{"id":"CLSA-2024-1722525083","summary":"glib2: Fix of 3 CVEs","details":"- CVE-2023-29499: Fix GVariant offset table entry size which is not checked\n  in is_normal()\n- CVE-2023-32611: Fix an issue where g_variant_byteswap() can take a long time\n  with some non-normal inputs\n- CVE-2023-32665: Fix GVariant deserialisation which does not match spec\n  for non-normal data\n- Enable internal tests during meson build and ignore the failing ones","modified":"2026-06-01T00:30:18.601543184Z","published":"2024-08-01T15:38:40Z","upstream":["CVE-2023-29499","CVE-2023-32611","CVE-2023-32665"],"references":[{"type":"ADVISORY","url":"https://errata.tuxcare.com/almalinux9.2-esu/CLSA-2024-1722525083.html"}],"affected":[{"package":{"name":"glib2","ecosystem":"TuxCare:AlmaLinux:9.2","purl":"pkg:rpm/tuxcare/glib2?distro=almalinux-9.2"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.68.4-6.el9.tuxcare.els1"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2024-1722525083.json"}},{"package":{"name":"glib2-devel","ecosystem":"TuxCare:AlmaLinux:9.2","purl":"pkg:rpm/tuxcare/glib2-devel?distro=almalinux-9.2"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.68.4-6.el9.tuxcare.els1"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2024-1722525083.json"}},{"package":{"name":"glib2-doc","ecosystem":"TuxCare:AlmaLinux:9.2","purl":"pkg:rpm/tuxcare/glib2-doc?distro=almalinux-9.2"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.68.4-6.el9.tuxcare.els1"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2024-1722525083.json"}},{"package":{"name":"glib2-static","ecosystem":"TuxCare:AlmaLinux:9.2","purl":"pkg:rpm/tuxcare/glib2-static?distro=almalinux-9.2"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.68.4-6.el9.tuxcare.els1"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2024-1722525083.json"}},{"package":{"name":"glib2-tests","ecosystem":"TuxCare:AlmaLinux:9.2","purl":"pkg:rpm/tuxcare/glib2-tests?distro=almalinux-9.2"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.68.4-6.el9.tuxcare.els1"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2024-1722525083.json"}}],"schema_version":"1.7.5"}