CNNVD-202506-1786 Information

CNNVD ID

CNNVD-202506-1786

Related CVE

CVE-2025-6052

• CNNVD Published: 2025-06-13

Description (Chinese)

glib是GNOME项目的一个通用的、可移植的实用程序库。提供了许多有用的数据类型、宏、类型转换、字符串实用程序、文件实用程序、主循环抽象等。 glib存在输入验证错误漏洞，该漏洞源于GString内存管理不当，可能导致崩溃或内存损坏。

Description (English)

glib is a common, portable and practical repository for the GNOME project. Many useful data types, macros, type conversions, string applications, file applications, main cycle abstractions, etc. are provided. There is an input validation error gap in glib, which stems from inadequate management of the GString memory, which could lead to collapse or memory damage.

Hazard Level

Critical

Vulnerability Type

输入验证错误

Affected Vendor

GNOME

Published

2025-06-13

Last Modified

2026-02-24

References

https://access.redhat.com/security/cve/CVE-2025-6052 https://bugzilla.redhat.com/show_bug.cgi?id=2372666 https://vigilance.fr/vulnerability/GLib-buffer-overflow-via-GString-47501 https://nvd.nist.gov/vuln/detail/CVE-2025-6052 https://www.oracle.com/security-alerts/cpujan2026.html