A flaw was found in GLib, which is vulnerable to an integer overflow in the g_string_insert_unichar() function. When the position at which to insert the character is large, the position will overflow, leading to a buffer underwrite.
| Version | Base score | Base severity | Vector |
|---|---|---|---|
| 3.1 | 4.8 | MEDIUM | CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L |
| CAPEC ID | Description |
|---|
Currently, no mitigation is available for this vulnerability.
| Event | Date |
|---|---|
| Reported to Red Hat. | 2025-05-06 00:33:30 |
| Made public. | 2025-05-06 00:00:00 |
| Version | Base score | Base severity | Vector |
|---|
| CAPEC ID | Description |
|---|
| Event | Date |
|---|
| Hyperlink | Resource |
|---|
| Version | Base score | Base severity | Vector |
|---|
| CAPEC ID | Description |
|---|
| Event | Date |
|---|
| Hyperlink | Resource |
|---|---|
| https://cert-portal.siemens.com/productcert/html/ssa-082556.html | N/A |
| https://cert-portal.siemens.com/productcert/html/ssa-089022.html | N/A |