[Git][security-tracker-team/security-tracker][master] Add CVE-2025-3360/glib2.0

Salvatore Bonaccorso (@carnil) carnil at debian.org
Mon Apr 7 22:02:59 BST 2025 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
c2e0406d by Salvatore Bonaccorso at 2025-04-07T23:02:33+02:00
Add CVE-2025-3360/glib2.0

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -33,7 +33,14 @@ CVE-2025-3370 (A vulnerability classified as critical has been found in PHPGuruk
 CVE-2025-3369 (A vulnerability was found in xxyopen Novel-Plus 5.1.0. It has been rat ...)
 	NOT-FOR-US: xxyopen Novel-Plus
 CVE-2025-3360 (A flaw was found in GLib. An integer overflow and buffer under-read oc ...)
-	TODO: check
+	- glib2.0 <unfixed>
+	NOTE: https://gitlab.gnome.org/GNOME/glib/-/issues/3647
+	NOTE: https://gitlab.gnome.org/GNOME/glib/-/commit/8d60d7dc168aee73a15eb5edeb2deaf196d96114 (2.83.4)
+	NOTE: https://gitlab.gnome.org/GNOME/glib/-/commit/2fa1e183613bf58d31151ecaceab91607ccc0c6d (2.83.4)
+	NOTE: https://gitlab.gnome.org/GNOME/glib/-/commit/0b225e7cd80801aca6e627696064d1698aaa85e7 (2.83.4)
+	NOTE: https://gitlab.gnome.org/GNOME/glib/-/commit/3672764a17c26341ab8224dcaddf3e7cad699443 (2.83.4)
+	NOTE: https://gitlab.gnome.org/GNOME/glib/-/commit/0ffdbebd9ab3246958e14ab33bd0c65b6f05fd13 (2.83.4)
+	NOTE: https://gitlab.gnome.org/GNOME/glib/-/commit/cbd5c9b3cc993ff46be98f465d8701b4c9afc7cb (2.83.4)
 CVE-2025-3359 (A flaw was found in GNUPlot. A segmentation fault via IO_str_init_stat ...)
 	- gnuplot <unfixed> (unimportant)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2357749



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c2e0406d71a318bb6161886c8d5d60401b7d07c7

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c2e0406d71a318bb6161886c8d5d60401b7d07c7
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250407/a5a3a755/attachment.htm>

More information about the debian-security-tracker-commits mailing list