CNNVD-202601-3433 Information

CNNVD ID

CNNVD-202601-3433

Related CVE

CVE-2026-0988

• CNNVD Published: 2026-01-21

Description (Chinese)

glib是GNOME项目的一个通用的、可移植的实用程序库。提供了许多有用的数据类型、宏、类型转换、字符串实用程序、文件实用程序、主循环抽象等。 glib存在输入验证错误漏洞，该漏洞源于g_buffered_input_stream_peek函数未验证偏移和计数参数，可能导致整数溢出和缓冲区溢出，造成应用程序崩溃和拒绝服务。

Description (English)

glib is a common, portable and practical repository for the GNOME project. Many useful data types, macros, type conversions, string applications, file applications, main cycle abstractions, etc. are provided. glib has an input authentication error loophole, which stems from the failure of the g buffered input stream peek function to verify deviations and counting parameters, which could lead to integer and buffer spills, causing application collapse and denial of service.

Hazard Level

Critical

Vulnerability Type

输入验证错误

Affected Vendor

GNOME

Published

2026-01-21

Last Modified

2026-02-24

References

https://access.redhat.com/security/cve/CVE-2026-0988 https://bugzilla.redhat.com/show_bug.cgi?id=2429886