2398135 – (CVE-2025-60018) CVE-2025-60018 glib-networking: Out of Bound Reads on glib-networking through tls/openssl/gtlscertificate-openssl.c via "g_tls_certificate_openssl_get_property()"

Bug 2398135 (CVE-2025-60018) - CVE-2025-60018 glib-networking: Out of Bound Reads on glib-networking through tls/openssl/gtlscertificate-openssl.c via "g_tls_certificate_openssl_get_property()"

Summary: CVE-2025-60018 glib-networking: Out of Bound Reads on glib-networking through...

Keywords:
Status:	NEW
Alias:	CVE-2025-60018
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	low
Severity:	low
Target Milestone:	---
Assignee:	Product Security DevOps Team
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2025-09-25 12:54 UTC by OSIDB Bzimport
Modified:	2025-09-25 15:00 UTC (History)
CC List:	3 users (show)
Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments	(Terms of Use)

Description OSIDB Bzimport 2025-09-25 12:54:36 UTC

glib-networking's OpenSSL backend fails to properly check the return value of a call to BIO_write(), resulting in an out of bounds read. The out of bounds data will then be returned by the GTlsCertificate:certificate-pem property getter. (Because the OpenSSL backend is not built by default, this bug will not affect most Linux distributions.)

Note You need to log in before you can comment on or make changes to this bug.