[Git][security-tracker-team/security-tracker][master] Add CVE-2025-14512/glib2.0

Salvatore Bonaccorso (@carnil) carnil at debian.org
Thu Dec 11 08:56:23 GMT 2025 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
ac295e19 by Salvatore Bonaccorso at 2025-12-11T09:55:52+01:00
Add CVE-2025-14512/glib2.0

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -124,8 +124,6 @@ CVE-2025-4097 (GitLab has remediated an issue in GitLab CE/EE affecting all vers
 	- gitlab <unfixed>
 CVE-2025-24857 (Improper access control for volatile memory containing boot code in Un ...)
 	TODO: check
-CVE-2025-14512 (A flaw was found in glib. This vulnerability allows a heap buffer over ...)
-	TODO: check
 CVE-2025-14485 (A weakness has been identified in EFM ipTIME A3004T 14.19.0. This vuln ...)
 	NOT-FOR-US: EFM ipTIME A3004T
 CVE-2025-14157 (GitLab has remediated an issue in GitLab CE/EE affecting all versions  ...)
@@ -5676,6 +5674,14 @@ CVE-2025-13674 (BPv7 dissector crash in Wireshark 4.6.0 allows denial of service
 	NOTE: Crash in CLI tool, no security impact
 CVE-2025-13611 (GitLab has remediated an issue in GitLab CE/EE affecting all versions  ...)
 	- gitlab <unfixed>
+CVE-2025-14512
+	- glib2.0 2.86.3-1 (bug #1122346)
+	[trixie] - glib2.0 <no-dsa> (Minor issue)
+	[bookworm] - glib2.0 <no-dsa> (Minor issue)
+	NOTE: https://gitlab.gnome.org/GNOME/glib/-/issues/3845
+	NOTE: https://gitlab.gnome.org/GNOME/glib/-/merge_requests/4935
+	NOTE: https://gitlab.gnome.org/GNOME/glib/-/merge_requests/4936
+	NOTE: Fixed by: https://gitlab.gnome.org/GNOME/glib/-/commit/4f0399c0aaf3ffc86b5625424580294bc7460404 (2.86.3)
 CVE-2025-14087 (A flaw was found in GLib (Gnome Lib). This vulnerability allows a remo ...)
 	- glib2.0 2.86.3-1 (bug #1122347)
 	[trixie] - glib2.0 <no-dsa> (Minor issue)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ac295e19988b8e4c22c8ead94767e3001698ee2b

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ac295e19988b8e4c22c8ead94767e3001698ee2b
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251211/e93e5b39/attachment.htm>

More information about the debian-security-tracker-commits mailing list