CVE-2025-6052

Glib: integer overflow in g_string_maybe_expand() leading to potential buffer overflow in glib gstring

Published: 6/13/2025 Last updated: 6/2/2026 Reserved: 6/13/2025

A flaw was found in how GLib’s GString manages memory when adding data to strings. If a string is already very large, combining it with more input can cause a hidden overflow in the size calculation. This makes the system think it has enough memory when it doesn’t. As a result, data may be written past the end of the allocated memory, leading to crashes or memory corruption.

CNA assigner: redhat (53f830b8-0a3f-465b-8143-3b8a9948e749) Requested by: n/a

Metrics

Version	Score	Severity	Vector String
3.1	3.7	Low	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

Opam packages affected (1)

conf-glib-2

Products affected (29)

Product	Vendor	Version
Red Hat Enterprise Linux 10	Red Hat	version 1803 (Server Core Installation)
Red Hat Enterprise Linux 9	Red Hat	2008 R2 for x64-based Systems Service Pack 1
Red Hat Enterprise Linux 10	Red Hat	3.1.0
Red Hat Enterprise Linux 9	Red Hat	Windows 8.1 for 32-bit systems
Red Hat Enterprise Linux 7	Red Hat	< publication
Red Hat Enterprise Linux 8	Red Hat	Not fixed
Red Hat Enterprise Linux 10	Red Hat	< 5.1.32
Red Hat Enterprise Linux 9	Red Hat	n/a
Red Hat Enterprise Linux 9	Red Hat	Windows 10 Version 1511 for 32-bit Systems
Red Hat Enterprise Linux 7	Red Hat	2008 R2 for x64-based Systems Service Pack 1 (Core installation)
Red Hat Enterprise Linux 10	Red Hat	3.2.0
Red Hat Enterprise Linux 8	Red Hat	Windows 10 for x64-based Systems
Red Hat Enterprise Linux 6	Red Hat	Windows Server 2012 (Server Core installation)
Red Hat Enterprise Linux 6	Red Hat	< 5.2.6
Red Hat Enterprise Linux 10	Red Hat	Windows Server 2012
Red Hat Enterprise Linux 10	Red Hat	10 Version 1709 for ARM64-based Systems
Red Hat Enterprise Linux 8	Red Hat	n/a
Red Hat Enterprise Linux 9	Red Hat	< 16.0.1150.1
Red Hat Enterprise Linux 8	Red Hat	n/a
Red Hat Enterprise Linux 9	Red Hat	Adobe Acrobat and Reader 2018.011.20038 and earlier, 2017.011.30079 and earlier, and 2015.006.30417 and earlier versions
Red Hat Enterprise Linux 10	Red Hat	n/a
Red Hat Enterprise Linux 10	Red Hat	Apache NiFi 1.3.0 to 1.9.2
Red Hat Enterprise Linux 8	Red Hat	2008 R2 for Itanium-Based Systems Service Pack 1
Red Hat Enterprise Linux 9	Red Hat	2008 for 32-bit Systems Service Pack 2 (Core installation)
Red Hat Enterprise Linux 10	Red Hat	< 16.0.4212.1
Red Hat Enterprise Linux 8	Red Hat	n/a
Red Hat Enterprise Linux 9	Red Hat	ver.2.8.4.0 and earlier and ver.3.3.0.0 and earlier
Red Hat Enterprise Linux 10	Red Hat	Infinity Delta, all versions, Delta XL, all versions, Kappa, all version, and Infinity Explorer C700, all versions.
Red Hat Enterprise Linux 10	Red Hat	Windows 10 for 32-bit Systems

References (8)

Credits (2)

Red Hat would like to thank Philip Withnall for reporting this issue.
Red Hat would like to thank Philip Withnall for reporting this issue.