CVE-2025-14512

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2025-14512
A flaw was found in glib. This vulnerability allows a heap buffer overflow and denial-of-service (DoS) via an integer overflow in GLib's GIO (GLib Input/Output) escape_byte_string() function when processing malicious file or remote filesystem attribute values.

6.5 /10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 2.8 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction REQUIRED

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References
Link Resource
https://access.redhat.com/errata/RHSA-2026:15953
https://access.redhat.com/errata/RHSA-2026:15969
https://access.redhat.com/errata/RHSA-2026:15971
https://access.redhat.com/errata/RHSA-2026:19148
https://access.redhat.com/errata/RHSA-2026:19361
https://access.redhat.com/errata/RHSA-2026:19452
https://access.redhat.com/errata/RHSA-2026:19457
https://access.redhat.com/errata/RHSA-2026:19459
https://access.redhat.com/errata/RHSA-2026:19460
https://access.redhat.com/errata/RHSA-2026:19523
https://access.redhat.com/errata/RHSA-2026:19524
https://access.redhat.com/errata/RHSA-2026:19565
https://access.redhat.com/errata/RHSA-2026:19567
https://access.redhat.com/errata/RHSA-2026:21275
https://access.redhat.com/errata/RHSA-2026:22634
https://access.redhat.com/errata/RHSA-2026:25096
https://access.redhat.com/errata/RHSA-2026:7461
https://access.redhat.com/security/cve/CVE-2025-14512 Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=2421339 Issue Tracking Third Party Advisory
https://gitlab.gnome.org/GNOME/glib/-/issues/3845
Configurations

Configuration 1 (hide)

cpe:2.3:a:gnome:glib:*:*:*:*:*:*:*:*

Configuration 2 (hide)

OR cpe:2.3:a:redhat:openshift:4.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:-:*:*:*
cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:10.0:*:*:*:*:*:*:*
History

10 Jun 2026, 18:16

Type Values Removed Values Added
References
  • () https://access.redhat.com/errata/RHSA-2026:25096 -

02 Jun 2026, 20:16

Type Values Removed Values Added
References
  • () https://access.redhat.com/errata/RHSA-2026:22634 -

27 May 2026, 08:16

Type Values Removed Values Added
References
  • () https://access.redhat.com/errata/RHSA-2026:21275 -

20 May 2026, 11:16

Type Values Removed Values Added
References
  • () https://access.redhat.com/errata/RHSA-2026:19567 -

20 May 2026, 10:16

Type Values Removed Values Added
References
  • () https://access.redhat.com/errata/RHSA-2026:19524 -
  • () https://access.redhat.com/errata/RHSA-2026:19565 -

20 May 2026, 05:16

Type Values Removed Values Added
References
  • () https://access.redhat.com/errata/RHSA-2026:19457 -
  • () https://access.redhat.com/errata/RHSA-2026:19523 -

20 May 2026, 04:16

Type Values Removed Values Added
References
  • () https://access.redhat.com/errata/RHSA-2026:19452 -
  • () https://access.redhat.com/errata/RHSA-2026:19459 -
  • () https://access.redhat.com/errata/RHSA-2026:19460 -

19 May 2026, 23:16

Type Values Removed Values Added
References
  • () https://access.redhat.com/errata/RHSA-2026:19361 -

19 May 2026, 22:16

Type Values Removed Values Added
References
  • () https://access.redhat.com/errata/RHSA-2026:19148 -

11 May 2026, 23:17

Type Values Removed Values Added
References
  • () https://access.redhat.com/errata/RHSA-2026:15969 -

11 May 2026, 16:17

Type Values Removed Values Added
References
  • () https://access.redhat.com/errata/RHSA-2026:15953 -

11 May 2026, 13:16

Type Values Removed Values Added
References
  • () https://access.redhat.com/errata/RHSA-2026:15971 -

19 Apr 2026, 20:16

Type Values Removed Values Added
References
  • () https://access.redhat.com/errata/RHSA-2026:7461 -

19 Mar 2026, 10:16

Type Values Removed Values Added
References
  • () https://gitlab.gnome.org/GNOME/glib/-/issues/3845 -

06 Feb 2026, 17:20

Type Values Removed Values Added
CPE cpe:2.3:a:redhat:openshift:4.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:10.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:*
cpe:2.3:a:gnome:glib:*:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:-:*:*:*
References () https://access.redhat.com/security/cve/CVE-2025-14512 - () https://access.redhat.com/security/cve/CVE-2025-14512 - Third Party Advisory
References () https://bugzilla.redhat.com/show_bug.cgi?id=2421339 - () https://bugzilla.redhat.com/show_bug.cgi?id=2421339 - Issue Tracking, Third Party Advisory
First Time Redhat
Gnome
Redhat enterprise Linux
Gnome glib
Redhat openshift

11 Dec 2025, 07:16

Type Values Removed Values Added
New CVE
Information

Published : 2025-12-11 07:16

Updated : 2026-06-10 18:16

NVD link : CVE-2025-14512

Mitre link : CVE-2025-14512

CVE.ORG link : CVE-2025-14512

JSON object : View

Products Affected

gnome

  • glib

redhat

  • openshift
  • enterprise_linux
CWE
CWE-190

Integer Overflow or Wraparound