- Vulnerability/
- USN-6165-2
USN-6165-2: GLib vulnerabilities
First published: Thu Oct 19 2023(Updated: )
USN-6165-1 fixed vulnerabilities in GLib. This update provides the corresponding updates for Ubuntu 14.04 LTS, Ubuntu 16.04 LTS and Ubuntu 18.04 LTS. Original advisory details: It was discovered that GLib incorrectly handled non-normal GVariants. An attacker could use this issue to cause GLib to crash, resulting in a denial of service, or perform other unknown attacks.
| Affected Software | Affected Version | How to fix |
|---|---|---|
| All of | ||
| ubuntu/libglib2.0-0 | <2.56.4-0ubuntu0.18.04.9+esm3 | 2.56.4-0ubuntu0.18.04.9+esm3 |
| =18.04 | ||
| All of | ||
| ubuntu/libglib2.0-bin | <2.56.4-0ubuntu0.18.04.9+esm3 | 2.56.4-0ubuntu0.18.04.9+esm3 |
| =18.04 | ||
| All of | ||
| ubuntu/libglib2.0-0 | <2.48.2-0ubuntu4.8+esm3 | 2.48.2-0ubuntu4.8+esm3 |
| =16.04 | ||
| All of | ||
| ubuntu/libglib2.0-bin | <2.48.2-0ubuntu4.8+esm3 | 2.48.2-0ubuntu4.8+esm3 |
| =16.04 | ||
| All of | ||
| ubuntu/libglib2.0-0 | <2.40.2-0ubuntu1.1+esm6 | 2.40.2-0ubuntu1.1+esm6 |
| =14.04 | ||
| All of | ||
| ubuntu/libglib2.0-bin | <2.40.2-0ubuntu1.1+esm6 | 2.40.2-0ubuntu1.1+esm6 |
| =14.04 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://ubuntu.com/security/CVE-2023-29499
- https://ubuntu.com/security/CVE-2023-32636
- https://ubuntu.com/security/CVE-2023-32643
- https://ubuntu.com/security/CVE-2023-32665
- https://ubuntu.com/security/CVE-2023-32611
- https://ubuntu.com/security/notices/USN-6165-1
- https://ubuntu.com/security/notices/USN-6165-2 (Advisory)
Child vulnerabilities
(Contains the following vulnerabilities)
Frequently Asked Questions
What is the vulnerability ID of this GLib vulnerability?
The vulnerability ID of this GLib vulnerability is USN-6165-2.
What is the severity of USN-6165-2?
The severity of USN-6165-2 is not specified.
How does this GLib vulnerability affect Ubuntu 14.04 LTS?
This GLib vulnerability affects Ubuntu 14.04 LTS if the libglib2.0-0 and libglib2.0-bin packages are below version 2.40.2-0ubuntu1.1+esm6.
How does this GLib vulnerability affect Ubuntu 16.04 LTS?
This GLib vulnerability affects Ubuntu 16.04 LTS if the libglib2.0-0 and libglib2.0-bin packages are below version 2.48.2-0ubuntu4.8+esm3.
How does this GLib vulnerability affect Ubuntu 18.04 LTS?
This GLib vulnerability affects Ubuntu 18.04 LTS if the libglib2.0-0 and libglib2.0-bin packages are below version 2.56.4-0ubuntu0.18.04.9+esm3.
How can I fix this GLib vulnerability?
To fix this GLib vulnerability, update the libglib2.0-0 and libglib2.0-bin packages to version 2.56.4-0ubuntu0.18.04.9+esm3 for Ubuntu 18.04 LTS, version 2.48.2-0ubuntu4.8+esm3 for Ubuntu 16.04 LTS, or version 2.40.2-0ubuntu1.1+esm6 for Ubuntu 14.04 LTS.
- agent/description
- agent/event
- agent/first-publish-date
- agent/last-modified-date
- agent/references
- agent/severity
- agent/softwarecombine
- agent/tags
- agent/title
- agent/type
- collector/usn
- source/Ubuntu
- anchor-related/USN-6165-1
- agent/software-canonical-lookup
- package-manager/ubuntu
- vendor/ubuntu
- canonical/ubuntu ubuntu
- version/ubuntu ubuntu/18.04
- version/ubuntu ubuntu/16.04
- version/ubuntu ubuntu/14.04