VDB

DEBIAN-CVE-2025-14512

DEBIAN-CVE-2025-14512 PUBLISHED CVSS 6.5 MEDIUM

A flaw was found in glib. This vulnerability allows a heap buffer overflow and denial-of-service (DoS) via an integer overflow in GLib's GIO (GLib Input/Output) escape_byte_string() function when processing malicious file or remote filesystem attribute values.

Risk Scores

CVSS 3.1
6.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Affected Products

VendorProductVersions
Debian:13glib2.00, 2.84.3-1, 2.84.4-1
Debian:14glib2.02.84.3-1, 2.84.4-3, 2.84.4-3~deb13u2
Debian:12glib2.00, 2.74.6-2, 2.74.6-2+deb12u2
Debian:11glib2.00, 2.66.8-1, 2.66.8-1+deb11u1

Timeline

  • Dec 11, 2025 CVE Published
  • Apr 28, 2026 CVE Updated
Open in Interactive Console →
$ Console Community · 100/wk Open console ›