Information on source package glib2.0

Available versions

ReleaseVersion
jessie2.42.1-1
jessie (security)2.42.1-1+deb8u3
stretch2.50.3-2+deb9u1
buster2.58.3-2+deb10u1
bullseye2.60.6-2
sid2.60.6-2

Open issues

BugjessiestretchbusterbullseyesidDescription
CVE-2018-16428fixedvulnerable (no DSA)fixedfixedfixedIn GNOME GLib 2.56.1, g_markup_parse_context_end_parse() in gmarkup.c ...

Open unimportant issues

BugjessiestretchbusterbullseyesidDescription
CVE-2012-0039vulnerablevulnerablevulnerablevulnerablevulnerable** DISPUTED ** GLib 2.31.8 and earlier, when the g_str_hash function i ...

Resolved issues

BugDescription
CVE-2019-9633gio/gsocketclient.c in GNOME GLib 2.59.2 does not ensure that a parent ...
CVE-2019-13012The keyfile settings backend in GNOME GLib (aka glib2.0) before 2.60.0 ...
CVE-2019-12450file_copy_fallback in gio/gfile.c in GNOME GLib 2.15.0 through 2.61.1 ...
CVE-2018-16429GNOME GLib 2.56.1 has an out-of-bounds read vulnerability in g_markup_ ...
CVE-2012-3524libdbus 1.5.x and earlier, when used in setuid or other privileged pro ...
CVE-2009-3289The g_file_copy function in glib 2.0 sets the permissions of a target ...
CVE-2008-4316Multiple integer overflows in glib/gbase64.c in GLib before 2.20 allow ...
CVE-2007-4768Heap-based buffer overflow in Perl-Compatible Regular Expression (PCRE ...
CVE-2007-4767Perl-Compatible Regular Expression (PCRE) library before 7.3 does not ...
CVE-2007-4766Multiple integer overflows in Perl-Compatible Regular Expression (PCRE ...
CVE-2007-1662Perl-Compatible Regular Expression (PCRE) library before 7.3 reads pas ...
CVE-2007-1661Perl-Compatible Regular Expression (PCRE) library before 7.3 backtrack ...
CVE-2007-1660Perl-Compatible Regular Expression (PCRE) library before 7.0 does not ...
CVE-2007-1659Perl-Compatible Regular Expression (PCRE) library before 7.3 allows co ...
CVE-2006-7226Perl-Compatible Regular Expression (PCRE) library before 6.7 does not ...
CVE-2006-7225Perl-Compatible Regular Expression (PCRE) library before 6.7 allows co ...

Security announcements

DSA / DLADescription
DLA-1866-2glib2.0 - regression update
DLA-1866-1glib2.0 - security update
DLA-1826-1glib2.0 - security update
DSA-1747-1glib2.0 - arbitrary code execution
DSA-1747-1glib2.0 - arbitrary code execution

Search for package or bug name: Reporting problems