Explore top 10 tips to secure your open-source projects now. Read More
×
Several security issues were fixed in GLib.
Software Description:
- glib2.0: GLib library of C routines
Details:
USN-7942-1 fixed vulnerabilities in GLib. This update provides the
corresponding updates for Ubuntu 14.04 LTS, Ubuntu 16.04 LTS, Ubuntu 18.04
LTS, and Ubuntu 20.04 LTS. CVE-2025-3360 only affected Ubuntu 18.04
LTS and Ubuntu 20.04 LTS.
Original advisory details:
It was discovered that GLib incorrectly handled escaping URI strings. An
attacker could use this issue to cause GLib to crash, resulting in a
denial of service, or possibly execute arbitrary code. (CVE-2025-13601)
It was discovered that GLib incorrectly parsed certain GVariants. An
attacker could use this issue to cause GLib to crash, resulting in a
denial of service, or possibly execute arbitrary code. (CVE-2025-14087)
It was discovered that GLib incorrectly parsed certain long invalid ISO
8601 timestamps. An attacker could possibly use this issue to cause GLib
to crash, resulting in a denial of ...
The problem can be corrected by updating your system to the following
package versions:
Ubuntu 20.04 LTS
libglib2.0-0 2.64.6-1~ubuntu20.04.9+esm1
Available with Ubuntu Pro
Ubuntu 18.04 LTS
libglib2.0-0 2.56.4-0ubuntu0.18.04.9+esm5
Available with Ubuntu Pro
Ubuntu 16.04 LTS
libglib2.0-0 2.48.2-0ubuntu4.8+esm5
Available with Ubuntu Pro
Ubuntu 14.04 LTS
libglib2.0-0 2.40.2-0ubuntu1.1+esm7
Available with Ubuntu Pro
In general, a standard system update will make all the necessary changes.https://ubuntu.com/security/notices/USN-7942-2
https://ubuntu.com/security/notices/USN-7942-1
CVE-2025-13601, CVE-2025-14087, CVE-2025-3360, CVE-2025-7039
Get the latest Linux and open source security news straight to your inbox.