Fluid Attacks Database

Description

glib-networking's OpenSSL backend fails to properly check the return value of memory allocation routines. An out of memory condition could potentially result in writing to an invalid memory location.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package	Affected version
debian 13	glib-networking	=2.80.1-1
debian 12	glib-networking	=2.74.0-4 \|\| =2.76.0-1 \|\| =2.76.1-1 \|\| =2.76.1-2 \|\| =2.76~beta-1 \|\| =2.78.0-1 \|\| =2.80.0-1 \|\| =2.80.1-1 \|\| =2.80~alpha-1 \|\| =2.80~alpha-2 \|\| =2.80~rc-1
debian 11	glib-networking	=2.66.0-2 \|\| =2.68.1-1 \|\| =2.68.1-2 \|\| =2.68.2-1 \|\| =2.68.2-2 \|\| =2.70.0-1 \|\| =2.70.1-1 \|\| =2.72.0-1 \|\| =2.72.1-1 \|\| =2.72.2-1 \|\| =2.72~alpha-1 \|\| =2.72~beta-1 \|\| =2.74.0-1 \|\| =2.74.0-2 \|\| =2.74.0-3 \|\| =2.74.0-4 \|\| =2.74~beta-1 \|\| =2.74~beta-2 \|\| =2.74~rc-1 \|\| =2.76.0-1 \|\| =2.76.1-1 \|\| =2.76.1-2 \|\| =2.76~beta-1 \|\| =2.78.0-1 \|\| =2.80.0-1 \|\| =2.80.1-1 \|\| =2.80~alpha-1 \|\| =2.80~alpha-2 \|\| =2.80~rc-1
debian 14	glib-networking	=2.80.1-1

Aliases

1. CVE-2025-600192. NVD-2025-600193. OSV-DEBIAN-2025-600194. OSV-2025-600195. SECURITY-TRACKER-CVE-2025-60019

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.