{"id":"USN-4049-3","summary":"glib2.0 regression","details":"USN-4049-1 fixed a vulnerability in GLib. The update introduced a regression\nin Ubuntu 16.04 LTS causing a possibly memory leak. This update fixes the problem.\n\nWe apologize for the inconvenience.\n\nOriginal advisory details:\n\n It was discovered that GLib created directories and files without properly\n restricting permissions. An attacker could possibly use this issue to access\n sensitive information.\n","modified":"2026-04-22T09:58:38.478107Z","published":"2019-08-05T18:04:30Z","related":["UBUNTU-CVE-2019-13012"],"references":[{"type":"ADVISORY","url":"https://ubuntu.com/security/notices/USN-4049-3"},{"type":"REPORT","url":"https://launchpad.net/bugs/1838890"}],"affected":[{"package":{"name":"glib2.0","ecosystem":"Ubuntu:16.04:LTS","purl":"pkg:deb/ubuntu/glib2.0@2.48.2-0ubuntu4.4?arch=source&distro=xenial"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.48.2-0ubuntu4.4"}]}],"versions":["2.46.1-1","2.46.1-2","2.47.1-1","2.47.3-3","2.47.4-1","2.47.5-1","2.47.6-1","2.48.0-1ubuntu3","2.48.0-1ubuntu4","2.48.1-1~ubuntu16.04.1","2.48.2-0ubuntu1","2.48.2-0ubuntu3","2.48.2-0ubuntu4","2.48.2-0ubuntu4.1","2.48.2-0ubuntu4.2","2.48.2-0ubuntu4.3"],"ecosystem_specific":{"binaries":[{"binary_version":"2.48.2-0ubuntu4.4","binary_name":"libglib2.0-0"},{"binary_version":"2.48.2-0ubuntu4.4","binary_name":"libglib2.0-0-refdbg"},{"binary_version":"2.48.2-0ubuntu4.4","binary_name":"libglib2.0-bin"},{"binary_version":"2.48.2-0ubuntu4.4","binary_name":"libglib2.0-data"},{"binary_version":"2.48.2-0ubuntu4.4","binary_name":"libglib2.0-tests"}],"availability":"No subscription required"},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-4049-3.json","cves_map":{"ecosystem":"Ubuntu:16.04:LTS","cves":[]}}}],"schema_version":"1.7.5"}