-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.ppc64le",
"BaseOS-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.s390x",
"BaseOS-9.0.0.Z.E4S:glib2-debuginfo-0:2.68.4-5.el9_0.2.x86_64",
"BaseOS-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.aarch64",
"BaseOS-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.i686",
"BaseOS-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.ppc64le",
"BaseOS-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.s390x",
"BaseOS-9.0.0.Z.E4S:glib2-debugsource-0:2.68.4-5.el9_0.2.x86_64",
"BaseOS-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.aarch64",
"BaseOS-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.i686",
"BaseOS-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.ppc64le",
"BaseOS-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.s390x",
"BaseOS-9.0.0.Z.E4S:glib2-devel-0:2.68.4-5.el9_0.2.x86_64",
"BaseOS-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.aarch64",
"BaseOS-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.i686",
"BaseOS-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.ppc64le",
"BaseOS-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.s390x",
"BaseOS-9.0.0.Z.E4S:glib2-devel-debuginfo-0:2.68.4-5.el9_0.2.x86_64",
"BaseOS-9.0.0.Z.E4S:glib2-doc-0:2.68.4-5.el9_0.2.noarch",
"BaseOS-9.0.0.Z.E4S:glib2-tests-0:2.68.4-5.el9_0.2.aarch64",
"BaseOS-9.0.0.Z.E4S:glib2-tests-0:2.68.4-5.el9_0.2.ppc64le",
"BaseOS-9.0.0.Z.E4S:glib2-tests-0:2.68.4-5.el9_0.2.s390x",
"BaseOS-9.0.0.Z.E4S:glib2-tests-0:2.68.4-5.el9_0.2.x86_64",
"BaseOS-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.aarch64",
"BaseOS-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.i686",
"BaseOS-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.ppc64le",
"BaseOS-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.s390x",
"BaseOS-9.0.0.Z.E4S:glib2-tests-debuginfo-0:2.68.4-5.el9_0.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "glib: Buffer Underflow on GLib through glib/gstring.c via function g_string_insert_unichar"
}
]
}
CERTFR-2025-AVI-0746
Vulnerability from certfr_avis
De multiples vulnérabilités ont été découvertes dans les produits IBM. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, une élévation de privilèges et un déni de service à distance.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| IBM | Cognos Dashboards | Cognos Command Center versions 10.2.4.1 et 10.2.5 antérieures à 10.2.5 FP1 IF1 | ||
| IBM | Sterling | Sterling Secure Proxy versions 6.1.0.x antérieures à 6.1.0.2 GA | ||
| IBM | QRadar | QRadar SIEM versions 7.5.0 antérieures à QRadar 7.5.0 UP13 IF01 | ||
| IBM | Sterling | Sterling Connect:Direct pour Microsoft Windows versions 6.4.x antérieures à 6.4.0.3 | ||
| IBM | WebSphere | WebSphere Remote Server versions 9.1, 8.0 et 8.5 sans le dernier correctif de sécurité | ||
| IBM | Cognos Dashboards | Cognos Dashboards on Cloud Pak for Data versions 5.x antérieures à 5.2.1 | ||
| IBM | Sterling | Sterling Secure Proxy versions 6.2.0.x antérieures à 6.2.0.2 GA | ||
| IBM | QRadar | QRadar Incident Forensics versions 7.5.0 antérieures à QIF 7.5.0 UP13 IF01 | ||
| IBM | Sterling | Sterling External Authentication Server versions 6.1.0.x antérieures à 6.1.0.3 GA | ||
| IBM | Sterling | Sterling Connect:Direct pour Microsoft Windows versions 6.3.x antérieures à 6.3.0.6 | ||
| IBM | Db2 | Db2 Bridge versions antérieures à 1.1.1 |
References
| Title | Publication Time | Tags | |||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Cognos Command Center versions 10.2.4.1 et 10.2.5 ant\u00e9rieures \u00e0 10.2.5 FP1 IF1",
"product": {
"name": "Cognos Dashboards",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Sterling Secure Proxy versions 6.1.0.x ant\u00e9rieures \u00e0 6.1.0.2 GA",
"product": {
"name": "Sterling",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "QRadar SIEM versions 7.5.0 ant\u00e9rieures \u00e0 QRadar 7.5.0 UP13 IF01",
"product": {
"name": "QRadar",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Sterling Connect:Direct pour Microsoft Windows versions 6.4.x ant\u00e9rieures \u00e0 6.4.0.3",
"product": {
"name": "Sterling",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "WebSphere Remote Server versions 9.1, 8.0 et 8.5 sans le dernier correctif de s\u00e9curit\u00e9",
"product": {
"name": "WebSphere",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Cognos Dashboards on Cloud Pak for Data versions 5.x ant\u00e9rieures \u00e0 5.2.1",
"product": {
"name": "Cognos Dashboards",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Sterling Secure Proxy versions 6.2.0.x ant\u00e9rieures \u00e0 6.2.0.2 GA",
"product": {
"name": "Sterling",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "QRadar Incident Forensics versions 7.5.0 ant\u00e9rieures \u00e0 QIF 7.5.0 UP13 IF01",
"product": {
"name": "QRadar",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Sterling External Authentication Server versions 6.1.0.x ant\u00e9rieures \u00e0 6.1.0.3 GA",
"product": {
"name": "Sterling",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Sterling Connect:Direct pour Microsoft Windows versions 6.3.x ant\u00e9rieures \u00e0 6.3.0.6",
"product": {
"name": "Sterling",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Db2 Bridge versions ant\u00e9rieures \u00e0 1.1.1",
"product": {
"name": "Db2",
"vendor": {
"name": "IBM",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2024-6531",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-6531"
},
{
"name": "CVE-2025-4447",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4447"
},
{
"name": "CVE-2024-21144",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21144"
},
{
"name": "CVE-2025-24789",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-24789"
},
{
"name": "CVE-2022-50020",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50020"
},
{
"name": "CVE-2025-47944",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-47944"
},
{
"name": "CVE-2024-50349",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50349"
},
{
"name": "CVE-2025-46835",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-46835"
},
{
"name": "CVE-2024-57980",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57980"
},
{
"name": "CVE-2024-43420",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43420"
},
{
"name": "CVE-2025-49794",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49794"
},
{
"name": "CVE-2025-22004",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22004"
},
{
"name": "CVE-2025-27614",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-27614"
},
{
"name": "CVE-2022-49111",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49111"
},
{
"name": "CVE-2025-1470",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1470"
},
{
"name": "CVE-2022-49058",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49058"
},
{
"name": "CVE-2025-24970",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-24970"
},
{
"name": "CVE-2024-52006",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-52006"
},
{
"name": "CVE-2025-4373",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4373"
},
{
"name": "CVE-2024-13009",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-13009"
},
{
"name": "CVE-2025-50106",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-50106"
},
{
"name": "CVE-2025-48385",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48385"
},
{
"name": "CVE-2025-48060",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48060"
},
{
"name": "CVE-2024-50154",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50154"
},
{
"name": "CVE-2025-27613",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-27613"
},
{
"name": "CVE-2025-30754",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30754"
},
{
"name": "CVE-2024-10917",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-10917"
},
{
"name": "CVE-2022-49136",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49136"
},
{
"name": "CVE-2025-6965",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6965"
},
{
"name": "CVE-2022-49846",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49846"
},
{
"name": "CVE-2019-17543",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-17543"
},
{
"name": "CVE-2025-38086",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38086"
},
{
"name": "CVE-2025-48384",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48384"
},
{
"name": "CVE-2025-7783",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-7783"
},
{
"name": "CVE-2025-27152",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-27152"
},
{
"name": "CVE-2025-1471",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1471"
},
{
"name": "CVE-2025-38079",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38079"
},
{
"name": "CVE-2025-20012",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20012"
},
{
"name": "CVE-2025-7425",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-7425"
},
{
"name": "CVE-2025-37738",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37738"
},
{
"name": "CVE-2024-53920",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53920"
},
{
"name": "CVE-2025-48976",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48976"
},
{
"name": "CVE-2025-21587",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21587"
},
{
"name": "CVE-2025-52520",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-52520"
},
{
"name": "CVE-2024-52533",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-52533"
},
{
"name": "CVE-2024-28956",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28956"
},
{
"name": "CVE-2025-2697",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-2697"
},
{
"name": "CVE-2025-47935",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-47935"
},
{
"name": "CVE-2025-50059",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-50059"
},
{
"name": "CVE-2025-21928",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21928"
},
{
"name": "CVE-2025-30761",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30761"
},
{
"name": "CVE-2024-47535",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47535"
},
{
"name": "CVE-2025-1494",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1494"
},
{
"name": "CVE-2025-1994",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1994"
},
{
"name": "CVE-2025-52434",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-52434"
},
{
"name": "CVE-2025-24495",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-24495"
},
{
"name": "CVE-2025-30698",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30698"
},
{
"name": "CVE-2022-49977",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49977"
},
{
"name": "CVE-2024-54661",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-54661"
},
{
"name": "CVE-2025-37890",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37890"
},
{
"name": "CVE-2025-22020",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22020"
},
{
"name": "CVE-2025-27533",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-27533"
},
{
"name": "CVE-2025-6021",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6021"
},
{
"name": "CVE-2025-55668",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-55668"
},
{
"name": "CVE-2025-25193",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-25193"
},
{
"name": "CVE-2024-58002",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58002"
},
{
"name": "CVE-2025-32415",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-32415"
},
{
"name": "CVE-2025-21905",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21905"
},
{
"name": "CVE-2024-23337",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-23337"
},
{
"name": "CVE-2025-30749",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30749"
},
{
"name": "CVE-2025-38052",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38052"
},
{
"name": "CVE-2025-2900",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-2900"
},
{
"name": "CVE-2025-53506",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-53506"
},
{
"name": "CVE-2019-5427",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-5427"
},
{
"name": "CVE-2022-49788",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49788"
},
{
"name": "CVE-2025-20623",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20623"
},
{
"name": "CVE-2025-48997",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48997"
},
{
"name": "CVE-2020-5260",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-5260"
},
{
"name": "CVE-2025-49796",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49796"
},
{
"name": "CVE-2025-21919",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21919"
},
{
"name": "CVE-2024-21131",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21131"
},
{
"name": "CVE-2024-34397",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34397"
},
{
"name": "CVE-2025-21991",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21991"
},
{
"name": "CVE-2025-7338",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-7338"
},
{
"name": "CVE-2025-24790",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-24790"
},
{
"name": "CVE-2024-45332",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45332"
},
{
"name": "CVE-2025-47273",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-47273"
},
{
"name": "CVE-2025-23150",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-23150"
}
],
"initial_release_date": "2025-08-29T00:00:00",
"last_revision_date": "2025-08-29T00:00:00",
"links": [],
"reference": "CERTFR-2025-AVI-0746",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2025-08-29T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
},
{
"description": "Falsification de requ\u00eates c\u00f4t\u00e9 serveur (SSRF)"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits IBM. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, une \u00e9l\u00e9vation de privil\u00e8ges et un d\u00e9ni de service \u00e0 distance.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits IBM",
"vendor_advisories": [
{
"published_at": "2025-08-28",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7243411",
"url": "https://www.ibm.com/support/pages/node/7243411"
},
{
"published_at": "2025-08-22",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7242915",
"url": "https://www.ibm.com/support/pages/node/7242915"
},
{
"published_at": "2025-08-28",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7243372",
"url": "https://www.ibm.com/support/pages/node/7243372"
},
{
"published_at": "2025-08-26",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7242159",
"url": "https://www.ibm.com/support/pages/node/7242159"
},
{
"published_at": "2025-08-26",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7243146",
"url": "https://www.ibm.com/support/pages/node/7243146"
},
{
"published_at": "2025-08-28",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7242161",
"url": "https://www.ibm.com/support/pages/node/7242161"
},
{
"published_at": "2025-08-26",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7243144",
"url": "https://www.ibm.com/support/pages/node/7243144"
},
{
"published_at": "2025-08-25",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7243011",
"url": "https://www.ibm.com/support/pages/node/7243011"
},
{
"published_at": "2025-08-28",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7243373",
"url": "https://www.ibm.com/support/pages/node/7243373"
}
]
}
CERTFR-2025-AVI-0693
Vulnerability from certfr_avis
De multiples vulnérabilités ont été découvertes dans VMware Tanzu. Elles permettent à un attaquant de provoquer un problème de sécurité non spécifié par l'éditeur.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
References
| Title | Publication Time | Tags | ||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Tanzu pour Valkey versions 8.1.x ant\u00e9rieures \u00e0 8.1.3",
"product": {
"name": "Tanzu",
"vendor": {
"name": "VMware",
"scada": false
}
}
},
{
"description": "Tanzu pour Valkey versions 8.0.x ant\u00e9rieures \u00e0 8.0.4",
"product": {
"name": "Tanzu",
"vendor": {
"name": "VMware",
"scada": false
}
}
},
{
"description": "Tanzu pour Valkey versions ant\u00e9rieures \u00e0 3.0.0",
"product": {
"name": "Tanzu",
"vendor": {
"name": "VMware",
"scada": false
}
}
},
{
"description": "Tanzu pour Valkey versions 7.2.x ant\u00e9rieures \u00e0 7.2.10",
"product": {
"name": "Tanzu",
"vendor": {
"name": "VMware",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2020-11023",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-11023"
},
{
"name": "CVE-2019-12900",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-12900"
},
{
"name": "CVE-2021-3572",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3572"
},
{
"name": "CVE-2021-4136",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-4136"
},
{
"name": "CVE-2021-4173",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-4173"
},
{
"name": "CVE-2021-4187",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-4187"
},
{
"name": "CVE-2021-4166",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-4166"
},
{
"name": "CVE-2021-3968",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3968"
},
{
"name": "CVE-2021-3927",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3927"
},
{
"name": "CVE-2022-0213",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0213"
},
{
"name": "CVE-2021-3928",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3928"
},
{
"name": "CVE-2021-3974",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3974"
},
{
"name": "CVE-2022-0351",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0351"
},
{
"name": "CVE-2022-1725",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-1725"
},
{
"name": "CVE-2022-2042",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2042"
},
{
"name": "CVE-2022-2126",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2126"
},
{
"name": "CVE-2022-1620",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-1620"
},
{
"name": "CVE-2022-1619",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-1619"
},
{
"name": "CVE-2022-1720",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-1720"
},
{
"name": "CVE-2022-2124",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2124"
},
{
"name": "CVE-2022-1674",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-1674"
},
{
"name": "CVE-2022-1616",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-1616"
},
{
"name": "CVE-2022-2125",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2125"
},
{
"name": "CVE-2022-3705",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3705"
},
{
"name": "CVE-2023-0049",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0049"
},
{
"name": "CVE-2023-0051",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0051"
},
{
"name": "CVE-2023-0054",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0054"
},
{
"name": "CVE-2023-0433",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0433"
},
{
"name": "CVE-2023-0288",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0288"
},
{
"name": "CVE-2023-0512",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0512"
},
{
"name": "CVE-2022-3099",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3099"
},
{
"name": "CVE-2022-38533",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-38533"
},
{
"name": "CVE-2022-3324",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3324"
},
{
"name": "CVE-2022-2345",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2345"
},
{
"name": "CVE-2022-3256",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3256"
},
{
"name": "CVE-2023-4734",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4734"
},
{
"name": "CVE-2023-4781",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4781"
},
{
"name": "CVE-2023-4735",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4735"
},
{
"name": "CVE-2023-4752",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4752"
},
{
"name": "CVE-2023-4751",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4751"
},
{
"name": "CVE-2023-4738",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4738"
},
{
"name": "CVE-2023-5344",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-5344"
},
{
"name": "CVE-2021-3826",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3826"
},
{
"name": "CVE-2024-0397",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-0397"
},
{
"name": "CVE-2023-46246",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-46246"
},
{
"name": "CVE-2023-48231",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-48231"
},
{
"name": "CVE-2023-48232",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-48232"
},
{
"name": "CVE-2023-48233",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-48233"
},
{
"name": "CVE-2023-48234",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-48234"
},
{
"name": "CVE-2023-48235",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-48235"
},
{
"name": "CVE-2023-48236",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-48236"
},
{
"name": "CVE-2023-48237",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-48237"
},
{
"name": "CVE-2023-48706",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-48706"
},
{
"name": "CVE-2024-22667",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-22667"
},
{
"name": "CVE-2022-44840",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-44840"
},
{
"name": "CVE-2022-47007",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-47007"
},
{
"name": "CVE-2022-47008",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-47008"
},
{
"name": "CVE-2022-47010",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-47010"
},
{
"name": "CVE-2022-47011",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-47011"
},
{
"name": "CVE-2024-41957",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41957"
},
{
"name": "CVE-2024-7592",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-7592"
},
{
"name": "CVE-2024-11168",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-11168"
},
{
"name": "CVE-2024-10041",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-10041"
},
{
"name": "CVE-2024-10963",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-10963"
},
{
"name": "CVE-2025-0938",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0938"
},
{
"name": "CVE-2024-12797",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-12797"
},
{
"name": "CVE-2023-1579",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-1579"
},
{
"name": "CVE-2025-1795",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1795"
},
{
"name": "CVE-2022-49043",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49043"
},
{
"name": "CVE-2024-56171",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56171"
},
{
"name": "CVE-2024-8176",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-8176"
},
{
"name": "CVE-2025-24928",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-24928"
},
{
"name": "CVE-2023-1972",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-1972"
},
{
"name": "CVE-2025-4516",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4516"
},
{
"name": "CVE-2024-9287",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-9287"
},
{
"name": "CVE-2025-4517",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4517"
},
{
"name": "CVE-2025-4330",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4330"
},
{
"name": "CVE-2025-4138",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4138"
},
{
"name": "CVE-2024-12718",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-12718"
},
{
"name": "CVE-2025-4435",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4435"
},
{
"name": "CVE-2024-12133",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-12133"
},
{
"name": "CVE-2024-12243",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-12243"
},
{
"name": "CVE-2024-52533",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-52533"
},
{
"name": "CVE-2025-0395",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0395"
},
{
"name": "CVE-2025-4373",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4373"
},
{
"name": "CVE-2025-24528",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-24528"
},
{
"name": "CVE-2025-4802",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4802"
},
{
"name": "CVE-2025-6020",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6020"
},
{
"name": "CVE-2025-6021",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6021"
},
{
"name": "CVE-2021-3973",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3973"
},
{
"name": "CVE-2022-2129",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2129"
},
{
"name": "CVE-2022-2175",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2175"
},
{
"name": "CVE-2022-2182",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2182"
},
{
"name": "CVE-2022-2183",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2183"
},
{
"name": "CVE-2022-2206",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2206"
},
{
"name": "CVE-2022-2207",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2207"
},
{
"name": "CVE-2022-2208",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2208"
},
{
"name": "CVE-2022-2210",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2210"
},
{
"name": "CVE-2022-2257",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2257"
},
{
"name": "CVE-2022-2284",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2284"
},
{
"name": "CVE-2022-2285",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2285"
},
{
"name": "CVE-2022-2286",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2286"
},
{
"name": "CVE-2022-2287",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2287"
},
{
"name": "CVE-2022-2304",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2304"
},
{
"name": "CVE-2022-2343",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2343"
},
{
"name": "CVE-2022-2344",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2344"
},
{
"name": "CVE-2022-2522",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2522"
},
{
"name": "CVE-2022-2817",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2817"
},
{
"name": "CVE-2022-2819",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2819"
},
{
"name": "CVE-2022-2845",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2845"
},
{
"name": "CVE-2022-2849",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2849"
},
{
"name": "CVE-2022-2862",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2862"
},
{
"name": "CVE-2022-2874",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2874"
},
{
"name": "CVE-2022-2889",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2889"
},
{
"name": "CVE-2022-2923",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2923"
},
{
"name": "CVE-2022-2946",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2946"
},
{
"name": "CVE-2022-2980",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2980"
},
{
"name": "CVE-2022-2982",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2982"
},
{
"name": "CVE-2022-3016",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3016"
},
{
"name": "CVE-2022-3037",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3037"
},
{
"name": "CVE-2022-3134",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3134"
},
{
"name": "CVE-2022-3153",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3153"
},
{
"name": "CVE-2022-3234",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3234"
},
{
"name": "CVE-2022-3235",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3235"
},
{
"name": "CVE-2022-3278",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3278"
},
{
"name": "CVE-2022-3296",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3296"
},
{
"name": "CVE-2022-3297",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3297"
},
{
"name": "CVE-2022-3352",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3352"
},
{
"name": "CVE-2022-4141",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-4141"
},
{
"name": "CVE-2022-4292",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-4292"
},
{
"name": "CVE-2022-4293",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-4293"
},
{
"name": "CVE-2023-1127",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-1127"
},
{
"name": "CVE-2023-1170",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-1170"
},
{
"name": "CVE-2023-1175",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-1175"
},
{
"name": "CVE-2023-1264",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-1264"
},
{
"name": "CVE-2023-2609",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-2609"
},
{
"name": "CVE-2023-2610",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-2610"
},
{
"name": "CVE-2023-5441",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-5441"
},
{
"name": "CVE-2023-5535",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-5535"
},
{
"name": "CVE-2024-29040",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29040"
},
{
"name": "CVE-2024-41965",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41965"
},
{
"name": "CVE-2024-43374",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43374"
},
{
"name": "CVE-2024-43802",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43802"
},
{
"name": "CVE-2024-45306",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45306"
},
{
"name": "CVE-2024-47814",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47814"
},
{
"name": "CVE-2025-1215",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1215"
},
{
"name": "CVE-2025-22134",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22134"
},
{
"name": "CVE-2025-24014",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-24014"
},
{
"name": "CVE-2025-25724",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-25724"
},
{
"name": "CVE-2025-26603",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-26603"
},
{
"name": "CVE-2025-29768",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-29768"
},
{
"name": "CVE-2025-3576",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-3576"
},
{
"name": "CVE-2025-47268",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-47268"
},
{
"name": "CVE-2025-5702",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5702"
},
{
"name": "CVE-2024-23337",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-23337"
},
{
"name": "CVE-2025-0913",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0913"
},
{
"name": "CVE-2025-22874",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22874"
},
{
"name": "CVE-2025-4673",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4673"
},
{
"name": "CVE-2025-48060",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48060"
},
{
"name": "CVE-2025-50181",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-50181"
},
{
"name": "CVE-2025-6069",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6069"
},
{
"name": "CVE-2025-8194",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8194"
},
{
"name": "CVE-2025-50182",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-50182"
},
{
"name": "CVE-2021-20197",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-20197"
},
{
"name": "CVE-2021-32256",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-32256"
},
{
"name": "CVE-2021-45078",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-45078"
},
{
"name": "CVE-2023-2222",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-2222"
},
{
"name": "CVE-2024-25260",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-25260"
},
{
"name": "CVE-2024-57360",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57360"
},
{
"name": "CVE-2025-1150",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1150"
},
{
"name": "CVE-2025-1151",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1151"
},
{
"name": "CVE-2025-1152",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1152"
},
{
"name": "CVE-2025-1153",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1153"
},
{
"name": "CVE-2025-1371",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1371"
},
{
"name": "CVE-2025-1376",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1376"
},
{
"name": "CVE-2025-1377",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1377"
},
{
"name": "CVE-2025-3198",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-3198"
},
{
"name": "CVE-2025-47273",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-47273"
},
{
"name": "CVE-2025-48964",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48964"
},
{
"name": "CVE-2025-49794",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49794"
},
{
"name": "CVE-2025-49796",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49796"
},
{
"name": "CVE-2025-5245",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5245"
},
{
"name": "CVE-2025-53905",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-53905"
},
{
"name": "CVE-2025-53906",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-53906"
},
{
"name": "CVE-2025-7545",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-7545"
},
{
"name": "CVE-2025-7546",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-7546"
}
],
"initial_release_date": "2025-08-14T00:00:00",
"last_revision_date": "2025-08-14T00:00:00",
"links": [],
"reference": "CERTFR-2025-AVI-0693",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2025-08-14T00:00:00.000000"
}
],
"risks": [
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans VMware Tanzu. Elles permettent \u00e0 un attaquant de provoquer un probl\u00e8me de s\u00e9curit\u00e9 non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans VMware Tanzu",
"vendor_advisories": [
{
"published_at": "2025-08-14",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36036",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36036"
},
{
"published_at": "2025-08-14",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36035",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36035"
},
{
"published_at": "2025-08-14",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36038",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36038"
},
{
"published_at": "2025-08-14",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36037",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36037"
}
]
}
CERTFR-2025-AVI-0492
Vulnerability from certfr_avis
De multiples vulnérabilités ont été découvertes dans les produits Siemens. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, une élévation de privilèges et un déni de service à distance.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Siemens | SCALANCE | SCALANCE XR322-12 (6GK5334-3TS00-4AR3) versions antérieures à V3.2 | ||
| Siemens | SCALANCE | SCALANCE XR302-32 (6GK5334-5TS00-3AR3) versions antérieures à V3.1 | ||
| Siemens | SCALANCE | SCALANCE XC424-4 (6GK5428-4TR00-2AC2) versions antérieures à V3.2 | ||
| Siemens | SCALANCE | SCALANCE XR326-8 (6GK5334-2TS00-3AR3) versions antérieures à V3.1 | ||
| Siemens | SCALANCE | SCALANCE XR526-8 (6GK5534-2TR00-3AR3) versions antérieures à V3.1 | ||
| Siemens | SCALANCE | SCALANCE XRM334 (230V AC, 2x10G, 24xSFP, 8xSFP+) (6GK5334-5TS01-3AR3) versions antérieures à V3.2 | ||
| Siemens | SCALANCE | SCALANCE XRM334 (24 V DC, 12xFO) (6GK5334-3TS01-2AR3) versions antérieures à V3.2 | ||
| Siemens | SCALANCE | SCALANCE XC324-4 EEC (6GK5328-4TS00-2EC2) versions antérieures à V3.1 | ||
| Siemens | SCALANCE | SCALANCE XR522-12 (6GK5534-3TR00-3AR3) versions antérieures à V3.2 | ||
| Siemens | SCALANCE | SCALANCE XR522-12 (6GK5534-3TR00-4AR3) versions antérieures à V3.1 | ||
| Siemens | SCALANCE | SCALANCE XC432 (6GK5432-0GR00-2AC2) versions antérieures à V3.1 | ||
| Siemens | SCALANCE | SCALANCE XR502-32 (6GK5534-5TR00-3AR3) versions antérieures à V3.2 | ||
| Siemens | SCALANCE | SCALANCE XR326-8 EEC (6GK5334-2TS00-2ER3) versions antérieures à V3.1 | ||
| Siemens | SCALANCE | SCALANCE XCH328 (6GK5328-4TS01-2EC2) versions antérieures à V3.2 | ||
| Siemens | SCALANCE | SCALANCE XCM324 (6GK5324-8TS01-2AC2) versions antérieures à V3.2 | ||
| Siemens | SCALANCE | SCALANCE XR526-8 (6GK5534-2TR00-4AR3) versions antérieures à V3.1 | ||
| Siemens | SCALANCE | SCALANCE XC324-4 EEC (6GK5328-4TS00-2EC2) versions antérieures à V3.2 | ||
| Siemens | SCALANCE | SCALANCE XR326-8 EEC (6GK5334-2TS00-2ER3) versions antérieures à V3.2 | ||
| Siemens | SCALANCE | SCALANCE XRM334 (24V DC, 2x10G, 24xSFP, 8xSFP+) (6GK5334-5TS01-2AR3) versions antérieures à V3.2 | ||
| Siemens | SCALANCE | SCALANCE XC324-4 (6GK5328-4TS00-2AC2) versions antérieures à V3.2 | ||
| Siemens | SCALANCE | SCALANCE XRM334 (24 V DC, 12xFO) (6GK5334-3TS01-2AR3) versions antérieures à V3.1 | ||
| Siemens | SCALANCE | SCALANCE XRM334 (2x230V AC, 2x10G, 24xSFP, 8xSFP+) (6GK5334-5TS01-4AR3) versions antérieures à V3.2 | ||
| Siemens | SCALANCE | SCALANCE XRM334 (2x230 V AC, 8xFO) (6GK5334-2TS01-4AR3) versions antérieures à V3.1 | ||
| Siemens | SCALANCE | SCALANCE XR326-8 (6GK5334-2TS00-3AR3) versions antérieures à V3.2 | ||
| Siemens | SCALANCE | SCALANCE XR302-32 (6GK5334-5TS00-2AR3) versions antérieures à V3.2 | ||
| Siemens | SCALANCE | SCALANCE XC424-4 (6GK5428-4TR00-2AC2) versions antérieures à V3.1 | ||
| Siemens | SCALANCE | SCALANCE XR522-12 (6GK5534-3TR00-4AR3) versions antérieures à V3.2 | ||
| Siemens | SCALANCE | SCALANCE XCH328 (6GK5328-4TS01-2EC2) versions antérieures à V3.1 | ||
| Siemens | SCALANCE | SCALANCE XC316-8 (6GK5324-8TS00-2AC2) versions antérieures à V3.2 | ||
| Siemens | SCALANCE | SCALANCE XRM334 (24V DC, 2x10G, 24xSFP, 8xSFP+) (6GK5334-5TS01-2AR3) versions antérieures à V3.1 | ||
| Siemens | SCALANCE | SCALANCE XR302-32 (6GK5334-5TS00-3AR3) versions antérieures à V3.2 | ||
| Siemens | SCALANCE | SCALANCE XRM334 (2x230 V AC, 8xFO) (6GK5334-2TS01-4AR3) versions antérieures à V3.2 | ||
| Siemens | SCALANCE | SCALANCE XR326-8 (6GK5334-2TS00-4AR3) versions antérieures à V3.1 | ||
| Siemens | SCALANCE | SCALANCE XR502-32 (6GK5534-5TR00-2AR3) versions antérieures à V3.2 | ||
| Siemens | SCALANCE | SCALANCE XR526-8 (6GK5534-2TR00-4AR3) versions antérieures à V3.2 | ||
| Siemens | SCALANCE | SCALANCE XRM334 (2x230V AC, 2x10G, 24xSFP, 8xSFP+) (6GK5334-5TS01-4AR3) versions antérieures à V3.1 | ||
| Siemens | SCALANCE | SCALANCE XC316-8 (6GK5324-8TS00-2AC2) versions antérieures à V3.1 | ||
| Siemens | SCALANCE | SCALANCE XR526-8 (6GK5534-2TR00-2AR3) versions antérieures à V3.1 | ||
| Siemens | SCALANCE | SCALANCE XCM328 (6GK5328-4TS01-2AC2) versions antérieures à V3.1 | ||
| Siemens | SCALANCE | SCALANCE XC432 (6GK5432-0GR00-2AC2) versions antérieures à V3.2 | ||
| Siemens | SCALANCE | SCALANCE XRM334 (24 V DC, 8xFO) (6GK5334-2TS01-2AR3) versions antérieures à V3.1 | ||
| Siemens | SCALANCE | SCALANCE XC324-4 (6GK5328-4TS00-2AC2) versions antérieures à V3.1 | ||
| Siemens | SCALANCE | SCALANCE XR302-32 (6GK5334-5TS00-4AR3) versions antérieures à V3.2 | ||
| Siemens | SCALANCE | SCALANCE XR302-32 (6GK5334-5TS00-2AR3) versions antérieures à V3.1 | ||
| Siemens | SCALANCE | SCALANCE XC332 (6GK5332-0GA00-2AC2) versions antérieures à V3.1 | ||
| Siemens | SCALANCE | SCALANCE XR322-12 (6GK5334-3TS00-2AR3) versions antérieures à V3.1 | ||
| Siemens | SIMATIC | SIMATIC S7-1500 versions supérieures ou égales àV3.1.5 pour les vulnérabilités CVE-2021-41617, CVE-2023-4527, CVE-2023-4806, CVE-2023-4911, CVE-2023-5363, CVE-2023-6246, CVE-2023-6779, CVE-2023-6780, CVE-2023-28531, CVE-2023-38545, CVE-2023-38546, CVE-2023-44487, CVE-2023-46218, CVE-2023-46219, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2023-52927, CVE-2024-2961, CVE-2024-6119, CVE-2024-6387, CVE-2024-12133, CVE-2024-12243, CVE-2024-24855, CVE-2024-26596, CVE-2024-28085, CVE-2024-33599, CVE-2024-33600, CVE-2024-33601, CVE-2024-33602, CVE-2024-34397, CVE-2024-37370, CVE-2024-37371, CVE-2024-45490, CVE-2024-45491, CVE-2024-45492, CVE-2024-50246, CVE-2024-53166, CVE-2024-57977, CVE-2024-57996, CVE-2024-58005, CVE-2025-4373, CVE-2025-4598, CVE-2025-21701, CVE-2025-21702, CVE-2025-21712, CVE-2025-21724, CVE-2025-21728, CVE-2025-21745, CVE-2025-21756, CVE-2025-21758, CVE-2025-21765, CVE-2025-21766, CVE-2025-21767, CVE-2025-21795, CVE-2025-21796, CVE-2025-21848, CVE-2025-21862, CVE-2025-21864, CVE-2025-21865, CVE-2025-26465, CVE-2025-31115 et CVE-2025-46836. | ||
| Siemens | SCALANCE | SCALANCE XRM334 (24 V DC, 8xFO) (6GK5334-2TS01-2AR3) versions antérieures à V3.2 | ||
| Siemens | SCALANCE | SCALANCE XR502-32 (6GK5534-5TR00-4AR3) versions antérieures à V3.1 | ||
| Siemens | SCALANCE | SCALANCE XR326-8 (6GK5334-2TS00-4AR3) versions antérieures à V3.2 | ||
| Siemens | SCALANCE | SCALANCE XRM334 (230V AC, 2x10G, 24xSFP, 8xSFP+) (6GK5334-5TS01-3AR3) versions antérieures à V3.1 | ||
| Siemens | SCALANCE | SCALANCE XCM328 (6GK5328-4TS01-2AC2) versions antérieures à V3.2 | ||
| Siemens | SCALANCE | SCALANCE XR302-32 (6GK5334-5TS00-4AR3) versions antérieures à V3.1 | ||
| Siemens | SCALANCE | SCALANCE XRM334 (2x230 V AC, 12xFO) (6GK5334-3TS01-4AR3) versions antérieures à V3.1 | ||
| Siemens | SCALANCE | SCALANCE XC416-8 (6GK5424-8TR00-2AC2) versions antérieures à V3.2 | ||
| Siemens | SCALANCE | SCALANCE XR322-12 (6GK5334-3TS00-2AR3) versions antérieures à V3.2 | ||
| Siemens | SCALANCE | SCALANCE XCM332 (6GK5332-0GA01-2AC2) versions antérieures à V3.1 | ||
| Siemens | SCALANCE | SCALANCE XR522-12 (6GK5534-3TR00-3AR3) versions antérieures à V3.1 | ||
| Siemens | SCALANCE | SCALANCE XR322-12 (6GK5334-3TS00-3AR3) versions antérieures à V3.2 | ||
| Siemens | SCALANCE | SCALANCE XR526-8 (6GK5534-2TR00-3AR3) versions antérieures à V3.2 | ||
| Siemens | SCALANCE | SCALANCE XR526-8 (6GK5534-2TR00-2AR3) versions antérieures à V3.2 | ||
| Siemens | SCALANCE | SCALANCE XR522-12 (6GK5534-3TR00-2AR3) versions antérieures à V3.1 | ||
| Siemens | SCALANCE | SCALANCE XRM334 (230 V AC, 12xFO) (6GK5334-3TS01-3AR3) versions antérieures à V3.1 | ||
| Siemens | SCALANCE | SCALANCE XRH334 (24 V DC, 8xFO, CC) (6GK5334-2TS01-2ER3) versions antérieures à V3.1 | ||
| Siemens | SCALANCE | SCALANCE XR326-8 (6GK5334-2TS00-2AR3) versions antérieures à V3.1 | ||
| Siemens | SCALANCE | SCALANCE XCM332 (6GK5332-0GA01-2AC2) versions antérieures à V3.2 | ||
| Siemens | SCALANCE | SCALANCE XR502-32 (6GK5534-5TR00-2AR3) versions antérieures à V3.1 | ||
| Siemens | SCALANCE | SCALANCE XRM334 (230 V AC, 8xFO) (6GK5334-2TS01-3AR3) versions antérieures à V3.1 | ||
| Siemens | SCALANCE | SCALANCE XR502-32 (6GK5534-5TR00-4AR3) versions antérieures à V3.2 | ||
| Siemens | SCALANCE | SCALANCE XC416-8 (6GK5424-8TR00-2AC2) versions antérieures à V3.1 | ||
| Siemens | SCALANCE | SCALANCE XR522-12 (6GK5534-3TR00-2AR3) versions antérieures à V3.2 | ||
| Siemens | SCALANCE | SCALANCE XR322-12 (6GK5334-3TS00-4AR3) versions antérieures à V3.1 | ||
| Siemens | SCALANCE | SCALANCE XR322-12 (6GK5334-3TS00-3AR3) versions antérieures à V3.1 | ||
| Siemens | SCALANCE | SCALANCE XRM334 (230 V AC, 8xFO) (6GK5334-2TS01-3AR3) versions antérieures à V3.2 | ||
| Siemens | SCALANCE | SCALANCE XR326-8 (6GK5334-2TS00-2AR3) versions antérieures à V3.2 | ||
| Siemens | SCALANCE | SCALANCE XCM324 (6GK5324-8TS01-2AC2) versions antérieures à V3.1 | ||
| Siemens | SCALANCE | SCALANCE XRH334 (24 V DC, 8xFO, CC) (6GK5334-2TS01-2ER3) versions antérieures à V3.2 | ||
| Siemens | SCALANCE | SCALANCE XRM334 (230 V AC, 12xFO) (6GK5334-3TS01-3AR3) versions antérieures à V3.2 | ||
| Siemens | SCALANCE | SCALANCE XR502-32 (6GK5534-5TR00-3AR3) versions antérieures à V3.1 | ||
| Siemens | SCALANCE | SCALANCE XRM334 (2x230 V AC, 12xFO) (6GK5334-3TS01-4AR3) versions antérieures à V3.2 | ||
| Siemens | SCALANCE | SCALANCE XC332 (6GK5332-0GA00-2AC2) versions antérieures à V3.2 |
References
| Title | Publication Time | Tags | |||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "SCALANCE XR322-12 (6GK5334-3TS00-4AR3) versions ant\u00e9rieures \u00e0 V3.2",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XR302-32 (6GK5334-5TS00-3AR3) versions ant\u00e9rieures \u00e0 V3.1",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XC424-4 (6GK5428-4TR00-2AC2) versions ant\u00e9rieures \u00e0 V3.2",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XR326-8 (6GK5334-2TS00-3AR3) versions ant\u00e9rieures \u00e0 V3.1",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XR526-8 (6GK5534-2TR00-3AR3) versions ant\u00e9rieures \u00e0 V3.1",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XRM334 (230V AC, 2x10G, 24xSFP, 8xSFP+) (6GK5334-5TS01-3AR3) versions ant\u00e9rieures \u00e0 V3.2",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XRM334 (24 V DC, 12xFO) (6GK5334-3TS01-2AR3) versions ant\u00e9rieures \u00e0 V3.2",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XC324-4 EEC (6GK5328-4TS00-2EC2) versions ant\u00e9rieures \u00e0 V3.1",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XR522-12 (6GK5534-3TR00-3AR3) versions ant\u00e9rieures \u00e0 V3.2",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XR522-12 (6GK5534-3TR00-4AR3) versions ant\u00e9rieures \u00e0 V3.1",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XC432 (6GK5432-0GR00-2AC2) versions ant\u00e9rieures \u00e0 V3.1",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XR502-32 (6GK5534-5TR00-3AR3) versions ant\u00e9rieures \u00e0 V3.2",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XR326-8 EEC (6GK5334-2TS00-2ER3) versions ant\u00e9rieures \u00e0 V3.1",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XCH328 (6GK5328-4TS01-2EC2) versions ant\u00e9rieures \u00e0 V3.2",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XCM324 (6GK5324-8TS01-2AC2) versions ant\u00e9rieures \u00e0 V3.2",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XR526-8 (6GK5534-2TR00-4AR3) versions ant\u00e9rieures \u00e0 V3.1",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XC324-4 EEC (6GK5328-4TS00-2EC2) versions ant\u00e9rieures \u00e0 V3.2",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XR326-8 EEC (6GK5334-2TS00-2ER3) versions ant\u00e9rieures \u00e0 V3.2",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XRM334 (24V DC, 2x10G, 24xSFP, 8xSFP+) (6GK5334-5TS01-2AR3) versions ant\u00e9rieures \u00e0 V3.2",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XC324-4 (6GK5328-4TS00-2AC2) versions ant\u00e9rieures \u00e0 V3.2",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XRM334 (24 V DC, 12xFO) (6GK5334-3TS01-2AR3) versions ant\u00e9rieures \u00e0 V3.1",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XRM334 (2x230V AC, 2x10G, 24xSFP, 8xSFP+) (6GK5334-5TS01-4AR3) versions ant\u00e9rieures \u00e0 V3.2",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XRM334 (2x230 V AC, 8xFO) (6GK5334-2TS01-4AR3) versions ant\u00e9rieures \u00e0 V3.1",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XR326-8 (6GK5334-2TS00-3AR3) versions ant\u00e9rieures \u00e0 V3.2",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XR302-32 (6GK5334-5TS00-2AR3) versions ant\u00e9rieures \u00e0 V3.2",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XC424-4 (6GK5428-4TR00-2AC2) versions ant\u00e9rieures \u00e0 V3.1",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XR522-12 (6GK5534-3TR00-4AR3) versions ant\u00e9rieures \u00e0 V3.2",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XCH328 (6GK5328-4TS01-2EC2) versions ant\u00e9rieures \u00e0 V3.1",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XC316-8 (6GK5324-8TS00-2AC2) versions ant\u00e9rieures \u00e0 V3.2",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XRM334 (24V DC, 2x10G, 24xSFP, 8xSFP+) (6GK5334-5TS01-2AR3) versions ant\u00e9rieures \u00e0 V3.1",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XR302-32 (6GK5334-5TS00-3AR3) versions ant\u00e9rieures \u00e0 V3.2",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XRM334 (2x230 V AC, 8xFO) (6GK5334-2TS01-4AR3) versions ant\u00e9rieures \u00e0 V3.2",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XR326-8 (6GK5334-2TS00-4AR3) versions ant\u00e9rieures \u00e0 V3.1",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XR502-32 (6GK5534-5TR00-2AR3) versions ant\u00e9rieures \u00e0 V3.2",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XR526-8 (6GK5534-2TR00-4AR3) versions ant\u00e9rieures \u00e0 V3.2",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XRM334 (2x230V AC, 2x10G, 24xSFP, 8xSFP+) (6GK5334-5TS01-4AR3) versions ant\u00e9rieures \u00e0 V3.1",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XC316-8 (6GK5324-8TS00-2AC2) versions ant\u00e9rieures \u00e0 V3.1",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XR526-8 (6GK5534-2TR00-2AR3) versions ant\u00e9rieures \u00e0 V3.1",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XCM328 (6GK5328-4TS01-2AC2) versions ant\u00e9rieures \u00e0 V3.1",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XC432 (6GK5432-0GR00-2AC2) versions ant\u00e9rieures \u00e0 V3.2",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XRM334 (24 V DC, 8xFO) (6GK5334-2TS01-2AR3) versions ant\u00e9rieures \u00e0 V3.1",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XC324-4 (6GK5328-4TS00-2AC2) versions ant\u00e9rieures \u00e0 V3.1",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XR302-32 (6GK5334-5TS00-4AR3) versions ant\u00e9rieures \u00e0 V3.2",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XR302-32 (6GK5334-5TS00-2AR3) versions ant\u00e9rieures \u00e0 V3.1",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XC332 (6GK5332-0GA00-2AC2) versions ant\u00e9rieures \u00e0 V3.1",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XR322-12 (6GK5334-3TS00-2AR3) versions ant\u00e9rieures \u00e0 V3.1",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SIMATIC S7-1500 versions sup\u00e9rieures ou \u00e9gales \u00e0V3.1.5 pour les vuln\u00e9rabilit\u00e9s CVE-2021-41617, CVE-2023-4527, CVE-2023-4806, CVE-2023-4911, CVE-2023-5363, CVE-2023-6246, CVE-2023-6779, CVE-2023-6780, CVE-2023-28531, CVE-2023-38545, CVE-2023-38546, CVE-2023-44487, CVE-2023-46218, CVE-2023-46219, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2023-52927, CVE-2024-2961, CVE-2024-6119, CVE-2024-6387, CVE-2024-12133, CVE-2024-12243, CVE-2024-24855, CVE-2024-26596, CVE-2024-28085, CVE-2024-33599, CVE-2024-33600, CVE-2024-33601, CVE-2024-33602, CVE-2024-34397, CVE-2024-37370, CVE-2024-37371, CVE-2024-45490, CVE-2024-45491, CVE-2024-45492, CVE-2024-50246, CVE-2024-53166, CVE-2024-57977, CVE-2024-57996, CVE-2024-58005, CVE-2025-4373, CVE-2025-4598, CVE-2025-21701, CVE-2025-21702, CVE-2025-21712, CVE-2025-21724, CVE-2025-21728, CVE-2025-21745, CVE-2025-21756, CVE-2025-21758, CVE-2025-21765, CVE-2025-21766, CVE-2025-21767, CVE-2025-21795, CVE-2025-21796, CVE-2025-21848, CVE-2025-21862, CVE-2025-21864, CVE-2025-21865, CVE-2025-26465, CVE-2025-31115 et CVE-2025-46836.",
"product": {
"name": "SIMATIC",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XRM334 (24 V DC, 8xFO) (6GK5334-2TS01-2AR3) versions ant\u00e9rieures \u00e0 V3.2",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XR502-32 (6GK5534-5TR00-4AR3) versions ant\u00e9rieures \u00e0 V3.1",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XR326-8 (6GK5334-2TS00-4AR3) versions ant\u00e9rieures \u00e0 V3.2",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XRM334 (230V AC, 2x10G, 24xSFP, 8xSFP+) (6GK5334-5TS01-3AR3) versions ant\u00e9rieures \u00e0 V3.1",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XCM328 (6GK5328-4TS01-2AC2) versions ant\u00e9rieures \u00e0 V3.2",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XR302-32 (6GK5334-5TS00-4AR3) versions ant\u00e9rieures \u00e0 V3.1",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XRM334 (2x230 V AC, 12xFO) (6GK5334-3TS01-4AR3) versions ant\u00e9rieures \u00e0 V3.1",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XC416-8 (6GK5424-8TR00-2AC2) versions ant\u00e9rieures \u00e0 V3.2",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XR322-12 (6GK5334-3TS00-2AR3) versions ant\u00e9rieures \u00e0 V3.2",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XCM332 (6GK5332-0GA01-2AC2) versions ant\u00e9rieures \u00e0 V3.1",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XR522-12 (6GK5534-3TR00-3AR3) versions ant\u00e9rieures \u00e0 V3.1",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XR322-12 (6GK5334-3TS00-3AR3) versions ant\u00e9rieures \u00e0 V3.2",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XR526-8 (6GK5534-2TR00-3AR3) versions ant\u00e9rieures \u00e0 V3.2",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XR526-8 (6GK5534-2TR00-2AR3) versions ant\u00e9rieures \u00e0 V3.2",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XR522-12 (6GK5534-3TR00-2AR3) versions ant\u00e9rieures \u00e0 V3.1",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XRM334 (230 V AC, 12xFO) (6GK5334-3TS01-3AR3) versions ant\u00e9rieures \u00e0 V3.1",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XRH334 (24 V DC, 8xFO, CC) (6GK5334-2TS01-2ER3) versions ant\u00e9rieures \u00e0 V3.1",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XR326-8 (6GK5334-2TS00-2AR3) versions ant\u00e9rieures \u00e0 V3.1",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XCM332 (6GK5332-0GA01-2AC2) versions ant\u00e9rieures \u00e0 V3.2",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XR502-32 (6GK5534-5TR00-2AR3) versions ant\u00e9rieures \u00e0 V3.1",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XRM334 (230 V AC, 8xFO) (6GK5334-2TS01-3AR3) versions ant\u00e9rieures \u00e0 V3.1",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XR502-32 (6GK5534-5TR00-4AR3) versions ant\u00e9rieures \u00e0 V3.2",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XC416-8 (6GK5424-8TR00-2AC2) versions ant\u00e9rieures \u00e0 V3.1",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XR522-12 (6GK5534-3TR00-2AR3) versions ant\u00e9rieures \u00e0 V3.2",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XR322-12 (6GK5334-3TS00-4AR3) versions ant\u00e9rieures \u00e0 V3.1",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XR322-12 (6GK5334-3TS00-3AR3) versions ant\u00e9rieures \u00e0 V3.1",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XRM334 (230 V AC, 8xFO) (6GK5334-2TS01-3AR3) versions ant\u00e9rieures \u00e0 V3.2",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XR326-8 (6GK5334-2TS00-2AR3) versions ant\u00e9rieures \u00e0 V3.2",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XCM324 (6GK5324-8TS01-2AC2) versions ant\u00e9rieures \u00e0 V3.1",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XRH334 (24 V DC, 8xFO, CC) (6GK5334-2TS01-2ER3) versions ant\u00e9rieures \u00e0 V3.2",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XRM334 (230 V AC, 12xFO) (6GK5334-3TS01-3AR3) versions ant\u00e9rieures \u00e0 V3.2",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XR502-32 (6GK5534-5TR00-3AR3) versions ant\u00e9rieures \u00e0 V3.1",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XRM334 (2x230 V AC, 12xFO) (6GK5334-3TS01-4AR3) versions ant\u00e9rieures \u00e0 V3.2",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE XC332 (6GK5332-0GA00-2AC2) versions ant\u00e9rieures \u00e0 V3.2",
"product": {
"name": "SCALANCE",
"vendor": {
"name": "Siemens",
"scada": true
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2024-37370",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-37370"
},
{
"name": "CVE-2024-41797",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41797"
},
{
"name": "CVE-2025-26465",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-26465"
},
{
"name": "CVE-2025-31115",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-31115"
},
{
"name": "CVE-2023-46218",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-46218"
},
{
"name": "CVE-2023-28531",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-28531"
},
{
"name": "CVE-2023-6780",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6780"
},
{
"name": "CVE-2023-51385",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-51385"
},
{
"name": "CVE-2023-38546",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-38546"
},
{
"name": "CVE-2024-33602",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-33602"
},
{
"name": "CVE-2025-40568",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40568"
},
{
"name": "CVE-2025-21796",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21796"
},
{
"name": "CVE-2023-52927",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52927"
},
{
"name": "CVE-2025-21864",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21864"
},
{
"name": "CVE-2024-45492",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45492"
},
{
"name": "CVE-2024-24855",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24855"
},
{
"name": "CVE-2025-40569",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40569"
},
{
"name": "CVE-2024-58005",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58005"
},
{
"name": "CVE-2025-21712",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21712"
},
{
"name": "CVE-2025-4373",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4373"
},
{
"name": "CVE-2025-4598",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4598"
},
{
"name": "CVE-2023-44487",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-44487"
},
{
"name": "CVE-2023-6779",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6779"
},
{
"name": "CVE-2023-5363",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-5363"
},
{
"name": "CVE-2024-33600",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-33600"
},
{
"name": "CVE-2025-21728",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21728"
},
{
"name": "CVE-2025-21767",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21767"
},
{
"name": "CVE-2024-33599",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-33599"
},
{
"name": "CVE-2024-57996",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57996"
},
{
"name": "CVE-2023-46219",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-46219"
},
{
"name": "CVE-2025-21766",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21766"
},
{
"name": "CVE-2024-45490",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45490"
},
{
"name": "CVE-2023-48795",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-48795"
},
{
"name": "CVE-2024-45491",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45491"
},
{
"name": "CVE-2025-21745",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21745"
},
{
"name": "CVE-2025-21795",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21795"
},
{
"name": "CVE-2025-21758",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21758"
},
{
"name": "CVE-2024-26596",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26596"
},
{
"name": "CVE-2023-4527",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4527"
},
{
"name": "CVE-2025-21848",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21848"
},
{
"name": "CVE-2024-53166",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53166"
},
{
"name": "CVE-2025-46836",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-46836"
},
{
"name": "CVE-2025-21862",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21862"
},
{
"name": "CVE-2025-40567",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40567"
},
{
"name": "CVE-2024-33601",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-33601"
},
{
"name": "CVE-2024-28085",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28085"
},
{
"name": "CVE-2024-57977",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57977"
},
{
"name": "CVE-2024-6119",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-6119"
},
{
"name": "CVE-2025-21765",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21765"
},
{
"name": "CVE-2023-4806",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4806"
},
{
"name": "CVE-2025-21702",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21702"
},
{
"name": "CVE-2025-21865",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21865"
},
{
"name": "CVE-2025-21724",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21724"
},
{
"name": "CVE-2025-21701",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21701"
},
{
"name": "CVE-2024-12243",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-12243"
},
{
"name": "CVE-2023-4911",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4911"
},
{
"name": "CVE-2024-6387",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-6387"
},
{
"name": "CVE-2023-51384",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-51384"
},
{
"name": "CVE-2021-41617",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-41617"
},
{
"name": "CVE-2024-50246",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50246"
},
{
"name": "CVE-2024-34397",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34397"
},
{
"name": "CVE-2023-6246",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6246"
},
{
"name": "CVE-2024-2961",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-2961"
},
{
"name": "CVE-2024-12133",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-12133"
},
{
"name": "CVE-2025-21756",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21756"
},
{
"name": "CVE-2024-37371",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-37371"
},
{
"name": "CVE-2023-38545",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-38545"
}
],
"initial_release_date": "2025-06-11T00:00:00",
"last_revision_date": "2025-06-11T00:00:00",
"links": [],
"reference": "CERTFR-2025-AVI-0492",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2025-06-11T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits Siemens. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, une \u00e9l\u00e9vation de privil\u00e8ges et un d\u00e9ni de service \u00e0 distance.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Siemens",
"vendor_advisories": [
{
"published_at": "2025-06-10",
"title": "Bulletin de s\u00e9curit\u00e9 Siemens SSA-082556",
"url": "https://cert-portal.siemens.com/productcert/html/ssa-082556.html"
},
{
"published_at": "2025-06-10",
"title": "Bulletin de s\u00e9curit\u00e9 Siemens SSA-633269",
"url": "https://cert-portal.siemens.com/productcert/html/ssa-633269.html"
},
{
"published_at": "2025-06-10",
"title": "Bulletin de s\u00e9curit\u00e9 Siemens SSA-693776",
"url": "https://cert-portal.siemens.com/productcert/html/ssa-693776.html"
}
]
}
CERTFR-2025-AVI-0939
Vulnerability from certfr_avis
De multiples vulnérabilités ont été découvertes dans les produits Splunk. Elles permettent à un attaquant de provoquer un problème de sécurité non spécifié par l'éditeur.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Splunk | Splunk AppDynamics Analytics Agent | Splunk AppDynamics Analytics Agent versions 25.7.x antérieures à 25.7.0 | ||
| Splunk | Splunk AppDynamics Private Synthetic Agent | Splunk AppDynamics Private Synthetic Agent versions 25.7.x antérieures à 25.7.0 | ||
| Splunk | Splunk Operator for Kubernetes | Greffon Splunk Operator for Kubernetes versions 3.0.x antérieures à 3.0.0 | ||
| Splunk | Splunk AppDynamics Machine Agent | Splunk AppDynamics Machine Agent versions 25.7.x antérieures à 25.7.0 |
References
| Title | Publication Time | Tags | ||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Splunk AppDynamics Analytics Agent versions 25.7.x ant\u00e9rieures \u00e0 25.7.0",
"product": {
"name": "Splunk AppDynamics Analytics Agent",
"vendor": {
"name": "Splunk",
"scada": false
}
}
},
{
"description": "Splunk AppDynamics Private Synthetic Agent versions 25.7.x ant\u00e9rieures \u00e0 25.7.0",
"product": {
"name": "Splunk AppDynamics Private Synthetic Agent",
"vendor": {
"name": "Splunk",
"scada": false
}
}
},
{
"description": "Greffon Splunk Operator for Kubernetes versions 3.0.x ant\u00e9rieures \u00e0 3.0.0",
"product": {
"name": "Splunk Operator for Kubernetes",
"vendor": {
"name": "Splunk",
"scada": false
}
}
},
{
"description": "Splunk AppDynamics Machine Agent versions 25.7.x ant\u00e9rieures \u00e0 25.7.0",
"product": {
"name": "Splunk AppDynamics Machine Agent",
"vendor": {
"name": "Splunk",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2025-22872",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22872"
},
{
"name": "CVE-2024-45159",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45159"
},
{
"name": "CVE-2024-45341",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45341"
},
{
"name": "CVE-2025-4373",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4373"
},
{
"name": "CVE-2023-32636",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-32636"
},
{
"name": "CVE-2025-22866",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22866"
},
{
"name": "CVE-2024-34158",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34158"
},
{
"name": "CVE-2023-29499",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29499"
},
{
"name": "CVE-2024-45336",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45336"
},
{
"name": "CVE-2025-22868",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22868"
},
{
"name": "CVE-2025-3360",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-3360"
},
{
"name": "CVE-2024-6763",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-6763"
},
{
"name": "CVE-2025-48976",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48976"
},
{
"name": "CVE-2024-52533",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-52533"
},
{
"name": "CVE-2025-4802",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4802"
},
{
"name": "CVE-2024-34156",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34156"
},
{
"name": "CVE-2025-22871",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22871"
},
{
"name": "CVE-2022-3358",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3358"
},
{
"name": "CVE-2022-48622",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48622"
},
{
"name": "CVE-2023-32611",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-32611"
},
{
"name": "CVE-2024-34397",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34397"
},
{
"name": "CVE-2024-34155",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34155"
},
{
"name": "CVE-2023-32665",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-32665"
}
],
"initial_release_date": "2025-10-30T00:00:00",
"last_revision_date": "2025-10-30T00:00:00",
"links": [],
"reference": "CERTFR-2025-AVI-0939",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2025-10-30T00:00:00.000000"
}
],
"risks": [
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits Splunk. Elles permettent \u00e0 un attaquant de provoquer un probl\u00e8me de s\u00e9curit\u00e9 non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Splunk",
"vendor_advisories": [
{
"published_at": "2025-10-29",
"title": "Bulletin de s\u00e9curit\u00e9 Splunk SVD-2025-1009",
"url": "https://advisory.splunk.com/advisories/SVD-2025-1009"
},
{
"published_at": "2025-10-29",
"title": "Bulletin de s\u00e9curit\u00e9 Splunk SVD-2025-1011",
"url": "https://advisory.splunk.com/advisories/SVD-2025-1011"
},
{
"published_at": "2025-10-29",
"title": "Bulletin de s\u00e9curit\u00e9 Splunk SVD-2025-1010",
"url": "https://advisory.splunk.com/advisories/SVD-2025-1010"
},
{
"published_at": "2025-10-29",
"title": "Bulletin de s\u00e9curit\u00e9 Splunk SVD-2025-1008",
"url": "https://advisory.splunk.com/advisories/SVD-2025-1008"
}
]
}
CERTFR-2025-AVI-0671
Vulnerability from certfr_avis
De multiples vulnérabilités ont été découvertes dans les produits IBM. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, une élévation de privilèges et un déni de service à distance.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| IBM | Sterling Partner Engagement Manager Essentials Edition | Sterling Partner Engagement Manager Essentials Edition versions 6.2.3.x antérieures à 6.2.3.3.1 | ||
| IBM | QRadar SIEM | QRadar SIEM versions 7.5.0 antérieures à 7.5.0 UP13 | ||
| IBM | Sterling Connect:Direct | Sterling Connect:Direct Web Services versions 6.3.x antérieures à 6.3.0.14 | ||
| IBM | Sterling Partner Engagement Manager Standard Edition | Sterling Partner Engagement Manager Standard Edition versions 6.2.4.x antérieures à 6.2.4.0.1 | ||
| IBM | Sterling Connect:Direct | Sterling Connect:Direct Web Services versions 6.4.x antérieures à 6.4.0.3 | ||
| IBM | QRadar Incident Forensics | QRadar Incident Forensics versions 7.5.0 antérieures à 7.5.0 UP13 | ||
| IBM | Db2 | Db2 Intelligence Center versions 1.1.x antérieures à 1.1.1.0 | ||
| IBM | Sterling Partner Engagement Manager Essentials Edition | Sterling Partner Engagement Manager Essentials Edition versions 6.2.4.x antérieures à 6.2.4.0.1 | ||
| IBM | Db2 | Db2 versions V10.5, V11.1 et V11.5 sans le correctif APAR DT261533 | ||
| IBM | Sterling Partner Engagement Manager Standard Edition | Sterling Partner Engagement Manager Standard Edition versions 6.2.3.x antérieures à 6.2.3.3.1 |
References
| Title | Publication Time | Tags | |||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Sterling Partner Engagement Manager Essentials Edition versions 6.2.3.x ant\u00e9rieures \u00e0 6.2.3.3.1",
"product": {
"name": "Sterling Partner Engagement Manager Essentials Edition",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "QRadar SIEM versions 7.5.0 ant\u00e9rieures \u00e0 7.5.0 UP13",
"product": {
"name": "QRadar SIEM",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Sterling Connect:Direct Web Services versions 6.3.x ant\u00e9rieures \u00e0 6.3.0.14",
"product": {
"name": "Sterling Connect:Direct",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Sterling Partner Engagement Manager Standard Edition versions 6.2.4.x ant\u00e9rieures \u00e0 6.2.4.0.1",
"product": {
"name": "Sterling Partner Engagement Manager Standard Edition",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Sterling Connect:Direct Web Services versions 6.4.x ant\u00e9rieures \u00e0 6.4.0.3",
"product": {
"name": "Sterling Connect:Direct",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "QRadar Incident Forensics versions 7.5.0 ant\u00e9rieures \u00e0 7.5.0 UP13",
"product": {
"name": "QRadar Incident Forensics",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Db2 Intelligence Center versions 1.1.x ant\u00e9rieures \u00e0 1.1.1.0",
"product": {
"name": "Db2",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Sterling Partner Engagement Manager Essentials Edition versions 6.2.4.x ant\u00e9rieures \u00e0 6.2.4.0.1",
"product": {
"name": "Sterling Partner Engagement Manager Essentials Edition",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Db2 versions V10.5, V11.1 et V11.5 sans le correctif APAR DT261533",
"product": {
"name": "Db2",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Sterling Partner Engagement Manager Standard Edition versions 6.2.3.x ant\u00e9rieures \u00e0 6.2.3.3.1",
"product": {
"name": "Sterling Partner Engagement Manager Standard Edition",
"vendor": {
"name": "IBM",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2017-7867",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7867"
},
{
"name": "CVE-2025-27818",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-27818"
},
{
"name": "CVE-2014-7923",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-7923"
},
{
"name": "CVE-2024-45339",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45339"
},
{
"name": "CVE-2025-27817",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-27817"
},
{
"name": "CVE-2025-4330",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4330"
},
{
"name": "CVE-2025-4138",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4138"
},
{
"name": "CVE-2025-4373",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4373"
},
{
"name": "CVE-2017-14952",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-14952"
},
{
"name": "CVE-2025-21764",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21764"
},
{
"name": "CVE-2022-48919",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48919"
},
{
"name": "CVE-2024-31141",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-31141"
},
{
"name": "CVE-2025-32462",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-32462"
},
{
"name": "CVE-2025-4517",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4517"
},
{
"name": "CVE-2025-4435",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4435"
},
{
"name": "CVE-2025-6020",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6020"
},
{
"name": "CVE-2024-12718",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-12718"
},
{
"name": "CVE-2017-17484",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-17484"
},
{
"name": "CVE-2024-47554",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47554"
},
{
"name": "CVE-2024-52533",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-52533"
},
{
"name": "CVE-2025-4802",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4802"
},
{
"name": "CVE-2017-15422",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-15422"
},
{
"name": "CVE-2020-21913",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-21913"
},
{
"name": "CVE-2020-8908",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-8908"
},
{
"name": "CVE-2017-15396",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-15396"
},
{
"name": "CVE-2025-22869",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22869"
},
{
"name": "CVE-2023-40403",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-40403"
},
{
"name": "CVE-2024-12243",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-12243"
},
{
"name": "CVE-2025-27363",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-27363"
},
{
"name": "CVE-2024-50301",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50301"
},
{
"name": "CVE-2024-53064",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53064"
},
{
"name": "CVE-2023-2976",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-2976"
},
{
"name": "CVE-2016-6293",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-6293"
},
{
"name": "CVE-2017-7868",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7868"
},
{
"name": "CVE-2025-30204",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30204"
},
{
"name": "CVE-2020-10531",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-10531"
},
{
"name": "CVE-2024-12133",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-12133"
},
{
"name": "CVE-2016-7415",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7415"
},
{
"name": "CVE-2011-4599",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-4599"
},
{
"name": "CVE-2025-3576",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-3576"
}
],
"initial_release_date": "2025-08-08T00:00:00",
"last_revision_date": "2025-08-08T00:00:00",
"links": [],
"reference": "CERTFR-2025-AVI-0671",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2025-08-08T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
},
{
"description": "Falsification de requ\u00eates c\u00f4t\u00e9 serveur (SSRF)"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits IBM. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, une \u00e9l\u00e9vation de privil\u00e8ges et un d\u00e9ni de service \u00e0 distance.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits IBM",
"vendor_advisories": [
{
"published_at": "2025-08-05",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7239285",
"url": "https://www.ibm.com/support/pages/node/7239285"
},
{
"published_at": "2025-08-07",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7241673",
"url": "https://www.ibm.com/support/pages/node/7241673"
},
{
"published_at": "2025-08-06",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7241589",
"url": "https://www.ibm.com/support/pages/node/7241589"
},
{
"published_at": "2025-08-07",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7241823",
"url": "https://www.ibm.com/support/pages/node/7241823"
},
{
"published_at": "2025-08-01",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7241292",
"url": "https://www.ibm.com/support/pages/node/7241292"
}
]
}
ghsa-cfv9-2rgf-f55c
Vulnerability from github
Published
2025-05-06 15:31
Modified
2025-08-07 09:30
Severity ?
