CNNVD-202601-4435 Information
CNNVD ID
CNNVD-202601-4435
Related CVE
- CNNVD Published: 2026-01-27
Description (Chinese)
glib是GNOME项目的一个通用的、可移植的实用程序库。提供了许多有用的数据类型、宏、类型转换、字符串实用程序、文件实用程序、主循环抽象等。 glib存在缓冲区错误漏洞,该漏洞源于Unicode大小写转换实现中存在整数溢出,可能导致内存损坏和越界写入,造成应用程序崩溃或变得不稳定。
Description (English)
glib is a common, portable and practical repository for the GNOME project. Many useful data types, macros, type conversions, string applications, file applications, main cycle abstractions, etc. are provided. Grib had an error loophole in the buffer zone, which stemmed from an integer spill in the completion of the Unicode case conversion, which could lead to memory damage and cross-border writing, causing the application to collapse or instability.
Hazard Level
High
Vulnerability Type
缓冲区错误
Affected Vendor
GNOME
Published
2026-01-27
Last Modified
2026-02-24
References
https://access.redhat.com/security/cve/CVE-2026-1489 https://bugzilla.redhat.com/show_bug.cgi?id=2433348 https://access.redhat.com/security/cve/cve-2026-1489
Patch
https://gitlab.gnome.org/GNOME/glib
Share on: