Information on source package glib2.0

Available versions

ReleaseVersion
jessie2.42.1-1+deb8u6
stretch2.50.3-2+deb9u5
stretch (security)2.50.3-2+deb9u3
buster2.58.3-2+deb10u3
buster (security)2.58.3-2+deb10u5
bullseye2.66.8-1+deb11u1
bookworm2.74.6-2
trixie2.78.4-1
sid2.78.4-7

Open unimportant issues

BugjessiestretchbusterbullseyebookwormtrixiesidDescription
CVE-2020-35457vulnerablevulnerablevulnerablefixedfixedfixedfixedGNOME GLib before 2.65.3 has an integer overflow, that might lead to a ...
CVE-2012-0039vulnerablevulnerablevulnerablevulnerablevulnerablevulnerablevulnerableGLib 2.31.8 and earlier, when the g_str_hash function is used, compute ...

Resolved issues

BugDescription
CVE-2023-32665A flaw was found in GLib. GVariant deserialization is vulnerable to an ...
CVE-2023-32643A flaw was found in GLib. The GVariant deserialization code is vulnera ...
CVE-2023-32636A flaw was found in glib, where the gvariant deserialization code is v ...
CVE-2023-32611A flaw was found in GLib. GVariant deserialization is vulnerable to a ...
CVE-2023-29499A flaw was found in GLib. GVariant deserialization fails to validate t ...
CVE-2021-28153An issue was discovered in GNOME GLib before 2.66.8. When g_file_repla ...
CVE-2021-27219An issue was discovered in GNOME GLib before 2.66.6 and 2.67.x before ...
CVE-2021-27218An issue was discovered in GNOME GLib before 2.66.7 and 2.67.x before ...
CVE-2021-3800A flaw was found in glib before version 2.63.6. Due to random charset ...
CVE-2020-6750GSocketClient in GNOME GLib through 2.62.4 may occasionally connect di ...
CVE-2019-25085A vulnerability was found in GNOME gvdb. It has been classified as cri ...
CVE-2019-13012The keyfile settings backend in GNOME GLib (aka glib2.0) before 2.60.0 ...
CVE-2019-12450file_copy_fallback in gio/gfile.c in GNOME GLib 2.15.0 through 2.61.1 ...
CVE-2019-9633gio/gsocketclient.c in GNOME GLib 2.59.2 does not ensure that a parent ...
CVE-2018-16429GNOME GLib 2.56.1 has an out-of-bounds read vulnerability in g_markup_ ...
CVE-2018-16428In GNOME GLib 2.56.1, g_markup_parse_context_end_parse() in gmarkup.c ...
CVE-2012-3524libdbus 1.5.x and earlier, when used in setuid or other privileged pro ...
CVE-2009-3289The g_file_copy function in glib 2.0 sets the permissions of a target ...
CVE-2008-4316Multiple integer overflows in glib/gbase64.c in GLib before 2.20 allow ...
CVE-2007-4768Heap-based buffer overflow in Perl-Compatible Regular Expression (PCRE ...
CVE-2007-4767Perl-Compatible Regular Expression (PCRE) library before 7.3 does not ...
CVE-2007-4766Multiple integer overflows in Perl-Compatible Regular Expression (PCRE ...
CVE-2007-1662Perl-Compatible Regular Expression (PCRE) library before 7.3 reads pas ...
CVE-2007-1661Perl-Compatible Regular Expression (PCRE) library before 7.3 backtrack ...
CVE-2007-1660Perl-Compatible Regular Expression (PCRE) library before 7.0 does not ...
CVE-2007-1659Perl-Compatible Regular Expression (PCRE) library before 7.3 allows co ...
CVE-2006-7226Perl-Compatible Regular Expression (PCRE) library before 6.7 does not ...
CVE-2006-7225Perl-Compatible Regular Expression (PCRE) library before 6.7 allows co ...

Security announcements

DSA / DLADescription
DLA-3583-1glib2.0 - security update
ELA-964-1glib2.0 - security update
DLA-3110-1glib2.0 - security update
ELA-679-1glib2.0 - security update
ELA-625-1glib2.0 - security update
DLA-3044-1glib2.0 - security update
DLA-1866-2glib2.0 - regression update
DLA-1866-1glib2.0 - security update
ELA-140-1glib2.0 - security update
DLA-1826-1glib2.0 - security update
ELA-125-1glib2.0 - security update
DSA-1747-1glib2.0 - arbitrary code execution

Search for package or bug name: Reporting problems