VLAI Severity ?
Details
A flaw was found in GLib, which is vulnerable to an integer overflow in the g_string_insert_unichar() function. When the position at which to insert the character is large, the position will overflow, leading to a buffer underwrite.
{
"affected": [],
"aliases": [
"CVE-2025-4373"
],
"database_specific": {
"cwe_ids": [
"CWE-124"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2025-05-06T15:16:05Z",
"severity": "MODERATE"
},
"details": "A flaw was found in GLib, which is vulnerable to an integer overflow in the g_string_insert_unichar() function. When the position at which to insert the character is large, the position will overflow, leading to a buffer underwrite.",
"id": "GHSA-cfv9-2rgf-f55c",
"modified": "2025-08-07T09:30:33Z",
"published": "2025-05-06T15:31:10Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-4373"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2025:10855"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2025:11140"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2025:11327"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2025:11373"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2025:11374"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2025:11662"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2025:12275"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2025:13335"
},
{
"type": "WEB",
"url": "https://access.redhat.com/security/cve/CVE-2025-4373"
},
{
"type": "WEB",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2364265"
},
{
"type": "WEB",
"url": "https://gitlab.gnome.org/GNOME/glib/-/issues/3677"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L",
"type": "CVSS_V3"
}
]
}
msrc_cve-2025-4373
Vulnerability from csaf_microsoft
Published
2025-05-02 00:00
Modified
2025-09-04 02:58
Summary
Glib: buffer underflow on glib through glib/gstring.c via function g_string_insert_unichar
Notes
Additional Resources
To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle
Disclaimer
The information provided in the Microsoft Knowledge Base is provided \"as is\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.
{
"document": {
"category": "csaf_vex",
"csaf_version": "2.0",
"distribution": {
"text": "Public",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en-US",
"notes": [
{
"category": "general",
"text": "To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle",
"title": "Additional Resources"
},
{
"category": "legal_disclaimer",
"text": "The information provided in the Microsoft Knowledge Base is provided \\\"as is\\\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.",
"title": "Disclaimer"
}
],
"publisher": {
"category": "vendor",
"contact_details": "secure@microsoft.com",
"name": "Microsoft Security Response Center",
"namespace": "https://msrc.microsoft.com"
},
"references": [
{
"category": "self",
"summary": "CVE-2025-4373 Glib: buffer underflow on glib through glib/gstring.c via function g_string_insert_unichar - VEX",
"url": "https://msrc.microsoft.com/csaf/vex/2025/msrc_cve-2025-4373.json"
},
{
"category": "external",
"summary": "Microsoft Support Lifecycle",
"url": "https://support.microsoft.com/lifecycle"
},
{
"category": "external",
"summary": "Common Vulnerability Scoring System",
"url": "https://www.first.org/cvss"
}
],
"title": "Glib: buffer underflow on glib through glib/gstring.c via function g_string_insert_unichar",
"tracking": {
"current_release_date": "2025-09-04T02:58:55.000Z",
"generator": {
"date": "2025-10-20T03:18:58.604Z",
"engine": {
"name": "MSRC Generator",
"version": "1.0"
}
},
"id": "msrc_CVE-2025-4373",
"initial_release_date": "2025-05-02T00:00:00.000Z",
"revision_history": [
{
"date": "2025-09-04T02:58:55.000Z",
"legacy_version": "1",
"number": "1",
"summary": "Information published."
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "2.0",
"product": {
"name": "CBL Mariner 2.0",
"product_id": "17086"
}
},
{
"category": "product_version",
"name": "3.0",
"product": {
"name": "Azure Linux 3.0",
"product_id": "17084"
}
}
],
"category": "product_name",
"name": "Azure Linux"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003ccbl2 glib 2.71.0-5",
"product": {
"name": "\u003ccbl2 glib 2.71.0-5",
"product_id": "4"
}
},
{
"category": "product_version",
"name": "cbl2 glib 2.71.0-5",
"product": {
"name": "cbl2 glib 2.71.0-5",
"product_id": "19898"
}
},
{
"category": "product_version_range",
"name": "\u003ccbl2 glib 2.71.0-7",
"product": {
"name": "\u003ccbl2 glib 2.71.0-7",
"product_id": "2"
}
},
{
"category": "product_version",
"name": "cbl2 glib 2.71.0-7",
"product": {
"name": "cbl2 glib 2.71.0-7",
"product_id": "20365"
}
},
{
"category": "product_version_range",
"name": "\u003ccbl2 glib 2.71.0-6",
"product": {
"name": "\u003ccbl2 glib 2.71.0-6",
"product_id": "1"
}
},
{
"category": "product_version",
"name": "cbl2 glib 2.71.0-6",
"product": {
"name": "cbl2 glib 2.71.0-6",
"product_id": "20466"
}
},
{
"category": "product_version_range",
"name": "\u003cazl3 glib 2.78.6-3",
"product": {
"name": "\u003cazl3 glib 2.78.6-3",
"product_id": "3"
}
},
{
"category": "product_version",
"name": "azl3 glib 2.78.6-3",
"product": {
"name": "azl3 glib 2.78.6-3",
"product_id": "20272"
}
}
],
"category": "product_name",
"name": "glib"
}
],
"category": "vendor",
"name": "Microsoft"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "\u003ccbl2 glib 2.71.0-5 as a component of CBL Mariner 2.0",
"product_id": "17086-4"
},
"product_reference": "4",
"relates_to_product_reference": "17086"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cbl2 glib 2.71.0-5 as a component of CBL Mariner 2.0",
"product_id": "19898-17086"
},
"product_reference": "19898",
"relates_to_product_reference": "17086"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "\u003ccbl2 glib 2.71.0-7 as a component of CBL Mariner 2.0",
"product_id": "17086-2"
},
"product_reference": "2",
"relates_to_product_reference": "17086"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cbl2 glib 2.71.0-7 as a component of CBL Mariner 2.0",
"product_id": "20365-17086"
},
"product_reference": "20365",
"relates_to_product_reference": "17086"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "\u003ccbl2 glib 2.71.0-6 as a component of CBL Mariner 2.0",
"product_id": "17086-1"
},
"product_reference": "1",
"relates_to_product_reference": "17086"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cbl2 glib 2.71.0-6 as a component of CBL Mariner 2.0",
"product_id": "20466-17086"
},
"product_reference": "20466",
"relates_to_product_reference": "17086"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "\u003cazl3 glib 2.78.6-3 as a component of Azure Linux 3.0",
"product_id": "17084-3"
},
"product_reference": "3",
"relates_to_product_reference": "17084"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "azl3 glib 2.78.6-3 as a component of Azure Linux 3.0",
"product_id": "20272-17084"
},
"product_reference": "20272",
"relates_to_product_reference": "17084"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-4373",
"cwe": {
"id": "CWE-124",
"name": "Buffer Underwrite (\u0026#39;Buffer Underflow\u0026#39;)"
},
"notes": [
{
"category": "general",
"text": "redhat",
"title": "Assigning CNA"
}
],
"product_status": {
"fixed": [
"19898-17086",
"20365-17086",
"20466-17086",
"20272-17084"
],
"known_affected": [
"17086-4",
"17086-2",
"17086-1",
"17084-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-4373 Glib: buffer underflow on glib through glib/gstring.c via function g_string_insert_unichar - VEX",
"url": "https://msrc.microsoft.com/csaf/vex/2025/msrc_cve-2025-4373.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-04T02:58:55.000Z",
"details": "2.71.0-6:Security Update:https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade",
"product_ids": [
"17086-4"
],
"url": "https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade"
},
{
"category": "vendor_fix",
"date": "2025-09-04T02:58:55.000Z",
"details": "2.71.0-7:Security Update:https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade",
"product_ids": [
"17086-2",
"17086-1"
],
"url": "https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade"
},
{
"category": "vendor_fix",
"date": "2025-09-04T02:58:55.000Z",
"details": "2.78.6-3:Security Update:https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade",
"product_ids": [
"17084-3"
],
"url": "https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalsScore": 0.0,
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 4.8,
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"17086-4",
"17086-2",
"17086-1",
"17084-3"
]
}
],
"title": "Glib: buffer underflow on glib through glib/gstring.c via function g_string_insert_unichar"
}
]
}
ssa-082556
Vulnerability from csaf_siemens
Published
2025-06-10 00:00
Modified
2025-08-12 00:00
Summary
SSA-082556: Vulnerabilities in the additional GNU/Linux subsystem of the SIMATIC S7-1500 CPU 1518(F)-4 PN/DP MFP V3.1.5
Notes
Summary
Multiple vulnerabilities have been identified in the additional GNU/Linux subsystem of the firmware version V3.1.5 for the SIMATIC S7-1500 CPU 1518(F)-4 PN/DP MFP (incl. SIPLUS variant).
Siemens is preparing fix versions and recommends countermeasures for products where fixes are not, or not yet available.
General Recommendations
As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens' operational guidelines for Industrial Security (Download:
https://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.
Additional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity
Additional Resources
For further inquiries on security vulnerabilities in Siemens products and solutions, please contact the Siemens ProductCERT: https://www.siemens.com/cert/advisories
Terms of Use
The use of Siemens Security Advisories is subject to the terms and conditions listed on: https://www.siemens.com/productcert/terms-of-use.
{
"document": {
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Disclosure is not limited. (TLPv2: TLP:CLEAR)",
"tlp": {
"label": "WHITE"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Multiple vulnerabilities have been identified in the additional GNU/Linux subsystem of the firmware version V3.1.5 for the SIMATIC S7-1500 CPU 1518(F)-4 PN/DP MFP (incl. SIPLUS variant).\n\nSiemens is preparing fix versions and recommends countermeasures for products where fixes are not, or not yet available.",
"title": "Summary"
},
{
"category": "general",
"text": "As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens\u0027 operational guidelines for Industrial Security (Download: \nhttps://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.\nAdditional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity",
"title": "General Recommendations"
},
{
"category": "general",
"text": "For further inquiries on security vulnerabilities in Siemens products and solutions, please contact the Siemens ProductCERT: https://www.siemens.com/cert/advisories",
"title": "Additional Resources"
},
{
"category": "legal_disclaimer",
"text": "The use of Siemens Security Advisories is subject to the terms and conditions listed on: https://www.siemens.com/productcert/terms-of-use.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "productcert@siemens.com",
"name": "Siemens ProductCERT",
"namespace": "https://www.siemens.com"
},
"references": [
{
"category": "self",
"summary": "SSA-082556: Vulnerabilities in the additional GNU/Linux subsystem of the SIMATIC S7-1500 CPU 1518(F)-4 PN/DP MFP V3.1.5 - HTML Version",
"url": "https://cert-portal.siemens.com/productcert/html/ssa-082556.html"
},
{
"category": "self",
"summary": "SSA-082556: Vulnerabilities in the additional GNU/Linux subsystem of the SIMATIC S7-1500 CPU 1518(F)-4 PN/DP MFP V3.1.5 - CSAF Version",
"url": "https://cert-portal.siemens.com/productcert/csaf/ssa-082556.json"
}
],
"title": "SSA-082556: Vulnerabilities in the additional GNU/Linux subsystem of the SIMATIC S7-1500 CPU 1518(F)-4 PN/DP MFP V3.1.5",
"tracking": {
"current_release_date": "2025-08-12T00:00:00Z",
"generator": {
"engine": {
"name": "Siemens ProductCERT CSAF Generator",
"version": "1"
}
},
"id": "SSA-082556",
"initial_release_date": "2025-06-10T00:00:00Z",
"revision_history": [
{
"date": "2025-06-10T00:00:00Z",
"legacy_version": "1.0",
"number": "1",
"summary": "Publication Date"
},
{
"date": "2025-08-12T00:00:00Z",
"legacy_version": "1.1",
"number": "2",
"summary": "Added CVE-2025-6395, CVE-2025-32988, CVE-2025-32989, CVE-2025-32990"
}
],
"status": "interim",
"version": "2"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003e=3.1.5",
"product": {
"name": "SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AB0)",
"product_id": "1",
"product_identification_helper": {
"model_numbers": [
"6ES7518-4AX00-1AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003e=3.1.5",
"product": {
"name": "SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AC0)",
"product_id": "2",
"product_identification_helper": {
"model_numbers": [
"6ES7518-4AX00-1AC0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AC0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003e=3.1.5",
"product": {
"name": "SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AB0)",
"product_id": "3",
"product_identification_helper": {
"model_numbers": [
"6ES7518-4FX00-1AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003e=3.1.5",
"product": {
"name": "SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AC0)",
"product_id": "4",
"product_identification_helper": {
"model_numbers": [
"6ES7518-4FX00-1AC0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AC0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003e=3.1.5",
"product": {
"name": "SIPLUS S7-1500 CPU 1518-4 PN/DP MFP (6AG1518-4AX00-4AC0)",
"product_id": "5",
"product_identification_helper": {
"model_numbers": [
"6AG1518-4AX00-4AC0"
]
}
}
}
],
"category": "product_name",
"name": "SIPLUS S7-1500 CPU 1518-4 PN/DP MFP (6AG1518-4AX00-4AC0)"
}
],
"category": "vendor",
"name": "Siemens"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2021-41617",
"cwe": {
"id": "CWE-311",
"name": "Missing Encryption of Sensitive Data"
},
"notes": [
{
"category": "summary",
"text": "sshd in OpenSSH 6.2 through 8.x before 8.8, when certain non-default configurations are used, allows privilege escalation because supplemental groups are not initialized as expected. Helper programs for AuthorizedKeysCommand and AuthorizedPrincipalsCommand may run with privileges associated with group memberships of the sshd process, if the configuration specifies running the command as a different user.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1",
"2",
"3",
"4",
"5"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.0,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"title": "CVE-2021-41617"
},
{
"cve": "CVE-2023-4527",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "summary",
"text": "A flaw was found in glibc. When the getaddrinfo function is called with the AF_UNSPEC address family and the system is configured with no-aaaa mode via /etc/resolv.conf, a DNS response via TCP larger than 2048 bytes can potentially disclose stack contents through the function returned address data, and may cause a crash.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1",
"2",
"3",
"4",
"5"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"title": "CVE-2023-4527"
},
{
"cve": "CVE-2023-4806",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "summary",
"text": "A flaw was found in glibc. In an extremely rare situation, the getaddrinfo function may access memory that has been freed, resulting in an application crash. This issue is only exploitable when a NSS module implements only the _nss_*_gethostbyname2_r and _nss_*_getcanonname_r hooks without implementing the _nss_*_gethostbyname3_r hook. The resolved name should return a large number of IPv6 and IPv4, and the call to the getaddrinfo function should have the AF_INET6 address family with AI_CANONNAME, AI_ALL and AI_V4MAPPED as flags.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1",
"2",
"3",
"4",
"5"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"title": "CVE-2023-4806"
},
{
"cve": "CVE-2023-4911",
"cwe": {
"id": "CWE-121",
"name": "Stack-based Buffer Overflow"
},
"notes": [
{
"category": "summary",
"text": "A buffer overflow was discovered in the GNU C Library\u0027s dynamic loader ld.so while processing the GLIBC_TUNABLES environment variable. This issue could allow a local attacker to use maliciously crafted GLIBC_TUNABLES environment variables when launching binaries with SUID permission to execute code with elevated privileges.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1",
"2",
"3",
"4",
"5"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"title": "CVE-2023-4911"
},
{
"cve": "CVE-2023-5363",
"cwe": {
"id": "CWE-684",
"name": "Incorrect Provision of Specified Functionality"
},
"notes": [
{
"category": "summary",
"text": "Issue summary: A bug has been identified in the processing of key and initialisation vector (IV) lengths. This can lead to potential truncation or overruns during the initialisation of some symmetric ciphers. Impact summary: A truncation in the IV can result in non-uniqueness, which could result in loss of confidentiality for some cipher modes. When calling EVP_EncryptInit_ex2(), EVP_DecryptInit_ex2() or EVP_CipherInit_ex2() the provided OSSL_PARAM array is processed after the key and IV have been established. Any alterations to the key length, via the \"keylen\" parameter or the IV length, via the \"ivlen\" parameter, within the OSSL_PARAM array will not take effect as intended, potentially causing truncation or overreading of these values. The following ciphers and cipher modes are impacted: RC2, RC4, RC5, CCM, GCM and OCB. For the CCM, GCM and OCB cipher modes, truncation of the IV can result in loss of confidentiality. For example, when following NIST\u0027s SP 800-38D section 8.2.1 guidance for constructing a deterministic IV for AES in GCM mode, truncation of the counter portion could lead to IV reuse. Both truncations and overruns of the key and overruns of the IV will produce incorrect results and could, in some cases, trigger a memory exception. However, these issues are not currently assessed as security critical. Changing the key and/or IV lengths is not considered to be a common operation and the vulnerable API was recently introduced. Furthermore it is likely that application developers will have spotted this problem during testing since decryption would fail unless both peers in the communication were similarly vulnerable. For these reasons we expect the probability of an application being vulnerable to this to be quite low. However if an application is vulnerable then this issue is considered very serious. For these reasons we have assessed this issue as Moderate severity overall. The OpenSSL SSL/TLS implementation is not affected by this issue. The OpenSSL 3.0 and 3.1 FIPS providers are not affected by this because the issue lies outside of the FIPS provider boundary. OpenSSL 3.1 and 3.0 are vulnerable to this issue.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1",
"2",
"3",
"4",
"5"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"title": "CVE-2023-5363"
},
{
"cve": "CVE-2023-6246",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "summary",
"text": "A heap-based buffer overflow was found in the __vsyslog_internal function of the glibc library. This function is called by the syslog and vsyslog functions. This issue occurs when the openlog function was not called, or called with the ident argument set to NULL, and the program name (the basename of argv[0]) is bigger than 1024 bytes, resulting in an application crash or local privilege escalation. This issue affects glibc 2.36 and newer.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1",
"2",
"3",
"4",
"5"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"title": "CVE-2023-6246"
},
{
"cve": "CVE-2023-6779",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "summary",
"text": "An off-by-one heap-based buffer overflow was found in the __vsyslog_internal function of the glibc library. This function is called by the syslog and vsyslog functions. This issue occurs when these functions are called with a message bigger than INT_MAX bytes, leading to an incorrect calculation of the buffer size to store the message, resulting in an application crash. This issue affects glibc 2.37 and newer.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1",
"2",
"3",
"4",
"5"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"title": "CVE-2023-6779"
},
{
"cve": "CVE-2023-6780",
"cwe": {
"id": "CWE-131",
"name": "Incorrect Calculation of Buffer Size"
},
"notes": [
{
"category": "summary",
"text": "An integer overflow was found in the __vsyslog_internal function of the glibc library. This function is called by the syslog and vsyslog functions. This issue occurs when these functions are called with a very long message, leading to an incorrect calculation of the buffer size to store the message, resulting in undefined behavior. This issue affects glibc 2.37 and newer.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1",
"2",
"3",
"4",
"5"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"title": "CVE-2023-6780"
},
{
"cve": "CVE-2023-28531",
"cwe": {
"id": "CWE-311",
"name": "Missing Encryption of Sensitive Data"
},
"notes": [
{
"category": "summary",
"text": "ssh-add in OpenSSH before 9.3 adds smartcard keys to ssh-agent without the intended per-hop destination constraints. The earliest affected version is 8.9.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1",
"2",
"3",
"4",
"5"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"title": "CVE-2023-28531"
},
{
"cve": "CVE-2023-38545",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"notes": [
{
"category": "summary",
"text": "This flaw makes curl overflow a heap based buffer in the SOCKS5 proxy handshake.\r\n\r\nWhen curl is asked to pass along the hostname to the SOCKS5 proxy to allow that to resolve the address instead of it getting done by curl itself, the maximum length that hostname can be is 255 bytes.\r\n\r\nIf the hostname is detected to be longer than 255 bytes, curl switches to local name resolving and instead passes on the resolved address only to the proxy. Due to a bug, the local variable that means \"let the host resolve the name\" could get the wrong value during a slow SOCKS5 handshake, and contrary to the intention, copy the too long hostname to the target buffer instead of copying just the resolved address there.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1",
"2",
"3",
"4",
"5"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"title": "CVE-2023-38545"
},
{
"cve": "CVE-2023-38546",
"cwe": {
"id": "CWE-73",
"name": "External Control of File Name or Path"
},
"notes": [
{
"category": "summary",
"text": "This flaw allows an attacker to insert cookies at will into a running program\r\nusing libcurl, if the specific series of conditions are met.\r\n\r\nlibcurl performs transfers. In its API, an application creates \"easy handles\"\r\nthat are the individual handles for single transfers.\r\n\r\nlibcurl provides a function call that duplicates en easy handle called\r\n[curl_easy_duphandle](https://curl.se/libcurl/c/curl_easy_duphandle.html).\r\n\r\nIf a transfer has cookies enabled when the handle is duplicated, the\r\ncookie-enable state is also cloned - but without cloning the actual\r\ncookies. If the source handle did not read any cookies from a specific file on\r\ndisk, the cloned version of the handle would instead store the file name as\r\n`none` (using the four ASCII letters, no quotes).\r\n\r\nSubsequent use of the cloned handle that does not explicitly set a source to\r\nload cookies from would then inadvertently load cookies from a file named\r\n`none` - if such a file exists and is readable in the current directory of the\r\nprogram using libcurl. And if using the correct file format of course.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1",
"2",
"3",
"4",
"5"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.7,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"title": "CVE-2023-38546"
},
{
"cve": "CVE-2023-44487",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"notes": [
{
"category": "summary",
"text": "The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1",
"2",
"3",
"4",
"5"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"title": "CVE-2023-44487"
},
{
"cve": "CVE-2023-46218",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "This flaw allows a malicious HTTP server to set \"super cookies\" in curl that are then passed back to more origins than what is otherwise allowed or possible. This allows a site to set cookies that then would get sent to different and unrelated sites and domains. It could do this by exploiting a mixed case flaw in curl\u0027s function that verifies a given cookie domain against the Public Suffix List (PSL). For example a cookie could be set with `domain=co.UK` when the URL used a lower case hostname `curl.co.uk`, even though `co.uk` is listed as a PSL domain.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1",
"2",
"3",
"4",
"5"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"title": "CVE-2023-46218"
},
{
"cve": "CVE-2023-46219",
"cwe": {
"id": "CWE-311",
"name": "Missing Encryption of Sensitive Data"
},
"notes": [
{
"category": "summary",
"text": "When saving HSTS data to an excessively long file name, curl could end up removing all contents, making subsequent requests using that file unaware of the HSTS status they should otherwise use.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1",
"2",
"3",
"4",
"5"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"title": "CVE-2023-46219"
},
{
"cve": "CVE-2023-48795",
"cwe": {
"id": "CWE-222",
"name": "Truncation of Security-relevant Information"
},
"notes": [
{
"category": "summary",
"text": "The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass integrity checks such that some packets are omitted (from the extension negotiation message), and a client and server may consequently end up with a connection for which some security features have been downgraded or disabled, aka a Terrapin attack. This occurs because the SSH Binary Packet Protocol (BPP), implemented by these extensions, mishandles the handshake phase and mishandles use of sequence numbers. For example, there is an effective attack against SSH\u0027s use of ChaCha20-Poly1305 (and CBC with Encrypt-then-MAC). The bypass occurs in chacha20-poly1305@openssh.com and (if CBC is used) the -etm@openssh.com MAC algorithms. This also affects Maverick Synergy Java SSH API before 3.1.0-SNAPSHOT, Dropbear through 2022.83, Ssh before 5.1.1 in Erlang/OTP, PuTTY before 0.80, AsyncSSH before 2.14.2, golang.org/x/crypto before 0.17.0, libssh before 0.10.6, libssh2 through 1.11.0, Thorn Tech SFTP Gateway before 3.4.6, Tera Term before 5.1, Paramiko before 3.4.0, jsch before 0.2.15, SFTPGo before 2.5.6, Netgate pfSense Plus through 23.09.1, Netgate pfSense CE through 2.7.2, HPN-SSH through 18.2.0, ProFTPD before 1.3.8b (and before1.3.9rc2), ORYX CycloneSSH before 2.3.4, NetSarang XShell 7 before Build 0144, CrushFTP before 10.6.0, ConnectBot SSH library before 2.2.22, Apache MINA sshd through 2.11.0, sshj through 0.37.0, TinySSH through 20230101, trilead-ssh2 6401, the net-ssh gem 7.2.0 for Ruby, the mscdex ssh2 module before 1.15.0 for Node.js, the thrussh library before 0.35.1 for Rust, and the Russh crate before 0.40.2 for Rust; and there could be effects on Bitvise SSH through 9.31.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1",
"2",
"3",
"4",
"5"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"title": "CVE-2023-48795"
},
{
"cve": "CVE-2023-51384",
"cwe": {
"id": "CWE-304",
"name": "Missing Critical Step in Authentication"
},
"notes": [
{
"category": "summary",
"text": "In ssh-agent in OpenSSH before 9.6, certain destination constraints can be incompletely applied. When destination constraints are specified during addition of PKCS#11-hosted private keys, these constraints are only applied to the first key, even if a PKCS#11 token returns multiple keys.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1",
"2",
"3",
"4",
"5"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"title": "CVE-2023-51384"
},
{
"cve": "CVE-2023-51385",
"cwe": {
"id": "CWE-78",
"name": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)"
},
"notes": [
{
"category": "summary",
"text": "In ssh in OpenSSH before 9.6, OS command injection might occur if a user name or host name has shell metacharacters, and this name is referenced by an expansion token in certain situations. For example, an untrusted Git repository can have a submodule with shell metacharacters in a user name or host name.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1",
"2",
"3",
"4",
"5"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"title": "CVE-2023-51385"
},
{
"cve": "CVE-2023-52927",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "netfilter: allow exp not to be removed in nf_ct_find_expectation Currently nf_conntrack_in() calling nf_ct_find_expectation() will remove the exp from the hash table. However, in some scenario, we expect the exp not to be removed when the created ct will not be confirmed, like in OVS and TC conntrack in the following patches. This patch allows exp not to be removed by setting IPS_CONFIRMED in the status of the tmpl.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1",
"2",
"3",
"4",
"5"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"title": "CVE-2023-52927"
},
{
"cve": "CVE-2024-2961",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "summary",
"text": "The iconv() function in the GNU C Library versions 2.39 and older may overflow the output buffer passed to it by up to 4 bytes when converting strings to the ISO-2022-CN-EXT character set, which may be used to crash an application or overwrite a neighbouring variable.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1",
"2",
"3",
"4",
"5"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"title": "CVE-2024-2961"
},
{
"cve": "CVE-2024-6119",
"cwe": {
"id": "CWE-843",
"name": "Access of Resource Using Incompatible Type (\u0027Type Confusion\u0027)"
},
"notes": [
{
"category": "summary",
"text": "Applications performing certificate name checks (e.g., TLS clients checking server certificates) may attempt to read an invalid memory address resulting in abnormal termination of the application process. Impact summary: Abnormal termination of an application can a cause a denial of service. Applications performing certificate name checks (e.g., TLS clients checking server certificates) may attempt to read an invalid memory address when comparing the expected name with an `otherName` subject alternative name of an X.509 certificate. This may result in an exception that terminates the application program. Note that basic certificate chain validation (signatures, dates, ...) is not affected, the denial of service can occur only when the application also specifies an expected DNS name, Email address or IP address. TLS servers rarely solicit client certificates, and even when they do, they generally don\u0027t perform a name check against a reference identifier (expected identity), but rather extract the presented identity after checking the certificate chain. So TLS servers are generally not affected and the severity of the issue is Moderate. The FIPS modules in 3.3, 3.2, 3.1 and 3.0 are not affected by this issue.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1",
"2",
"3",
"4",
