- What: Security update for glib2 in Red Hat Enterprise Linux 9
- Impact: Systems using glib2 may be vulnerable to buffer overflow
Red Hat Product Errata RHSA-2026:19361 - Security Advisory Issued: 2026-05-19 Updated: 2026-05-19 RHSA-2026:19361 - Security Advisory Overview Updated Packages Synopsis Moderate: glib2 security update Type/Severity Security Advisory: Moderate Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for glib2 is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description GLib provides the core application building blocks for libraries and applications written in C. It provides the core object system used in GNOME, the main loop implementation, and a large set of utility functions for strings and common data structures. Security Fix(es): glib: GLib: Buffer underflow in GVariant parser leads to heap corruption (CVE-2025-14087) glib: Integer Overflow in GLib GIO Attribute Escaping Causes Heap Buffer Overflow (CVE-2025-14512) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 Affected Products Red Hat Enterprise Linux for x86_64 9 x86_64 Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.8 x86_64 Red Hat Enterprise Linux for IBM z Systems 9 s390x Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.8 s390x Red Hat Enterprise Linux for Power, little endian 9 ppc64le Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.8 ppc64le Red Hat Enterprise Linux for ARM 64 9 aarch64 Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.8 aarch64 Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.8 ppc64le Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.8 x86_64 Red Hat CodeReady Linux Builder for x86_64 9 x86_64 Red Hat CodeReady Linux Builder for Power, little endian 9 ppc64le Red Hat CodeReady Linux Builder for ARM 64 9 aarch64 Red Hat CodeReady Linux Builder for IBM z Systems 9 s390x Red Hat CodeReady Linux Builder for x86_64 - Extended Update Support 9.8 x86_64 Red Hat CodeReady Linux Builder for Power, little endian - Extended Update Support 9.8 ppc64le Red Hat CodeReady Linux Builder for IBM z Systems - Extended Update Support 9.8 s390x Red Hat CodeReady Linux Builder for ARM 64 - Extended Update Support 9.8 aarch64 Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.8 aarch64 Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.8 s390x Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 9.8 x86_64 Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 9.8 aarch64 Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 9.8 ppc64le Red Hat Enterprise Linux for IBM z Systems - Extended Life Cycle 9.8 s390x Fixes BZ - 2419093 - CVE-2025-14087 glib: GLib: Buffer underflow in GVariant parser leads to heap corruption BZ - 2421339 - CVE-2025-14512 glib: Integer Overflow in GLib GIO Attribute Escaping Causes Heap Buffer Overflow CVEs CVE-2025-14087 CVE-2025-14512 References https://access.redhat.com/security/updates/classification/#moderate Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux for x86_64 9 SRPM glib2-2.68.4-19.el9_8.1.src.rpm SHA-256: e3cd2fb9f1035e6dd681f3413ae02a8d1c1252f7541ba326cf163f0de04a27c1 