CVE-2025-4056

Name
CVE-2025-4056
Description
A flaw was found in GLib. A denial of service on Windows platforms may occur if an application attempts to spawn a program using long command lines.
NVD Severity
unknown
Other trackers
CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia
Mailing lists
oss-security, full-disclosure, bugtraq
Exploits
Exploit DB, Metasploit
Forges
GitHub (code, issues), Aports (code, issues)

References

Type URI
vdb-entry https://access.redhat.com/security/cve/CVE-2025-4056
issue-tracking https://bugzilla.redhat.com/show_bug.cgi?id=2362826
secalert@redhat.com https://gitlab.gnome.org/GNOME/glib/-/issues/3668

Match rules

CPE URI Source package Min version Max version
shopxo >= 0 < 2.84.1
cpe:2.3:a:gnome:glib:*:*:*:*:*:*:*:* glib >= None < 2.84.1

Vulnerable and fixed packages

Source package Branch Version Maintainer Status
glib edge-main 2.84.0-r0 team/gnome <pabloyoyoista@postmarketos.org> possibly vulnerable
glib edge-main 2.82.5-r1 team/gnome <pabloyoyoista@postmarketos.org> possibly vulnerable
glib edge-main 2.82.5-r0 Pablo Correa Gómez <pabloyoyoista@postmarketos.org> possibly vulnerable
glib edge-main 2.82.4-r0 Pablo Correa Gómez <pabloyoyoista@postmarketos.org> possibly vulnerable
glib edge-main 2.82.3-r0 Pablo Correa Gómez <pabloyoyoista@postmarketos.org> possibly vulnerable
glib edge-main 2.82.2-r1 Pablo Correa Gómez <pabloyoyoista@postmarketos.org> possibly vulnerable
glib edge-main 2.82.2-r0 Pablo Correa Gómez <pabloyoyoista@postmarketos.org> possibly vulnerable
glib edge-main 2.80.1-r0 Pablo Correa Gómez <ablocorrea@hotmail.com> possibly vulnerable
glib edge-main 2.66.6-r0 None possibly vulnerable
glib edge-main 2.62.5-r0 None possibly vulnerable
glib edge-main 2.60.4-r0 None possibly vulnerable
glib 3.22-main 2.80.1-r0 None possibly vulnerable
glib 3.22-main 2.66.6-r0 None possibly vulnerable
glib 3.22-main 2.62.5-r0 None possibly vulnerable
glib 3.22-main 2.60.4-r0 None possibly vulnerable
glib 3.21-main 2.82.5-r0 Pablo Correa Gómez <pabloyoyoista@postmarketos.org> possibly vulnerable
glib 3.21-main 2.82.4-r0 Pablo Correa Gómez <pabloyoyoista@postmarketos.org> possibly vulnerable
glib 3.21-main 2.82.3-r0 Pablo Correa Gómez <pabloyoyoista@postmarketos.org> possibly vulnerable
glib 3.21-main 2.82.2-r0 Pablo Correa Gómez <pabloyoyoista@postmarketos.org> possibly vulnerable
glib 3.21-main 2.80.1-r0 None possibly vulnerable
glib 3.21-main 2.66.6-r0 None possibly vulnerable
glib 3.21-main 2.62.5-r0 None possibly vulnerable
glib 3.21-main 2.60.4-r0 None possibly vulnerable
glib 3.20-main 2.80.5-r0 Pablo Correa Gómez <ablocorrea@hotmail.com> possibly vulnerable
glib 3.20-main 2.80.1-r0 None possibly vulnerable
glib 3.20-main 2.66.6-r0 None possibly vulnerable
glib 3.20-main 2.62.5-r0 None possibly vulnerable
glib 3.20-main 2.60.4-r0 None possibly vulnerable
glib 3.19-main 2.78.6-r0 Pablo Correa Gómez <ablocorrea@hotmail.com> possibly vulnerable
glib 3.19-main 2.78.5-r0 Pablo Correa Gómez <ablocorrea@hotmail.com> possibly vulnerable
glib 3.19-main 2.66.6-r0 None possibly vulnerable
glib 3.19-main 2.62.5-r0 None possibly vulnerable
glib 3.19-main 2.60.4-r0 None possibly vulnerable