Fluid Attacks Database

Description

glib-networking's OpenSSL backend fails to properly check the return value of a call to BIO_write(), resulting in an out of bounds read.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package	Affected version
debian 11	glib-networking	=2.66.0-2 \|\| =2.68.1-1 \|\| =2.68.1-2 \|\| =2.68.2-1 \|\| =2.68.2-2 \|\| =2.70.0-1 \|\| =2.70.1-1 \|\| =2.72.0-1 \|\| =2.72.1-1 \|\| =2.72.2-1 \|\| =2.72~alpha-1 \|\| =2.72~beta-1 \|\| =2.74.0-1 \|\| =2.74.0-2 \|\| =2.74.0-3 \|\| =2.74.0-4 \|\| =2.74~beta-1 \|\| =2.74~beta-2 \|\| =2.74~rc-1 \|\| =2.76.0-1 \|\| =2.76.1-1 \|\| =2.76.1-2 \|\| =2.76~beta-1 \|\| =2.78.0-1 \|\| =2.80.0-1 \|\| =2.80.1-1 \|\| =2.80~alpha-1 \|\| =2.80~alpha-2 \|\| =2.80~rc-1
debian 12	glib-networking	=2.74.0-4 \|\| =2.76.0-1 \|\| =2.76.1-1 \|\| =2.76.1-2 \|\| =2.76~beta-1 \|\| =2.78.0-1 \|\| =2.80.0-1 \|\| =2.80.1-1 \|\| =2.80~alpha-1 \|\| =2.80~alpha-2 \|\| =2.80~rc-1
debian 13	glib-networking	=2.80.1-1
debian 14	glib-networking	=2.80.1-1

Aliases

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.