mingw64-glib2-static (AlmaLinux:9) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the AlmaLinux:9 package mingw64-glib2-static, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (8)
CVE-2024-52533 — CVSS 9.8 (critical): gio/gsocks4aproxy.c in GNOME GLib before 2.82.1 has an off-by-one error and resultant buffer overflow because SOCKS4_CONN_MSG_LEN is not…
CVE-2025-13601 — CVSS 7.7 (high): A heap-based buffer overflow problem was found in glib through an incorrect calculation of buffer size in the g_escape_uri_string()…
CVE-2023-32611 — CVSS 5.5 (medium): A flaw was found in GLib. GVariant deserialization is vulnerable to a slowdown issue where a crafted GVariant can cause excessive…
CVE-2023-32665 — CVSS 5.5 (medium): A flaw was found in GLib. GVariant deserialization is vulnerable to an exponential blowup issue where a crafted GVariant can cause…
CVE-2023-29499 — CVSS 5.5 (medium): A flaw was found in GLib. GVariant deserialization fails to validate that the input conforms to the expected format, leading to denial of…
CVE-2021-28153 — CVSS 5.3 (medium): An issue was discovered in GNOME GLib before 2.66.8. When g_file_replace() is used with G_FILE_CREATE_REPLACE_DESTINATION to replace a path…
CVE-2024-34397 — CVSS 5.2 (medium): An issue was discovered in GNOME GLib before 2.78.5, and 2.79.x and 2.80.x before 2.80.1. When a GDBus-based client subscribes to signals…
CVE-2023-32636 — CVSS 4.7 (medium): A flaw was found in glib, where the gvariant deserialization code is vulnerable to a denial of service introduced by additional input…