CVE-2025-4373

CVSS v3.1

4.8

Medium

Vector

AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L

Name of the Vulnerable Software and Affected Versions GLib (affected versions not specified)

Description A flaw was found in GLib, which is vulnerable to an integer overflow in the g string insert unichar() function. When the position at which to insert the character is large, the position will overflow, leading to a buffer underwrite.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-124

Related Identifiers

ALSA-2025:11140

ALSA-2025:11327

AZL-62286

AZL-62295

BDU:2025-07137

CESA-2025_11327

CVE-2025-4373

DLA-4412-1

ECHO-C49E-C84A-3D59

INFSA-2025_11140

INFSA-2025_11327

MGASA-2025-0173

OESA-2026-1763

OESA-2026-1764

OESA-2026-1765

OESA-2026-1766

RHSA-2025:10855

RHSA-2025:11140

RHSA-2025:11327

RHSA-2025:11373

RHSA-2025:11374

RHSA-2025:12275

RHSA-2025_11140

RHSA-2025_11327

SUSE-SU-2025:01880-1

SUSE-SU-2025:02167-1

SUSE-SU-2025:02233-1

SUSE-SU-2025:02375-1

SUSE-SU-2025:20471-1

SUSE-SU-2025:20508-1

SUSE-SU-2025_02167-1

SUSE-SU-2025_02233-1

USN-7532-1

Affected Products

Almalinux

Astra Linux

Centos

Debian

Glib

Linuxmint

Red Hat

Red Os

Rocky Linux

Suse

Ubuntu

CVE-2025-4373

Weakness Enumeration

Related Identifiers

Affected Products

References · 97