CVE-2025-4373

Summary

A flaw was found in GLib, which is vulnerable to an integer overflow in the g_string_insert_unichar() function. When the position at which to insert the character is large, the position will overflow, leading to a buffer underwrite.

Affected Software

VendorProductVersion RangeStatus
0 < 2.84.2affected
Red HatRed Hat Enterprise Linux 100:2.80.4-4.el10_0.6 < *unaffected
Red HatRed Hat Enterprise Linux 80:2.56.4-166.el8_10 < *unaffected
Red HatRed Hat Enterprise Linux 8.2 Advanced Update Support0:2.56.4-8.el8_2.2 < *unaffected
Red HatRed Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support0:2.56.4-10.el8_4.2 < *unaffected
Red HatRed Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On0:2.56.4-10.el8_4.2 < *unaffected
Red HatRed Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support0:2.56.4-158.el8_6.2 < *unaffected
Red HatRed Hat Enterprise Linux 8.6 Telecommunications Update Service0:2.56.4-158.el8_6.2 < *unaffected
Red HatRed Hat Enterprise Linux 8.6 Update Services for SAP Solutions0:2.56.4-158.el8_6.2 < *unaffected
Red HatRed Hat Enterprise Linux 8.8 Telecommunications Update Service0:2.56.4-162.el8_8 < *unaffected
Red HatRed Hat Enterprise Linux 8.8 Update Services for SAP Solutions0:2.56.4-162.el8_8 < *unaffected
Red HatRed Hat Enterprise Linux 90:2.68.4-16.el9_6.2 < *unaffected
Red HatRed Hat Enterprise Linux 90:2.68.4-16.el9_6.2 < *unaffected
Red HatRed Hat Enterprise Linux 9.0 Update Services for SAP Solutions0:2.68.4-5.el9_0.2 < *unaffected
Red HatRed Hat Enterprise Linux 9.2 Update Services for SAP Solutions0:2.68.4-7.el9_2.2 < *unaffected
Red HatRed Hat Enterprise Linux 9.4 Extended Update Support0:2.68.4-14.el9_4.3 < *unaffected
Red HatRed Hat Insights proxy 1.51.5.5-1754504343 < *unaffected
Red HatRed Hat OpenShift distributed tracing 3.6.0rhosdt-3.6-1753265330 < *unaffected
Red HatRed Hat OpenShift distributed tracing 3.6.0rhosdt-3.6-1753265394 < *unaffected
Red HatRed Hat OpenShift distributed tracing 3.6.0rhosdt-3.6-1753265332 < *unaffected
Red HatRed Hat OpenShift distributed tracing 3.6.0rhosdt-3.6-1753265435 < *unaffected
Red HatRed Hat OpenShift distributed tracing 3.6.0rhosdt-3.6-1753265342 < *unaffected
Red HatRed Hat OpenShift distributed tracing 3.6.0rhosdt-3.6-1753265332 < *unaffected
Red HatRed Hat OpenShift distributed tracing 3.6.0rhosdt-3.6-1753269432 < *unaffected
Red HatRed Hat OpenShift distributed tracing 3.6.0rhosdt-3.6-1753265411 < *unaffected
Red HatRed Hat OpenShift distributed tracing 3.6.0rhosdt-3.6-1753265314 < *unaffected

Weaknesses

  • CWE-124: Buffer Underwrite ('Buffer Underflow')

Workarounds

Currently, no mitigation is available for this vulnerability.

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

Additional References

References