x86_64 glib2-2.68.4-19.el9_8.1.i686.rpm SHA-256: 25c60e9b09d4c40ea8489146bc6908054131563b356b27f47740cbcf1602b859 glib2-2.68.4-19.el9_8.1.x86_64.rpm SHA-256: ea4316aa24842db4d87d8947b745f42f4d0713afc0fe78de3712b8149fb98073 glib2-debuginfo-2.68.4-19.el9_8.1.i686.rpm SHA-256: 2c6cf86d2aaf21df6b4278c6ad63665768ec9a0a29b3b90be52126852a21763d glib2-debuginfo-2.68.4-19.el9_8.1.i686.rpm SHA-256: 2c6cf86d2aaf21df6b4278c6ad63665768ec9a0a29b3b90be52126852a21763d glib2-debuginfo-2.68.4-19.el9_8.1.x86_64.rpm SHA-256: 78900492d14ccc78557a7b77a46ebb3e3ceb4df453f6782e0dd65eebf2b7acd6 glib2-debuginfo-2.68.4-19.el9_8.1.x86_64.rpm SHA-256: 78900492d14ccc78557a7b77a46ebb3e3ceb4df453f6782e0dd65eebf2b7acd6 glib2-debugsource-2.68.4-19.el9_8.1.i686.rpm SHA-256: aab0426dabe2caef09a252dbb4ca42b0d3266939468de6982a0150812f4365a8 glib2-debugsource-2.68.4-19.el9_8.1.i686.rpm SHA-256: aab0426dabe2caef09a252dbb4ca42b0d3266939468de6982a0150812f4365a8 glib2-debugsource-2.68.4-19.el9_8.1.x86_64.rpm SHA-256: c2fcfbc797bc15e0e75c63f629e27bc2a862a0434e5efc9472dcac710aa78f78 glib2-debugsource-2.68.4-19.el9_8.1.x86_64.rpm SHA-256: c2fcfbc797bc15e0e75c63f629e27bc2a862a0434e5efc9472dcac710aa78f78 glib2-devel-2.68.4-19.el9_8.1.i686.rpm SHA-256: 7f29bb056a08319669f38b04aa896c7e01f9f0fd13d8a3ee8613805dcb9eaa93 glib2-devel-2.68.4-19.el9_8.1.x86_64.rpm SHA-256: 9b2b804161856d938f0b1ed6753c36d43e5a7786d74356964c22affb0d54ae2c glib2-devel-debuginfo-2.68.4-19.el9_8.1.i686.rpm SHA-256: 3fd46b664fe864722b1261ebb703fc22dfcdf6ccaaeb6358f33fc914d3c0837e glib2-devel-debuginfo-2.68.4-19.el9_8.1.i686.rpm SHA-256: 3fd46b664fe864722b1261ebb703fc22dfcdf6ccaaeb6358f33fc914d3c0837e glib2-devel-debuginfo-2.68.4-19.el9_8.1.x86_64.rpm SHA-256: 8102f54c245f44f2e65524b819f4563b7e82d73dd841cafc963204080f3b2546 glib2-devel-debuginfo-2.68.4-19.el9_8.1.x86_64.rpm SHA-256: 8102f54c245f44f2e65524b819f4563b7e82d73dd841cafc963204080f3b2546 glib2-doc-2.68.4-19.el9_8.1.noarch.rpm SHA-256: d54e11ea705b2b73a1d0420215d891bcefb1d5bae26eeeed321639b294a9876f glib2-tests-2.68.4-19.el9_8.1.x86_64.rpm SHA-256: 9f6c4345f9e971d69085b52a94b6208c62d5ee5a90baccd5a4155d0ba328f9de glib2-tests-debuginfo-2.68.4-19.el9_8.1.i686.rpm SHA-256: f74badb5283705f532e2a9421480aaa6d84278deaac17ebd6cb49ec9b45b1abf glib2-tests-debuginfo-2.68.4-19.el9_8.1.i686.rpm SHA-256: f74badb5283705f532e2a9421480aaa6d84278deaac17ebd6cb49ec9b45b1abf glib2-tests-debuginfo-2.68.4-19.el9_8.1.x86_64.rpm SHA-256: 158740c9cdebedad5120c0750db1906855ab7fe2e30382b961a2dbbdd03c062b glib2-tests-debuginfo-2.68.4-19.el9_8.1.x86_64.rpm SHA-256: 158740c9cdebedad5120c0750db1906855ab7fe2e30382b961a2dbbdd03c062b Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.8 SRPM glib2-2.68.4-19.el9_8.1.src.rpm SHA-256: e3cd2fb9f1035e6dd681f3413ae02a8d1c1252f7541ba326cf163f0de04a27c1 x86_64 glib2-2.68.4-19.el9_8.1.i686.rpm SHA-256: 25c60e9b09d4c40ea8489146bc6908054131563b356b27f47740cbcf1602b859 glib2-2.68.4-19.el9_8.1.x86_64.rpm SHA-256: ea4316aa24842db4d87d8947b745f42f4d0713afc0fe78de3712b8149fb98073 glib2-debuginfo-2.68.4-19.el9_8.1.i686.rpm SHA-256: 