- What: Security update for glib2 in Red Hat Enterprise Linux 10
- Impact: Vulnerability in GLib could lead to buffer overflow issues
Red Hat Product Errata RHSA-2026:19148 - Security Advisory Issued: 2026-05-19 Updated: 2026-05-19 RHSA-2026:19148 - Security Advisory Overview Updated Packages Synopsis Moderate: glib2 security update Type/Severity Security Advisory: Moderate Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for glib2 is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description GLib provides the core application building blocks for libraries and applications written in C. It provides the core object system used in GNOME, the main loop implementation, and a large set of utility functions for strings and common data structures. Security Fix(es): glib: GLib: Buffer underflow in GVariant parser leads to heap corruption (CVE-2025-14087) glib: Integer Overflow in GLib GIO Attribute Escaping Causes Heap Buffer Overflow (CVE-2025-14512) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 Affected Products Red Hat Enterprise Linux for x86_64 10 x86_64 Red Hat Enterprise Linux for x86_64 - Extended Update Support 10.2 x86_64 Red Hat Enterprise Linux for IBM z Systems 10 s390x Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 10.2 s390x Red Hat Enterprise Linux for Power, little endian 10 ppc64le Red Hat Enterprise Linux for Power, little endian - Extended Update Support 10.2 ppc64le Red Hat Enterprise Linux for ARM 64 10 aarch64 Red Hat Enterprise Linux for ARM 64 - Extended Update Support 10.2 aarch64 Red Hat CodeReady Linux Builder for x86_64 10 x86_64 Red Hat CodeReady Linux Builder for Power, little endian 10 ppc64le Red Hat CodeReady Linux Builder for ARM 64 10 aarch64 Red Hat CodeReady Linux Builder for IBM z Systems 10 s390x Red Hat CodeReady Linux Builder for x86_64 - Extended Update Support 10.2 x86_64 Red Hat CodeReady Linux Builder for Power, little endian - Extended Update Support 10.2 ppc64le Red Hat CodeReady Linux Builder for IBM z Systems - Extended Update Support 10.2 s390x Red Hat CodeReady Linux Builder for ARM 64 - Extended Update Support 10.2 aarch64 Red Hat Enterprise Linux for ARM 64 - 4 years of updates 10.2 aarch64 Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 10.2 s390x Red Hat Enterprise Linux for Power, little endian - 4 years of support 10.2 ppc64le Red Hat Enterprise Linux for x86_64 - 4 years of updates 10.2 x86_64 Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 10.2 x86_64 Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 10.2 aarch64 Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 10.2 ppc64le Red Hat Enterprise Linux for IBM z Systems - Extended Life Cycle 10.2 s390x Fixes BZ - 2419093 - CVE-2025-14087 glib: GLib: Buffer underflow in GVariant parser leads to heap corruption BZ - 2421339 - CVE-2025-14512 glib: Integer Overflow in GLib GIO Attribute Escaping Causes Heap Buffer Overflow CVEs CVE-2025-14087 CVE-2025-14512 References https://access.redhat.com/security/updates/classification/#moderate Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux for x86_64 10 SRPM glib2-2.80.4-12.el10_2.13.src.rpm