glib2-2.56.4-169.el8_10

エラータID: AXSA:2026-606:05

Release date: 
Tuesday, May 12, 2026 - 19:08
Subject: 
glib2-2.56.4-169.el8_10
Affected Channels: 
Asianux Server 8 for x86_64
Severity: 
Moderate
Description: 

GLib provides the core application building blocks for libraries and applications written in C. It provides the core object system used in GNOME, the main loop implementation, and a large set of utility functions for strings and common data structures.

Security Fix(es):

* glib: GLib: Buffer underflow in GVariant parser leads to heap corruption (CVE-2025-14087)
* glib: Integer Overflow in GLib GIO Attribute Escaping Causes Heap Buffer Overflow (CVE-2025-14512)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

CVE-2025-14087
A flaw was found in GLib (Gnome Lib). This vulnerability allows a remote attacker to cause heap corruption, leading to a denial of service or potential code execution via a buffer-underflow in the GVariant parser when processing maliciously crafted input strings.
CVE-2025-14512
A flaw was found in glib. This vulnerability allows a heap buffer overflow and denial-of-service (DoS) via an integer overflow in GLib's GIO (GLib Input/Output) escape_byte_string() function when processing malicious file or remote filesystem attribute values.

Solution: 

Update packages.

CVEs: 
CVE-2025-14087
A flaw was found in GLib (Gnome Lib). This vulnerability allows a remote attacker to cause heap corruption, leading to a denial of service or potential code execution via a buffer-underflow in the GVariant parser when processing maliciously crafted input strings.
CVE-2025-14512
A flaw was found in glib. This vulnerability allows a heap buffer overflow and denial-of-service (DoS) via an integer overflow in GLib's GIO (GLib Input/Output) escape_byte_string() function when processing malicious file or remote filesystem attribute values.
Additional Info: 

N/A

Download: 

SRPMS
  1. glib2-2.56.4-169.el8_10.src.rpm
    MD5: 0904eb0c64569dd3082d129759d9242e
    SHA-256: 944d1e6e45fa05eb586692a5de4e12655a626d44a7ad41919f1a7677473971e8
    Size: 6.84 MB

Asianux Server 8 for x86_64
  1. glib2-2.56.4-169.el8_10.i686.rpm
    MD5: e8af4d203e92eb501ab1d321a558d6c6
    SHA-256: 6f1fd1bfe60a8bcdc0e8ed0dc8232bab1fa1770ffaa848057804cfb8fd5d9d72
    Size: 2.59 MB
  2. glib2-2.56.4-169.el8_10.x86_64.rpm
    MD5: e4d580e85f549cf7bcd5433d96bdb2ed
    SHA-256: 99a62eea40607ef357ef832b9bf5c58beea9811dec641ed0ea42ce43a206fc69
    Size: 2.49 MB
  3. glib2-devel-2.56.4-169.el8_10.i686.rpm
    MD5: 180c6cbbe72831d1b3aa07e9fa1b3cb7
    SHA-256: 104b9d8a9d49ef1dc328d15c45221e0fede28a204d879ec0d7b964eaeb066be2
    Size: 426.45 kB
  4. glib2-devel-2.56.4-169.el8_10.x86_64.rpm
    MD5: e3e203220ba76779fa5e34202c1d6c4c
    SHA-256: 5d8927d1f21c1bcf0610587b00a417ae9d0a1a9f038753e4462031325fe73f54
    Size: 424.83 kB
  5. glib2-doc-2.56.4-169.el8_10.noarch.rpm
    MD5: 23ee214596608ccbed88e6c23a77e7dd
    SHA-256: 807b7ac85082731a49477b6cab696ad0afdb3776283f280830b811bfa0e55215
    Size: 1.57 MB
  6. glib2-fam-2.56.4-169.el8_10.x86_64.rpm
    MD5: 9c48f7c7f43571eddcef7fa8d38463e4
    SHA-256: 0ee5e8a7fa4b49480a101c16c95e450204da768aa05ecd81bf04b244ed1b0b85
    Size: 12.87 kB
  7. glib2-static-2.56.4-169.el8_10.i686.rpm
    MD5: c88cd340e38ae5d82123c7ac712fc387
    SHA-256: f82c28e1c95dd081e22c6c6836466515f1f282feecba0b921f7294bdbca455b0
    Size: 1.68 MB
  8. glib2-static-2.56.4-169.el8_10.x86_64.rpm
    MD5: 657161883857e80da9e2d9bccb655368
    SHA-256: d7723a1e0681e760fc09befc696fccb4ff968f8df807433ef6075efcf0b1b7ec
    Size: 1.53 MB
  9. glib2-tests-2.56.4-169.el8_10.x86_64.rpm
    MD5: e8f17896f73a5ee95e62493dff56f1c4
    SHA-256: 699a3983338f6eba7eae1610f10bdcd021029747b5f0f9349908ed205f6d79b8
    Size: 1.76 MB