Alerts This Week
Warning Icon 1 692
Alerts This Week
Warning Icon 1 692

SUSE glib2 Major Security Patch Addressing Buffer and Integer Overflows

suse
Calendar Grey February 12, 2026
Dist Suse Esm H88
SUSE's glib2 update resolves critical buffer overflow and integer overflow issues ensuring system security and stability.
An update that solves one vulnerability can now be installed.

Summary

## This update for glib2 fixes the following issues: * CVE-2026-1485: Fixed buffer underflow and out-of-bounds access due to integer wraparound in content type parsing (bsc#1257354). * CVE-2026-1484: Fixed buffer underflow and out-of-bounds access due to miscalculated buffer boundaries in the Base64 encoding routine (bsc#1257355). * CVE-2026-1489: Fixed undersized heap allocation followed by out-of-bounds access due to integer overflow in Unicode case conversion (bsc#1257353). * CVE-2026-0988: Fixed a potential integer overflow in g_buffered_input_stream_peek (bsc#1257049). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4

Topics%20covered

Topics Covered

security advisory buffer overflow SuSE important integer overflow high-performance computing

References

* bsc#1257049

Cross-

* CVE-2026-0988

CVSS scores:

* CVE-2026-0988 ( SUSE ): 6.3

CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

* CVE-2026-0988 ( SUSE ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

* CVE-2026-0988 ( NVD ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected Products:

* openSUSE Leap 15.4

* SUSE Linux Enterprise High Performance Computing 15 SP4

* SUSE Linux Enterprise High Performance Computing 15 SP5

* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4

* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5

* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4

* SUSE Linux Enterprise High Performance Computing LTSS 15 SP5

* SUSE Linux Enterprise Micro 5.3

* SUSE Linux Enterprise Micro 5.4

* SUSE Linux Enterprise Micro 5.5

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2026:0458-1
Release Date: 2026-02-11T23:29:09Z
Rating: important

Topics%20covered

Topics Covered

security advisory buffer overflow SuSE important integer overflow high-performance computing

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here