[CLSA-2026:1771512005] glib2: Fix of 2 CVEs
Type:
security
Severity:
Critical
Release date:
2026-02-19 14:40:10 UTC
Description:
- CVE-2025-14087: fix heap corruption in GLib GVariant parser by preventing integer overflows and unsafe buffer size calculations - CVE-2025-14512: fix integer overflow in escape_byte_string() for byte strings with many invalid characters
Updated packages:
  • glib2-2.68.4-16.el9_6.3.tuxcare.els2.i686.rpm
    sha:ac2843d467bdd627e843100f352c291fa4e840c8f67193b356855cc06adebcdc
  • glib2-2.68.4-16.el9_6.3.tuxcare.els2.x86_64.rpm
    sha:a64ff3eaee9f91bcbe567d4b7ba2645a4368dbd3b4a85a558af4c36b16ffb488
  • glib2-devel-2.68.4-16.el9_6.3.tuxcare.els2.i686.rpm
    sha:259bbef61d1028d53ccd6ffbf1259da7726b94c568ea3bc88a0c57e0f9c0bd22
  • glib2-devel-2.68.4-16.el9_6.3.tuxcare.els2.x86_64.rpm
    sha:d8bddc3fb9930908f871999419016e0b295f0ba6278b5592ae448b4f18dfc0e6
  • glib2-doc-2.68.4-16.el9_6.3.tuxcare.els2.noarch.rpm
    sha:27b1c6f97303970e6c69486d53df5dd23dfdcf1a10f3ab48a17aa36a0da7d479
  • glib2-static-2.68.4-16.el9_6.3.tuxcare.els2.i686.rpm
    sha:5bc914c7c888f2112d927965ba2d8ae36b1e82de7acab7afcc0fd76d6337683a
  • glib2-static-2.68.4-16.el9_6.3.tuxcare.els2.x86_64.rpm
    sha:2ffb50aea7c64bb392868833c2ce447a9fc839747607a555cc6620ef099cd409
  • glib2-tests-2.68.4-16.el9_6.3.tuxcare.els2.x86_64.rpm
    sha:fd9ee055f8695eed5150d747a4a256b7ed9bdcc7648c568604cdc9922ebe2adb
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.