CNNVD-202512-2223 Information

CNNVD ID

CNNVD-202512-2223

Related CVE

CVE-2025-14512

• CNNVD Published: 2025-12-11

Description (Chinese)

glib是GNOME项目的一个通用的、可移植的实用程序库。提供了许多有用的数据类型、宏、类型转换、字符串实用程序、文件实用程序、主循环抽象等。 glib存在输入验证错误漏洞，该漏洞源于GLib的GIO escape_byte_string函数整数溢出，可能导致堆缓冲区溢出和拒绝服务。

Description (English)

glib is a common, portable and practical repository for the GNOME project. Many useful data types, macros, type conversions, string applications, file applications, main cycle abstractions, etc. are provided. The glib has an input validation error loophole, which originates from the spill-over of the GIO escape byte string function in Glib, which could lead to spills and denials of services in the buffer zone.

Hazard Level

High

Vulnerability Type

输入验证错误

Affected Vendor

GNOME

Published

2025-12-11

Last Modified

2026-02-24

References

https://access.redhat.com/security/cve/CVE-2025-14512 https://bugzilla.redhat.com/show_bug.cgi?id=2421339