glib2-2.68.4-18.el9_7.2

エラータID: AXSA:2026-608:06

Release date: 
Tuesday, May 12, 2026 - 19:35
Subject: 
glib2-2.68.4-18.el9_7.2
Affected Channels: 
MIRACLE LINUX 9 for x86_64
Severity: 
Moderate
Description: 

GLib provides the core application building blocks for libraries and applications written in C. It provides the core object system used in GNOME, the main loop implementation, and a large set of utility functions for strings and common data structures.

Security Fix(es):

* glib: GLib: Buffer underflow in GVariant parser leads to heap corruption (CVE-2025-14087)
* glib: Integer Overflow in GLib GIO Attribute Escaping Causes Heap Buffer Overflow (CVE-2025-14512)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

CVE-2025-14087
A flaw was found in GLib (Gnome Lib). This vulnerability allows a remote attacker to cause heap corruption, leading to a denial of service or potential code execution via a buffer-underflow in the GVariant parser when processing maliciously crafted input strings.
CVE-2025-14512
A flaw was found in glib. This vulnerability allows a heap buffer overflow and denial-of-service (DoS) via an integer overflow in GLib's GIO (GLib Input/Output) escape_byte_string() function when processing malicious file or remote filesystem attribute values.

Solution: 

Update packages.

CVEs: 
CVE-2025-14087
A flaw was found in GLib (Gnome Lib). This vulnerability allows a remote attacker to cause heap corruption, leading to a denial of service or potential code execution via a buffer-underflow in the GVariant parser when processing maliciously crafted input strings.
CVE-2025-14512
A flaw was found in glib. This vulnerability allows a heap buffer overflow and denial-of-service (DoS) via an integer overflow in GLib's GIO (GLib Input/Output) escape_byte_string() function when processing malicious file or remote filesystem attribute values.
Additional Info: 

N/A

Download: 

SRPMS
  1. glib2-2.68.4-18.el9_7.2.src.rpm
    MD5: ef86bfcc8ce020ee6ced43c439118fcf
    SHA-256: 8f634ed0fa42e9a150edaffccf59e99529caca6c53792797ab38dd855523cdc6
    Size: 4.85 MB

Asianux Server 9 for x86_64
  1. glib2-2.68.4-18.el9_7.2.i686.rpm
    MD5: 5a2ab9c8235927933d87ab3bcab3f385
    SHA-256: c6e37d3c8a3e015f3cb225f52dc6f3115b26ca62f35f4093fe2cc7edb46f3971
    Size: 2.71 MB
  2. glib2-2.68.4-18.el9_7.2.x86_64.rpm
    MD5: e1e7708c1942308d46ce45082add3db4
    SHA-256: 5577a9458c49a3b4eec9c13ae6892ca917a45410f5bad9beb87a766f671d293c
    Size: 2.64 MB
  3. glib2-devel-2.68.4-18.el9_7.2.i686.rpm
    MD5: 14ff21977350182d0050bd585b6bc5cc
    SHA-256: 01e26d626e168235781a0faefe6b1f69617059b8ad7d55c5d3c720798ce27787
    Size: 547.29 kB
  4. glib2-devel-2.68.4-18.el9_7.2.x86_64.rpm
    MD5: 59d3bcea61988f869d00911e80d1bde8
    SHA-256: afe1f8aa457b534b831b826eccf824bfc84462d81cbbdc0631e4054e96a82f40
    Size: 546.24 kB
  5. glib2-doc-2.68.4-18.el9_7.2.noarch.rpm
    MD5: af885a329c483e01b152237ec8d5fe9f
    SHA-256: c9085b6cc0c6cea325ac6131ef76e3269c87c239daaf954560ffddf0ea337963
    Size: 1.48 MB
  6. glib2-static-2.68.4-18.el9_7.2.i686.rpm
    MD5: 9a9d03f004996920d367d35d78d5190d
    SHA-256: 44fdaa73acafeb9380d30866f147d859497588d27bdbbf903254cc56ff1dbb03
    Size: 1.51 MB
  7. glib2-static-2.68.4-18.el9_7.2.x86_64.rpm
    MD5: 53622d73a980b9037fb24935a59929e9
    SHA-256: ce7d464a4f90e12fcb2676d22d80ba49400c7ee34c9c3fe7c3cd03b498a1e0e1
    Size: 1.39 MB
  8. glib2-tests-2.68.4-18.el9_7.2.x86_64.rpm
    MD5: 059619f6d937e0ca13126d0e3fb9a764
    SHA-256: fe0f3b3ac34e38cfc26c69ea2466cb27a86de93fe42d20812b506a6ded923a62
    Size: 1.93 MB