Nixpkgs Security Tracker

Login with GitHub

Suggestion detail

Untriaged

Permalink CVE-2025-60018

4.8 MEDIUM

CVSS version: 3.1
Attack vector (AV): NETWORK
Attack complexity (AC): HIGH
Privileges required (PR): NONE
User interaction (UI): NONE
Scope (S): UNCHANGED
Confidentiality impact (C): LOW
Integrity impact (I): NONE
Availability impact (A): LOW

created 4 months, 1 week ago

Glib-networking: out of bound reads on glib-networking through tls/openssl/gtlscertificate-openssl.c via "g_tls_certificate_openssl_get_property()"

glib-networking's OpenSSL backend fails to properly check the return value of a call to BIO_write(), resulting in an out of bounds read.

References

https://access.redhat.com/security/cve/CVE-2025-60018 x_refsource_REDHAT vdb-entry
RHBZ#2398135 issue-tracking x_refsource_REDHAT
https://gitlab.gnome.org/GNOME/glib-networking/-/issues/226
https://access.redhat.com/security/cve/CVE-2025-60018 x_refsource_REDHAT vdb-entry
RHBZ#2398135 issue-tracking x_refsource_REDHAT
https://gitlab.gnome.org/GNOME/glib-networking/-/issues/226
https://access.redhat.com/security/cve/CVE-2025-60018 x_refsource_REDHAT vdb-entry
RHBZ#2398135 issue-tracking x_refsource_REDHAT
https://gitlab.gnome.org/GNOME/glib-networking/-/issues/226
https://access.redhat.com/security/cve/CVE-2025-60018 x_refsource_REDHAT vdb-entry
RHBZ#2398135 issue-tracking x_refsource_REDHAT
https://gitlab.gnome.org/GNOME/glib-networking/-/issues/226

Affected products

glib-networking

<2.80.2

Matching in nixpkgs

pkgs.glib-networking

Network-related giomodules for glib

nixos-unstable 2.80.1
- nixpkgs-unstable 2.80.1
- nixos-unstable-small 2.80.1

Package maintainers

@jtojnar Jan Tojnar <jtojnar@gmail.com>
@bobby285271 Bobby Rong <rjl931189261@126.com>
@hedning Tor Hedin Brønner <torhedinbronner@gmail.com>
@dasj19 Daniel Șerbănescu <daniel@serbanescu.dk>