ALT-PU-2021-1212-1
Closed vulnerabilities
Published: 2021-02-14
BDU:2021-00680
Уязвимость функции g_bytes_new компонента gbytes.c библиотеки Glib, позволяющая нарушителю изменить содержимое динамической памяти
Severity: HIGH (7.5)
Vector: AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
References:
Published: 2021-02-15
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2021-27219
An issue was discovered in GNOME GLib before 2.66.6 and 2.67.x before 2.67.3. The function g_bytes_new has an integer overflow on 64-bit platforms due to an implicit cast from 64 bits to 32 bits. The overflow could potentially lead to memory corruption.
Severity: HIGH (7.5)
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
References:
- https://gitlab.gnome.org/GNOME/glib/-/issues/2319
- https://gitlab.gnome.org/GNOME/glib/-/issues/2319
- [mina-dev] 20210225 [jira] [Created] (FTPSERVER-500) Security vulnerability in common/lib/log4j-1.2.17.jar
- [mina-dev] 20210225 [jira] [Created] (FTPSERVER-500) Security vulnerability in common/lib/log4j-1.2.17.jar
- [debian-lts-announce] 20220606 [SECURITY] [DLA 3044-1] glib2.0 security update
- [debian-lts-announce] 20220606 [SECURITY] [DLA 3044-1] glib2.0 security update
- FEDORA-2021-7c71cda8da
- FEDORA-2021-7c71cda8da
- FEDORA-2021-7b5e2e6844
- FEDORA-2021-7b5e2e6844
- GLSA-202107-13
- GLSA-202107-13
- https://security.netapp.com/advisory/ntap-20210319-0004/
- https://security.netapp.com/advisory/ntap-20210319-0004/