Bug 2421339 (CVE-2025-14512) - CVE-2025-14512 glib: Integer Overflow in GLib GIO Attribute Escaping Causes Heap Buffer Overflow
Summary: CVE-2025-14512 glib: Integer Overflow in GLib GIO Attribute Escaping Causes H...
Keywords:
Status: NEW
Alias: CVE-2025-14512
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
medium
medium
Target Milestone: ---
Assignee: Product Security DevOps Team
QA Contact:
URL:
Whiteboard:
Depends On: 2421342 2421343 2421344 2421345
Blocks:
TreeView+ depends on / blocked
 
Reported: 2025-12-11 06:30 UTC by OSIDB Bzimport
Modified: 2026-06-10 13:36 UTC (History)
2 users (show)

Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments (Terms of Use)


Links
System ID Private Priority Status Summary Last Updated
Red Hat Product Errata RHBA-2026:16004 0 None None None 2026-05-11 14:11:44 UTC
Red Hat Product Errata RHBA-2026:16104 0 None None None 2026-05-11 23:23:11 UTC
Red Hat Product Errata RHBA-2026:16106 0 None None None 2026-05-11 23:33:20 UTC
Red Hat Product Errata RHBA-2026:16107 0 None None None 2026-05-11 23:55:24 UTC
Red Hat Product Errata RHBA-2026:16199 0 None None None 2026-05-12 12:03:28 UTC
Red Hat Product Errata RHBA-2026:16338 0 None None None 2026-05-12 17:23:17 UTC
Red Hat Product Errata RHBA-2026:16340 0 None None None 2026-05-12 17:21:30 UTC
Red Hat Product Errata RHBA-2026:16343 0 None None None 2026-05-12 17:20:34 UTC
Red Hat Product Errata RHBA-2026:16690 0 None None None 2026-05-13 01:06:04 UTC
Red Hat Product Errata RHBA-2026:16691 0 None None None 2026-05-13 01:38:32 UTC
Red Hat Product Errata RHBA-2026:17054 0 None None None 2026-05-13 13:40:25 UTC
Red Hat Product Errata RHBA-2026:20150 0 None None None 2026-05-21 14:32:04 UTC
Red Hat Product Errata RHBA-2026:20545 0 None None None 2026-05-26 01:18:37 UTC
Red Hat Product Errata RHBA-2026:20618 0 None None None 2026-05-26 04:15:14 UTC
Red Hat Product Errata RHSA-2026:15953 0 None None None 2026-05-11 09:54:59 UTC
Red Hat Product Errata RHSA-2026:15969 0 None None None 2026-05-11 21:40:43 UTC
Red Hat Product Errata RHSA-2026:15971 0 None None None 2026-05-11 11:44:12 UTC
Red Hat Product Errata RHSA-2026:19148 0 None None None 2026-05-19 16:09:43 UTC
Red Hat Product Errata RHSA-2026:19361 0 None None None 2026-05-19 21:40:27 UTC
Red Hat Product Errata RHSA-2026:19452 0 None None None 2026-05-20 02:06:28 UTC
Red Hat Product Errata RHSA-2026:19457 0 None None None 2026-05-20 03:52:44 UTC
Red Hat Product Errata RHSA-2026:19459 0 None None None 2026-05-20 01:54:41 UTC
Red Hat Product Errata RHSA-2026:19460 0 None None None 2026-05-20 02:40:15 UTC
Red Hat Product Errata RHSA-2026:19523 0 None None None 2026-05-20 04:40:26 UTC
Red Hat Product Errata RHSA-2026:19524 0 None None None 2026-05-20 04:43:31 UTC
Red Hat Product Errata RHSA-2026:19565 0 None None None 2026-05-20 09:39:18 UTC
Red Hat Product Errata RHSA-2026:19567 0 None None None 2026-05-20 09:55:20 UTC

Description OSIDB Bzimport 2025-12-11 06:30:14 UTC 
This vulnerability stems from an integer overflow in GLib’s GIO escape_byte_string() function, where the count of invalid characters is multiplied using a signed integer, resulting in a too-small memory allocation for escaped output. When a malicious file or remote filesystem supplies attribute values with a large number of invalid bytes, the subsequent escaping loop writes beyond the allocated buffer, triggering a heap buffer overflow and crashing the process.
Comment 1 errata-xmlrpc 2026-05-11 09:54:58 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8

Via RHSA-2026:15953 https://access.redhat.com/errata/RHSA-2026:15953
Comment 2 errata-xmlrpc 2026-05-11 11:44:11 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9

Via RHSA-2026:15971 https://access.redhat.com/errata/RHSA-2026:15971
Comment 3 errata-xmlrpc 2026-05-11 21:40:42 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 10

Via RHSA-2026:15969 https://access.redhat.com/errata/RHSA-2026:15969
Comment 9 errata-xmlrpc 2026-05-19 16:09:42 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 10

Via RHSA-2026:19148 https://access.redhat.com/errata/RHSA-2026:19148
Comment 10 errata-xmlrpc 2026-05-19 21:40:26 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9

Via RHSA-2026:19361 https://access.redhat.com/errata/RHSA-2026:19361
Comment 11 errata-xmlrpc 2026-05-20 01:54:40 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions

Via RHSA-2026:19459 https://access.redhat.com/errata/RHSA-2026:19459
Comment 12 errata-xmlrpc 2026-05-20 02:06:27 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9.4 Extended Update Support

Via RHSA-2026:19452 https://access.redhat.com/errata/RHSA-2026:19452
Comment 13 errata-xmlrpc 2026-05-20 02:40:14 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions

Via RHSA-2026:19460 https://access.redhat.com/errata/RHSA-2026:19460
Comment 14 errata-xmlrpc 2026-05-20 03:52:42 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9.6 Extended Update Support

Via RHSA-2026:19457 https://access.redhat.com/errata/RHSA-2026:19457
Comment 15 errata-xmlrpc 2026-05-20 04:40:25 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions
  Red Hat Enterprise Linux 8.8 Telecommunications Update Service

Via RHSA-2026:19523 https://access.redhat.com/errata/RHSA-2026:19523
Comment 16 errata-xmlrpc 2026-05-20 04:43:30 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support
  Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions
  Red Hat Enterprise Linux 8.6 Telecommunications Update Service

Via RHSA-2026:19524 https://access.redhat.com/errata/RHSA-2026:19524
Comment 17 errata-xmlrpc 2026-05-20 09:39:17 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support
  Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On

Via RHSA-2026:19565 https://access.redhat.com/errata/RHSA-2026:19565
Comment 18 errata-xmlrpc 2026-05-20 09:55:19 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 10.0 Extended Update Support

Via RHSA-2026:19567 https://access.redhat.com/errata/RHSA-2026:19567
Note You need to log in before you can comment on or make changes to this bug.