"5"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"title": "CVE-2024-6119"
},
{
"cve": "CVE-2024-6387",
"cwe": {
"id": "CWE-364",
"name": "Signal Handler Race Condition"
},
"notes": [
{
"category": "summary",
"text": "A security regression (CVE-2006-5051) was discovered in OpenSSH\u0027s server (sshd). There is a race condition which can lead to sshd to handle some signals in an unsafe manner. An unauthenticated, remote attacker may be able to trigger it by failing to authenticate within a set time period.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1",
"2",
"3",
"4",
"5"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"title": "CVE-2024-6387"
},
{
"cve": "CVE-2024-12133",
"cwe": {
"id": "CWE-407",
"name": "Inefficient Algorithmic Complexity"
},
"notes": [
{
"category": "summary",
"text": "A flaw in libtasn1 causes inefficient handling of specific certificate data. When processing a large number of elements in a certificate, libtasn1 takes much longer than expected, which can slow down or even crash the system. This flaw allows an attacker to send a specially crafted certificate, causing a denial of service attack.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1",
"2",
"3",
"4",
"5"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"title": "CVE-2024-12133"
},
{
"cve": "CVE-2024-12243",
"cwe": {
"id": "CWE-407",
"name": "Inefficient Algorithmic Complexity"
},
"notes": [
{
"category": "summary",
"text": "A flaw was found in GnuTLS, which relies on libtasn1 for ASN.1 data processing. Due to an inefficient algorithm in libtasn1, decoding certain DER-encoded certificate data can take excessive time, leading to increased resource consumption. This flaw allows a remote attacker to send a specially crafted certificate, causing GnuTLS to become unresponsive or slow, resulting in a denial-of-service condition.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1",
"2",
"3",
"4",
"5"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"title": "CVE-2024-12243"
},
{
"cve": "CVE-2024-24855",
"cwe": {
"id": "CWE-362",
"name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
},
"notes": [
{
"category": "summary",
"text": "A race condition was found in the Linux kernel\u0027s scsi device driver in lpfc_unregister_fcf_rescan() function. This can result in a null pointer dereference issue, possibly leading to a kernel panic or denial of service issue.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1",
"2",
"3",
"4",
"5"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"title": "CVE-2024-24855"
},
{
"cve": "CVE-2024-26596",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "net: dsa: netdev_priv() dereference before check on non-DSA netdevice events.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1",
"2",
"3",
"4",
"5"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"title": "CVE-2024-26596"
},
{
"cve": "CVE-2024-28085",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "wall in util-linux through 2.40, often installed with setgid tty permissions, allows escape sequences to be sent to other users\u0027 terminals through argv. (Specifically, escape sequences received from stdin are blocked, but escape sequences received from argv are not blocked.) There may be plausible scenarios where this leads to account takeover.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1",
"2",
"3",
"4",
"5"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"title": "CVE-2024-28085"
},
{
"cve": "CVE-2024-33599",
"cwe": {
"id": "CWE-121",
"name": "Stack-based Buffer Overflow"
},
"notes": [
{
"category": "summary",
"text": "nscd: Stack-based buffer overflow in netgroup cache\r\n\r\nIf the Name Service Cache Daemon\u0027s (nscd) fixed size cache is exhausted\r\nby client requests then a subsequent client request for netgroup data\r\nmay result in a stack-based buffer overflow. This flaw was introduced\r\nin glibc 2.15 when the cache was added to nscd.\r\n\r\nThis vulnerability is only present in the nscd binary.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1",
"2",
"3",
"4",
"5"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.6,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"title": "CVE-2024-33599"
},
{
"cve": "CVE-2024-33600",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"notes": [
{
"category": "summary",
"text": "nscd: Null pointer crashes after notfound response\r\n\r\nIf the Name Service Cache Daemon\u0027s (nscd) cache fails to add a not-found\r\nnetgroup response to the cache, the client request can result in a null\r\npointer dereference. This flaw was introduced in glibc 2.15 when the\r\ncache was added to nscd.\r\n\r\nThis vulnerability is only present in the nscd binary.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1",
"2",
"3",
"4",
"5"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"title": "CVE-2024-33600"
},
{
"cve": "CVE-2024-33601",
"cwe": {
"id": "CWE-617",
"name": "Reachable Assertion"
},
"notes": [
{
"category": "summary",
"text": "nscd: netgroup cache may terminate daemon on memory allocation failure\r\n\r\nThe Name Service Cache Daemon\u0027s (nscd) netgroup cache uses xmalloc or\r\nxrealloc and these functions may terminate the process due to a memory\r\nallocation failure resulting in a denial of service to the clients. The\r\nflaw was introduced in glibc 2.15 when the cache was added to nscd.\r\n\r\nThis vulnerability is only present in the nscd binary.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1",
"2",
"3",
"4",
"5"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.0,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"title": "CVE-2024-33601"
},
{
"cve": "CVE-2024-33602",
"cwe": {
"id": "CWE-466",
"name": "Return of Pointer Value Outside of Expected Range"
},
"notes": [
{
"category": "summary",
"text": "nscd: netgroup cache assumes NSS callback uses in-buffer strings\r\n\r\nThe Name Service Cache Daemon\u0027s (nscd) netgroup cache can corrupt memory\r\nwhen the NSS callback does not store all strings in the provided buffer.\r\nThe flaw was introduced in glibc 2.15 when the cache was added to nscd.\r\n\r\nThis vulnerability is only present in the nscd binary.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1",
"2",
"3",
"4",
"5"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.0,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"title": "CVE-2024-33602"
},
{
"cve": "CVE-2024-34397",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "An issue was discovered in GNOME GLib before 2.78.5, and 2.79.x and 2.80.x before 2.80.1. When a GDBus-based client subscribes to signals from a trusted system service such as NetworkManager on a shared computer, other users of the same computer can send spoofed D-Bus signals that the GDBus-based client will wrongly interpret as having been sent by the trusted system service. This could lead to the GDBus-based client behaving incorrectly, with an application-dependent impact.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1",
"2",
"3",
"4",
"5"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.2,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:L",
"version": "3.1"
},
"products": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"title": "CVE-2024-34397"
},
{
"cve": "CVE-2024-37370",
"cwe": {
"id": "CWE-130",
"name": "Improper Handling of Length Parameter Inconsistency"
},
"notes": [
{
"category": "summary",
"text": "In MIT Kerberos 5 (aka krb5) before 1.21.3, an attacker can modify the plaintext Extra Count field of a confidential GSS krb5 wrap token, causing the unwrapped token to appear truncated to the application.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1",
"2",
"3",
"4",
"5"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"title": "CVE-2024-37370"
},
{
"cve": "CVE-2024-37371",
"cwe": {
"id": "CWE-130",
"name": "Improper Handling of Length Parameter Inconsistency"
},
"notes": [
{
"category": "summary",
"text": "In MIT Kerberos 5 (aka krb5) before 1.21.3, an attacker can cause invalid memory reads during GSS message token handling by sending message tokens with invalid length fields.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1",
"2",
"3",
"4",
"5"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"title": "CVE-2024-37371"
},
{
"cve": "CVE-2024-45490",
"cwe": {
"id": "CWE-131",
"name": "Incorrect Calculation of Buffer Size"
},
"notes": [
{
"category": "summary",
"text": "An issue was discovered in libexpat before 2.6.3. xmlparse.c does not reject a negative length for XML_ParseBuffer.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1",
"2",
"3",
"4",
"5"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"title": "CVE-2024-45490"
},
{
"cve": "CVE-2024-45491",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"notes": [
{
"category": "summary",
"text": "An issue was discovered in libexpat before 2.6.3. dtdCopy in xmlparse.c can have an integer overflow for nDefaultAtts on 32-bit platforms (where UINT_MAX equals SIZE_MAX).",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1",
"2",
"3",
"4",
"5"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"title": "CVE-2024-45491"
},
{
"cve": "CVE-2024-45492",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"notes": [
{
"category": "summary",
"text": "An issue was discovered in libexpat before 2.6.3. nextScaffoldPart in xmlparse.c can have an integer overflow for m_groupSize on 32-bit platforms (where UINT_MAX equals SIZE_MAX).",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1",
"2",
"3",
"4",
"5"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"title": "CVE-2024-45492"
},
{
"cve": "CVE-2024-50246",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "In the Linux kernel, the following vulnerability has been resolved:\r\n\r\nfs/ntfs3: Add rough attr alloc_size check",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1",
"2",
"3",
"4",
"5"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"title": "CVE-2024-50246"
},
{
"cve": "CVE-2024-53166",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "summary",
"text": "block, bfq: bfqq uaf in bfq_limit_depth() Set new allocated bfqq to bic or remove freed bfqq from bic are both protected by bfqd-\u003elock, however bfq_limit_depth() is deferencing bfqq from bic without the lock, this can lead to UAF if the io_context is shared by multiple tasks.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1",
"2",
"3",
"4",
"5"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"title": "CVE-2024-53166"
},
{
"cve": "CVE-2024-57977",
"cwe": {
"id": "CWE-667",
"name": "Improper Locking"
},
"notes": [
{
"category": "summary",
"text": "memcg: A soft lockup vulnerability in the product with about 56,000 tasks were in the OOM cgroup, it was traversing them when the soft lockup was triggered.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1",
"2",
"3",
"4",
"5"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"title": "CVE-2024-57977"
},
{
"cve": "CVE-2024-57996",
"cwe": {
"id": "CWE-129",
"name": "Improper Validation of Array Index"
},
"notes": [
{
"category": "summary",
"text": "net_sched: sch_sfq: vulnerability caused by incorrectly handling a packet limit of 1, leading to an array-index-out-of-bounds error and subsequent crash when the queue length is decremented for an empty slot.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1",
"2",
"3",
"4",
"5"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"title": "CVE-2024-57996"
},
{
"cve": "CVE-2024-58005",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "tpm: Change to kvalloc() in eventlog/acpi.c.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1",
"2",
"3",
"4",
"5"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"title": "CVE-2024-58005"
},
{
"cve": "CVE-2025-4373",
"cwe": {
"id": "CWE-124",
"name": "Buffer Underwrite (\u0027Buffer Underflow\u0027)"
},
"notes": [
{
"category": "summary",
"text": "GLib is vulnerable to an integer overflow in the g_string_insert_unichar() function. When the position at which to insert the character is large, the position will overflow, leading to a buffer underwrite.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1",
"2",
"3",
"4",
"5"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"title": "CVE-2025-4373"
},
{
"cve": "CVE-2025-4598",
"cwe": {
"id": "CWE-364",
"name": "Signal Handler Race Condition"
},
"notes": [
{
"category": "summary",
"text": "A vulnerability was found in systemd-coredump. This flaw allows an attacker to force a SUID process to crash and replace it with a non-SUID binary to access the original\u0027s privileged process coredump, allowing the attacker to read sensitive data, such as /etc/shadow content, loaded by the original process.\r\n\r\nA SUID binary or process has a special type of permission, which allows the process to run with the file owner\u0027s permissions, regardless of the user executing the binary. This allows the process to access more restricted data than unprivileged users or processes would be able to. An attacker can leverage this flaw by forcing a SUID process to crash and force the Linux kernel to recycle the process PID before systemd-coredump can analyze the /proc/pid/auxv file. If the attacker wins the race condition, they gain access to the original\u0027s SUID process coredump file. They can read sensitive content loaded into memory by the original binary, affecting data confidentiality.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1",
"2",
"3",
"4",
"5"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"title": "CVE-2025-4598"
},
{
"cve": "CVE-2025-6395",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"notes": [
{
"category": "summary",
"text": "A NULL pointer dereference flaw was found in the GnuTLS software in _gnutls_figure_common_ciphersuite().",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1",
"2",
"3",
"4",
"5"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"title": "CVE-2025-6395"
},
{
"cve": "CVE-2025-21701",
"cwe": {
"id": "CWE-362",
"name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
},
"notes": [
{
"category": "summary",
"text": "net: vulnerability arises because unregister_netdevice_many_notify might run before the rtnl lock section of ethnl operations, leading to potential use of destroyed locks, which is fixed by denying operations on devices being unregistered.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1",
"2",
"3",
"4",
"5"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"title": "CVE-2025-21701"
},
{
"cve": "CVE-2025-21702",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "pfifo_tail_enqueue: Drop new packet when sch-\u003elimit == 0.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1",
"2",
"3",
"4",
"5"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.0,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"title": "CVE-2025-21702"
},
{
"cve": "CVE-2025-21712",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "md/md-bitmap: vulnerability caused by bitmap_get_stats() can be called even if the bitmap is destroyed or not fully initialized, leading to a kernel crash, which is fixed by synchronizing bitmap_get_stats() with bitmap_info.mutex.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1",
"2",
"3",
"4",
"5"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"title": "CVE-2025-21712"
},
{
"cve": "CVE-2025-21724",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "iommufd/iova_bitmap: Fix shift-out-of-bounds in iova_bitmap_offset_to_index(). Resolve a UBSAN shift-out-of-bounds issue in iova_bitmap_offset_to_index() where shifting the constant \"1\" (of type int) by bitmap-\u003emapped.pgshift (an unsigned long value) could result in undefined behavior. The constant \"1\" defaults to a 32-bit \"int\", and when \"pgshift\" exceeds 31 (e.g., pgshift = 63) the shift operation overflows, as the result cannot be represented in a 32-bit type.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1",
"2",
"3",
"4",
"5"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"title": "CVE-2025-21724"
},
{
"cve": "CVE-2025-21728",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "bpf: Send signals asynchronously if !preemptible BPF programs can execute in all kinds of contexts and when a program running in a non-preemptible context uses the bpf_send_signal() kfunc, it will cause issues because this kfunc can sleep.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1",
"2",
"3",
"4",
"5"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"title": "CVE-2025-21728"
},
{
"cve": "CVE-2025-21745",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "In the Linux kernel, the following vulnerability has been resolved:\r\n\r\nblk-cgroup: Fix class @block_class\u0027s subsystem refcount leakage\r\n\r\nblkcg_fill_root_iostats() iterates over @block_class\u0027s devices by\r\nclass_dev_iter_(init|next)(), but does not end iterating with\r\nclass_dev_iter_exit(), so causes the class\u0027s subsystem refcount leakage.\r\n\r\nFix by ending the iterating with class_dev_iter_exit().",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1",
"2",
"3",
"4",
"5"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"title": "CVE-2025-21745"
},
{
"cve": "CVE-2025-21756",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "vsock: Keep the binding until socket destruction Preserve sockets bindings; this includes both resulting from an explicit bind() and those implicitly bound through autobind during connect().",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1",
"2",
"3",
"4",
"5"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"title": "CVE-2025-21756"
},
{
"cve": "CVE-2025-21758",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "ipv6: mcast: add RCU protection to mld_newpack() mld_newpack() can be called without RTNL or RCU being held.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1",
"2",
"3",
"4",
"5"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"title": "CVE-2025-21758"
},
{
"cve": "CVE-2025-21765",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "ipv6: use RCU protection in ip6_default_advmss() ip6_default_advmss() needs rcu protection to make sure the net structure it reads does not disappear.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1",
"2",
"3",
"4",
"5"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"title": "CVE-2025-21765"
},
{
"cve": "CVE-2025-21766",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "ipv4: use RCU protection in __ip_rt_update_pmtu(). __ip_rt_update_pmtu() must use RCU protection to make sure the net structure it reads does not disappear.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1",
"2",
"3",
"4",
"5"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"title": "CVE-2025-21766"
},
{
"cve": "CVE-2025-21767",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "In the Linux kernel, the following vulnerability has been resolved: clocksource: Use migrate_disable() to avoid calling get_random_u32() in atomic context The following bug report happened with a PREEMPT_RT kernel: BUG: sleeping function called from invalid context at kernel/locking/spinlock_rt.c:48 in_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 2012, name: kwatchdog preempt_count: 1, expected: 0 RCU nest depth: 0, expected: 0 get_random_u32+0x4f/0x110 clocksource_verify_choose_cpus+0xab/0x1a0 clocksource_verify_percpu.part.0+0x6b/0x330 clocksource_watchdog_kthread+0x193/0x1a0 It is due to the fact that clocksource_verify_choose_cpus() is invoked with preemption disabled. This function invokes get_random_u32() to obtain random numbers for choosing CPUs. The batched_entropy_32 local lock and/or the base_crng.lock spinlock in driver/char/random.c will be acquired during the call. In PREEMPT_RT kernel, they are both sleeping locks and so cannot be acquired in atomic context. Fix this problem by using migrate_disable() to allow smp_processor_id() to be reliably used without introducing atomic context. preempt_disable() is then called after clocksource_verify_choose_cpus() but before the clocksource measurement is being run to avoid introducing unexpected latency.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1",
"2",
"3",
"4",
"5"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"title": "CVE-2025-21767"
},
{
"cve": "CVE-2025-21795",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "NFSD: hang in nfsd4_shutdown_callback. If nfs4_client is in courtesy state then there is no point to send the callback. This causes nfsd4_shutdown_callback to hang since cl_cb_inflight is not 0. This hang lasts about 15 minutes until TCP notifies NFSD that the connection was dropped.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1",
"2",
"3",
"4",
"5"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"title": "CVE-2025-21795"
},
{
"cve": "CVE-2025-21796",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "nfsd: clear acl_access/acl_default after releasing them If getting acl_default fails, acl_access and acl_default will be released simultaneously.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1",
"2",
"3",
"4",
"5"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"title": "CVE-2025-21796"
},
{
"cve": "CVE-2025-21848",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"notes": [
{
"category": "summary",
"text": "In the Linux kernel, the following vulnerability has been resolved:\r\n\r\nnfp: bpf: Add check for nfp_app_ctrl_msg_alloc()\r\n\r\nAdd check for the return value of nfp_app_ctrl_msg_alloc() in\r\nnfp_bpf_cmsg_alloc() to prevent null pointer dereference.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1",
"2",
"3",
"4",
"5"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"title": "CVE-2025-21848"
},
{
"cve": "CVE-2025-21862",
"cwe": {
"id": "CWE-908",
"name": "Use of Uninitialized Resource"
},
"notes": [
{
"category": "summary",
"text": "drop_monitor: incorrect initialization order. If drop_monitor is built as a kernel module, syzkaller may have time to send a netlink NET_DM_CMD_START message during the module loading. This will call the net_dm_monitor_start() function that uses a spinlock that has not yet been initialized.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1",
"2",
"3",
"4",
"5"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"title": "CVE-2025-21862"
},
{
"cve": "CVE-2025-21864",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"notes": [
{
"category": "summary",
"text": "In the Linux kernel, the following vulnerability has been resolved:\r\n\r\ntcp: drop secpath at the same time as we currently drop dst\r\n\r\nXiumei reported hitting the WARN in xfrm6_tunnel_net_exit while\r\nrunning tests that boil down to:\r\n - create a pair of netns\r\n - run a basic TCP test over ipcomp6\r\n - delete the pair of netns\r\n\r\nThe xfrm_state found on spi_byaddr was not deleted at the time we\r\ndelete the netns, because we still have a reference on it. This\r\nlingering reference comes from a secpath (which holds a ref on the\r\nxfrm_state), which is still attached to an skb. This skb is not\r\nleaked, it ends up on sk_receive_queue and then gets defer-free\u0027d by\r\nskb_attempt_defer_free.\r\n\r\nThe problem happens when we defer freeing an skb (push it on one CPU\u0027s\r\ndefer_list), and don\u0027t flush that list before the netns is deleted. In\r\nthat case, we still have a reference on the xfrm_state that we don\u0027t\r\nexpect at this point.\r\n\r\nWe already drop the skb\u0027s dst in the TCP receive path when it\u0027s no\r\nlonger needed, so let\u0027s also drop the secpath. At this point,\r\ntcp_filter has already called into the LSM hooks that may require the\r\nsecpath, so it should not be needed anymore. However, in some of those\r\nplaces, the MPTCP extension has just been attached to the skb, so we\r\ncannot simply drop all extensions.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1",
"2",
"3",
"4",
"5"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"title": "CVE-2025-21864"
},
{
"cve": "CVE-2025-21865",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "summary",
"text": "gtp: Suppress list corruption splat in gtp_net_exit_batch_rtnl(). Commit eb28fd76c0a0 (\"gtp: Destroy device along with udp socket\u0027s netns dismantle.\") added the for_each_netdev() loop in gtp_net_exit_batch_rtnl() to destroy devices in each netns as done in geneve and ip tunnels. However, this could trigger -\u003edellink() twice for the same device during -\u003eexit_batch_rtnl().",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1",
"2",
"3",
"4",
"5"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"title": "CVE-2025-21865"
},
{
"cve": "CVE-2025-26465",
"cwe": {
"id": "CWE-390",
"name": "Detection of Error Condition Without Action"
},
"notes": [
{
"category": "summary",
"text": "A vulnerability was found in OpenSSH when the VerifyHostKeyDNS option is enabled. A machine-in-the-middle attack can be performed by a malicious machine impersonating a legit server. This issue occurs due to how OpenSSH mishandles error codes in specific conditions when verifying the host key. For an attack to be considered successful, the attacker needs to manage to exhaust the client\u0027s memory resource first, turning the attack complexity high.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1",
"2",
"3",
"4",
"5"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"title": "CVE-2025-26465"
},
{
"cve": "CVE-2025-31115",
"cwe": {
"id": "CWE-826",
"name": "Premature Release of Resource During Expected Lifetime"
},
"notes": [
{
"category": "summary",
"text": "The threaded .xz decoder in liblzma has a vulnerability that can at least result in a crash (denial of service). The effects include heap use after free and writing to an address based on the null pointer plus an offset.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1",
"2",
"3",
"4",
"5"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"title": "CVE-2025-31115"
},
{
"cve": "CVE-2025-32988",
"cwe": {
"id": "CWE-415",
"name": "Double Free"
},
"notes": [
{
"category": "summary",
"text": "A flaw was found in GnuTLS. A double-free vulnerability exists in GnuTLS due to incorrect ownership handling in the export logic of Subject Alternative Name (SAN) entries containing an otherName. If the type-id OID is invalid or malformed, GnuTLS will call asn1_delete_structure() on an ASN.1 node it does not own, leading to a double-free condition when the parent function or caller later attempts to free the same structure. This vulnerability can be triggered using only public GnuTLS APIs and may result in denial of service or memory corruption, depending on allocator behavior.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1",
"2",
"3",
"4",
"5"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"title": "CVE-2025-32988"
},
{
"cve": "CVE-2025-32989",
"cwe": {
"id": "CWE-295",
"name": "Improper Certificate Validation"
},
"notes": [
{
"category": "summary",
"text": "A heap-buffer-overread vulnerability was found in GnuTLS in how it handles the Certificate Transparency (CT) Signed Certificate Timestamp (SCT) extension during X.509 certificate parsing. This flaw allows a malicious user to create a certificate containing a malformed SCT extension (OID 1.3.6.1.4.1.11129.2.4.2) that contains sensitive data. This issue leads to the exposure of confidential information when GnuTLS verifies certificates from certain websites when the certificate (SCT) is not checked correctly.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1",
"2",
"3",
"4",
"5"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"title": "CVE-2025-32989"
},
{
"cve": "CVE-2025-46836",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "net-tools is a collection of programs that form the base set of the NET-3 networking distribution for the Linux operating system. Inn versions up to and including 2.10, the Linux network utilities (like ifconfig) from the net-tools package do not properly validate the structure of /proc files when showing interfaces. `get_name()` in `interface.c` copies interface labels from `/proc/net/dev` into a fixed 16-byte stack buffer without bounds checking, leading to possible arbitrary code execution or crash. The known attack path does not require privilege but also does not provide privilege escalation in this scenario. A patch is available and expected to be part of version 2.20.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1",
"2",
"3",
"4",
"5"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"1",
"2",
"3",
"4",
"5"
]
}
],
"title": "CVE-2025-46836"
}
]
}
icsa-25-162-05
Vulnerability from csaf_cisa
Published
2025-06-10 00:00
Modified
2025-08-12 00:00
Summary
Siemens SIMATIC S7-1500 CPU 1518(F)-4 PN/DP MFP V3.1.5
Notes
Summary
Multiple vulnerabilities have been identified in the additional GNU/Linux subsystem of the firmware version V3.1.5 for the SIMATIC S7-1500 CPU 1518(F)-4 PN/DP MFP (incl. SIPLUS variant).
Siemens is preparing fix versions and recommends countermeasures for products where fixes are not, or not yet available.
General Recommendations
As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens' operational guidelines for Industrial Security (Download:
https://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.
Additional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity
Additional Resources
For further inquiries on security vulnerabilities in Siemens products and solutions, please contact the Siemens ProductCERT: https://www.siemens.com/cert/advisories
Terms of Use
The use of Siemens Security Advisories is subject to the terms and conditions listed on: https://www.siemens.com/productcert/terms-of-use.
Legal Notice
All information products included in https://us-cert.cisa.gov/ics are provided "as is" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained within. DHS does not endorse any commercial product or service, referenced in this product or otherwise. Further dissemination of this product is governed by the Traffic Light Protocol (TLP) marking in the header. For more information about TLP, see https://us-cert.cisa.gov/tlp/.
Advisory Conversion Disclaimer
This ICSA is a verbatim republication of Siemens ProductCERT SSA-082556 from a direct conversion of the vendor's Common Security Advisory Framework (CSAF) advisory. This is republished to CISA's website as a means of increasing visibility and is provided "as-is" for informational purposes only. CISA is not responsible for the editorial or technical accuracy of republished advisories and provides no warranties of any kind regarding any information contained within this advisory. Further, CISA does not endorse any commercial product or service. Please contact Siemens ProductCERT directly for any questions regarding this advisory.
Critical infrastructure sectors
Critical Manufacturing, Transportation Systems, Energy, Healthcare and Public Health, Financial Services, Government Services and Facilities
Countries/areas deployed
Worldwide
Company headquarters location
Germany
Recommended Practices
CISA recommends users take defensive measures to minimize the exploitation risk of this vulnerability.
Recommended Practices
Minimize network exposure for all control system devices and/or systems, and ensure they are not accessible from the internet.
Recommended Practices
Locate control system networks and remote devices behind firewalls and isolate them from business networks.
Recommended Practices
When remote access is required, use more secure methods, such as Virtual Private Networks (VPNs), recognizing VPNs may have vulnerabilities and should be updated to the most recent version available. Also recognize VPN is only as secure as its connected devices.