2c6cf86d2aaf21df6b4278c6ad63665768ec9a0a29b3b90be52126852a21763d glib2-debuginfo-2.68.4-19.el9_8.1.i686.rpm SHA-256: 2c6cf86d2aaf21df6b4278c6ad63665768ec9a0a29b3b90be52126852a21763d glib2-debuginfo-2.68.4-19.el9_8.1.x86_64.rpm SHA-256: 78900492d14ccc78557a7b77a46ebb3e3ceb4df453f6782e0dd65eebf2b7acd6 glib2-debuginfo-2.68.4-19.el9_8.1.x86_64.rpm SHA-256: 78900492d14ccc78557a7b77a46ebb3e3ceb4df453f6782e0dd65eebf2b7acd6 glib2-debugsource-2.68.4-19.el9_8.1.i686.rpm SHA-256: aab0426dabe2caef09a252dbb4ca42b0d3266939468de6982a0150812f4365a8 glib2-debugsource-2.68.4-19.el9_8.1.i686.rpm SHA-256: aab0426dabe2caef09a252dbb4ca42b0d3266939468de6982a0150812f4365a8 glib2-debugsource-2.68.4-19.el9_8.1.x86_64.rpm SHA-256: c2fcfbc797bc15e0e75c63f629e27bc2a862a0434e5efc9472dcac710aa78f78 glib2-debugsource-2.68.4-19.el9_8.1.x86_64.rpm SHA-256: c2fcfbc797bc15e0e75c63f629e27bc2a862a0434e5efc9472dcac710aa78f78 glib2-devel-2.68.4-19.el9_8.1.i686.rpm SHA-256: 7f29bb056a08319669f38b04aa896c7e01f9f0fd13d8a3ee8613805dcb9eaa93 glib2-devel-2.68.4-19.el9_8.1.x86_64.rpm SHA-256: 9b2b804161856d938f0b1ed6753c36d43e5a7786d74356964c22affb0d54ae2c glib2-devel-debuginfo-2.68.4-19.el9_8.1.i686.rpm SHA-256: 3fd46b664fe864722b1261ebb703fc22dfcdf6ccaaeb6358f33fc914d3c0837e glib2-devel-debuginfo-2.68.4-19.el9_8.1.i686.rpm SHA-256: 3fd46b664fe864722b1261ebb703fc22dfcdf6ccaaeb6358f33fc914d3c0837e glib2-devel-debuginfo-2.68.4-19.el9_8.1.x86_64.rpm SHA-256: 8102f54c245f44f2e65524b819f4563b7e82d73dd841cafc963204080f3b2546 glib2-devel-debuginfo-2.68.4-19.el9_8.1.x86_64.rpm SHA-256: 8102f54c245f44f2e65524b819f4563b7e82d73dd841cafc963204080f3b2546 glib2-doc-2.68.4-19.el9_8.1.noarch.rpm SHA-256: d54e11ea705b2b73a1d0420215d891bcefb1d5bae26eeeed321639b294a9876f glib2-tests-2.68.4-19.el9_8.1.x86_64.rpm SHA-256: 9f6c4345f9e971d69085b52a94b6208c62d5ee5a90baccd5a4155d0ba328f9de glib2-tests-debuginfo-2.68.4-19.el9_8.1.i686.rpm SHA-256: f74badb5283705f532e2a9421480aaa6d84278deaac17ebd6cb49ec9b45b1abf glib2-tests-debuginfo-2.68.4-19.el9_8.1.i686.rpm SHA-256: f74badb5283705f532e2a9421480aaa6d84278deaac17ebd6cb49ec9b45b1abf glib2-tests-debuginfo-2.68.4-19.el9_8.1.x86_64.rpm SHA-256: 158740c9cdebedad5120c0750db1906855ab7fe2e30382b961a2dbbdd03c062b glib2-tests-debuginfo-2.68.4-19.el9_8.1.x86_64.rpm SHA-256: 158740c9cdebedad5120c0750db1906855ab7fe2e30382b961a2dbbdd03c062b Red Hat Enterprise Linux for IBM z Systems 9 SRPM glib2-2.68.4-19.el9_8.1.src.rpm SHA-256: e3cd2fb9f1035e6dd681f3413ae02a8d1c1252f7541ba326cf163f0de04a27c1 s390x glib2-2.68.4-19.el9_8.1.s390x.rpm SHA-256: fbe028e47fa0f737940c0a0287d53916bcb345b9f81f427d8f14da8cd83e859e glib2-debuginfo-2.68.4-19.el9_8.1.s390x.rpm SHA-256: a0d16928451b25718eb731e420b53ae8be66a725a33028d355bd5934ed44e097 glib2-debuginfo-2.68.4-19.el9_8.1.s390x.rpm SHA-256: a0d16928451b25718eb731e420b53ae8be66a725a33028d355bd5934ed44e097 glib2-debugsource-2.68.4-19.el9_8.1.s390x.rpm SHA-256: 85a0937a3614345f692a886d8ec38567c012cd3b267ae3d966f54ad4530a8428 glib2-debugsource-2.68.4-19.el9_8.1.s390x.rpm SHA-256: 85a0937a3614345f692a886d8ec38567c012cd3b267ae3d966f54ad4530a8428 glib