VYPR

rpm package

suse/glib2-branding-SLE&distro=SUSE Linux Enterprise Server for SAP applications 16.0

pkg:rpm/suse/glib2-branding-SLE&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20applications%2016.0

Vulnerabilities (4)

  • CVE-2025-14512MedDec 11, 2025
    affected < 16-160000.2.2fixed 16-160000.2.2

    A flaw was found in glib. This vulnerability allows a heap buffer overflow and denial-of-service (DoS) via an integer overflow in GLib's GIO (GLib Input/Output) escape_byte_string() function when processing malicious file or remote filesystem attribute values.

  • CVE-2025-14087MedDec 10, 2025
    affected < 16-160000.2.2fixed 16-160000.2.2

    A flaw was found in GLib (Gnome Lib). This vulnerability allows a remote attacker to cause heap corruption, leading to a denial of service or potential code execution via a buffer-underflow in the GVariant parser when processing maliciously crafted input strings.

  • CVE-2025-13601HigNov 26, 2025
    affected < 16-160000.2.2fixed 16-160000.2.2

    A heap-based buffer overflow problem was found in glib through an incorrect calculation of buffer size in the g_escape_uri_string() function. If the string to escape contains a very large number of unacceptable characters (which would need escaping), the calculation of the length

  • CVE-2025-7039LowSep 3, 2025
    affected < 16-160000.2.2fixed 16-160000.2.2

    A flaw was found in glib. An integer overflow during temporary file creation leads to an out-of-bounds memory access, allowing an attacker to potentially perform path traversal or access private temporary file content by creating symbolic links. This vulnerability allows a local