CVE-2026-1489

CVSS v2.0

6.4

Medium

Vector

AV:N/AC:L/Au:N/C:N/I:P/A:P

Name of the Vulnerable Software and Affected Versions GLib (affected versions not specified)

Description A flaw exists in GLib related to its Unicode case conversion implementation. An integer overflow can lead to memory corruption when processing specially crafted, large Unicode strings. This overflow can cause an undersized memory allocation, resulting in out-of-bounds writes, potentially leading to application crashes or instability.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-787

Related Identifiers

AZL-76469

AZL-76545

BDU:2026-05067

CVE-2026-1489

ECHO-6AF9-FC0C-2334

OESA-2026-1683

OPENSUSE-SU-2026:10111-1

OPENSUSE-SU-2026:20150-1

SUSE-SU-2026:0355-1

SUSE-SU-2026:0372-1

SUSE-SU-2026:0373-1

SUSE-SU-2026:20210-1

SUSE-SU-2026:20221-1

SUSE-SU-2026:20446-1

SUSE-SU-2026:20493-1

USN-8017-1

Affected Products

Glib

Linuxmint

Ubuntu

CVE-2026-1489

Weakness Enumeration

Related Identifiers

Affected Products

References · 57