glib2 (SUSE:Linux Enterprise High Performance Computing 15 SP1-LTSS) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the SUSE:Linux Enterprise High Performance Computing 15 SP1-LTSS package glib2, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (8)
CVE-2021-27219 — CVSS 7.5 (high): An issue was discovered in GNOME GLib before 2.66.6 and 2.67.x before 2.67.3. The function g_bytes_new has an integer overflow on 64-bit…
CVE-2021-27218 — CVSS 7.5 (high): An issue was discovered in GNOME GLib before 2.66.7 and 2.67.x before 2.67.4. If g_byte_array_new_take() was called with a buffer of 4GB or…
CVE-2023-32611 — CVSS 5.5 (medium): A flaw was found in GLib. GVariant deserialization is vulnerable to a slowdown issue where a crafted GVariant can cause excessive…
CVE-2023-32665 — CVSS 5.5 (medium): A flaw was found in GLib. GVariant deserialization is vulnerable to an exponential blowup issue where a crafted GVariant can cause…
CVE-2023-29499 — CVSS 5.5 (medium): A flaw was found in GLib. GVariant deserialization fails to validate that the input conforms to the expected format, leading to denial of…
CVE-2023-32643 — CVSS 5.3 (medium): A flaw was found in GLib. The GVariant deserialization code is vulnerable to a heap buffer overflow introduced by the fix for…
CVE-2021-28153 — CVSS 5.3 (medium): An issue was discovered in GNOME GLib before 2.66.8. When g_file_replace() is used with G_FILE_CREATE_REPLACE_DESTINATION to replace a path…
CVE-2023-32636 — CVSS 4.7 (medium): A flaw was found in glib, where the gvariant deserialization code is vulnerable to a denial of service introduced by additional input…