ALT-PU-2021-1310-1
Closed vulnerabilities
Published: 2021-02-04
BDU:2021-00816
Уязвимость функции g_byte_array_new_take() библиотеки Glib, позволяющая нарушителю выполнить произвольный код
Severity: CRITICAL (9.8)
Vector: AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
References:
Published: 2021-02-15
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2021-27218
An issue was discovered in GNOME GLib before 2.66.7 and 2.67.x before 2.67.4. If g_byte_array_new_take() was called with a buffer of 4GB or more on a 64-bit platform, the length would be truncated modulo 2**32, causing unintended length truncation.
Severity: HIGH (7.5)
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
References:
- https://gitlab.gnome.org/GNOME/glib/-/merge_requests/1942
- https://gitlab.gnome.org/GNOME/glib/-/merge_requests/1942
- https://gitlab.gnome.org/GNOME/glib/-/merge_requests/1944
- https://gitlab.gnome.org/GNOME/glib/-/merge_requests/1944
- [bookkeeper-issues] 20210629 [GitHub] [bookkeeper] padma81 opened a new issue #2746: Security Vulnerabilities in CentOS 7 image, Upgrade image to CentOS 8
- [bookkeeper-issues] 20210629 [GitHub] [bookkeeper] padma81 opened a new issue #2746: Security Vulnerabilities in CentOS 7 image, Upgrade image to CentOS 8
- [bookkeeper-issues] 20210628 [GitHub] [bookkeeper] padma81 opened a new issue #2746: Security Vulnerabilities in CentOS 7 image, Upgrade image to CentOS 8
- [bookkeeper-issues] 20210628 [GitHub] [bookkeeper] padma81 opened a new issue #2746: Security Vulnerabilities in CentOS 7 image, Upgrade image to CentOS 8
- [mina-dev] 20210225 [jira] [Created] (FTPSERVER-500) Security vulnerability in common/lib/log4j-1.2.17.jar
- [mina-dev] 20210225 [jira] [Created] (FTPSERVER-500) Security vulnerability in common/lib/log4j-1.2.17.jar
- [debian-lts-announce] 20220606 [SECURITY] [DLA 3044-1] glib2.0 security update
- [debian-lts-announce] 20220606 [SECURITY] [DLA 3044-1] glib2.0 security update
- FEDORA-2021-7c71cda8da
- FEDORA-2021-7c71cda8da
- FEDORA-2021-7b5e2e6844
- FEDORA-2021-7b5e2e6844
- GLSA-202107-13
- GLSA-202107-13
- https://security.netapp.com/advisory/ntap-20210319-0004/
- https://security.netapp.com/advisory/ntap-20210319-0004/