Low: glib2 security and bug fix update

2023-11-0700:00:00

errata.almalinux.org

glib

security update

bug fix

gvariant

offset table

cve-2023-29499

cve-2023-32611

cve-2023-32665

almalinux

unix

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.1 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

42.2%

JSON

GLib provides the core application building blocks for libraries and applications written in C. It provides the core object system used in GNOME, the main loop implementation, and a large set of utility functions for strings and common data structures.

Security Fix(es):

glib: GVariant offset table entry size is not checked in is_normal() (CVE-2023-29499)
glib: g_variant_byteswap() can take a long time with some non-normal inputs (CVE-2023-32611)
glib: GVariant deserialisation does not match spec for non-normal data (CVE-2023-32665)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Additional Changes:

For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section.

OSVersionArchitecturePackageVersionFilename
almalinux9i686glib2-devel< 2.68.4-11.el9glib2-devel-2.68.4-11.el9.i686.rpm
almalinux9noarchglib2-doc< 2.68.4-11.el9glib2-doc-2.68.4-11.el9.noarch.rpm
almalinux9ppc64leglib2-tests< 2.68.4-11.el9glib2-tests-2.68.4-11.el9.ppc64le.rpm
almalinux9ppc64leglib2-devel< 2.68.4-11.el9glib2-devel-2.68.4-11.el9.ppc64le.rpm
almalinux9x86_64glib2-devel< 2.68.4-11.el9glib2-devel-2.68.4-11.el9.x86_64.rpm
almalinux9x86_64glib2-tests< 2.68.4-11.el9glib2-tests-2.68.4-11.el9.x86_64.rpm
almalinux9aarch64glib2-devel< 2.68.4-11.el9glib2-devel-2.68.4-11.el9.aarch64.rpm
almalinux9aarch64glib2-tests< 2.68.4-11.el9glib2-tests-2.68.4-11.el9.aarch64.rpm
almalinux9i686glib2< 2.68.4-11.el9glib2-2.68.4-11.el9.i686.rpm
almalinux9ppc64leglib2< 2.68.4-11.el9glib2-2.68.4-11.el9.ppc64le.rpm

OS	Version	Architecture	Package	Version	Filename
almalinux	9	i686	glib2-devel	< 2.68.4-11.el9	glib2-devel-2.68.4-11.el9.i686.rpm
almalinux	9	noarch	glib2-doc	< 2.68.4-11.el9	glib2-doc-2.68.4-11.el9.noarch.rpm
almalinux	9	ppc64le	glib2-tests	< 2.68.4-11.el9	glib2-tests-2.68.4-11.el9.ppc64le.rpm
almalinux	9	ppc64le	glib2-devel	< 2.68.4-11.el9	glib2-devel-2.68.4-11.el9.ppc64le.rpm
almalinux	9	x86_64	glib2-devel	< 2.68.4-11.el9	glib2-devel-2.68.4-11.el9.x86_64.rpm
almalinux	9	x86_64	glib2-tests	< 2.68.4-11.el9	glib2-tests-2.68.4-11.el9.x86_64.rpm
almalinux	9	aarch64	glib2-devel	< 2.68.4-11.el9	glib2-devel-2.68.4-11.el9.aarch64.rpm
almalinux	9	aarch64	glib2-tests	< 2.68.4-11.el9	glib2-tests-2.68.4-11.el9.aarch64.rpm
almalinux	9	i686	glib2	< 2.68.4-11.el9	glib2-2.68.4-11.el9.i686.rpm
almalinux	9	ppc64le	glib2	< 2.68.4-11.el9	glib2-2.68.4-11.el9.ppc64le.rpm