Recommended Practices
CISA reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.
Recommended Practices
CISA also provides a section for control systems security recommended practices on the ICS webpage on cisa.gov. Several CISA products detailing cyber defense best practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.
Recommended Practices
CISA encourages organizations to implement recommended cybersecurity strategies for proactive defense of ICS assets. Additional mitigation guidance and recommended practices are publicly available on the ICS webpage at cisa.gov in the technical information paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies.
Recommended Practices
Organizations observing suspected malicious activity should follow established internal procedures and report findings to CISA for tracking and correlation against other incidents.
{
"document": {
"acknowledgments": [
{
"organization": "Siemens ProductCERT",
"summary": "reporting these vulnerabilities to CISA."
}
],
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Disclosure is not limited",
"tlp": {
"label": "WHITE",
"url": "https://us-cert.cisa.gov/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Multiple vulnerabilities have been identified in the additional GNU/Linux subsystem of the firmware version V3.1.5 for the SIMATIC S7-1500 CPU 1518(F)-4 PN/DP MFP (incl. SIPLUS variant).\n\nSiemens is preparing fix versions and recommends countermeasures for products where fixes are not, or not yet available.",
"title": "Summary"
},
{
"category": "general",
"text": "As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens\u0027 operational guidelines for Industrial Security (Download: \nhttps://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.\nAdditional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity",
"title": "General Recommendations"
},
{
"category": "general",
"text": "For further inquiries on security vulnerabilities in Siemens products and solutions, please contact the Siemens ProductCERT: https://www.siemens.com/cert/advisories",
"title": "Additional Resources"
},
{
"category": "legal_disclaimer",
"text": "The use of Siemens Security Advisories is subject to the terms and conditions listed on: https://www.siemens.com/productcert/terms-of-use.",
"title": "Terms of Use"
},
{
"category": "legal_disclaimer",
"text": "All information products included in https://us-cert.cisa.gov/ics are provided \"as is\" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained within. DHS does not endorse any commercial product or service, referenced in this product or otherwise. Further dissemination of this product is governed by the Traffic Light Protocol (TLP) marking in the header. For more information about TLP, see https://us-cert.cisa.gov/tlp/.",
"title": "Legal Notice"
},
{
"category": "other",
"text": "This ICSA is a verbatim republication of Siemens ProductCERT SSA-082556 from a direct conversion of the vendor\u0027s Common Security Advisory Framework (CSAF) advisory. This is republished to CISA\u0027s website as a means of increasing visibility and is provided \"as-is\" for informational purposes only. CISA is not responsible for the editorial or technical accuracy of republished advisories and provides no warranties of any kind regarding any information contained within this advisory. Further, CISA does not endorse any commercial product or service. Please contact Siemens ProductCERT directly for any questions regarding this advisory.",
"title": "Advisory Conversion Disclaimer"
},
{
"category": "other",
"text": "Critical Manufacturing, Transportation Systems, Energy, Healthcare and Public Health, Financial Services, Government Services and Facilities",
"title": "Critical infrastructure sectors"
},
{
"category": "other",
"text": "Worldwide",
"title": "Countries/areas deployed"
},
{
"category": "other",
"text": "Germany",
"title": "Company headquarters location"
},
{
"category": "general",
"text": "CISA recommends users take defensive measures to minimize the exploitation risk of this vulnerability.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "Minimize network exposure for all control system devices and/or systems, and ensure they are not accessible from the internet.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "Locate control system networks and remote devices behind firewalls and isolate them from business networks.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "When remote access is required, use more secure methods, such as Virtual Private Networks (VPNs), recognizing VPNs may have vulnerabilities and should be updated to the most recent version available. Also recognize VPN is only as secure as its connected devices.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "CISA reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "CISA also provides a section for control systems security recommended practices on the ICS webpage on cisa.gov. Several CISA products detailing cyber defense best practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "CISA encourages organizations to implement recommended cybersecurity strategies for proactive defense of ICS assets. Additional mitigation guidance and recommended practices are publicly available on the ICS webpage at cisa.gov in the technical information paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "Organizations observing suspected malicious activity should follow established internal procedures and report findings to CISA for tracking and correlation against other incidents.",
"title": "Recommended Practices"
}
],
"publisher": {
"category": "other",
"contact_details": "central@cisa.dhs.gov",
"name": "CISA",
"namespace": "https://www.cisa.gov/"
},
"references": [
{
"category": "self",
"summary": "SSA-082556: Vulnerabilities in the additional GNU/Linux subsystem of the SIMATIC S7-1500 CPU 1518(F)-4 PN/DP MFP V3.1.5 - CSAF Version",
"url": "https://cert-portal.siemens.com/productcert/csaf/ssa-082556.json"
},
{
"category": "self",
"summary": "SSA-082556: Vulnerabilities in the additional GNU/Linux subsystem of the SIMATIC S7-1500 CPU 1518(F)-4 PN/DP MFP V3.1.5 - HTML Version",
"url": "https://cert-portal.siemens.com/productcert/html/ssa-082556.html"
},
{
"category": "self",
"summary": "ICS Advisory ICSA-25-162-05 JSON",
"url": "https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/OT/white/2025/icsa-25-162-05.json"
},
{
"category": "self",
"summary": "ICS Advisory ICSA-25-162-05 - Web Version",
"url": "https://www.cisa.gov/news-events/ics-advisories/icsa-25-162-05"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/uscert/ics/alerts/ICS-ALERT-10-301-01"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/resources-tools/resources/ics-recommended-practices"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/topics/industrial-control-systems"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://us-cert.cisa.gov/sites/default/files/recommended_practices/NCCIC_ICS-CERT_Defense_in_Depth_2016_S508C.pdf"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/sites/default/files/publications/Cybersecurity_Best_Practices_for_Industrial_Control_Systems.pdf"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/uscert/ics/tips/ICS-TIP-12-146-01B"
}
],
"title": "Siemens SIMATIC S7-1500 CPU 1518(F)-4 PN/DP MFP V3.1.5",
"tracking": {
"current_release_date": "2025-08-12T00:00:00.000000Z",
"generator": {
"date": "2025-08-14T23:08:52.425782Z",
"engine": {
"name": "CISA CSAF Generator",
"version": "1.0.0"
}
},
"id": "ICSA-25-162-05",
"initial_release_date": "2025-06-10T00:00:00.000000Z",
"revision_history": [
{
"date": "2025-06-10T00:00:00.000000Z",
"legacy_version": "1.0",
"number": "1",
"summary": "Publication Date"
},
{
"date": "2025-08-12T00:00:00.000000Z",
"legacy_version": "1.1",
"number": "2",
"summary": "Added CVE-2025-6395, CVE-2025-32988, CVE-2025-32989, CVE-2025-32990"
}
],
"status": "final",
"version": "2"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003e=3.1.5",
"product": {
"name": "SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AB0)",
"product_id": "CSAFPID-0001",
"product_identification_helper": {
"model_numbers": [
"6ES7518-4AX00-1AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003e=3.1.5",
"product": {
"name": "SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AC0)",
"product_id": "CSAFPID-0002",
"product_identification_helper": {
"model_numbers": [
"6ES7518-4AX00-1AC0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1518-4 PN/DP MFP (6ES7518-4AX00-1AC0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003e=3.1.5",
"product": {
"name": "SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AB0)",
"product_id": "CSAFPID-0003",
"product_identification_helper": {
"model_numbers": [
"6ES7518-4FX00-1AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003e=3.1.5",
"product": {
"name": "SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AC0)",
"product_id": "CSAFPID-0004",
"product_identification_helper": {
"model_numbers": [
"6ES7518-4FX00-1AC0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP (6ES7518-4FX00-1AC0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003e=3.1.5",
"product": {
"name": "SIPLUS S7-1500 CPU 1518-4 PN/DP MFP (6AG1518-4AX00-4AC0)",
"product_id": "CSAFPID-0005",
"product_identification_helper": {
"model_numbers": [
"6AG1518-4AX00-4AC0"
]
}
}
}
],
"category": "product_name",
"name": "SIPLUS S7-1500 CPU 1518-4 PN/DP MFP (6AG1518-4AX00-4AC0)"
}
],
"category": "vendor",
"name": "Siemens"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2021-41617",
"cwe": {
"id": "CWE-311",
"name": "Missing Encryption of Sensitive Data"
},
"notes": [
{
"category": "summary",
"text": "sshd in OpenSSH 6.2 through 8.x before 8.8, when certain non-default configurations are used, allows privilege escalation because supplemental groups are not initialized as expected. Helper programs for AuthorizedKeysCommand and AuthorizedPrincipalsCommand may run with privileges associated with group memberships of the sshd process, if the configuration specifies running the command as a different user.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.0,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2021-41617"
},
{
"cve": "CVE-2023-4527",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "summary",
"text": "A flaw was found in glibc. When the getaddrinfo function is called with the AF_UNSPEC address family and the system is configured with no-aaaa mode via /etc/resolv.conf, a DNS response via TCP larger than 2048 bytes can potentially disclose stack contents through the function returned address data, and may cause a crash.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2023-4527"
},
{
"cve": "CVE-2023-4806",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "summary",
"text": "A flaw was found in glibc. In an extremely rare situation, the getaddrinfo function may access memory that has been freed, resulting in an application crash. This issue is only exploitable when a NSS module implements only the _nss_*_gethostbyname2_r and _nss_*_getcanonname_r hooks without implementing the _nss_*_gethostbyname3_r hook. The resolved name should return a large number of IPv6 and IPv4, and the call to the getaddrinfo function should have the AF_INET6 address family with AI_CANONNAME, AI_ALL and AI_V4MAPPED as flags.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2023-4806"
},
{
"cve": "CVE-2023-4911",
"cwe": {
"id": "CWE-121",
"name": "Stack-based Buffer Overflow"
},
"notes": [
{
"category": "summary",
"text": "A buffer overflow was discovered in the GNU C Library\u0027s dynamic loader ld.so while processing the GLIBC_TUNABLES environment variable. This issue could allow a local attacker to use maliciously crafted GLIBC_TUNABLES environment variables when launching binaries with SUID permission to execute code with elevated privileges.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2023-4911"
},
{
"cve": "CVE-2023-5363",
"cwe": {
"id": "CWE-684",
"name": "Incorrect Provision of Specified Functionality"
},
"notes": [
{
"category": "summary",
"text": "Issue summary: A bug has been identified in the processing of key and initialisation vector (IV) lengths. This can lead to potential truncation or overruns during the initialisation of some symmetric ciphers. Impact summary: A truncation in the IV can result in non-uniqueness, which could result in loss of confidentiality for some cipher modes. When calling EVP_EncryptInit_ex2(), EVP_DecryptInit_ex2() or EVP_CipherInit_ex2() the provided OSSL_PARAM array is processed after the key and IV have been established. Any alterations to the key length, via the \"keylen\" parameter or the IV length, via the \"ivlen\" parameter, within the OSSL_PARAM array will not take effect as intended, potentially causing truncation or overreading of these values. The following ciphers and cipher modes are impacted: RC2, RC4, RC5, CCM, GCM and OCB. For the CCM, GCM and OCB cipher modes, truncation of the IV can result in loss of confidentiality. For example, when following NIST\u0027s SP 800-38D section 8.2.1 guidance for constructing a deterministic IV for AES in GCM mode, truncation of the counter portion could lead to IV reuse. Both truncations and overruns of the key and overruns of the IV will produce incorrect results and could, in some cases, trigger a memory exception. However, these issues are not currently assessed as security critical. Changing the key and/or IV lengths is not considered to be a common operation and the vulnerable API was recently introduced. Furthermore it is likely that application developers will have spotted this problem during testing since decryption would fail unless both peers in the communication were similarly vulnerable. For these reasons we expect the probability of an application being vulnerable to this to be quite low. However if an application is vulnerable then this issue is considered very serious. For these reasons we have assessed this issue as Moderate severity overall. The OpenSSL SSL/TLS implementation is not affected by this issue. The OpenSSL 3.0 and 3.1 FIPS providers are not affected by this because the issue lies outside of the FIPS provider boundary. OpenSSL 3.1 and 3.0 are vulnerable to this issue.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2023-5363"
},
{
"cve": "CVE-2023-6246",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "summary",
"text": "A heap-based buffer overflow was found in the __vsyslog_internal function of the glibc library. This function is called by the syslog and vsyslog functions. This issue occurs when the openlog function was not called, or called with the ident argument set to NULL, and the program name (the basename of argv[0]) is bigger than 1024 bytes, resulting in an application crash or local privilege escalation. This issue affects glibc 2.36 and newer.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2023-6246"
},
{
"cve": "CVE-2023-6779",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "summary",
"text": "An off-by-one heap-based buffer overflow was found in the __vsyslog_internal function of the glibc library. This function is called by the syslog and vsyslog functions. This issue occurs when these functions are called with a message bigger than INT_MAX bytes, leading to an incorrect calculation of the buffer size to store the message, resulting in an application crash. This issue affects glibc 2.37 and newer.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2023-6779"
},
{
"cve": "CVE-2023-6780",
"cwe": {
"id": "CWE-131",
"name": "Incorrect Calculation of Buffer Size"
},
"notes": [
{
"category": "summary",
"text": "An integer overflow was found in the __vsyslog_internal function of the glibc library. This function is called by the syslog and vsyslog functions. This issue occurs when these functions are called with a very long message, leading to an incorrect calculation of the buffer size to store the message, resulting in undefined behavior. This issue affects glibc 2.37 and newer.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2023-6780"
},
{
"cve": "CVE-2023-28531",
"cwe": {
"id": "CWE-311",
"name": "Missing Encryption of Sensitive Data"
},
"notes": [
{
"category": "summary",
"text": "ssh-add in OpenSSH before 9.3 adds smartcard keys to ssh-agent without the intended per-hop destination constraints. The earliest affected version is 8.9.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2023-28531"
},
{
"cve": "CVE-2023-38545",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"notes": [
{
"category": "summary",
"text": "This flaw makes curl overflow a heap based buffer in the SOCKS5 proxy handshake.\r\n\r\nWhen curl is asked to pass along the hostname to the SOCKS5 proxy to allow that to resolve the address instead of it getting done by curl itself, the maximum length that hostname can be is 255 bytes.\r\n\r\nIf the hostname is detected to be longer than 255 bytes, curl switches to local name resolving and instead passes on the resolved address only to the proxy. Due to a bug, the local variable that means \"let the host resolve the name\" could get the wrong value during a slow SOCKS5 handshake, and contrary to the intention, copy the too long hostname to the target buffer instead of copying just the resolved address there.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2023-38545"
},
{
"cve": "CVE-2023-38546",
"cwe": {
"id": "CWE-73",
"name": "External Control of File Name or Path"
},
"notes": [
{
"category": "summary",
"text": "This flaw allows an attacker to insert cookies at will into a running program\r\nusing libcurl, if the specific series of conditions are met.\r\n\r\nlibcurl performs transfers. In its API, an application creates \"easy handles\"\r\nthat are the individual handles for single transfers.\r\n\r\nlibcurl provides a function call that duplicates en easy handle called\r\n[curl_easy_duphandle](https://curl.se/libcurl/c/curl_easy_duphandle.html).\r\n\r\nIf a transfer has cookies enabled when the handle is duplicated, the\r\ncookie-enable state is also cloned - but without cloning the actual\r\ncookies. If the source handle did not read any cookies from a specific file on\r\ndisk, the cloned version of the handle would instead store the file name as\r\n`none` (using the four ASCII letters, no quotes).\r\n\r\nSubsequent use of the cloned handle that does not explicitly set a source to\r\nload cookies from would then inadvertently load cookies from a file named\r\n`none` - if such a file exists and is readable in the current directory of the\r\nprogram using libcurl. And if using the correct file format of course.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.7,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2023-38546"
},
{
"cve": "CVE-2023-44487",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"notes": [
{
"category": "summary",
"text": "The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2023-44487"
},
{
"cve": "CVE-2023-46218",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "This flaw allows a malicious HTTP server to set \"super cookies\" in curl that are then passed back to more origins than what is otherwise allowed or possible. This allows a site to set cookies that then would get sent to different and unrelated sites and domains. It could do this by exploiting a mixed case flaw in curl\u0027s function that verifies a given cookie domain against the Public Suffix List (PSL). For example a cookie could be set with `domain=co.UK` when the URL used a lower case hostname `curl.co.uk`, even though `co.uk` is listed as a PSL domain.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2023-46218"
},
{
"cve": "CVE-2023-46219",
"cwe": {
"id": "CWE-311",
"name": "Missing Encryption of Sensitive Data"
},
"notes": [
{
"category": "summary",
"text": "When saving HSTS data to an excessively long file name, curl could end up removing all contents, making subsequent requests using that file unaware of the HSTS status they should otherwise use.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2023-46219"
},
{
"cve": "CVE-2023-48795",
"cwe": {
"id": "CWE-222",
"name": "Truncation of Security-relevant Information"
},
"notes": [
{
"category": "summary",
"text": "The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass integrity checks such that some packets are omitted (from the extension negotiation message), and a client and server may consequently end up with a connection for which some security features have been downgraded or disabled, aka a Terrapin attack. This occurs because the SSH Binary Packet Protocol (BPP), implemented by these extensions, mishandles the handshake phase and mishandles use of sequence numbers. For example, there is an effective attack against SSH\u0027s use of ChaCha20-Poly1305 (and CBC with Encrypt-then-MAC). The bypass occurs in chacha20-poly1305@openssh.com and (if CBC is used) the -etm@openssh.com MAC algorithms. This also affects Maverick Synergy Java SSH API before 3.1.0-SNAPSHOT, Dropbear through 2022.83, Ssh before 5.1.1 in Erlang/OTP, PuTTY before 0.80, AsyncSSH before 2.14.2, golang.org/x/crypto before 0.17.0, libssh before 0.10.6, libssh2 through 1.11.0, Thorn Tech SFTP Gateway before 3.4.6, Tera Term before 5.1, Paramiko before 3.4.0, jsch before 0.2.15, SFTPGo before 2.5.6, Netgate pfSense Plus through 23.09.1, Netgate pfSense CE through 2.7.2, HPN-SSH through 18.2.0, ProFTPD before 1.3.8b (and before1.3.9rc2), ORYX CycloneSSH before 2.3.4, NetSarang XShell 7 before Build 0144, CrushFTP before 10.6.0, ConnectBot SSH library before 2.2.22, Apache MINA sshd through 2.11.0, sshj through 0.37.0, TinySSH through 20230101, trilead-ssh2 6401, the net-ssh gem 7.2.0 for Ruby, the mscdex ssh2 module before 1.15.0 for Node.js, the thrussh library before 0.35.1 for Rust, and the Russh crate before 0.40.2 for Rust; and there could be effects on Bitvise SSH through 9.31.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2023-48795"
},
{
"cve": "CVE-2023-51384",
"cwe": {
"id": "CWE-304",
"name": "Missing Critical Step in Authentication"
},
"notes": [
{
"category": "summary",
"text": "In ssh-agent in OpenSSH before 9.6, certain destination constraints can be incompletely applied. When destination constraints are specified during addition of PKCS#11-hosted private keys, these constraints are only applied to the first key, even if a PKCS#11 token returns multiple keys.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2023-51384"
},
{
"cve": "CVE-2023-51385",
"cwe": {
"id": "CWE-78",
"name": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)"
},
"notes": [
{
"category": "summary",
"text": "In ssh in OpenSSH before 9.6, OS command injection might occur if a user name or host name has shell metacharacters, and this name is referenced by an expansion token in certain situations. For example, an untrusted Git repository can have a submodule with shell metacharacters in a user name or host name.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2023-51385"
},
{
"cve": "CVE-2023-52927",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "netfilter: allow exp not to be removed in nf_ct_find_expectation Currently nf_conntrack_in() calling nf_ct_find_expectation() will remove the exp from the hash table. However, in some scenario, we expect the exp not to be removed when the created ct will not be confirmed, like in OVS and TC conntrack in the following patches. This patch allows exp not to be removed by setting IPS_CONFIRMED in the status of the tmpl.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2023-52927"
},
{
"cve": "CVE-2024-2961",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "summary",
"text": "The iconv() function in the GNU C Library versions 2.39 and older may overflow the output buffer passed to it by up to 4 bytes when converting strings to the ISO-2022-CN-EXT character set, which may be used to crash an application or overwrite a neighbouring variable.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2024-2961"
},
{
"cve": "CVE-2024-6119",
"cwe": {
"id": "CWE-843",
"name": "Access of Resource Using Incompatible Type (\u0027Type Confusion\u0027)"
},
"notes": [
{
"category": "summary",
"text": "Applications performing certificate name checks (e.g., TLS clients checking server certificates) may attempt to read an invalid memory address resulting in abnormal termination of the application process. Impact summary: Abnormal termination of an application can a cause a denial of service. Applications performing certificate name checks (e.g., TLS clients checking server certificates) may attempt to read an invalid memory address when comparing the expected name with an `otherName` subject alternative name of an X.509 certificate. This may result in an exception that terminates the application program. Note that basic certificate chain validation (signatures, dates, ...) is not affected, the denial of service can occur only when the application also specifies an expected DNS name, Email address or IP address. TLS servers rarely solicit client certificates, and even when they do, they generally don\u0027t perform a name check against a reference identifier (expected identity), but rather extract the presented identity after checking the certificate chain. So TLS servers are generally not affected and the severity of the issue is Moderate. The FIPS modules in 3.3, 3.2, 3.1 and 3.0 are not affected by this issue.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2024-6119"
},
{
"cve": "CVE-2024-6387",
"cwe": {
"id": "CWE-364",
"name": "Signal Handler Race Condition"
},
"notes": [
{
"category": "summary",
"text": "A security regression (CVE-2006-5051) was discovered in OpenSSH\u0027s server (sshd). There is a race condition which can lead to sshd to handle some signals in an unsafe manner. An unauthenticated, remote attacker may be able to trigger it by failing to authenticate within a set time period.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2024-6387"
},
{
"cve": "CVE-2024-12133",
"cwe": {
"id": "CWE-407",
"name": "Inefficient Algorithmic Complexity"
},
"notes": [
{
"category": "summary",
"text": "A flaw in libtasn1 causes inefficient handling of specific certificate data. When processing a large number of elements in a certificate, libtasn1 takes much longer than expected, which can slow down or even crash the system. This flaw allows an attacker to send a specially crafted certificate, causing a denial of service attack.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2024-12133"
},
{
"cve": "CVE-2024-12243",
"cwe": {
"id": "CWE-407",
"name": "Inefficient Algorithmic Complexity"
},
"notes": [
{
"category": "summary",
"text": "A flaw was found in GnuTLS, which relies on libtasn1 for ASN.1 data processing. Due to an inefficient algorithm in libtasn1, decoding certain DER-encoded certificate data can take excessive time, leading to increased resource consumption. This flaw allows a remote attacker to send a specially crafted certificate, causing GnuTLS to become unresponsive or slow, resulting in a denial-of-service condition.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2024-12243"
},
{
"cve": "CVE-2024-24855",
"cwe": {
"id": "CWE-362",
"name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
},
"notes": [
{
"category": "summary",
"text": "A race condition was found in the Linux kernel\u0027s scsi device driver in lpfc_unregister_fcf_rescan() function. This can result in a null pointer dereference issue, possibly leading to a kernel panic or denial of service issue.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2024-24855"
},
{
"cve": "CVE-2024-26596",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "net: dsa: netdev_priv() dereference before check on non-DSA netdevice events.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2024-26596"
},
{
"cve": "CVE-2024-28085",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "wall in util-linux through 2.40, often installed with setgid tty permissions, allows escape sequences to be sent to other users\u0027 terminals through argv. (Specifically, escape sequences received from stdin are blocked, but escape sequences received from argv are not blocked.) There may be plausible scenarios where this leads to account takeover.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2024-28085"
},
{
"cve": "CVE-2024-33599",
"cwe": {
"id": "CWE-121",
"name": "Stack-based Buffer Overflow"
},
"notes": [
{
"category": "summary",
"text": "nscd: Stack-based buffer overflow in netgroup cache\r\n\r\nIf the Name Service Cache Daemon\u0027s (nscd) fixed size cache is exhausted\r\nby client requests then a subsequent client request for netgroup data\r\nmay result in a stack-based buffer overflow. This flaw was introduced\r\nin glibc 2.15 when the cache was added to nscd.\r\n\r\nThis vulnerability is only present in the nscd binary.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.6,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2024-33599"
},
{
"cve": "CVE-2024-33600",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"notes": [
{
"category": "summary",
"text": "nscd: Null pointer crashes after notfound response\r\n\r\nIf the Name Service Cache Daemon\u0027s (nscd) cache fails to add a not-found\r\nnetgroup response to the cache, the client request can result in a null\r\npointer dereference. This flaw was introduced in glibc 2.15 when the\r\ncache was added to nscd.\r\n\r\nThis vulnerability is only present in the nscd binary.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2024-33600"
},
{
"cve": "CVE-2024-33601",
"cwe": {
"id": "CWE-617",
"name": "Reachable Assertion"
},
"notes": [
{
"category": "summary",
"text": "nscd: netgroup cache may terminate daemon on memory allocation failure\r\n\r\nThe Name Service Cache Daemon\u0027s (nscd) netgroup cache uses xmalloc or\r\nxrealloc and these functions may terminate the process due to a memory\r\nallocation failure resulting in a denial of service to the clients. The\r\nflaw was introduced in glibc 2.15 when the cache was added to nscd.\r\n\r\nThis vulnerability is only present in the nscd binary.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.0,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2024-33601"
},
{
"cve": "CVE-2024-33602",
"cwe": {
"id": "CWE-466",
"name": "Return of Pointer Value Outside of Expected Range"
},
"notes": [
{
"category": "summary",
"text": "nscd: netgroup cache assumes NSS callback uses in-buffer strings\r\n\r\nThe Name Service Cache Daemon\u0027s (nscd) netgroup cache can corrupt memory\r\nwhen the NSS callback does not store all strings in the provided buffer.\r\nThe flaw was introduced in glibc 2.15 when the cache was added to nscd.\r\n\r\nThis vulnerability is only present in the nscd binary.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.0,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2024-33602"
},
{
"cve": "CVE-2024-34397",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "An issue was discovered in GNOME GLib before 2.78.5, and 2.79.x and 2.80.x before 2.80.1. When a GDBus-based client subscribes to signals from a trusted system service such as NetworkManager on a shared computer, other users of the same computer can send spoofed D-Bus signals that the GDBus-based client will wrongly interpret as having been sent by the trusted system service. This could lead to the GDBus-based client behaving incorrectly, with an application-dependent impact.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.2,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:L",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2024-34397"
},
{
"cve": "CVE-2024-37370",
"cwe": {
"id": "CWE-130",
"name": "Improper Handling of Length Parameter Inconsistency"
},
"notes": [
{
"category": "summary",
"text": "In MIT Kerberos 5 (aka krb5) before 1.21.3, an attacker can modify the plaintext Extra Count field of a confidential GSS krb5 wrap token, causing the unwrapped token to appear truncated to the application.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2024-37370"
},
{
"cve": "CVE-2024-37371",
"cwe": {
"id": "CWE-130",
"name": "Improper Handling of Length Parameter Inconsistency"
},
"notes": [
{
"category": "summary",
"text": "In MIT Kerberos 5 (aka krb5) before 1.21.3, an attacker can cause invalid memory reads during GSS message token handling by sending message tokens with invalid length fields.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2024-37371"
},
{
"cve": "CVE-2024-45490",
"cwe": {
"id": "CWE-131",
"name": "Incorrect Calculation of Buffer Size"
},
"notes": [
{
"category": "summary",
"text": "An issue was discovered in libexpat before 2.6.3. xmlparse.c does not reject a negative length for XML_ParseBuffer.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2024-45490"
},
{
"cve": "CVE-2024-45491",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"notes": [
{
"category": "summary",
"text": "An issue was discovered in libexpat before 2.6.3. dtdCopy in xmlparse.c can have an integer overflow for nDefaultAtts on 32-bit platforms (where UINT_MAX equals SIZE_MAX).",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2024-45491"
},
{
"cve": "CVE-2024-45492",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"notes": [
{
"category": "summary",
"text": "An issue was discovered in libexpat before 2.6.3. nextScaffoldPart in xmlparse.c can have an integer overflow for m_groupSize on 32-bit platforms (where UINT_MAX equals SIZE_MAX).",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2024-45492"
},
{
"cve": "CVE-2024-50246",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "In the Linux kernel, the following vulnerability has been resolved:\r\n\r\nfs/ntfs3: Add rough attr alloc_size check",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2024-50246"
},
{
"cve": "CVE-2024-53166",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "summary",
"text": "block, bfq: bfqq uaf in bfq_limit_depth() Set new allocated bfqq to bic or remove freed bfqq from bic are both protected by bfqd-\u003elock, however bfq_limit_depth() is deferencing bfqq from bic without the lock, this can lead to UAF if the io_context is shared by multiple tasks.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2024-53166"
},
{
"cve": "CVE-2024-57977",
"cwe": {
"id": "CWE-667",
"name": "Improper Locking"
},
"notes": [
{
"category": "summary",
"text": "memcg: A soft lockup vulnerability in the product with about 56,000 tasks were in the OOM cgroup, it was traversing them when the soft lockup was triggered.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2024-57977"
},
{
"cve": "CVE-2024-57996",
"cwe": {
"id": "CWE-129",
"name": "Improper Validation of Array Index"
},
"notes": [
{
"category": "summary",
"text": "net_sched: sch_sfq: vulnerability caused by incorrectly handling a packet limit of 1, leading to an array-index-out-of-bounds error and subsequent crash when the queue length is decremented for an empty slot.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2024-57996"
},
{
"cve": "CVE-2024-58005",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "tpm: Change to kvalloc() in eventlog/acpi.c.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2024-58005"
},
{
"cve": "CVE-2025-4373",
"cwe": {
"id": "CWE-124",
"name": "Buffer Underwrite (\u0027Buffer Underflow\u0027)"
},
"notes": [
{
"category": "summary",
"text": "GLib is vulnerable to an integer overflow in the g_string_insert_unichar() function. When the position at which to insert the character is large, the position will overflow, leading to a buffer underwrite.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2025-4373"
},
{
"cve": "CVE-2025-4598",
"cwe": {
"id": "CWE-364",
"name": "Signal Handler Race Condition"
},
"notes": [
{
"category": "summary",
"text": "A vulnerability was found in systemd-coredump. This flaw allows an attacker to force a SUID process to crash and replace it with a non-SUID binary to access the original\u0027s privileged process coredump, allowing the attacker to read sensitive data, such as /etc/shadow content, loaded by the original process.\r\n\r\nA SUID binary or process has a special type of permission, which allows the process to run with the file owner\u0027s permissions, regardless of the user executing the binary. This allows the process to access more restricted data than unprivileged users or processes would be able to. An attacker can leverage this flaw by forcing a SUID process to crash and force the Linux kernel to recycle the process PID before systemd-coredump can analyze the /proc/pid/auxv file. If the attacker wins the race condition, they gain access to the original\u0027s SUID process coredump file. They can read sensitive content loaded into memory by the original binary, affecting data confidentiality.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2025-4598"
