PT-2026-4916 · Gnome+2 · Glib+2

Treeplus

Published

2025-12-16

Updated

2026-02-23

CVE-2026-1485

CVSS v3.1

2.8

Low

Vector

AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:L

Name of the Vulnerable Software and Affected Versions Glib (affected versions not specified)

Description A buffer underflow issue exists in Glib's content type parsing logic. The issue stems from storing the length of a header line in a signed integer, potentially causing integer wraparound with large inputs. This can lead to pointer underflow and out-of-bounds memory access. Successful exploitation requires a local user to install or process a specially crafted treemagic file, potentially resulting in local denial of service or application instability.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

DoS

Out of bounds Read

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-125CWE-124

Related Identifiers

BDU:2026-05070

CVE-2026-1485

ECHO-9546-A6BF-A698

OESA-2026-1292

OPENSUSE-SU-2026:10111-1

OPENSUSE-SU-2026:20150-1

SUSE-SU-2026:0355-1

SUSE-SU-2026:0372-1

SUSE-SU-2026:0373-1

SUSE-SU-2026:20210-1

SUSE-SU-2026:20221-1

SUSE-SU-2026:20446-1

SUSE-SU-2026:20493-1

USN-8017-1

Affected Products

Glib

Linuxmint

Ubuntu

PT-2026-4916 · Gnome+2 · Glib+2

CVE-2026-1485

Weakness Enumeration

Related Identifiers

Affected Products

References · 56