Glib

This hub aggregates every CVE we track for Glib, a product in the oss libraries space. Use it to gauge the current risk picture and drill into individual advisories.

Severity distribution

Monthly trend

The 15 most recently published vulnerabilities affecting Glib.

• CVE-2026-1489Glib: glib: memory corruption via integer overflow in unicode case conversion5.4Jan 27, 2026
• CVE-2026-1485Glib: glib: local denial of service via buffer underflow in content type parsing2.8Jan 27, 2026
• CVE-2026-1484Glib: integer overflow leading to buffer underflow and out-of-bounds write in glib g_base64_encode()4.2Jan 27, 2026
• CVE-2026-0988Glib: glib: denial of service via integer overflow in g_buffered_input_stream_peek()3.7Jan 21, 2026
• CVE-2025-14512Glib: integer overflow in glib gio attribute escaping causes heap buffer overflow6.5Dec 11, 2025
• CVE-2025-14087Glib: glib: buffer underflow in gvariant parser leads to heap corruption5.6Dec 10, 2025
• CVE-2025-13601Glib: integer overflow in in g_escape_uri_string()7.7Nov 26, 2025
• CVE-2025-7039Glib: buffer under-read on glib through glib/gfileutils.c via get_tmp_file()3.7Sep 3, 2025
• CVE-2025-4056Glib: glib crash after long command line7.5Jul 28, 2025
• CVE-2025-6052Glib: integer overflow in g_string_maybe_expand() leading to potential buffer overflow in glib gstring3.7Jun 13, 2025
• CVE-2025-4373Glib: buffer underflow on glib through glib/gstring.c via function g_string_insert_unichar4.8May 6, 2025
• CVE-2025-3360Glibc: glib prior to 2.82.5 is vulnerable to integer overflow and buffer under-read when parsing a very long invalid iso 8601 timestamp with g_date_time_new_from_iso8601().3.7Apr 7, 2025
• CVE-2024-52533gio/gsocks4aproxy.c in GNOME GLib before 2.82.1 has an off-by-one error and resultant buffer overflow because SOCKS4_CONN_MSG_LEN is not sufficient for a trailing '\0' character.9.8Nov 11, 2024
• CVE-2024-34397An issue was discovered in GNOME GLib before 2.78.5, and 2.79.x and 2.80.x before 2.80.1. When a GDBus-based client subscribes to signals from a trusted system service such as NetworkManager on a s...5.2May 7, 2024
• CVE-2023-32636A flaw was found in glib, where the gvariant deserialization code is vulnerable to a denial of service introduced by additional input validation added to resolve CVE-2023-29499. The offset table va...4.7Sep 14, 2023