},
{
"cve": "CVE-2025-6395",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"notes": [
{
"category": "summary",
"text": "A NULL pointer dereference flaw was found in the GnuTLS software in _gnutls_figure_common_ciphersuite().",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2025-6395"
},
{
"cve": "CVE-2025-21701",
"cwe": {
"id": "CWE-362",
"name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
},
"notes": [
{
"category": "summary",
"text": "net: vulnerability arises because unregister_netdevice_many_notify might run before the rtnl lock section of ethnl operations, leading to potential use of destroyed locks, which is fixed by denying operations on devices being unregistered.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2025-21701"
},
{
"cve": "CVE-2025-21702",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "pfifo_tail_enqueue: Drop new packet when sch-\u003elimit == 0.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.0,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2025-21702"
},
{
"cve": "CVE-2025-21712",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "md/md-bitmap: vulnerability caused by bitmap_get_stats() can be called even if the bitmap is destroyed or not fully initialized, leading to a kernel crash, which is fixed by synchronizing bitmap_get_stats() with bitmap_info.mutex.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2025-21712"
},
{
"cve": "CVE-2025-21724",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "iommufd/iova_bitmap: Fix shift-out-of-bounds in iova_bitmap_offset_to_index(). Resolve a UBSAN shift-out-of-bounds issue in iova_bitmap_offset_to_index() where shifting the constant \"1\" (of type int) by bitmap-\u003emapped.pgshift (an unsigned long value) could result in undefined behavior. The constant \"1\" defaults to a 32-bit \"int\", and when \"pgshift\" exceeds 31 (e.g., pgshift = 63) the shift operation overflows, as the result cannot be represented in a 32-bit type.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2025-21724"
},
{
"cve": "CVE-2025-21728",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "bpf: Send signals asynchronously if !preemptible BPF programs can execute in all kinds of contexts and when a program running in a non-preemptible context uses the bpf_send_signal() kfunc, it will cause issues because this kfunc can sleep.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2025-21728"
},
{
"cve": "CVE-2025-21745",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "In the Linux kernel, the following vulnerability has been resolved:\r\n\r\nblk-cgroup: Fix class @block_class\u0027s subsystem refcount leakage\r\n\r\nblkcg_fill_root_iostats() iterates over @block_class\u0027s devices by\r\nclass_dev_iter_(init|next)(), but does not end iterating with\r\nclass_dev_iter_exit(), so causes the class\u0027s subsystem refcount leakage.\r\n\r\nFix by ending the iterating with class_dev_iter_exit().",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2025-21745"
},
{
"cve": "CVE-2025-21756",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "vsock: Keep the binding until socket destruction Preserve sockets bindings; this includes both resulting from an explicit bind() and those implicitly bound through autobind during connect().",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2025-21756"
},
{
"cve": "CVE-2025-21758",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "ipv6: mcast: add RCU protection to mld_newpack() mld_newpack() can be called without RTNL or RCU being held.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2025-21758"
},
{
"cve": "CVE-2025-21765",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "ipv6: use RCU protection in ip6_default_advmss() ip6_default_advmss() needs rcu protection to make sure the net structure it reads does not disappear.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2025-21765"
},
{
"cve": "CVE-2025-21766",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "ipv4: use RCU protection in __ip_rt_update_pmtu(). __ip_rt_update_pmtu() must use RCU protection to make sure the net structure it reads does not disappear.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2025-21766"
},
{
"cve": "CVE-2025-21767",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "In the Linux kernel, the following vulnerability has been resolved: clocksource: Use migrate_disable() to avoid calling get_random_u32() in atomic context The following bug report happened with a PREEMPT_RT kernel: BUG: sleeping function called from invalid context at kernel/locking/spinlock_rt.c:48 in_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 2012, name: kwatchdog preempt_count: 1, expected: 0 RCU nest depth: 0, expected: 0 get_random_u32+0x4f/0x110 clocksource_verify_choose_cpus+0xab/0x1a0 clocksource_verify_percpu.part.0+0x6b/0x330 clocksource_watchdog_kthread+0x193/0x1a0 It is due to the fact that clocksource_verify_choose_cpus() is invoked with preemption disabled. This function invokes get_random_u32() to obtain random numbers for choosing CPUs. The batched_entropy_32 local lock and/or the base_crng.lock spinlock in driver/char/random.c will be acquired during the call. In PREEMPT_RT kernel, they are both sleeping locks and so cannot be acquired in atomic context. Fix this problem by using migrate_disable() to allow smp_processor_id() to be reliably used without introducing atomic context. preempt_disable() is then called after clocksource_verify_choose_cpus() but before the clocksource measurement is being run to avoid introducing unexpected latency.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2025-21767"
},
{
"cve": "CVE-2025-21795",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "NFSD: hang in nfsd4_shutdown_callback. If nfs4_client is in courtesy state then there is no point to send the callback. This causes nfsd4_shutdown_callback to hang since cl_cb_inflight is not 0. This hang lasts about 15 minutes until TCP notifies NFSD that the connection was dropped.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2025-21795"
},
{
"cve": "CVE-2025-21796",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "nfsd: clear acl_access/acl_default after releasing them If getting acl_default fails, acl_access and acl_default will be released simultaneously.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2025-21796"
},
{
"cve": "CVE-2025-21848",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"notes": [
{
"category": "summary",
"text": "In the Linux kernel, the following vulnerability has been resolved:\r\n\r\nnfp: bpf: Add check for nfp_app_ctrl_msg_alloc()\r\n\r\nAdd check for the return value of nfp_app_ctrl_msg_alloc() in\r\nnfp_bpf_cmsg_alloc() to prevent null pointer dereference.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2025-21848"
},
{
"cve": "CVE-2025-21862",
"cwe": {
"id": "CWE-908",
"name": "Use of Uninitialized Resource"
},
"notes": [
{
"category": "summary",
"text": "drop_monitor: incorrect initialization order. If drop_monitor is built as a kernel module, syzkaller may have time to send a netlink NET_DM_CMD_START message during the module loading. This will call the net_dm_monitor_start() function that uses a spinlock that has not yet been initialized.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2025-21862"
},
{
"cve": "CVE-2025-21864",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"notes": [
{
"category": "summary",
"text": "In the Linux kernel, the following vulnerability has been resolved:\r\n\r\ntcp: drop secpath at the same time as we currently drop dst\r\n\r\nXiumei reported hitting the WARN in xfrm6_tunnel_net_exit while\r\nrunning tests that boil down to:\r\n - create a pair of netns\r\n - run a basic TCP test over ipcomp6\r\n - delete the pair of netns\r\n\r\nThe xfrm_state found on spi_byaddr was not deleted at the time we\r\ndelete the netns, because we still have a reference on it. This\r\nlingering reference comes from a secpath (which holds a ref on the\r\nxfrm_state), which is still attached to an skb. This skb is not\r\nleaked, it ends up on sk_receive_queue and then gets defer-free\u0027d by\r\nskb_attempt_defer_free.\r\n\r\nThe problem happens when we defer freeing an skb (push it on one CPU\u0027s\r\ndefer_list), and don\u0027t flush that list before the netns is deleted. In\r\nthat case, we still have a reference on the xfrm_state that we don\u0027t\r\nexpect at this point.\r\n\r\nWe already drop the skb\u0027s dst in the TCP receive path when it\u0027s no\r\nlonger needed, so let\u0027s also drop the secpath. At this point,\r\ntcp_filter has already called into the LSM hooks that may require the\r\nsecpath, so it should not be needed anymore. However, in some of those\r\nplaces, the MPTCP extension has just been attached to the skb, so we\r\ncannot simply drop all extensions.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2025-21864"
},
{
"cve": "CVE-2025-21865",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "summary",
"text": "gtp: Suppress list corruption splat in gtp_net_exit_batch_rtnl(). Commit eb28fd76c0a0 (\"gtp: Destroy device along with udp socket\u0027s netns dismantle.\") added the for_each_netdev() loop in gtp_net_exit_batch_rtnl() to destroy devices in each netns as done in geneve and ip tunnels. However, this could trigger -\u003edellink() twice for the same device during -\u003eexit_batch_rtnl().",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2025-21865"
},
{
"cve": "CVE-2025-26465",
"cwe": {
"id": "CWE-390",
"name": "Detection of Error Condition Without Action"
},
"notes": [
{
"category": "summary",
"text": "A vulnerability was found in OpenSSH when the VerifyHostKeyDNS option is enabled. A machine-in-the-middle attack can be performed by a malicious machine impersonating a legit server. This issue occurs due to how OpenSSH mishandles error codes in specific conditions when verifying the host key. For an attack to be considered successful, the attacker needs to manage to exhaust the client\u0027s memory resource first, turning the attack complexity high.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2025-26465"
},
{
"cve": "CVE-2025-31115",
"cwe": {
"id": "CWE-826",
"name": "Premature Release of Resource During Expected Lifetime"
},
"notes": [
{
"category": "summary",
"text": "The threaded .xz decoder in liblzma has a vulnerability that can at least result in a crash (denial of service). The effects include heap use after free and writing to an address based on the null pointer plus an offset.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2025-31115"
},
{
"cve": "CVE-2025-32988",
"cwe": {
"id": "CWE-415",
"name": "Double Free"
},
"notes": [
{
"category": "summary",
"text": "A flaw was found in GnuTLS. A double-free vulnerability exists in GnuTLS due to incorrect ownership handling in the export logic of Subject Alternative Name (SAN) entries containing an otherName. If the type-id OID is invalid or malformed, GnuTLS will call asn1_delete_structure() on an ASN.1 node it does not own, leading to a double-free condition when the parent function or caller later attempts to free the same structure. This vulnerability can be triggered using only public GnuTLS APIs and may result in denial of service or memory corruption, depending on allocator behavior.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2025-32988"
},
{
"cve": "CVE-2025-32989",
"cwe": {
"id": "CWE-295",
"name": "Improper Certificate Validation"
},
"notes": [
{
"category": "summary",
"text": "A heap-buffer-overread vulnerability was found in GnuTLS in how it handles the Certificate Transparency (CT) Signed Certificate Timestamp (SCT) extension during X.509 certificate parsing. This flaw allows a malicious user to create a certificate containing a malformed SCT extension (OID 1.3.6.1.4.1.11129.2.4.2) that contains sensitive data. This issue leads to the exposure of confidential information when GnuTLS verifies certificates from certain websites when the certificate (SCT) is not checked correctly.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2025-32989"
},
{
"cve": "CVE-2025-46836",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "net-tools is a collection of programs that form the base set of the NET-3 networking distribution for the Linux operating system. Inn versions up to and including 2.10, the Linux network utilities (like ifconfig) from the net-tools package do not properly validate the structure of /proc files when showing interfaces. `get_name()` in `interface.c` copies interface labels from `/proc/net/dev` into a fixed 16-byte stack buffer without bounds checking, leading to possible arbitrary code execution or crash. The known attack path does not require privilege but also does not provide privilege escalation in this scenario. A patch is available and expected to be part of version 2.20.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"remediations": [
{
"category": "none_available",
"details": "Currently no fix is available",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2025-46836"
}
]
}
fkie_cve-2025-4373
Vulnerability from fkie_nvd
Published
2025-05-06 15:16
Modified
2025-09-02 03:15
Severity ?
Summary
A flaw was found in GLib, which is vulnerable to an integer overflow in the g_string_insert_unichar() function. When the position at which to insert the character is large, the position will overflow, leading to a buffer underwrite.
References
| URL | Tags | ||
|---|---|---|---|
| secalert@redhat.com | https://access.redhat.com/errata/RHSA-2025:10855 | ||
| secalert@redhat.com | https://access.redhat.com/errata/RHSA-2025:11140 | ||
| secalert@redhat.com | https://access.redhat.com/errata/RHSA-2025:11327 | ||
| secalert@redhat.com | https://access.redhat.com/errata/RHSA-2025:11373 | ||
| secalert@redhat.com | https://access.redhat.com/errata/RHSA-2025:11374 | ||
| secalert@redhat.com | https://access.redhat.com/errata/RHSA-2025:11662 | ||
| secalert@redhat.com | https://access.redhat.com/errata/RHSA-2025:12275 | ||
| secalert@redhat.com | https://access.redhat.com/errata/RHSA-2025:13335 | ||
| secalert@redhat.com | https://access.redhat.com/errata/RHSA-2025:14988 | ||
| secalert@redhat.com | https://access.redhat.com/errata/RHSA-2025:14989 | ||
| secalert@redhat.com | https://access.redhat.com/errata/RHSA-2025:14990 | ||
| secalert@redhat.com | https://access.redhat.com/errata/RHSA-2025:14991 | ||
| secalert@redhat.com | https://access.redhat.com/security/cve/CVE-2025-4373 | ||
| secalert@redhat.com | https://bugzilla.redhat.com/show_bug.cgi?id=2364265 | ||
| secalert@redhat.com | https://gitlab.gnome.org/GNOME/glib/-/issues/3677 |
Impacted products
| Vendor | Product | Version |
|---|
{
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "A flaw was found in GLib, which is vulnerable to an integer overflow in the g_string_insert_unichar() function. When the position at which to insert the character is large, the position will overflow, leading to a buffer underwrite."
},
{
"lang": "es",
"value": "Se encontr\u00f3 una falla en GLib que causa un desbordamiento de enteros en la funci\u00f3n g_string_insert_unichar(). Cuando la posici\u00f3n donde se inserta el car\u00e1cter es grande, esta se desborda, lo que provoca una subscritura del b\u00fafer."
}
],
"id": "CVE-2025-4373",
"lastModified": "2025-09-02T03:15:41.650",
"metrics": {
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"exploitabilityScore": 2.2,
"impactScore": 2.5,
"source": "secalert@redhat.com",
"type": "Secondary"
}
]
},
"published": "2025-05-06T15:16:05.320",
"references": [
{
"source": "secalert@redhat.com",
"url": "https://access.redhat.com/errata/RHSA-2025:10855"
},
{
"source": "secalert@redhat.com",
"url": "https://access.redhat.com/errata/RHSA-2025:11140"
},
{
"source": "secalert@redhat.com",
"url": "https://access.redhat.com/errata/RHSA-2025:11327"
},
{
"source": "secalert@redhat.com",
"url": "https://access.redhat.com/errata/RHSA-2025:11373"
},
{
"source": "secalert@redhat.com",
"url": "https://access.redhat.com/errata/RHSA-2025:11374"
},
{
"source": "secalert@redhat.com",
"url": "https://access.redhat.com/errata/RHSA-2025:11662"
},
{
"source": "secalert@redhat.com",
"url": "https://access.redhat.com/errata/RHSA-2025:12275"
},
{
"source": "secalert@redhat.com",
"url": "https://access.redhat.com/errata/RHSA-2025:13335"
},
{
"source": "secalert@redhat.com",
"url": "https://access.redhat.com/errata/RHSA-2025:14988"
},
{
"source": "secalert@redhat.com",
"url": "https://access.redhat.com/errata/RHSA-2025:14989"
},
{
"source": "secalert@redhat.com",
"url": "https://access.redhat.com/errata/RHSA-2025:14990"
},
{
"source": "secalert@redhat.com",
"url": "https://access.redhat.com/errata/RHSA-2025:14991"
},
{
"source": "secalert@redhat.com",
"url": "https://access.redhat.com/security/cve/CVE-2025-4373"
},
{
"source": "secalert@redhat.com",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2364265"
},
{
"source": "secalert@redhat.com",
"url": "https://gitlab.gnome.org/GNOME/glib/-/issues/3677"
}
],
"sourceIdentifier": "secalert@redhat.com",
"vulnStatus": "Awaiting Analysis",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-124"
}
],
"source": "secalert@redhat.com",
"type": "Secondary"
}
]
}
suse-su-2025:02167-1
Vulnerability from csaf_suse
Published
2025-06-30 07:14
Modified
2025-06-30 07:14
Summary
Security update for glib2
Notes
Title of the patch
Security update for glib2
Description of the patch
This update for glib2 fixes the following issues:
- CVE-2025-6052: Fixed integer overflow in g_string_maybe_expand() leads to potential buffer overflow in GString (bsc#1244596).
- CVE-2025-4373: Fixed buffer underflow through glib/gstring.c via function g_string_insert_unichar (bsc#1242844).
Patchnames
SUSE-2025-2167,SUSE-SLE-Module-Basesystem-15-SP6-2025-2167,SUSE-SLE-Module-Basesystem-15-SP7-2025-2167,openSUSE-SLE-15.6-2025-2167
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for glib2",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for glib2 fixes the following issues:\n\n- CVE-2025-6052: Fixed integer overflow in g_string_maybe_expand() leads to potential buffer overflow in GString (bsc#1244596).\n- CVE-2025-4373: Fixed buffer underflow through glib/gstring.c via function g_string_insert_unichar (bsc#1242844).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2025-2167,SUSE-SLE-Module-Basesystem-15-SP6-2025-2167,SUSE-SLE-Module-Basesystem-15-SP7-2025-2167,openSUSE-SLE-15.6-2025-2167",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2025_02167-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2025:02167-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-202502167-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2025:02167-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2025-June/040543.html"
},
{
"category": "self",
"summary": "SUSE Bug 1242844",
"url": "https://bugzilla.suse.com/1242844"
},
{
"category": "self",
"summary": "SUSE Bug 1244596",
"url": "https://bugzilla.suse.com/1244596"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-4373 page",
"url": "https://www.suse.com/security/cve/CVE-2025-4373/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-6052 page",
"url": "https://www.suse.com/security/cve/CVE-2025-6052/"
}
],
"title": "Security update for glib2",
"tracking": {
"current_release_date": "2025-06-30T07:14:42Z",
"generator": {
"date": "2025-06-30T07:14:42Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2025:02167-1",
"initial_release_date": "2025-06-30T07:14:42Z",
"revision_history": [
{
"date": "2025-06-30T07:14:42Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "glib2-devel-2.78.6-150600.4.16.1.aarch64",
"product": {
"name": "glib2-devel-2.78.6-150600.4.16.1.aarch64",
"product_id": "glib2-devel-2.78.6-150600.4.16.1.aarch64"
}
},
{
"category": "product_version",
"name": "glib2-devel-static-2.78.6-150600.4.16.1.aarch64",
"product": {
"name": "glib2-devel-static-2.78.6-150600.4.16.1.aarch64",
"product_id": "glib2-devel-static-2.78.6-150600.4.16.1.aarch64"
}
},
{
"category": "product_version",
"name": "glib2-doc-2.78.6-150600.4.16.1.aarch64",
"product": {
"name": "glib2-doc-2.78.6-150600.4.16.1.aarch64",
"product_id": "glib2-doc-2.78.6-150600.4.16.1.aarch64"
}
},
{
"category": "product_version",
"name": "glib2-tests-devel-2.78.6-150600.4.16.1.aarch64",
"product": {
"name": "glib2-tests-devel-2.78.6-150600.4.16.1.aarch64",
"product_id": "glib2-tests-devel-2.78.6-150600.4.16.1.aarch64"
}
},
{
"category": "product_version",
"name": "glib2-tools-2.78.6-150600.4.16.1.aarch64",
"product": {
"name": "glib2-tools-2.78.6-150600.4.16.1.aarch64",
"product_id": "glib2-tools-2.78.6-150600.4.16.1.aarch64"
}
},
{
"category": "product_version",
"name": "libgio-2_0-0-2.78.6-150600.4.16.1.aarch64",
"product": {
"name": "libgio-2_0-0-2.78.6-150600.4.16.1.aarch64",
"product_id": "libgio-2_0-0-2.78.6-150600.4.16.1.aarch64"
}
},
{
"category": "product_version",
"name": "libglib-2_0-0-2.78.6-150600.4.16.1.aarch64",
"product": {
"name": "libglib-2_0-0-2.78.6-150600.4.16.1.aarch64",
"product_id": "libglib-2_0-0-2.78.6-150600.4.16.1.aarch64"
}
},
{
"category": "product_version",
"name": "libgmodule-2_0-0-2.78.6-150600.4.16.1.aarch64",
"product": {
"name": "libgmodule-2_0-0-2.78.6-150600.4.16.1.aarch64",
"product_id": "libgmodule-2_0-0-2.78.6-150600.4.16.1.aarch64"
}
},
{
"category": "product_version",
"name": "libgobject-2_0-0-2.78.6-150600.4.16.1.aarch64",
"product": {
"name": "libgobject-2_0-0-2.78.6-150600.4.16.1.aarch64",
"product_id": "libgobject-2_0-0-2.78.6-150600.4.16.1.aarch64"
}
},
{
"category": "product_version",
"name": "libgthread-2_0-0-2.78.6-150600.4.16.1.aarch64",
"product": {
"name": "libgthread-2_0-0-2.78.6-150600.4.16.1.aarch64",
"product_id": "libgthread-2_0-0-2.78.6-150600.4.16.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "glib2-devel-64bit-2.78.6-150600.4.16.1.aarch64_ilp32",
"product": {
"name": "glib2-devel-64bit-2.78.6-150600.4.16.1.aarch64_ilp32",
"product_id": "glib2-devel-64bit-2.78.6-150600.4.16.1.aarch64_ilp32"
}
},
{
"category": "product_version",
"name": "glib2-tools-64bit-2.78.6-150600.4.16.1.aarch64_ilp32",
"product": {
"name": "glib2-tools-64bit-2.78.6-150600.4.16.1.aarch64_ilp32",
"product_id": "glib2-tools-64bit-2.78.6-150600.4.16.1.aarch64_ilp32"
}
},
{
"category": "product_version",
"name": "libgio-2_0-0-64bit-2.78.6-150600.4.16.1.aarch64_ilp32",
"product": {
"name": "libgio-2_0-0-64bit-2.78.6-150600.4.16.1.aarch64_ilp32",
"product_id": "libgio-2_0-0-64bit-2.78.6-150600.4.16.1.aarch64_ilp32"
}
},
{
"category": "product_version",
"name": "libglib-2_0-0-64bit-2.78.6-150600.4.16.1.aarch64_ilp32",
"product": {
"name": "libglib-2_0-0-64bit-2.78.6-150600.4.16.1.aarch64_ilp32",
"product_id": "libglib-2_0-0-64bit-2.78.6-150600.4.16.1.aarch64_ilp32"
}
},
{
"category": "product_version",
"name": "libgmodule-2_0-0-64bit-2.78.6-150600.4.16.1.aarch64_ilp32",
"product": {
"name": "libgmodule-2_0-0-64bit-2.78.6-150600.4.16.1.aarch64_ilp32",
"product_id": "libgmodule-2_0-0-64bit-2.78.6-150600.4.16.1.aarch64_ilp32"
}
},
{
"category": "product_version",
"name": "libgobject-2_0-0-64bit-2.78.6-150600.4.16.1.aarch64_ilp32",
"product": {
"name": "libgobject-2_0-0-64bit-2.78.6-150600.4.16.1.aarch64_ilp32",
"product_id": "libgobject-2_0-0-64bit-2.78.6-150600.4.16.1.aarch64_ilp32"
}
},
{
"category": "product_version",
"name": "libgthread-2_0-0-64bit-2.78.6-150600.4.16.1.aarch64_ilp32",
"product": {
"name": "libgthread-2_0-0-64bit-2.78.6-150600.4.16.1.aarch64_ilp32",
"product_id": "libgthread-2_0-0-64bit-2.78.6-150600.4.16.1.aarch64_ilp32"
}
}
],
"category": "architecture",
"name": "aarch64_ilp32"
},
{
"branches": [
{
"category": "product_version",
"name": "glib2-devel-2.78.6-150600.4.16.1.i586",
"product": {
"name": "glib2-devel-2.78.6-150600.4.16.1.i586",
"product_id": "glib2-devel-2.78.6-150600.4.16.1.i586"
}
},
{
"category": "product_version",
"name": "glib2-devel-static-2.78.6-150600.4.16.1.i586",
"product": {
"name": "glib2-devel-static-2.78.6-150600.4.16.1.i586",
"product_id": "glib2-devel-static-2.78.6-150600.4.16.1.i586"
}
},
{
"category": "product_version",
"name": "glib2-doc-2.78.6-150600.4.16.1.i586",
"product": {
"name": "glib2-doc-2.78.6-150600.4.16.1.i586",
"product_id": "glib2-doc-2.78.6-150600.4.16.1.i586"
}
},
{
"category": "product_version",
"name": "glib2-tests-devel-2.78.6-150600.4.16.1.i586",
"product": {
"name": "glib2-tests-devel-2.78.6-150600.4.16.1.i586",
"product_id": "glib2-tests-devel-2.78.6-150600.4.16.1.i586"
}
},
{
"category": "product_version",
"name": "glib2-tools-2.78.6-150600.4.16.1.i586",
"product": {
"name": "glib2-tools-2.78.6-150600.4.16.1.i586",
"product_id": "glib2-tools-2.78.6-150600.4.16.1.i586"
}
},
{
"category": "product_version",
"name": "libgio-2_0-0-2.78.6-150600.4.16.1.i586",
"product": {
"name": "libgio-2_0-0-2.78.6-150600.4.16.1.i586",
"product_id": "libgio-2_0-0-2.78.6-150600.4.16.1.i586"
}
},
{
"category": "product_version",
"name": "libglib-2_0-0-2.78.6-150600.4.16.1.i586",
"product": {
"name": "libglib-2_0-0-2.78.6-150600.4.16.1.i586",
"product_id": "libglib-2_0-0-2.78.6-150600.4.16.1.i586"
}
},
{
"category": "product_version",
"name": "libgmodule-2_0-0-2.78.6-150600.4.16.1.i586",
"product": {
"name": "libgmodule-2_0-0-2.78.6-150600.4.16.1.i586",
"product_id": "libgmodule-2_0-0-2.78.6-150600.4.16.1.i586"
}
},
{
"category": "product_version",
"name": "libgobject-2_0-0-2.78.6-150600.4.16.1.i586",
"product": {
"name": "libgobject-2_0-0-2.78.6-150600.4.16.1.i586",
"product_id": "libgobject-2_0-0-2.78.6-150600.4.16.1.i586"
}
},
{
"category": "product_version",
"name": "libgthread-2_0-0-2.78.6-150600.4.16.1.i586",
"product": {
"name": "libgthread-2_0-0-2.78.6-150600.4.16.1.i586",
"product_id": "libgthread-2_0-0-2.78.6-150600.4.16.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "gio-branding-upstream-2.78.6-150600.4.16.1.noarch",
"product": {
"name": "gio-branding-upstream-2.78.6-150600.4.16.1.noarch",
"product_id": "gio-branding-upstream-2.78.6-150600.4.16.1.noarch"
}
},
{
"category": "product_version",
"name": "glib2-lang-2.78.6-150600.4.16.1.noarch",
"product": {
"name": "glib2-lang-2.78.6-150600.4.16.1.noarch",
"product_id": "glib2-lang-2.78.6-150600.4.16.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "glib2-devel-2.78.6-150600.4.16.1.ppc64le",
"product": {
"name": "glib2-devel-2.78.6-150600.4.16.1.ppc64le",
"product_id": "glib2-devel-2.78.6-150600.4.16.1.ppc64le"
}
},
{
"category": "product_version",
"name": "glib2-devel-static-2.78.6-150600.4.16.1.ppc64le",
"product": {
"name": "glib2-devel-static-2.78.6-150600.4.16.1.ppc64le",
"product_id": "glib2-devel-static-2.78.6-150600.4.16.1.ppc64le"
}
},
{
"category": "product_version",
"name": "glib2-doc-2.78.6-150600.4.16.1.ppc64le",
"product": {
"name": "glib2-doc-2.78.6-150600.4.16.1.ppc64le",
"product_id": "glib2-doc-2.78.6-150600.4.16.1.ppc64le"
}
},
{
"category": "product_version",
"name": "glib2-tests-devel-2.78.6-150600.4.16.1.ppc64le",
"product": {
"name": "glib2-tests-devel-2.78.6-150600.4.16.1.ppc64le",
"product_id": "glib2-tests-devel-2.78.6-150600.4.16.1.ppc64le"
}
},
{
"category": "product_version",
"name": "glib2-tools-2.78.6-150600.4.16.1.ppc64le",
"product": {
"name": "glib2-tools-2.78.6-150600.4.16.1.ppc64le",
"product_id": "glib2-tools-2.78.6-150600.4.16.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libgio-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"product": {
"name": "libgio-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"product_id": "libgio-2_0-0-2.78.6-150600.4.16.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libglib-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"product": {
"name": "libglib-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"product_id": "libglib-2_0-0-2.78.6-150600.4.16.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libgmodule-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"product": {
"name": "libgmodule-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"product_id": "libgmodule-2_0-0-2.78.6-150600.4.16.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libgobject-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"product": {
"name": "libgobject-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"product_id": "libgobject-2_0-0-2.78.6-150600.4.16.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libgthread-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"product": {
"name": "libgthread-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"product_id": "libgthread-2_0-0-2.78.6-150600.4.16.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "glib2-devel-2.78.6-150600.4.16.1.s390x",
"product": {
"name": "glib2-devel-2.78.6-150600.4.16.1.s390x",
"product_id": "glib2-devel-2.78.6-150600.4.16.1.s390x"
}
},
{
"category": "product_version",
"name": "glib2-devel-static-2.78.6-150600.4.16.1.s390x",
"product": {
"name": "glib2-devel-static-2.78.6-150600.4.16.1.s390x",
"product_id": "glib2-devel-static-2.78.6-150600.4.16.1.s390x"
}
},
{
"category": "product_version",
"name": "glib2-doc-2.78.6-150600.4.16.1.s390x",
"product": {
"name": "glib2-doc-2.78.6-150600.4.16.1.s390x",
"product_id": "glib2-doc-2.78.6-150600.4.16.1.s390x"
}
},
{
"category": "product_version",
"name": "glib2-tests-devel-2.78.6-150600.4.16.1.s390x",
"product": {
"name": "glib2-tests-devel-2.78.6-150600.4.16.1.s390x",
"product_id": "glib2-tests-devel-2.78.6-150600.4.16.1.s390x"
}
},
{
"category": "product_version",
"name": "glib2-tools-2.78.6-150600.4.16.1.s390x",
"product": {
"name": "glib2-tools-2.78.6-150600.4.16.1.s390x",
"product_id": "glib2-tools-2.78.6-150600.4.16.1.s390x"
}
},
{
"category": "product_version",
"name": "libgio-2_0-0-2.78.6-150600.4.16.1.s390x",
"product": {
"name": "libgio-2_0-0-2.78.6-150600.4.16.1.s390x",
"product_id": "libgio-2_0-0-2.78.6-150600.4.16.1.s390x"
}
},
{
"category": "product_version",
"name": "libglib-2_0-0-2.78.6-150600.4.16.1.s390x",
"product": {
"name": "libglib-2_0-0-2.78.6-150600.4.16.1.s390x",
"product_id": "libglib-2_0-0-2.78.6-150600.4.16.1.s390x"
}
},
{
"category": "product_version",
"name": "libgmodule-2_0-0-2.78.6-150600.4.16.1.s390x",
"product": {
"name": "libgmodule-2_0-0-2.78.6-150600.4.16.1.s390x",
"product_id": "libgmodule-2_0-0-2.78.6-150600.4.16.1.s390x"
}
},
{
"category": "product_version",
"name": "libgobject-2_0-0-2.78.6-150600.4.16.1.s390x",
"product": {
"name": "libgobject-2_0-0-2.78.6-150600.4.16.1.s390x",
"product_id": "libgobject-2_0-0-2.78.6-150600.4.16.1.s390x"
}
},
{
"category": "product_version",
"name": "libgthread-2_0-0-2.78.6-150600.4.16.1.s390x",
"product": {
"name": "libgthread-2_0-0-2.78.6-150600.4.16.1.s390x",
"product_id": "libgthread-2_0-0-2.78.6-150600.4.16.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "glib2-devel-2.78.6-150600.4.16.1.x86_64",
"product": {
"name": "glib2-devel-2.78.6-150600.4.16.1.x86_64",
"product_id": "glib2-devel-2.78.6-150600.4.16.1.x86_64"
}
},
{
"category": "product_version",
"name": "glib2-devel-32bit-2.78.6-150600.4.16.1.x86_64",
"product": {
"name": "glib2-devel-32bit-2.78.6-150600.4.16.1.x86_64",
"product_id": "glib2-devel-32bit-2.78.6-150600.4.16.1.x86_64"
}
},
{
"category": "product_version",
"name": "glib2-devel-static-2.78.6-150600.4.16.1.x86_64",
"product": {
"name": "glib2-devel-static-2.78.6-150600.4.16.1.x86_64",
"product_id": "glib2-devel-static-2.78.6-150600.4.16.1.x86_64"
}
},
{
"category": "product_version",
"name": "glib2-doc-2.78.6-150600.4.16.1.x86_64",
"product": {
"name": "glib2-doc-2.78.6-150600.4.16.1.x86_64",
"product_id": "glib2-doc-2.78.6-150600.4.16.1.x86_64"
}
},
{
"category": "product_version",
"name": "glib2-tests-devel-2.78.6-150600.4.16.1.x86_64",
"product": {
"name": "glib2-tests-devel-2.78.6-150600.4.16.1.x86_64",
"product_id": "glib2-tests-devel-2.78.6-150600.4.16.1.x86_64"
}
},
{
"category": "product_version",
"name": "glib2-tools-2.78.6-150600.4.16.1.x86_64",
"product": {
"name": "glib2-tools-2.78.6-150600.4.16.1.x86_64",
"product_id": "glib2-tools-2.78.6-150600.4.16.1.x86_64"
}
},
{
"category": "product_version",
"name": "glib2-tools-32bit-2.78.6-150600.4.16.1.x86_64",
"product": {
"name": "glib2-tools-32bit-2.78.6-150600.4.16.1.x86_64",
"product_id": "glib2-tools-32bit-2.78.6-150600.4.16.1.x86_64"
}
},
{
"category": "product_version",
"name": "libgio-2_0-0-2.78.6-150600.4.16.1.x86_64",
"product": {
"name": "libgio-2_0-0-2.78.6-150600.4.16.1.x86_64",
"product_id": "libgio-2_0-0-2.78.6-150600.4.16.1.x86_64"
}
},
{
"category": "product_version",
"name": "libgio-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"product": {
"name": "libgio-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"product_id": "libgio-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64"
}
},
{
"category": "product_version",
"name": "libglib-2_0-0-2.78.6-150600.4.16.1.x86_64",
"product": {
"name": "libglib-2_0-0-2.78.6-150600.4.16.1.x86_64",
"product_id": "libglib-2_0-0-2.78.6-150600.4.16.1.x86_64"
}
},
{
"category": "product_version",
"name": "libglib-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"product": {
"name": "libglib-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"product_id": "libglib-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64"
}
},
{
"category": "product_version",
"name": "libgmodule-2_0-0-2.78.6-150600.4.16.1.x86_64",
"product": {
"name": "libgmodule-2_0-0-2.78.6-150600.4.16.1.x86_64",
"product_id": "libgmodule-2_0-0-2.78.6-150600.4.16.1.x86_64"
}
},
{
"category": "product_version",
"name": "libgmodule-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"product": {
"name": "libgmodule-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"product_id": "libgmodule-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64"
}
},
{
"category": "product_version",
"name": "libgobject-2_0-0-2.78.6-150600.4.16.1.x86_64",
"product": {
"name": "libgobject-2_0-0-2.78.6-150600.4.16.1.x86_64",
"product_id": "libgobject-2_0-0-2.78.6-150600.4.16.1.x86_64"
}
},
{
"category": "product_version",
"name": "libgobject-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"product": {
"name": "libgobject-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"product_id": "libgobject-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64"
}
},
{
"category": "product_version",
"name": "libgthread-2_0-0-2.78.6-150600.4.16.1.x86_64",
"product": {
"name": "libgthread-2_0-0-2.78.6-150600.4.16.1.x86_64",
"product_id": "libgthread-2_0-0-2.78.6-150600.4.16.1.x86_64"
}
},
{
"category": "product_version",
"name": "libgthread-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"product": {
"name": "libgthread-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"product_id": "libgthread-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product": {
"name": "SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-basesystem:15:sp6"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product": {
"name": "SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-basesystem:15:sp7"
}
}
},
{
"category": "product_name",
"name": "openSUSE Leap 15.6",
"product": {
"name": "openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.6"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-2.78.6-150600.4.16.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:glib2-devel-2.78.6-150600.4.16.1.aarch64"
},
"product_reference": "glib2-devel-2.78.6-150600.4.16.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-2.78.6-150600.4.16.1.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:glib2-devel-2.78.6-150600.4.16.1.ppc64le"
},
"product_reference": "glib2-devel-2.78.6-150600.4.16.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-2.78.6-150600.4.16.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:glib2-devel-2.78.6-150600.4.16.1.s390x"
},
"product_reference": "glib2-devel-2.78.6-150600.4.16.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-2.78.6-150600.4.16.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:glib2-devel-2.78.6-150600.4.16.1.x86_64"
},
"product_reference": "glib2-devel-2.78.6-150600.4.16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-lang-2.78.6-150600.4.16.1.noarch as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:glib2-lang-2.78.6-150600.4.16.1.noarch"
