glib2-2.68.4-16.el9_6.2

エラータID: AXSA:2025-10648:03

Release date: 
Wednesday, July 30, 2025 - 12:25
Subject: 
glib2-2.68.4-16.el9_6.2
Affected Channels: 
MIRACLE LINUX 9 for x86_64
Severity: 
Moderate
Description: 

GLib provides the core application building blocks for libraries and applications written in C. It provides the core object system used in GNOME, the main loop implementation, and a large set of utility functions for strings and common data structures.

Security Fix(es):

* glib: buffer overflow in set_connect_msg() (CVE-2024-52533)
* glib: Buffer Underflow on GLib through glib/gstring.c via function g_string_insert_unichar (CVE-2025-4373)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

CVE-2024-52533
gio/gsocks4aproxy.c in GNOME GLib before 2.82.1 has an off-by-one error and resultant buffer overflow because SOCKS4_CONN_MSG_LEN is not sufficient for a trailing '\0' character.
CVE-2025-4373
A flaw was found in GLib, which is vulnerable to an integer overflow in the g_string_insert_unichar() function. When the position at which to insert the character is large, the position will overflow, leading to a buffer underwrite.

Solution: 

Update packages.

CVEs: 
CVE-2024-52533
gio/gsocks4aproxy.c in GNOME GLib before 2.82.1 has an off-by-one error and resultant buffer overflow because SOCKS4_CONN_MSG_LEN is not sufficient for a trailing '\0' character.
CVE-2025-4373
A flaw was found in GLib, which is vulnerable to an integer overflow in the g_string_insert_unichar() function. When the position at which to insert the character is large, the position will overflow, leading to a buffer underwrite.
Additional Info: 

N/A

Download: 

SRPMS
  1. glib2-2.68.4-16.el9_6.2.src.rpm
    MD5: a717219be2e52b56dea79d6d16f3428d
    SHA-256: 87509c53a373a3fcc398db8e2f4d2e573f1c1234a47d08aeea2f25f4013ab1d0
    Size: 4.84 MB

Asianux Server 9 for x86_64
  1. glib2-2.68.4-16.el9_6.2.i686.rpm
    MD5: ccae795cef2d782511d46cbc5a7f5ec2
    SHA-256: b862f38a5152699e819d4fabae6bdc82b0cb8a02d671c962192cc4586276c2fb
    Size: 2.72 MB
  2. glib2-2.68.4-16.el9_6.2.x86_64.rpm
    MD5: 9ea4414c3e4c6862d4a79bef1067687a
    SHA-256: d7ba641e62829865f45cc9441352c574530876ba7a3bbe9b59ba82ccea1630e5
    Size: 2.64 MB
  3. glib2-devel-2.68.4-16.el9_6.2.i686.rpm
    MD5: 4f10ba92271c960ec753b3fa65854392
    SHA-256: bcacb7cf0bd173d97d9efbb3606ba93e7971858d43a1e3cbd6011d92681b210b
    Size: 548.74 kB
  4. glib2-devel-2.68.4-16.el9_6.2.x86_64.rpm
    MD5: 99f641e1fd5742ea04698cfdb6f66268
    SHA-256: 20a19e9013a4789d077f6bb3600376cab8bcdc19efe018e35593b04048472dde
    Size: 547.22 kB
  5. glib2-doc-2.68.4-16.el9_6.2.noarch.rpm
    MD5: 5184a3894854d4bdad2252cb53eb70ac
    SHA-256: d31ddaaaefc36287c6cabbca679e2f8d9d34f98e882f1a23ada527320e95d6ec
    Size: 1.48 MB
  6. glib2-static-2.68.4-16.el9_6.2.i686.rpm
    MD5: 92cbbbc5fd0dbfd0455af236519d94e0
    SHA-256: 61587a6d6ef0d424699ea89834358276b1a6585e2333453016b6ebc2aaef6c1b
    Size: 1.51 MB
  7. glib2-static-2.68.4-16.el9_6.2.x86_64.rpm
    MD5: 5e90ac759df82286ebe362669577fb97
    SHA-256: fe4302fad24af0f4f964dc74e88dceb94b392f4ac5414fb3be6f68dd7b31e0e5
    Size: 1.39 MB
  8. glib2-tests-2.68.4-16.el9_6.2.x86_64.rpm
    MD5: 9a519c3680650c9e47a5565aa486891a
    SHA-256: a0df8ab261c203a7b62b9203acaff6ad9d9e5dff010692e128493fe467b4b0b6
    Size: 1.98 MB