SHA-256: 91effd577a82766aea6e39a1ad5a17834c4c6976fed8a1ea4bbf6a839f887167 x86_64 glib2-2.80.4-12.el10_2.13.x86_64.rpm SHA-256: 56937643a76b9491f183e459b6a6045aa12e013767b27b1e9a059e4c0512ae0a glib2-debuginfo-2.80.4-12.el10_2.13.x86_64.rpm SHA-256: e2083fb8aa6daeac00079003e09d22db7fea7b4803f4dc07a6f8bc3e738c2254 glib2-debuginfo-2.80.4-12.el10_2.13.x86_64.rpm SHA-256: e2083fb8aa6daeac00079003e09d22db7fea7b4803f4dc07a6f8bc3e738c2254 glib2-debugsource-2.80.4-12.el10_2.13.x86_64.rpm SHA-256: fc774f1b6e50dc09641f74c165f51025450c315a5b4b1e2386c46346357a1bba glib2-debugsource-2.80.4-12.el10_2.13.x86_64.rpm SHA-256: fc774f1b6e50dc09641f74c165f51025450c315a5b4b1e2386c46346357a1bba glib2-devel-2.80.4-12.el10_2.13.x86_64.rpm SHA-256: c3ef828e39f94bbaaad432622c1db91c637592e3d5bedc9c44c7429e6c59416a glib2-devel-debuginfo-2.80.4-12.el10_2.13.x86_64.rpm SHA-256: ec3b14b2a889747d38c7bb995b8050c2ba6137a483071da81bf3a36487c05e8d glib2-devel-debuginfo-2.80.4-12.el10_2.13.x86_64.rpm SHA-256: ec3b14b2a889747d38c7bb995b8050c2ba6137a483071da81bf3a36487c05e8d glib2-tests-2.80.4-12.el10_2.13.x86_64.rpm SHA-256: 27bc1d4e5370509162354dcc7c8c7384f90c8dd18b6ba99a40377e5c1ef5bce9 glib2-tests-debuginfo-2.80.4-12.el10_2.13.x86_64.rpm SHA-256: 6fb2254dcf2fc69e3766622462ae92ffa61d1787d22b74bd9e494d8a41cef60e glib2-tests-debuginfo-2.80.4-12.el10_2.13.x86_64.rpm SHA-256: 6fb2254dcf2fc69e3766622462ae92ffa61d1787d22b74bd9e494d8a41cef60e Red Hat Enterprise Linux for x86_64 - Extended Update Support 10.2 SRPM glib2-2.80.4-12.el10_2.13.src.rpm SHA-256: 91effd577a82766aea6e39a1ad5a17834c4c6976fed8a1ea4bbf6a839f887167 x86_64 glib2-2.80.4-12.el10_2.13.x86_64.rpm SHA-256: 56937643a76b9491f183e459b6a6045aa12e013767b27b1e9a059e4c0512ae0a glib2-debuginfo-2.80.4-12.el10_2.13.x86_64.rpm SHA-256: e2083fb8aa6daeac00079003e09d22db7fea7b4803f4dc07a6f8bc3e738c2254 glib2-debuginfo-2.80.4-12.el10_2.13.x86_64.rpm SHA-256: e2083fb8aa6daeac00079003e09d22db7fea7b4803f4dc07a6f8bc3e738c2254 glib2-debugsource-2.80.4-12.el10_2.13.x86_64.rpm SHA-256: fc774f1b6e50dc09641f74c165f51025450c315a5b4b1e2386c46346357a1bba glib2-debugsource-2.80.4-12.el10_2.13.x86_64.rpm SHA-256: fc774f1b6e50dc09641f74c165f51025450c315a5b4b1e2386c46346357a1bba glib2-devel-2.80.4-12.el10_2.13.x86_64.rpm SHA-256: c3ef828e39f94bbaaad432622c1db91c637592e3d5bedc9c44c7429e6c59416a glib2-devel-debuginfo-2.80.4-12.el10_2.13.x86_64.rpm SHA-256: ec3b14b2a889747d38c7bb995b8050c2ba6137a483071da81bf3a36487c05e8d glib2-devel-debuginfo-2.80.4-12.el10_2.13.x86_64.rpm SHA-256: ec3b14b2a889747d38c7bb995b8050c2ba6137a483071da81bf3a36487c05e8d glib2-tests-2.80.4-12.el10_2.13.x86_64.rpm SHA-256: 27bc1d4e5370509162354dcc7c8c7384f90c8dd18b6ba99a40377e5c1ef5bce9 glib2-tests-debuginfo-2.80.4-12.el10_2.13.x86_64.rpm SHA-256: 6fb2254dcf2fc69e3766622462ae92ffa61d1787d22b74bd9e494d8a41cef60e glib2-tests-debuginfo-2.80.4-12.el10_2.13.x86_64.rpm SHA-256: 6fb2254dcf2fc69e3766622462ae92ffa61d1787d22b74bd9e494d8a41cef60e Red Hat Enterprise Linux for IBM z Systems 10 SRPM glib2-2.80.4-12.el10_2.13.src.rpm SHA-256: 91effd577a82766aea6e39a1ad5a17834c4c6976fed8a1ea4bbf6a839f887167 