VDB

GCVE-VVD-MAGEIA-2026-23

GCVE-VVD-MAGEIA-2026-23
Advisory Published
Vulnetix · Advisory published March 31, 2026
Glib prior to 2.82.5 is vulnerable to integer overflow and buffer under-read when parsing a very long invalid iso 8601 timestamp with g_date_time_new_from_iso8601(). (CVE-2025-3360) Buffer under-read on glib through glib/gfileutils.c via get_tmp_file(). (CVE-2025-7039) Integer overflow in g_escape_uri_string(). (CVE-2025-13601) Buffer underflow in gvariant parser leads to heap corruption. (CVE-2025-14087) Integer overflow in glib gio attribute escaping causes heap buffer overflow. (CVE-2025-14512) Denial of service via integer overflow in g_buffered_input_stream_peek(). (CVE-2026-0988)
Download JSON Open in Console

Affected Products

VendorProductVersionsPlatforms
Mageiakodi0 (affected), 20.4-1.3.mga9 (unaffected), 0 (affected), 20.4-1.3.mga9.tainted (unaffected)
Mageiaglib2.00 (affected), 2.76.3-1.6.mga9 (unaffected), 0 (affected), 2.76.3-1.6.mga9 (unaffected)

Aliases

CVE-2026-0988CVE-2025-14512CVE-2025-7039

Transitive aliases

GHSA-m2x7-c9gp-xc46AZL-75020BELL-CVE-2025-14512AZL-72286VVD-CISA-2025-14512AZL-72299BELL-CVE-2025-7039EUVD-2025-26475RHSA-2026:7461TNCVE-2025-14512AZL-66783AZL-66780BELL-CVE-2026-0988VVD-CESS-2026-0988EUVD-2025-202664VVD-CISA-2025-7039VVD-CISA-2026-0988AZL-75017EUVD-2026-3684GHSA-2p5v-p767-wqv5VVD-CESS-2025-7039

References

Updated glib2.0 packages fix security vulnerabilities
advisory
Updated glib2.0 packages fix security vulnerabilities
issue
Updated glib2.0 packages fix security vulnerabilities
advisory
Updated kodi packages fix bug
advisory
Updated kodi packages fix bug
issue

Browse GCVE Records

100 records in the GCVE database · Updated April 16, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

Open in Console Download JSON
$ Console Community · 100/wk Open console ›