Msrc Cbl2 Glib 2.71.0-7 On Cbl Mariner 2.0 vulnerabilities

CVE-2025-13601 [HIGH] CWE-190 Glib: integer overflow in in g_escape_uri_string() Glib: integer overflow in in g_escape_uri_string() Mariner: Mariner redhat: redhat Customer Action Required: Yes Remediation: CBL-Mariner Releases Reference: https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade

CVE-2025-7039 [LOW] CWE-22 Glib: buffer under-read on glib through glib/gfileutils.c via get_tmp_file() Glib: buffer under-read on glib through glib/gfileutils.c via get_tmp_file() FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of

CVE-2025-4373 [MEDIUM] CWE-124 Glib: buffer underflow on glib through glib/gstring.c via function g_string_insert_unichar Glib: buffer underflow on glib through glib/gstring.c via function g_string_insert_unichar FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most re

CVE-2024-34397 [MEDIUM] CWE-290 An issue was discovered in GNOME GLib before 2.78.5, and 2.79.x and 2.80.x before 2.80.1. When a GDBus-based client subscribes to signals from a trusted system service such as NetworkManager on a shar An issue was discovered in GNOME GLib before 2.78.5, and 2.79.x and 2.80.x before 2.80.1. When a GDBus-based client subscribes to signals from a trusted system service such as NetworkManager on a shared computer, other users of the same computer can send spoofed D-Bu