Bug#1125752: glib2.0: CVE-2026-0988: Integer overflow in g_buffered_input_stream_peek() leads to segmentation fault
Simon McVittie
smcv at debian.org
Sat Jan 17 11:28:43 GMT 2026
Control: severity -1 normal
On Fri, 16 Jan 2026 at 23:47:08 +0100, Salvatore Bonaccorso wrote:
>The following vulnerability was published for glib2.0.
>
>CVE-2026-0988[0]:
>| Integer overflow in g_buffered_input_stream_peek() leads to
>| segmentation fault
This is probably only a theoretical issue, unless someone has evidence
of software that calls this function with an attacker-chosen offset that
can approach the total size of the address space.
smcv
More information about the pkg-gnome-maintainers
mailing list