},
"product_reference": "glib2-lang-2.78.6-150600.4.16.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tools-2.78.6-150600.4.16.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:glib2-tools-2.78.6-150600.4.16.1.aarch64"
},
"product_reference": "glib2-tools-2.78.6-150600.4.16.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tools-2.78.6-150600.4.16.1.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:glib2-tools-2.78.6-150600.4.16.1.ppc64le"
},
"product_reference": "glib2-tools-2.78.6-150600.4.16.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tools-2.78.6-150600.4.16.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:glib2-tools-2.78.6-150600.4.16.1.s390x"
},
"product_reference": "glib2-tools-2.78.6-150600.4.16.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tools-2.78.6-150600.4.16.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:glib2-tools-2.78.6-150600.4.16.1.x86_64"
},
"product_reference": "glib2-tools-2.78.6-150600.4.16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgio-2_0-0-2.78.6-150600.4.16.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:libgio-2_0-0-2.78.6-150600.4.16.1.aarch64"
},
"product_reference": "libgio-2_0-0-2.78.6-150600.4.16.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgio-2_0-0-2.78.6-150600.4.16.1.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:libgio-2_0-0-2.78.6-150600.4.16.1.ppc64le"
},
"product_reference": "libgio-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgio-2_0-0-2.78.6-150600.4.16.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:libgio-2_0-0-2.78.6-150600.4.16.1.s390x"
},
"product_reference": "libgio-2_0-0-2.78.6-150600.4.16.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgio-2_0-0-2.78.6-150600.4.16.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:libgio-2_0-0-2.78.6-150600.4.16.1.x86_64"
},
"product_reference": "libgio-2_0-0-2.78.6-150600.4.16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgio-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:libgio-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64"
},
"product_reference": "libgio-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libglib-2_0-0-2.78.6-150600.4.16.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:libglib-2_0-0-2.78.6-150600.4.16.1.aarch64"
},
"product_reference": "libglib-2_0-0-2.78.6-150600.4.16.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libglib-2_0-0-2.78.6-150600.4.16.1.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:libglib-2_0-0-2.78.6-150600.4.16.1.ppc64le"
},
"product_reference": "libglib-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libglib-2_0-0-2.78.6-150600.4.16.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:libglib-2_0-0-2.78.6-150600.4.16.1.s390x"
},
"product_reference": "libglib-2_0-0-2.78.6-150600.4.16.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libglib-2_0-0-2.78.6-150600.4.16.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:libglib-2_0-0-2.78.6-150600.4.16.1.x86_64"
},
"product_reference": "libglib-2_0-0-2.78.6-150600.4.16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libglib-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:libglib-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64"
},
"product_reference": "libglib-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgmodule-2_0-0-2.78.6-150600.4.16.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:libgmodule-2_0-0-2.78.6-150600.4.16.1.aarch64"
},
"product_reference": "libgmodule-2_0-0-2.78.6-150600.4.16.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgmodule-2_0-0-2.78.6-150600.4.16.1.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:libgmodule-2_0-0-2.78.6-150600.4.16.1.ppc64le"
},
"product_reference": "libgmodule-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgmodule-2_0-0-2.78.6-150600.4.16.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:libgmodule-2_0-0-2.78.6-150600.4.16.1.s390x"
},
"product_reference": "libgmodule-2_0-0-2.78.6-150600.4.16.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgmodule-2_0-0-2.78.6-150600.4.16.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:libgmodule-2_0-0-2.78.6-150600.4.16.1.x86_64"
},
"product_reference": "libgmodule-2_0-0-2.78.6-150600.4.16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgmodule-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:libgmodule-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64"
},
"product_reference": "libgmodule-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgobject-2_0-0-2.78.6-150600.4.16.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:libgobject-2_0-0-2.78.6-150600.4.16.1.aarch64"
},
"product_reference": "libgobject-2_0-0-2.78.6-150600.4.16.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgobject-2_0-0-2.78.6-150600.4.16.1.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:libgobject-2_0-0-2.78.6-150600.4.16.1.ppc64le"
},
"product_reference": "libgobject-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgobject-2_0-0-2.78.6-150600.4.16.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:libgobject-2_0-0-2.78.6-150600.4.16.1.s390x"
},
"product_reference": "libgobject-2_0-0-2.78.6-150600.4.16.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgobject-2_0-0-2.78.6-150600.4.16.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:libgobject-2_0-0-2.78.6-150600.4.16.1.x86_64"
},
"product_reference": "libgobject-2_0-0-2.78.6-150600.4.16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgobject-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:libgobject-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64"
},
"product_reference": "libgobject-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgthread-2_0-0-2.78.6-150600.4.16.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:libgthread-2_0-0-2.78.6-150600.4.16.1.aarch64"
},
"product_reference": "libgthread-2_0-0-2.78.6-150600.4.16.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgthread-2_0-0-2.78.6-150600.4.16.1.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:libgthread-2_0-0-2.78.6-150600.4.16.1.ppc64le"
},
"product_reference": "libgthread-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgthread-2_0-0-2.78.6-150600.4.16.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:libgthread-2_0-0-2.78.6-150600.4.16.1.s390x"
},
"product_reference": "libgthread-2_0-0-2.78.6-150600.4.16.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgthread-2_0-0-2.78.6-150600.4.16.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:libgthread-2_0-0-2.78.6-150600.4.16.1.x86_64"
},
"product_reference": "libgthread-2_0-0-2.78.6-150600.4.16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-2.78.6-150600.4.16.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:glib2-devel-2.78.6-150600.4.16.1.aarch64"
},
"product_reference": "glib2-devel-2.78.6-150600.4.16.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-2.78.6-150600.4.16.1.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:glib2-devel-2.78.6-150600.4.16.1.ppc64le"
},
"product_reference": "glib2-devel-2.78.6-150600.4.16.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-2.78.6-150600.4.16.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:glib2-devel-2.78.6-150600.4.16.1.s390x"
},
"product_reference": "glib2-devel-2.78.6-150600.4.16.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-2.78.6-150600.4.16.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:glib2-devel-2.78.6-150600.4.16.1.x86_64"
},
"product_reference": "glib2-devel-2.78.6-150600.4.16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-lang-2.78.6-150600.4.16.1.noarch as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:glib2-lang-2.78.6-150600.4.16.1.noarch"
},
"product_reference": "glib2-lang-2.78.6-150600.4.16.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tools-2.78.6-150600.4.16.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:glib2-tools-2.78.6-150600.4.16.1.aarch64"
},
"product_reference": "glib2-tools-2.78.6-150600.4.16.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tools-2.78.6-150600.4.16.1.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:glib2-tools-2.78.6-150600.4.16.1.ppc64le"
},
"product_reference": "glib2-tools-2.78.6-150600.4.16.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tools-2.78.6-150600.4.16.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:glib2-tools-2.78.6-150600.4.16.1.s390x"
},
"product_reference": "glib2-tools-2.78.6-150600.4.16.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tools-2.78.6-150600.4.16.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:glib2-tools-2.78.6-150600.4.16.1.x86_64"
},
"product_reference": "glib2-tools-2.78.6-150600.4.16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgio-2_0-0-2.78.6-150600.4.16.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:libgio-2_0-0-2.78.6-150600.4.16.1.aarch64"
},
"product_reference": "libgio-2_0-0-2.78.6-150600.4.16.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgio-2_0-0-2.78.6-150600.4.16.1.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:libgio-2_0-0-2.78.6-150600.4.16.1.ppc64le"
},
"product_reference": "libgio-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgio-2_0-0-2.78.6-150600.4.16.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:libgio-2_0-0-2.78.6-150600.4.16.1.s390x"
},
"product_reference": "libgio-2_0-0-2.78.6-150600.4.16.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgio-2_0-0-2.78.6-150600.4.16.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:libgio-2_0-0-2.78.6-150600.4.16.1.x86_64"
},
"product_reference": "libgio-2_0-0-2.78.6-150600.4.16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgio-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:libgio-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64"
},
"product_reference": "libgio-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libglib-2_0-0-2.78.6-150600.4.16.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:libglib-2_0-0-2.78.6-150600.4.16.1.aarch64"
},
"product_reference": "libglib-2_0-0-2.78.6-150600.4.16.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libglib-2_0-0-2.78.6-150600.4.16.1.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:libglib-2_0-0-2.78.6-150600.4.16.1.ppc64le"
},
"product_reference": "libglib-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libglib-2_0-0-2.78.6-150600.4.16.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:libglib-2_0-0-2.78.6-150600.4.16.1.s390x"
},
"product_reference": "libglib-2_0-0-2.78.6-150600.4.16.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libglib-2_0-0-2.78.6-150600.4.16.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:libglib-2_0-0-2.78.6-150600.4.16.1.x86_64"
},
"product_reference": "libglib-2_0-0-2.78.6-150600.4.16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libglib-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:libglib-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64"
},
"product_reference": "libglib-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgmodule-2_0-0-2.78.6-150600.4.16.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:libgmodule-2_0-0-2.78.6-150600.4.16.1.aarch64"
},
"product_reference": "libgmodule-2_0-0-2.78.6-150600.4.16.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgmodule-2_0-0-2.78.6-150600.4.16.1.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:libgmodule-2_0-0-2.78.6-150600.4.16.1.ppc64le"
},
"product_reference": "libgmodule-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgmodule-2_0-0-2.78.6-150600.4.16.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:libgmodule-2_0-0-2.78.6-150600.4.16.1.s390x"
},
"product_reference": "libgmodule-2_0-0-2.78.6-150600.4.16.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgmodule-2_0-0-2.78.6-150600.4.16.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:libgmodule-2_0-0-2.78.6-150600.4.16.1.x86_64"
},
"product_reference": "libgmodule-2_0-0-2.78.6-150600.4.16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgmodule-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:libgmodule-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64"
},
"product_reference": "libgmodule-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgobject-2_0-0-2.78.6-150600.4.16.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:libgobject-2_0-0-2.78.6-150600.4.16.1.aarch64"
},
"product_reference": "libgobject-2_0-0-2.78.6-150600.4.16.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgobject-2_0-0-2.78.6-150600.4.16.1.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:libgobject-2_0-0-2.78.6-150600.4.16.1.ppc64le"
},
"product_reference": "libgobject-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgobject-2_0-0-2.78.6-150600.4.16.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:libgobject-2_0-0-2.78.6-150600.4.16.1.s390x"
},
"product_reference": "libgobject-2_0-0-2.78.6-150600.4.16.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgobject-2_0-0-2.78.6-150600.4.16.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:libgobject-2_0-0-2.78.6-150600.4.16.1.x86_64"
},
"product_reference": "libgobject-2_0-0-2.78.6-150600.4.16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgobject-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:libgobject-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64"
},
"product_reference": "libgobject-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgthread-2_0-0-2.78.6-150600.4.16.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:libgthread-2_0-0-2.78.6-150600.4.16.1.aarch64"
},
"product_reference": "libgthread-2_0-0-2.78.6-150600.4.16.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgthread-2_0-0-2.78.6-150600.4.16.1.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:libgthread-2_0-0-2.78.6-150600.4.16.1.ppc64le"
},
"product_reference": "libgthread-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgthread-2_0-0-2.78.6-150600.4.16.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:libgthread-2_0-0-2.78.6-150600.4.16.1.s390x"
},
"product_reference": "libgthread-2_0-0-2.78.6-150600.4.16.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgthread-2_0-0-2.78.6-150600.4.16.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:libgthread-2_0-0-2.78.6-150600.4.16.1.x86_64"
},
"product_reference": "libgthread-2_0-0-2.78.6-150600.4.16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gio-branding-upstream-2.78.6-150600.4.16.1.noarch as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:gio-branding-upstream-2.78.6-150600.4.16.1.noarch"
},
"product_reference": "gio-branding-upstream-2.78.6-150600.4.16.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-2.78.6-150600.4.16.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:glib2-devel-2.78.6-150600.4.16.1.aarch64"
},
"product_reference": "glib2-devel-2.78.6-150600.4.16.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-2.78.6-150600.4.16.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:glib2-devel-2.78.6-150600.4.16.1.ppc64le"
},
"product_reference": "glib2-devel-2.78.6-150600.4.16.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-2.78.6-150600.4.16.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:glib2-devel-2.78.6-150600.4.16.1.s390x"
},
"product_reference": "glib2-devel-2.78.6-150600.4.16.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-2.78.6-150600.4.16.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:glib2-devel-2.78.6-150600.4.16.1.x86_64"
},
"product_reference": "glib2-devel-2.78.6-150600.4.16.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-32bit-2.78.6-150600.4.16.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:glib2-devel-32bit-2.78.6-150600.4.16.1.x86_64"
},
"product_reference": "glib2-devel-32bit-2.78.6-150600.4.16.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-static-2.78.6-150600.4.16.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:glib2-devel-static-2.78.6-150600.4.16.1.aarch64"
},
"product_reference": "glib2-devel-static-2.78.6-150600.4.16.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-static-2.78.6-150600.4.16.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:glib2-devel-static-2.78.6-150600.4.16.1.ppc64le"
},
"product_reference": "glib2-devel-static-2.78.6-150600.4.16.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-static-2.78.6-150600.4.16.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:glib2-devel-static-2.78.6-150600.4.16.1.s390x"
},
"product_reference": "glib2-devel-static-2.78.6-150600.4.16.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-devel-static-2.78.6-150600.4.16.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:glib2-devel-static-2.78.6-150600.4.16.1.x86_64"
},
"product_reference": "glib2-devel-static-2.78.6-150600.4.16.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-doc-2.78.6-150600.4.16.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:glib2-doc-2.78.6-150600.4.16.1.aarch64"
},
"product_reference": "glib2-doc-2.78.6-150600.4.16.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-doc-2.78.6-150600.4.16.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:glib2-doc-2.78.6-150600.4.16.1.ppc64le"
},
"product_reference": "glib2-doc-2.78.6-150600.4.16.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-doc-2.78.6-150600.4.16.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:glib2-doc-2.78.6-150600.4.16.1.s390x"
},
"product_reference": "glib2-doc-2.78.6-150600.4.16.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-doc-2.78.6-150600.4.16.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:glib2-doc-2.78.6-150600.4.16.1.x86_64"
},
"product_reference": "glib2-doc-2.78.6-150600.4.16.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-lang-2.78.6-150600.4.16.1.noarch as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:glib2-lang-2.78.6-150600.4.16.1.noarch"
},
"product_reference": "glib2-lang-2.78.6-150600.4.16.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-devel-2.78.6-150600.4.16.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:glib2-tests-devel-2.78.6-150600.4.16.1.aarch64"
},
"product_reference": "glib2-tests-devel-2.78.6-150600.4.16.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-devel-2.78.6-150600.4.16.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:glib2-tests-devel-2.78.6-150600.4.16.1.ppc64le"
},
"product_reference": "glib2-tests-devel-2.78.6-150600.4.16.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-devel-2.78.6-150600.4.16.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:glib2-tests-devel-2.78.6-150600.4.16.1.s390x"
},
"product_reference": "glib2-tests-devel-2.78.6-150600.4.16.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tests-devel-2.78.6-150600.4.16.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:glib2-tests-devel-2.78.6-150600.4.16.1.x86_64"
},
"product_reference": "glib2-tests-devel-2.78.6-150600.4.16.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tools-2.78.6-150600.4.16.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:glib2-tools-2.78.6-150600.4.16.1.aarch64"
},
"product_reference": "glib2-tools-2.78.6-150600.4.16.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tools-2.78.6-150600.4.16.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:glib2-tools-2.78.6-150600.4.16.1.ppc64le"
},
"product_reference": "glib2-tools-2.78.6-150600.4.16.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tools-2.78.6-150600.4.16.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:glib2-tools-2.78.6-150600.4.16.1.s390x"
},
"product_reference": "glib2-tools-2.78.6-150600.4.16.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tools-2.78.6-150600.4.16.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:glib2-tools-2.78.6-150600.4.16.1.x86_64"
},
"product_reference": "glib2-tools-2.78.6-150600.4.16.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glib2-tools-32bit-2.78.6-150600.4.16.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:glib2-tools-32bit-2.78.6-150600.4.16.1.x86_64"
},
"product_reference": "glib2-tools-32bit-2.78.6-150600.4.16.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgio-2_0-0-2.78.6-150600.4.16.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:libgio-2_0-0-2.78.6-150600.4.16.1.aarch64"
},
"product_reference": "libgio-2_0-0-2.78.6-150600.4.16.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgio-2_0-0-2.78.6-150600.4.16.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:libgio-2_0-0-2.78.6-150600.4.16.1.ppc64le"
},
"product_reference": "libgio-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgio-2_0-0-2.78.6-150600.4.16.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:libgio-2_0-0-2.78.6-150600.4.16.1.s390x"
},
"product_reference": "libgio-2_0-0-2.78.6-150600.4.16.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgio-2_0-0-2.78.6-150600.4.16.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:libgio-2_0-0-2.78.6-150600.4.16.1.x86_64"
},
"product_reference": "libgio-2_0-0-2.78.6-150600.4.16.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgio-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:libgio-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64"
},
"product_reference": "libgio-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libglib-2_0-0-2.78.6-150600.4.16.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:libglib-2_0-0-2.78.6-150600.4.16.1.aarch64"
},
"product_reference": "libglib-2_0-0-2.78.6-150600.4.16.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libglib-2_0-0-2.78.6-150600.4.16.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:libglib-2_0-0-2.78.6-150600.4.16.1.ppc64le"
},
"product_reference": "libglib-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libglib-2_0-0-2.78.6-150600.4.16.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:libglib-2_0-0-2.78.6-150600.4.16.1.s390x"
},
"product_reference": "libglib-2_0-0-2.78.6-150600.4.16.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libglib-2_0-0-2.78.6-150600.4.16.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:libglib-2_0-0-2.78.6-150600.4.16.1.x86_64"
},
"product_reference": "libglib-2_0-0-2.78.6-150600.4.16.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libglib-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:libglib-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64"
},
"product_reference": "libglib-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgmodule-2_0-0-2.78.6-150600.4.16.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:libgmodule-2_0-0-2.78.6-150600.4.16.1.aarch64"
},
"product_reference": "libgmodule-2_0-0-2.78.6-150600.4.16.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgmodule-2_0-0-2.78.6-150600.4.16.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:libgmodule-2_0-0-2.78.6-150600.4.16.1.ppc64le"
},
"product_reference": "libgmodule-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgmodule-2_0-0-2.78.6-150600.4.16.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:libgmodule-2_0-0-2.78.6-150600.4.16.1.s390x"
},
"product_reference": "libgmodule-2_0-0-2.78.6-150600.4.16.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgmodule-2_0-0-2.78.6-150600.4.16.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:libgmodule-2_0-0-2.78.6-150600.4.16.1.x86_64"
},
"product_reference": "libgmodule-2_0-0-2.78.6-150600.4.16.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgmodule-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:libgmodule-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64"
},
"product_reference": "libgmodule-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgobject-2_0-0-2.78.6-150600.4.16.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:libgobject-2_0-0-2.78.6-150600.4.16.1.aarch64"
},
"product_reference": "libgobject-2_0-0-2.78.6-150600.4.16.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgobject-2_0-0-2.78.6-150600.4.16.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:libgobject-2_0-0-2.78.6-150600.4.16.1.ppc64le"
},
"product_reference": "libgobject-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgobject-2_0-0-2.78.6-150600.4.16.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:libgobject-2_0-0-2.78.6-150600.4.16.1.s390x"
},
"product_reference": "libgobject-2_0-0-2.78.6-150600.4.16.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgobject-2_0-0-2.78.6-150600.4.16.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:libgobject-2_0-0-2.78.6-150600.4.16.1.x86_64"
},
"product_reference": "libgobject-2_0-0-2.78.6-150600.4.16.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgobject-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:libgobject-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64"
},
"product_reference": "libgobject-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgthread-2_0-0-2.78.6-150600.4.16.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:libgthread-2_0-0-2.78.6-150600.4.16.1.aarch64"
},
"product_reference": "libgthread-2_0-0-2.78.6-150600.4.16.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgthread-2_0-0-2.78.6-150600.4.16.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:libgthread-2_0-0-2.78.6-150600.4.16.1.ppc64le"
},
"product_reference": "libgthread-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgthread-2_0-0-2.78.6-150600.4.16.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:libgthread-2_0-0-2.78.6-150600.4.16.1.s390x"
},
"product_reference": "libgthread-2_0-0-2.78.6-150600.4.16.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgthread-2_0-0-2.78.6-150600.4.16.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:libgthread-2_0-0-2.78.6-150600.4.16.1.x86_64"
},
"product_reference": "libgthread-2_0-0-2.78.6-150600.4.16.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgthread-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:libgthread-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64"
},
"product_reference": "libgthread-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-4373",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-4373"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in GLib, which is vulnerable to an integer overflow in the g_string_insert_unichar() function. When the position at which to insert the character is large, the position will overflow, leading to a buffer underwrite.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Basesystem 15 SP6:glib2-devel-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:glib2-devel-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:glib2-devel-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:glib2-devel-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:glib2-lang-2.78.6-150600.4.16.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:glib2-tools-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:glib2-tools-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:glib2-tools-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:glib2-tools-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgio-2_0-0-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgio-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgio-2_0-0-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgio-2_0-0-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgio-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libglib-2_0-0-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libglib-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libglib-2_0-0-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libglib-2_0-0-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libglib-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgmodule-2_0-0-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgmodule-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgmodule-2_0-0-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgmodule-2_0-0-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgmodule-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgobject-2_0-0-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgobject-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgobject-2_0-0-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgobject-2_0-0-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgobject-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgthread-2_0-0-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgthread-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgthread-2_0-0-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgthread-2_0-0-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:glib2-devel-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:glib2-devel-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:glib2-devel-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:glib2-devel-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:glib2-lang-2.78.6-150600.4.16.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:glib2-tools-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:glib2-tools-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:glib2-tools-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:glib2-tools-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgio-2_0-0-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgio-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgio-2_0-0-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgio-2_0-0-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgio-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libglib-2_0-0-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libglib-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libglib-2_0-0-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libglib-2_0-0-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libglib-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgmodule-2_0-0-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgmodule-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgmodule-2_0-0-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgmodule-2_0-0-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgmodule-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgobject-2_0-0-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgobject-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgobject-2_0-0-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgobject-2_0-0-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgobject-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgthread-2_0-0-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgthread-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgthread-2_0-0-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgthread-2_0-0-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:gio-branding-upstream-2.78.6-150600.4.16.1.noarch",
"openSUSE Leap 15.6:glib2-devel-2.78.6-150600.4.16.1.aarch64",
"openSUSE Leap 15.6:glib2-devel-2.78.6-150600.4.16.1.ppc64le",
"openSUSE Leap 15.6:glib2-devel-2.78.6-150600.4.16.1.s390x",
"openSUSE Leap 15.6:glib2-devel-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:glib2-devel-32bit-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:glib2-devel-static-2.78.6-150600.4.16.1.aarch64",
"openSUSE Leap 15.6:glib2-devel-static-2.78.6-150600.4.16.1.ppc64le",
"openSUSE Leap 15.6:glib2-devel-static-2.78.6-150600.4.16.1.s390x",
"openSUSE Leap 15.6:glib2-devel-static-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:glib2-doc-2.78.6-150600.4.16.1.aarch64",
"openSUSE Leap 15.6:glib2-doc-2.78.6-150600.4.16.1.ppc64le",
"openSUSE Leap 15.6:glib2-doc-2.78.6-150600.4.16.1.s390x",
"openSUSE Leap 15.6:glib2-doc-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:glib2-lang-2.78.6-150600.4.16.1.noarch",
"openSUSE Leap 15.6:glib2-tests-devel-2.78.6-150600.4.16.1.aarch64",
"openSUSE Leap 15.6:glib2-tests-devel-2.78.6-150600.4.16.1.ppc64le",
"openSUSE Leap 15.6:glib2-tests-devel-2.78.6-150600.4.16.1.s390x",
"openSUSE Leap 15.6:glib2-tests-devel-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:glib2-tools-2.78.6-150600.4.16.1.aarch64",
"openSUSE Leap 15.6:glib2-tools-2.78.6-150600.4.16.1.ppc64le",
"openSUSE Leap 15.6:glib2-tools-2.78.6-150600.4.16.1.s390x",
"openSUSE Leap 15.6:glib2-tools-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:glib2-tools-32bit-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:libgio-2_0-0-2.78.6-150600.4.16.1.aarch64",
"openSUSE Leap 15.6:libgio-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"openSUSE Leap 15.6:libgio-2_0-0-2.78.6-150600.4.16.1.s390x",
"openSUSE Leap 15.6:libgio-2_0-0-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:libgio-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:libglib-2_0-0-2.78.6-150600.4.16.1.aarch64",
"openSUSE Leap 15.6:libglib-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"openSUSE Leap 15.6:libglib-2_0-0-2.78.6-150600.4.16.1.s390x",
"openSUSE Leap 15.6:libglib-2_0-0-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:libglib-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:libgmodule-2_0-0-2.78.6-150600.4.16.1.aarch64",
"openSUSE Leap 15.6:libgmodule-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"openSUSE Leap 15.6:libgmodule-2_0-0-2.78.6-150600.4.16.1.s390x",
"openSUSE Leap 15.6:libgmodule-2_0-0-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:libgmodule-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:libgobject-2_0-0-2.78.6-150600.4.16.1.aarch64",
"openSUSE Leap 15.6:libgobject-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"openSUSE Leap 15.6:libgobject-2_0-0-2.78.6-150600.4.16.1.s390x",
"openSUSE Leap 15.6:libgobject-2_0-0-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:libgobject-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:libgthread-2_0-0-2.78.6-150600.4.16.1.aarch64",
"openSUSE Leap 15.6:libgthread-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"openSUSE Leap 15.6:libgthread-2_0-0-2.78.6-150600.4.16.1.s390x",
"openSUSE Leap 15.6:libgthread-2_0-0-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:libgthread-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-4373",
"url": "https://www.suse.com/security/cve/CVE-2025-4373"
},
{
"category": "external",
"summary": "SUSE Bug 1242844 for CVE-2025-4373",
"url": "https://bugzilla.suse.com/1242844"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Basesystem 15 SP6:glib2-devel-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:glib2-devel-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:glib2-devel-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:glib2-devel-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:glib2-lang-2.78.6-150600.4.16.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:glib2-tools-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:glib2-tools-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:glib2-tools-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:glib2-tools-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgio-2_0-0-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgio-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgio-2_0-0-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgio-2_0-0-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgio-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libglib-2_0-0-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libglib-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libglib-2_0-0-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libglib-2_0-0-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libglib-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgmodule-2_0-0-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgmodule-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgmodule-2_0-0-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgmodule-2_0-0-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgmodule-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgobject-2_0-0-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgobject-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgobject-2_0-0-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgobject-2_0-0-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgobject-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgthread-2_0-0-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgthread-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgthread-2_0-0-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgthread-2_0-0-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:glib2-devel-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:glib2-devel-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:glib2-devel-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:glib2-devel-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:glib2-lang-2.78.6-150600.4.16.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:glib2-tools-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:glib2-tools-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:glib2-tools-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:glib2-tools-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgio-2_0-0-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgio-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgio-2_0-0-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgio-2_0-0-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgio-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libglib-2_0-0-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libglib-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libglib-2_0-0-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libglib-2_0-0-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libglib-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgmodule-2_0-0-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgmodule-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgmodule-2_0-0-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgmodule-2_0-0-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgmodule-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgobject-2_0-0-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgobject-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgobject-2_0-0-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgobject-2_0-0-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgobject-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgthread-2_0-0-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgthread-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgthread-2_0-0-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgthread-2_0-0-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:gio-branding-upstream-2.78.6-150600.4.16.1.noarch",
