Bug 2463410 (CVE-2025-48431) - CVE-2025-48431 Apache Thrift: c_glib: Apache Thrift c_glib: Denial of Service via specially crafted requests
Summary: CVE-2025-48431 Apache Thrift: c_glib: Apache Thrift c_glib: Denial of Service...
Keywords:
Status: NEW
Alias: CVE-2025-48431
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
high
high
Target Milestone: ---
Assignee: Product Security
QA Contact:
URL:
Whiteboard:
Depends On: 2486178 2486179
Blocks:
TreeView+ depends on / blocked
 
Reported: 2026-04-28 10:01 UTC by OSIDB Bzimport
Modified: 2026-07-05 18:19 UTC (History)
40 users (show)

Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:


Attachments (Terms of Use)


Links
System ID Private Priority Status Summary Last Updated
Red Hat Product Errata RHSA-2026:28010 0 None None None 2026-06-22 17:15:35 UTC

Description OSIDB Bzimport 2026-04-28 10:01:49 UTC
Mismatched Memory Management Routines vulnerability in Apache Thrift c_glib language bindings.

This issue affects Apache Thrift: before 0.23.0.

Users are recommended to upgrade to version 0.23.0, which fixes the issue.

Description: Specially crafted requests can crash an c_glib-based Thrift server with a clean but fatal "free(): invalid pointer" error message.

Comment 3 errata-xmlrpc 2026-06-22 17:15:32 UTC
This issue has been addressed in the following products:

  Cryostat 4 on RHEL 9

Via RHSA-2026:28010 https://access.redhat.com/errata/RHSA-2026:28010


Note You need to log in before you can comment on or make changes to this bug.