glib2 is vulnerable to symlink attack. The vulnerability exists due to a dangling symlink which incorrectly creates the target of the symlink as an empty file, which have security relevance if the symlink is attacker-controlled.

References

access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.5_release_notes/

access.redhat.com/errata/RHSA-2021:4385

access.redhat.com/security/updates/classification/#moderate

bugzilla.redhat.com/show_bug.cgi?id=1938291

gitlab.gnome.org/GNOME/glib/-/issues/2325

lists.debian.org/debian-lts-announce/2022/06/msg00006.html

lists.fedoraproject.org/archives/list/[email protected]/message/6RXTD5HCP2K4AAUSWWZTBKQNHRCTAEOF/

lists.fedoraproject.org/archives/list/[email protected]/message/ICUTQPHZNZWX2DZR46QFLQZRHVMHIILJ/

security.gentoo.org/glsa/202107-13

security.netapp.com/advisory/ntap-20210416-0003/

cbl_mariner 2

fedora 2

openvas 26

redhatcve 1

nessus 38

amazon 2

osv 6

alpinelinux 1

cloudlinux 1

gitlab 1

ubuntu 1

cloudfoundry 1

redhat 21

cve 1

almalinux 2

oraclelinux 2

mageia 2

cvelist 1

nvd 1

prion 1

ubuntucve 1

debiancve 1

suse 1

rocky 1

photon 8

debian 1

gentoo 1

ibm 4

ics 1

cbl_mariner

CVE-2021-28153 affecting package glib for versions less than 2.60.1-5

2022-04-09 06:51:45

CVE-2021-28153 affecting package glib 2.58.0-10

2021-05-06 23:56:44

fedora

[SECURITY] Fedora 33 Update: glib2-2.66.8-1.fc33

2021-03-22 01:04:19

[SECURITY] Fedora 33 Update: mingw-glib2-2.66.8-1.fc33

2021-04-19 17:46:14

openvas

SUSE: Security Advisory (SUSE-SU-2023:0174-1)

2023-08-22 00:00:00

openSUSE: Security Advisory for glib2 (SUSE-SU-2022:1455-1)

2022-05-17 00:00:00

Fedora: Security Advisory for glib2 (FEDORA-2021-a1f51fc418)

2021-03-22 00:00:00

redhatcve

CVE-2021-28153

2021-03-12 17:34:32

nessus

Photon OS 1.0: Glib PHSA-2021-1.0-0376

2021-04-01 00:00:00

EulerOS 2.0 SP5 : glib2 (EulerOS-SA-2021-2215)

2021-07-16 00:00:00

Photon OS 3.0: Glib PHSA-2021-3.0-0213

2021-04-01 00:00:00

amazon

Low: glib2

2024-02-29 10:03:00

Important: glib2

2023-04-27 16:19:00

osv

glib2.0 vulnerability

2021-03-15 17:06:03

CVE-2021-28153

2021-03-11 22:15:12

Low: mingw-glib2 security and bug fix update

2022-11-15 00:00:00

alpinelinux

CVE-2021-28153

2021-03-11 22:15:12

cloudlinux

Fix of CVE: CVE-2021-28153

2021-06-07 14:25:23

gitlab

Improper Link Resolution Before File Access

2021-03-11 00:00:00

ubuntu

GLib vulnerability

2021-03-15 00:00:00

cloudfoundry

USN-4764-1: GLib vulnerability | Cloud Foundry

2021-04-14 00:00:00

redhat

(RHSA-2022:8418) Low: mingw-glib2 security and bug fix update

2022-11-15 06:23:52

(RHSA-2021:4385) Moderate: glib2 security and bug fix update

2021-11-09 09:16:02

(RHSA-2022:0434) Moderate: Release of OpenShift Serverless 1.20.0

2022-02-03 17:07:25

cve

CVE-2021-28153

2021-03-11 22:15:12

almalinux

Low: mingw-glib2 security and bug fix update

2022-11-15 00:00:00

Moderate: glib2 security and bug fix update

2021-11-09 09:16:02

oraclelinux

mingw-glib2 security and bug fix update

2022-11-22 00:00:00

glib2 security and bug fix update

2021-11-16 00:00:00

mageia

Updated glib2.0 packages fix security vulnerability

2021-03-30 23:08:49

Updated glib2.0 packages fix security vulnerabilities

2021-07-09 01:43:19

cvelist

CVE-2021-28153

2021-03-11 21:04:15

nvd

CVE-2021-28153

2021-03-11 22:15:12

prion

Design/Logic Flaw

2021-03-11 22:15:00

ubuntucve

CVE-2021-28153

2021-03-11 00:00:00

debiancve

CVE-2021-28153

2021-03-11 22:15:12

suse

Security update for glib2 (low)

2022-04-28 00:00:00

rocky

glib2 security and bug fix update

2021-11-09 09:16:02

photon

Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2021-2.0-0333

2021-03-31 00:00:00

Important Photon OS Security Update - PHSA-2021-0213

2021-03-31 00:00:00

Important Photon OS Security Update - PHSA-2021-0333

2021-03-31 00:00:00

debian

[SECURITY] [DLA 3044-1] glib2.0 security update

2022-06-06 14:25:26

gentoo

GLib: Multiple vulnerabilities

2021-07-07 00:00:00

ibm

Security Bulletin: Multiple security vulnerabilities fixed in Cloud Pak for Automation components

2022-01-19 16:26:59

Security Bulletin: IBM QRadar SIEM is vulnerable to using components with Known Vulnerabilities

2022-04-25 14:44:33

Security Bulletin: IBM Cloud Pak for Security includes components with multiple known vulnerabilities

2023-01-19 13:54:16

ics

Siemens SIMATIC S7-1500 CPU 1518(F)-4 PN/DP MFP V3.1

2023-12-14 12:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

EPSS

0.013

Percentile

86.0%

JSON

Related for VERACODE:32998