"openSUSE Leap 15.6:glib2-devel-2.78.6-150600.4.16.1.aarch64",
"openSUSE Leap 15.6:glib2-devel-2.78.6-150600.4.16.1.ppc64le",
"openSUSE Leap 15.6:glib2-devel-2.78.6-150600.4.16.1.s390x",
"openSUSE Leap 15.6:glib2-devel-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:glib2-devel-32bit-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:glib2-devel-static-2.78.6-150600.4.16.1.aarch64",
"openSUSE Leap 15.6:glib2-devel-static-2.78.6-150600.4.16.1.ppc64le",
"openSUSE Leap 15.6:glib2-devel-static-2.78.6-150600.4.16.1.s390x",
"openSUSE Leap 15.6:glib2-devel-static-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:glib2-doc-2.78.6-150600.4.16.1.aarch64",
"openSUSE Leap 15.6:glib2-doc-2.78.6-150600.4.16.1.ppc64le",
"openSUSE Leap 15.6:glib2-doc-2.78.6-150600.4.16.1.s390x",
"openSUSE Leap 15.6:glib2-doc-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:glib2-lang-2.78.6-150600.4.16.1.noarch",
"openSUSE Leap 15.6:glib2-tests-devel-2.78.6-150600.4.16.1.aarch64",
"openSUSE Leap 15.6:glib2-tests-devel-2.78.6-150600.4.16.1.ppc64le",
"openSUSE Leap 15.6:glib2-tests-devel-2.78.6-150600.4.16.1.s390x",
"openSUSE Leap 15.6:glib2-tests-devel-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:glib2-tools-2.78.6-150600.4.16.1.aarch64",
"openSUSE Leap 15.6:glib2-tools-2.78.6-150600.4.16.1.ppc64le",
"openSUSE Leap 15.6:glib2-tools-2.78.6-150600.4.16.1.s390x",
"openSUSE Leap 15.6:glib2-tools-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:glib2-tools-32bit-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:libgio-2_0-0-2.78.6-150600.4.16.1.aarch64",
"openSUSE Leap 15.6:libgio-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"openSUSE Leap 15.6:libgio-2_0-0-2.78.6-150600.4.16.1.s390x",
"openSUSE Leap 15.6:libgio-2_0-0-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:libgio-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:libglib-2_0-0-2.78.6-150600.4.16.1.aarch64",
"openSUSE Leap 15.6:libglib-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"openSUSE Leap 15.6:libglib-2_0-0-2.78.6-150600.4.16.1.s390x",
"openSUSE Leap 15.6:libglib-2_0-0-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:libglib-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:libgmodule-2_0-0-2.78.6-150600.4.16.1.aarch64",
"openSUSE Leap 15.6:libgmodule-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"openSUSE Leap 15.6:libgmodule-2_0-0-2.78.6-150600.4.16.1.s390x",
"openSUSE Leap 15.6:libgmodule-2_0-0-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:libgmodule-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:libgobject-2_0-0-2.78.6-150600.4.16.1.aarch64",
"openSUSE Leap 15.6:libgobject-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"openSUSE Leap 15.6:libgobject-2_0-0-2.78.6-150600.4.16.1.s390x",
"openSUSE Leap 15.6:libgobject-2_0-0-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:libgobject-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:libgthread-2_0-0-2.78.6-150600.4.16.1.aarch64",
"openSUSE Leap 15.6:libgthread-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"openSUSE Leap 15.6:libgthread-2_0-0-2.78.6-150600.4.16.1.s390x",
"openSUSE Leap 15.6:libgthread-2_0-0-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:libgthread-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Basesystem 15 SP6:glib2-devel-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:glib2-devel-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:glib2-devel-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:glib2-devel-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:glib2-lang-2.78.6-150600.4.16.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:glib2-tools-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:glib2-tools-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:glib2-tools-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:glib2-tools-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgio-2_0-0-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgio-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgio-2_0-0-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgio-2_0-0-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgio-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libglib-2_0-0-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libglib-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libglib-2_0-0-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libglib-2_0-0-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libglib-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgmodule-2_0-0-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgmodule-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgmodule-2_0-0-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgmodule-2_0-0-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgmodule-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgobject-2_0-0-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgobject-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgobject-2_0-0-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgobject-2_0-0-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgobject-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgthread-2_0-0-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgthread-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgthread-2_0-0-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgthread-2_0-0-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:glib2-devel-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:glib2-devel-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:glib2-devel-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:glib2-devel-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:glib2-lang-2.78.6-150600.4.16.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:glib2-tools-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:glib2-tools-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:glib2-tools-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:glib2-tools-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgio-2_0-0-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgio-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgio-2_0-0-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgio-2_0-0-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgio-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libglib-2_0-0-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libglib-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libglib-2_0-0-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libglib-2_0-0-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libglib-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgmodule-2_0-0-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgmodule-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgmodule-2_0-0-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgmodule-2_0-0-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgmodule-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgobject-2_0-0-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgobject-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgobject-2_0-0-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgobject-2_0-0-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgobject-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgthread-2_0-0-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgthread-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgthread-2_0-0-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgthread-2_0-0-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:gio-branding-upstream-2.78.6-150600.4.16.1.noarch",
"openSUSE Leap 15.6:glib2-devel-2.78.6-150600.4.16.1.aarch64",
"openSUSE Leap 15.6:glib2-devel-2.78.6-150600.4.16.1.ppc64le",
"openSUSE Leap 15.6:glib2-devel-2.78.6-150600.4.16.1.s390x",
"openSUSE Leap 15.6:glib2-devel-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:glib2-devel-32bit-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:glib2-devel-static-2.78.6-150600.4.16.1.aarch64",
"openSUSE Leap 15.6:glib2-devel-static-2.78.6-150600.4.16.1.ppc64le",
"openSUSE Leap 15.6:glib2-devel-static-2.78.6-150600.4.16.1.s390x",
"openSUSE Leap 15.6:glib2-devel-static-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:glib2-doc-2.78.6-150600.4.16.1.aarch64",
"openSUSE Leap 15.6:glib2-doc-2.78.6-150600.4.16.1.ppc64le",
"openSUSE Leap 15.6:glib2-doc-2.78.6-150600.4.16.1.s390x",
"openSUSE Leap 15.6:glib2-doc-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:glib2-lang-2.78.6-150600.4.16.1.noarch",
"openSUSE Leap 15.6:glib2-tests-devel-2.78.6-150600.4.16.1.aarch64",
"openSUSE Leap 15.6:glib2-tests-devel-2.78.6-150600.4.16.1.ppc64le",
"openSUSE Leap 15.6:glib2-tests-devel-2.78.6-150600.4.16.1.s390x",
"openSUSE Leap 15.6:glib2-tests-devel-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:glib2-tools-2.78.6-150600.4.16.1.aarch64",
"openSUSE Leap 15.6:glib2-tools-2.78.6-150600.4.16.1.ppc64le",
"openSUSE Leap 15.6:glib2-tools-2.78.6-150600.4.16.1.s390x",
"openSUSE Leap 15.6:glib2-tools-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:glib2-tools-32bit-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:libgio-2_0-0-2.78.6-150600.4.16.1.aarch64",
"openSUSE Leap 15.6:libgio-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"openSUSE Leap 15.6:libgio-2_0-0-2.78.6-150600.4.16.1.s390x",
"openSUSE Leap 15.6:libgio-2_0-0-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:libgio-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:libglib-2_0-0-2.78.6-150600.4.16.1.aarch64",
"openSUSE Leap 15.6:libglib-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"openSUSE Leap 15.6:libglib-2_0-0-2.78.6-150600.4.16.1.s390x",
"openSUSE Leap 15.6:libglib-2_0-0-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:libglib-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:libgmodule-2_0-0-2.78.6-150600.4.16.1.aarch64",
"openSUSE Leap 15.6:libgmodule-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"openSUSE Leap 15.6:libgmodule-2_0-0-2.78.6-150600.4.16.1.s390x",
"openSUSE Leap 15.6:libgmodule-2_0-0-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:libgmodule-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:libgobject-2_0-0-2.78.6-150600.4.16.1.aarch64",
"openSUSE Leap 15.6:libgobject-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"openSUSE Leap 15.6:libgobject-2_0-0-2.78.6-150600.4.16.1.s390x",
"openSUSE Leap 15.6:libgobject-2_0-0-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:libgobject-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:libgthread-2_0-0-2.78.6-150600.4.16.1.aarch64",
"openSUSE Leap 15.6:libgthread-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"openSUSE Leap 15.6:libgthread-2_0-0-2.78.6-150600.4.16.1.s390x",
"openSUSE Leap 15.6:libgthread-2_0-0-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:libgthread-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-06-30T07:14:42Z",
"details": "moderate"
}
],
"title": "CVE-2025-4373"
},
{
"cve": "CVE-2025-6052",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-6052"
}
],
"notes": [
{
"category": "general",
"text": "unknown",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Basesystem 15 SP6:glib2-devel-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:glib2-devel-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:glib2-devel-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:glib2-devel-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:glib2-lang-2.78.6-150600.4.16.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:glib2-tools-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:glib2-tools-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:glib2-tools-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:glib2-tools-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgio-2_0-0-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgio-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgio-2_0-0-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgio-2_0-0-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgio-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libglib-2_0-0-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libglib-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libglib-2_0-0-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libglib-2_0-0-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libglib-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgmodule-2_0-0-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgmodule-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgmodule-2_0-0-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgmodule-2_0-0-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgmodule-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgobject-2_0-0-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgobject-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgobject-2_0-0-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgobject-2_0-0-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgobject-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgthread-2_0-0-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgthread-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgthread-2_0-0-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgthread-2_0-0-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:glib2-devel-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:glib2-devel-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:glib2-devel-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:glib2-devel-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:glib2-lang-2.78.6-150600.4.16.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:glib2-tools-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:glib2-tools-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:glib2-tools-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:glib2-tools-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgio-2_0-0-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgio-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgio-2_0-0-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgio-2_0-0-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgio-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libglib-2_0-0-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libglib-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libglib-2_0-0-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libglib-2_0-0-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libglib-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgmodule-2_0-0-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgmodule-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgmodule-2_0-0-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgmodule-2_0-0-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgmodule-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgobject-2_0-0-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgobject-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgobject-2_0-0-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgobject-2_0-0-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgobject-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgthread-2_0-0-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgthread-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgthread-2_0-0-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgthread-2_0-0-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:gio-branding-upstream-2.78.6-150600.4.16.1.noarch",
"openSUSE Leap 15.6:glib2-devel-2.78.6-150600.4.16.1.aarch64",
"openSUSE Leap 15.6:glib2-devel-2.78.6-150600.4.16.1.ppc64le",
"openSUSE Leap 15.6:glib2-devel-2.78.6-150600.4.16.1.s390x",
"openSUSE Leap 15.6:glib2-devel-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:glib2-devel-32bit-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:glib2-devel-static-2.78.6-150600.4.16.1.aarch64",
"openSUSE Leap 15.6:glib2-devel-static-2.78.6-150600.4.16.1.ppc64le",
"openSUSE Leap 15.6:glib2-devel-static-2.78.6-150600.4.16.1.s390x",
"openSUSE Leap 15.6:glib2-devel-static-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:glib2-doc-2.78.6-150600.4.16.1.aarch64",
"openSUSE Leap 15.6:glib2-doc-2.78.6-150600.4.16.1.ppc64le",
"openSUSE Leap 15.6:glib2-doc-2.78.6-150600.4.16.1.s390x",
"openSUSE Leap 15.6:glib2-doc-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:glib2-lang-2.78.6-150600.4.16.1.noarch",
"openSUSE Leap 15.6:glib2-tests-devel-2.78.6-150600.4.16.1.aarch64",
"openSUSE Leap 15.6:glib2-tests-devel-2.78.6-150600.4.16.1.ppc64le",
"openSUSE Leap 15.6:glib2-tests-devel-2.78.6-150600.4.16.1.s390x",
"openSUSE Leap 15.6:glib2-tests-devel-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:glib2-tools-2.78.6-150600.4.16.1.aarch64",
"openSUSE Leap 15.6:glib2-tools-2.78.6-150600.4.16.1.ppc64le",
"openSUSE Leap 15.6:glib2-tools-2.78.6-150600.4.16.1.s390x",
"openSUSE Leap 15.6:glib2-tools-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:glib2-tools-32bit-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:libgio-2_0-0-2.78.6-150600.4.16.1.aarch64",
"openSUSE Leap 15.6:libgio-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"openSUSE Leap 15.6:libgio-2_0-0-2.78.6-150600.4.16.1.s390x",
"openSUSE Leap 15.6:libgio-2_0-0-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:libgio-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:libglib-2_0-0-2.78.6-150600.4.16.1.aarch64",
"openSUSE Leap 15.6:libglib-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"openSUSE Leap 15.6:libglib-2_0-0-2.78.6-150600.4.16.1.s390x",
"openSUSE Leap 15.6:libglib-2_0-0-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:libglib-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:libgmodule-2_0-0-2.78.6-150600.4.16.1.aarch64",
"openSUSE Leap 15.6:libgmodule-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"openSUSE Leap 15.6:libgmodule-2_0-0-2.78.6-150600.4.16.1.s390x",
"openSUSE Leap 15.6:libgmodule-2_0-0-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:libgmodule-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:libgobject-2_0-0-2.78.6-150600.4.16.1.aarch64",
"openSUSE Leap 15.6:libgobject-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"openSUSE Leap 15.6:libgobject-2_0-0-2.78.6-150600.4.16.1.s390x",
"openSUSE Leap 15.6:libgobject-2_0-0-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:libgobject-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:libgthread-2_0-0-2.78.6-150600.4.16.1.aarch64",
"openSUSE Leap 15.6:libgthread-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"openSUSE Leap 15.6:libgthread-2_0-0-2.78.6-150600.4.16.1.s390x",
"openSUSE Leap 15.6:libgthread-2_0-0-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:libgthread-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-6052",
"url": "https://www.suse.com/security/cve/CVE-2025-6052"
},
{
"category": "external",
"summary": "SUSE Bug 1244596 for CVE-2025-6052",
"url": "https://bugzilla.suse.com/1244596"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Basesystem 15 SP6:glib2-devel-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:glib2-devel-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:glib2-devel-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:glib2-devel-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:glib2-lang-2.78.6-150600.4.16.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:glib2-tools-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:glib2-tools-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:glib2-tools-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:glib2-tools-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgio-2_0-0-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgio-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgio-2_0-0-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgio-2_0-0-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgio-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libglib-2_0-0-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libglib-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libglib-2_0-0-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libglib-2_0-0-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libglib-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgmodule-2_0-0-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgmodule-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgmodule-2_0-0-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgmodule-2_0-0-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgmodule-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgobject-2_0-0-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgobject-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgobject-2_0-0-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgobject-2_0-0-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgobject-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgthread-2_0-0-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgthread-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgthread-2_0-0-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgthread-2_0-0-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:glib2-devel-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:glib2-devel-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:glib2-devel-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:glib2-devel-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:glib2-lang-2.78.6-150600.4.16.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:glib2-tools-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:glib2-tools-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:glib2-tools-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:glib2-tools-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgio-2_0-0-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgio-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgio-2_0-0-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgio-2_0-0-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgio-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libglib-2_0-0-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libglib-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libglib-2_0-0-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libglib-2_0-0-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libglib-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgmodule-2_0-0-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgmodule-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgmodule-2_0-0-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgmodule-2_0-0-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgmodule-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgobject-2_0-0-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgobject-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgobject-2_0-0-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgobject-2_0-0-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgobject-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgthread-2_0-0-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgthread-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgthread-2_0-0-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgthread-2_0-0-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:gio-branding-upstream-2.78.6-150600.4.16.1.noarch",
"openSUSE Leap 15.6:glib2-devel-2.78.6-150600.4.16.1.aarch64",
"openSUSE Leap 15.6:glib2-devel-2.78.6-150600.4.16.1.ppc64le",
"openSUSE Leap 15.6:glib2-devel-2.78.6-150600.4.16.1.s390x",
"openSUSE Leap 15.6:glib2-devel-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:glib2-devel-32bit-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:glib2-devel-static-2.78.6-150600.4.16.1.aarch64",
"openSUSE Leap 15.6:glib2-devel-static-2.78.6-150600.4.16.1.ppc64le",
"openSUSE Leap 15.6:glib2-devel-static-2.78.6-150600.4.16.1.s390x",
"openSUSE Leap 15.6:glib2-devel-static-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:glib2-doc-2.78.6-150600.4.16.1.aarch64",
"openSUSE Leap 15.6:glib2-doc-2.78.6-150600.4.16.1.ppc64le",
"openSUSE Leap 15.6:glib2-doc-2.78.6-150600.4.16.1.s390x",
"openSUSE Leap 15.6:glib2-doc-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:glib2-lang-2.78.6-150600.4.16.1.noarch",
"openSUSE Leap 15.6:glib2-tests-devel-2.78.6-150600.4.16.1.aarch64",
"openSUSE Leap 15.6:glib2-tests-devel-2.78.6-150600.4.16.1.ppc64le",
"openSUSE Leap 15.6:glib2-tests-devel-2.78.6-150600.4.16.1.s390x",
"openSUSE Leap 15.6:glib2-tests-devel-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:glib2-tools-2.78.6-150600.4.16.1.aarch64",
"openSUSE Leap 15.6:glib2-tools-2.78.6-150600.4.16.1.ppc64le",
"openSUSE Leap 15.6:glib2-tools-2.78.6-150600.4.16.1.s390x",
"openSUSE Leap 15.6:glib2-tools-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:glib2-tools-32bit-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:libgio-2_0-0-2.78.6-150600.4.16.1.aarch64",
"openSUSE Leap 15.6:libgio-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"openSUSE Leap 15.6:libgio-2_0-0-2.78.6-150600.4.16.1.s390x",
"openSUSE Leap 15.6:libgio-2_0-0-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:libgio-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:libglib-2_0-0-2.78.6-150600.4.16.1.aarch64",
"openSUSE Leap 15.6:libglib-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"openSUSE Leap 15.6:libglib-2_0-0-2.78.6-150600.4.16.1.s390x",
"openSUSE Leap 15.6:libglib-2_0-0-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:libglib-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:libgmodule-2_0-0-2.78.6-150600.4.16.1.aarch64",
"openSUSE Leap 15.6:libgmodule-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"openSUSE Leap 15.6:libgmodule-2_0-0-2.78.6-150600.4.16.1.s390x",
"openSUSE Leap 15.6:libgmodule-2_0-0-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:libgmodule-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:libgobject-2_0-0-2.78.6-150600.4.16.1.aarch64",
"openSUSE Leap 15.6:libgobject-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"openSUSE Leap 15.6:libgobject-2_0-0-2.78.6-150600.4.16.1.s390x",
"openSUSE Leap 15.6:libgobject-2_0-0-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:libgobject-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:libgthread-2_0-0-2.78.6-150600.4.16.1.aarch64",
"openSUSE Leap 15.6:libgthread-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"openSUSE Leap 15.6:libgthread-2_0-0-2.78.6-150600.4.16.1.s390x",
"openSUSE Leap 15.6:libgthread-2_0-0-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:libgthread-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Basesystem 15 SP6:glib2-devel-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:glib2-devel-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:glib2-devel-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:glib2-devel-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:glib2-lang-2.78.6-150600.4.16.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:glib2-tools-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:glib2-tools-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:glib2-tools-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:glib2-tools-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgio-2_0-0-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgio-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgio-2_0-0-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgio-2_0-0-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgio-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libglib-2_0-0-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libglib-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libglib-2_0-0-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libglib-2_0-0-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libglib-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgmodule-2_0-0-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgmodule-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgmodule-2_0-0-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgmodule-2_0-0-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgmodule-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgobject-2_0-0-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgobject-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgobject-2_0-0-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgobject-2_0-0-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgobject-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgthread-2_0-0-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgthread-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgthread-2_0-0-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:libgthread-2_0-0-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:glib2-devel-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:glib2-devel-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:glib2-devel-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:glib2-devel-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:glib2-lang-2.78.6-150600.4.16.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:glib2-tools-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:glib2-tools-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:glib2-tools-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:glib2-tools-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgio-2_0-0-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgio-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgio-2_0-0-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgio-2_0-0-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgio-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libglib-2_0-0-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libglib-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libglib-2_0-0-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libglib-2_0-0-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libglib-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgmodule-2_0-0-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgmodule-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgmodule-2_0-0-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgmodule-2_0-0-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgmodule-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgobject-2_0-0-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgobject-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgobject-2_0-0-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgobject-2_0-0-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgobject-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgthread-2_0-0-2.78.6-150600.4.16.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgthread-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgthread-2_0-0-2.78.6-150600.4.16.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:libgthread-2_0-0-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:gio-branding-upstream-2.78.6-150600.4.16.1.noarch",
"openSUSE Leap 15.6:glib2-devel-2.78.6-150600.4.16.1.aarch64",
"openSUSE Leap 15.6:glib2-devel-2.78.6-150600.4.16.1.ppc64le",
"openSUSE Leap 15.6:glib2-devel-2.78.6-150600.4.16.1.s390x",
"openSUSE Leap 15.6:glib2-devel-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:glib2-devel-32bit-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:glib2-devel-static-2.78.6-150600.4.16.1.aarch64",
"openSUSE Leap 15.6:glib2-devel-static-2.78.6-150600.4.16.1.ppc64le",
"openSUSE Leap 15.6:glib2-devel-static-2.78.6-150600.4.16.1.s390x",
"openSUSE Leap 15.6:glib2-devel-static-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:glib2-doc-2.78.6-150600.4.16.1.aarch64",
"openSUSE Leap 15.6:glib2-doc-2.78.6-150600.4.16.1.ppc64le",
"openSUSE Leap 15.6:glib2-doc-2.78.6-150600.4.16.1.s390x",
"openSUSE Leap 15.6:glib2-doc-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:glib2-lang-2.78.6-150600.4.16.1.noarch",
"openSUSE Leap 15.6:glib2-tests-devel-2.78.6-150600.4.16.1.aarch64",
"openSUSE Leap 15.6:glib2-tests-devel-2.78.6-150600.4.16.1.ppc64le",
"openSUSE Leap 15.6:glib2-tests-devel-2.78.6-150600.4.16.1.s390x",
"openSUSE Leap 15.6:glib2-tests-devel-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:glib2-tools-2.78.6-150600.4.16.1.aarch64",
"openSUSE Leap 15.6:glib2-tools-2.78.6-150600.4.16.1.ppc64le",
"openSUSE Leap 15.6:glib2-tools-2.78.6-150600.4.16.1.s390x",
"openSUSE Leap 15.6:glib2-tools-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:glib2-tools-32bit-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:libgio-2_0-0-2.78.6-150600.4.16.1.aarch64",
"openSUSE Leap 15.6:libgio-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"openSUSE Leap 15.6:libgio-2_0-0-2.78.6-150600.4.16.1.s390x",
"openSUSE Leap 15.6:libgio-2_0-0-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:libgio-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:libglib-2_0-0-2.78.6-150600.4.16.1.aarch64",
"openSUSE Leap 15.6:libglib-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"openSUSE Leap 15.6:libglib-2_0-0-2.78.6-150600.4.16.1.s390x",
"openSUSE Leap 15.6:libglib-2_0-0-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:libglib-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:libgmodule-2_0-0-2.78.6-150600.4.16.1.aarch64",
"openSUSE Leap 15.6:libgmodule-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"openSUSE Leap 15.6:libgmodule-2_0-0-2.78.6-150600.4.16.1.s390x",
"openSUSE Leap 15.6:libgmodule-2_0-0-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:libgmodule-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:libgobject-2_0-0-2.78.6-150600.4.16.1.aarch64",
"openSUSE Leap 15.6:libgobject-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"openSUSE Leap 15.6:libgobject-2_0-0-2.78.6-150600.4.16.1.s390x",
"openSUSE Leap 15.6:libgobject-2_0-0-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:libgobject-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:libgthread-2_0-0-2.78.6-150600.4.16.1.aarch64",
"openSUSE Leap 15.6:libgthread-2_0-0-2.78.6-150600.4.16.1.ppc64le",
"openSUSE Leap 15.6:libgthread-2_0-0-2.78.6-150600.4.16.1.s390x",
"openSUSE Leap 15.6:libgthread-2_0-0-2.78.6-150600.4.16.1.x86_64",
"openSUSE Leap 15.6:libgthread-2_0-0-32bit-2.78.6-150600.4.16.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-06-30T07:14:42Z",
"details": "important"
}
],
"title": "CVE-2025-6052"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…
Loading…