GLib's GVariant deserialization prior to GLib 2.74.4 is vulnerable to a slowdown issue where a crafted GVariant can cause excessive processing, leading to denial of service. References: https://gitlab.gnome.org/GNOME/glib/-/issues/2797
Created glib tracking bugs for this issue: Affects: epel-all [bug 2212708] Created glib2 tracking bugs for this issue: Affects: fedora-37 [bug 2212709] Affects: fedora-38 [bug 2212711] Created mingw-glib2 tracking bugs for this issue: Affects: fedora-37 [bug 2212710] Affects: fedora-38 [bug 2212712]
This issue has been addressed in the following products: Red Hat Enterprise Linux 9 Via RHSA-2023:6631 https://access.redhat.com/errata/RHSA-2023:6631
This issue has been addressed in the following products: Red Hat Enterprise Linux 9 Via RHSA-2024:2528 https://access.redhat.com/errata/RHSA-2024:2528