s390x glib2-2.80.4-12.el10_2.13.s390x.rpm SHA-256: aff85ae23ec03d5179f522e8b9b7fa2ab428f9b97d0a76a5ffe1cacdab8bbbf7 glib2-debuginfo-2.80.4-12.el10_2.13.s390x.rpm SHA-256: 93538cb8bf56d7f33d2417ffe1e62413a3de13e63a73468ca2456a218ee027b7 glib2-debuginfo-2.80.4-12.el10_2.13.s390x.rpm SHA-256: 93538cb8bf56d7f33d2417ffe1e62413a3de13e63a73468ca2456a218ee027b7 glib2-debugsource-2.80.4-12.el10_2.13.s390x.rpm SHA-256: c39d2e6895a87868a2879472aebf892669171532200a4697216abc4caebeab94 glib2-debugsource-2.80.4-12.el10_2.13.s390x.rpm SHA-256: c39d2e6895a87868a2879472aebf892669171532200a4697216abc4caebeab94 glib2-devel-2.80.4-12.el10_2.13.s390x.rpm SHA-256: 3559b2098b18af09198fc873e21118804d301138611da84019df9448b1b972b4 glib2-devel-debuginfo-2.80.4-12.el10_2.13.s390x.rpm SHA-256: c38fc1c70a1984fd1ce81bf8a86bc98ef028442663a13bb73186d9e06ed9be86 glib2-devel-debuginfo-2.80.4-12.el10_2.13.s390x.rpm SHA-256: c38fc1c70a1984fd1ce81bf8a86bc98ef028442663a13bb73186d9e06ed9be86 glib2-tests-2.80.4-12.el10_2.13.s390x.rpm SHA-256: d67b230a17f22423bc86ab75c8de73b7b1df144110f3de81fab16f6f3ee6449a glib2-tests-debuginfo-2.80.4-12.el10_2.13.s390x.rpm SHA-256: 9ba445173bef001785bcf36560826f4c0502dc513f976a55c3acb8d20b98e427 glib2-tests-debuginfo-2.80.4-12.el10_2.13.s390x.rpm SHA-256: 9ba445173bef001785bcf36560826f4c0502dc513f976a55c3acb8d20b98e427 Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 10.2 SRPM glib2-2.80.4-12.el10_2.13.src.rpm SHA-256: 91effd577a82766aea6e39a1ad5a17834c4c6976fed8a1ea4bbf6a839f887167 s390x glib2-2.80.4-12.el10_2.13.s390x.rpm SHA-256: aff85ae23ec03d5179f522e8b9b7fa2ab428f9b97d0a76a5ffe1cacdab8bbbf7 glib2-debuginfo-2.80.4-12.el10_2.13.s390x.rpm SHA-256: 93538cb8bf56d7f33d2417ffe1e62413a3de13e63a73468ca2456a218ee027b7 glib2-debuginfo-2.80.4-12.el10_2.13.s390x.rpm SHA-256: 93538cb8bf56d7f33d2417ffe1e62413a3de13e63a73468ca2456a218ee027b7 glib2-debugsource-2.80.4-12.el10_2.13.s390x.rpm SHA-256: c39d2e6895a87868a2879472aebf892669171532200a4697216abc4caebeab94 glib2-debugsource-2.80.4-12.el10_2.13.s390x.rpm SHA-256: c39d2e6895a87868a2879472aebf892669171532200a4697216abc4caebeab94 glib2-devel-2.80.4-12.el10_2.13.s390x.rpm SHA-256: 3559b2098b18af09198fc873e21118804d301138611da84019df9448b1b972b4 glib2-devel-debuginfo-2.80.4-12.el10_2.13.s390x.rpm SHA-256: c38fc1c70a1984fd1ce81bf8a86bc98ef028442663a13bb73186d9e06ed9be86 glib2-devel-debuginfo-2.80.4-12.el10_2.13.s390x.rpm SHA-256: c38fc1c70a1984fd1ce81bf8a86bc98ef028442663a13bb73186d9e06ed9be86 glib2-tests-2.80.4-12.el10_2.13.s390x.rpm SHA-256: d67b230a17f22423bc86ab75c8de73b7b1df144110f3de81fab16f6f3ee6449a glib2-tests-debuginfo-2.80.4-12.el10_2.13.s390x.rpm SHA-256: 9ba445173bef001785bcf36560826f4c0502dc513f976a55c3acb8d20b98e427 glib2-tests-debuginfo-2.80.4-12.el10_2.13.s390x.rpm SHA-256: 9ba445173bef001785bcf36560826f4c0502dc513f976a55c3acb8d20b98e427 Red Hat Enterprise Linux for Power, little endian 10 SRPM glib2-2.80.4-12.el10_2.13.src.rpm SHA-256: 91effd577a82766aea6e39a1ad5a17834c4c6976fed8a1ea4bbf6a839f887167 ppc64le glib2-2.80.4-12.el10_2.13.ppc64le.rpm SHA-256: 264918c26536d026d2ac00593d27d967043ecdbaf6c158a9129f901