CVE-2019-9633

NameCVE-2019-9633
Descriptiongio/gsocketclient.c in GNOME GLib 2.59.2 does not ensure that a parent ...
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, bugtraq, EDB, Metasploit, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, Mageia, GitHub code/issues, web search, more)

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
glib2.0 (PTS)stretch2.50.3-2+deb9u2fixed
buster2.58.3-2+deb10u2fixed
bullseye, sid2.64.3-2fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
glib2.0source(unstable)(not affected)

Notes

- glib2.0 <not-affected> (Vulnerable code introduced in 2.59.1, cf #924344)
https://gitlab.gnome.org/GNOME/glib/issues/1649
https://gitlab.gnome.org/GNOME/glib/commit/d553d92d6e9f53cbe5a34166fcb919ba652c6a8e (2.59.2)
Issue only in 2.59.1 and fixed in 2.59.2.

Search for package or bug name: Reporting problems