« List of all CVEs

CVE-2025-14087

Glib: glib: buffer underflow in gvariant parser leads to heap corruption

Published: 12/10/2025 Last updated: 6/2/2026 Reserved: 12/5/2025

A flaw was found in GLib (Gnome Lib). This vulnerability allows a remote attacker to cause heap corruption, leading to a denial of service or potential code execution via a buffer-underflow in the GVariant parser when processing maliciously crafted input strings.

CNA assigner: redhat (53f830b8-0a3f-465b-8143-3b8a9948e749) Requested by: n/a

Metrics

Version Score Severity Vector String
3.1 5.6 Medium CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L

Opam packages affected (1)

conf-glib-2

Products affected (77)

Product Vendor Version
Red Hat Enterprise Linux 9 Red Hat unspecified
Red Hat Enterprise Linux 10 Red Hat n/a
Red Hat Enterprise Linux 9 Red Hat MDM9206, MDM9607, MDM9650, SD 210/SD 212/SD 205, SD 425, SD 430, SD 450, SD 625, SD 650/52, SD 835, SD 845, SD 850, SDA660
Red Hat Enterprise Linux 10 Red Hat Windows 10 Version 1803 for x64-based Systems
glib GNOME n/a
glib GNOME Windows Server 2008 R2 for Itanium-Based Systems Service Pack 1
Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support Red Hat Windows 10 Version 1703 for 32-bit Systems
Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On Red Hat 2.4.20
Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support Red Hat 6.1.1
Red Hat Enterprise Linux 8.6 Telecommunications Update Service Red Hat Windows 10 Version 1703 for x64-based Systems
Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions Red Hat BOARD REV - 1
Red Hat Enterprise Linux 8.8 Telecommunications Update Service Red Hat 2.4.18
Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions Red Hat 6.2.0
Red Hat Enterprise Linux 9 Red Hat SYSTEM Version -118
Red Hat Enterprise Linux 9 Red Hat 2.4.17
Red Hat Enterprise Linux 9 Red Hat 7.0.1
Red Hat Enterprise Linux 9 Red Hat Windows 10 Version 1709 for 32-bit Systems
Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions Red Hat 2.4.16
Red Hat Enterprise Linux 9.4 Extended Update Support Red Hat Windows 10 Version 1709 for x64-based Systems
Red Hat Enterprise Linux 9.6 Extended Update Support Red Hat 2.4.12
Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions Red Hat 7.0.3
Red Hat Enterprise Linux 10 Red Hat Windows 10 Version 1607 for 32-bit Systems
Red Hat Enterprise Linux 10 Red Hat 2.4.25
Red Hat Enterprise Linux 10.0 Extended Update Support Red Hat Windows 10 Version 1607 for x64-based Systems
Red Hat Enterprise Linux 7 Extended Lifecycle Support Red Hat 2.4.23
Red Hat Enterprise Linux 8 Red Hat 6.0.5
Red Hat Enterprise Linux 6 Red Hat n/a
Red Hat Enterprise Linux 10 Red Hat unspecified
Red Hat Enterprise Linux 10 Red Hat unspecified
Red Hat Enterprise Linux 10.0 Extended Update Support Red Hat n/a
Red Hat Enterprise Linux 7 Extended Lifecycle Support Red Hat Windows Server 2008 R2 for x64-based Systems Service Pack 1
Red Hat Enterprise Linux 8 Red Hat Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)
Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support Red Hat unspecified
Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On Red Hat unspecified
Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support Red Hat < publication
Red Hat Enterprise Linux 8.6 Telecommunications Update Service Red Hat Windows Server 2012
Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions Red Hat Windows Server 2012 (Server Core installation)
Red Hat Enterprise Linux 8.8 Telecommunications Update Service Red Hat unspecified
Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions Red Hat n/a
Red Hat Enterprise Linux 9 Red Hat Windows Server 2012 R2
Red Hat Enterprise Linux 9 Red Hat n/a
Red Hat Enterprise Linux 9 Red Hat Windows Server 2012 R2 (Server Core installation)
Red Hat Enterprise Linux 9 Red Hat unspecified
Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions Red Hat n/a
Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions Red Hat Windows Server 2016
Red Hat Enterprise Linux 9.4 Extended Update Support Red Hat Windows Server 2016 (Server Core installation)
Red Hat Enterprise Linux 9.6 Extended Update Support Red Hat unspecified
Red Hat Enterprise Linux 6 Red Hat unspecified
Red Hat Hardened Images Red Hat n/a
Red Hat Enterprise Linux 10 Red Hat n/a
Red Hat Enterprise Linux 10 Red Hat 2.4.7
Red Hat Insights proxy 1.5 Red Hat n/a
Red Hat Insights proxy 1.5 Red Hat 2.4.10
Red Hat Enterprise Linux 9 Red Hat Microsoft System Center Endpoint Protection
Red Hat Enterprise Linux 8 Red Hat 14.0
Red Hat Enterprise Linux 8 Red Hat Microsoft Security Essentials
Red Hat Enterprise Linux 9 Red Hat Windows 10 Version 1809 for x64-based Systems
Red Hat Enterprise Linux 10 Red Hat unspecified
Red Hat Enterprise Linux 10 Red Hat Microsoft Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016.
Red Hat Enterprise Linux 9 Red Hat n/a
Red Hat Enterprise Linux 10 Red Hat Windows Intune Endpoint Protection
Red Hat Enterprise Linux 9 Red Hat < 61
Red Hat Enterprise Linux 10 Red Hat Windows 10 Version 1803 for ARM64-based Systems
Red Hat Enterprise Linux 8 Red Hat Windows 10 Version 1809 for 32-bit Systems
Red Hat Enterprise Linux 8 Red Hat < 60.1
Red Hat Enterprise Linux 10 Red Hat n/a
Red Hat Enterprise Linux 10 Red Hat 9.0.1.1049
Red Hat Update Infrastructure 5 Red Hat n/a
Red Hat Update Infrastructure 5 Red Hat n/a
Red Hat Update Infrastructure 5 Red Hat Windows Server, version 1709 (Server Core Installation)
Red Hat Update Infrastructure 5 Red Hat Windows 10 Version 1803 for 32-bit Systems
Red Hat Update Infrastructure 5 Red Hat 2.4.9
Red Hat Update Infrastructure 5 Red Hat Apache Hadoop 3.0.0-alpha2 to 3.0.0, 2.9.0 to 2.9.2, 2.8.0 to 2.8.5
Red Hat Update Infrastructure 5 Red Hat n/a
Red Hat Update Infrastructure 5 Red Hat n/a
Red Hat Enterprise Linux 10 Red Hat 2.4.6
Red Hat Enterprise Linux 10 Red Hat < 60

References (40)

Credits (2)