Red Hat Product Errata RHSA-2026:19459 - Security Advisory Issued: 2026-05-20 Updated: 2026-05-20 RHSA-2026:19459 - Security Advisory Overview Updated Packages Synopsis Moderate: glib2 security update Type/Severity Security Advisory: Moderate Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for glib2 is now available for Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description GLib provides the core application building blocks for libraries and applications written in C. It provides the core object system used in GNOME, the main loop implementation, and a large set of utility functions for strings and common data structures. Security Fix(es): glib: GLib: Buffer underflow in GVariant parser leads to heap corruption (CVE-2025-14087) glib: Integer Overflow in GLib GIO Attribute Escaping Causes Heap Buffer Overflow (CVE-2025-14512) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 Affected Products Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.0 ppc64le Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.0 x86_64 Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.0 aarch64 Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.0 s390x Fixes BZ - 2419093 - CVE-2025-14087 glib: GLib: Buffer underflow in GVariant parser leads to heap corruption BZ - 2421339 - CVE-2025-14512 glib: Integer Overflow in GLib GIO Attribute Escaping Causes Heap Buffer Overflow CVEs CVE-2025-14087 CVE-2025-14512 References https://access.redhat.com/security/updates/classification/#moderate Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.0 SRPM glib2-2.68.4-5.el9_0.5.src.rpm SHA-256: 2e710d392fef63540defbaaaeb9e749ab68f3e494a7dedae9f7c8d5f07ff0c85 ppc64le glib2-2.68.4-5.el9_0.5.ppc64le.rpm SHA-256: 9cd0841c22627f2a26c57634289c22ac2160c08212f9186d90fb313f7a7f0385 glib2-debuginfo-2.68.4-5.el9_0.5.ppc64le.rpm SHA-256: 290a9ca1e392ad7ef48d9a20c4e9fd65a38eefcbba874ef7e14d3d4e38daf754 glib2-debuginfo-2.68.4-5.el9_0.5.ppc64le.rpm SHA-256: 290a9ca1e392ad7ef48d9a20c4e9fd65a38eefcbba874ef7e14d3d4e38daf754 glib2-debugsource-2.68.4-5.el9_0.5.ppc64le.rpm SHA-256: 3422af91ba0e0b1613069389f644538658c0a44590bbea3524178ba41a663d1b glib2-debugsource-2.68.4-5.el9_0.5.ppc64le.rpm SHA-256: 3422af91ba0e0b1613069389f644538658c0a44590bbea3524178ba41a663d1b glib2-devel-2.68.4-5.el9_0.5.ppc64le.rpm SHA-256: dae5c1f72f52108effba4bf9fa0a44f01047c7e10f4509ee17ab476937217390 glib2-devel-debuginfo-2.68.4-5.el9_0.5.ppc64le.rpm SHA-256: f9d6c919086315f57bffd2e65e23eb29b14558756f7ecc1059b1be5b0f2d3da3 glib2-devel-debuginfo-2.68.4-5.el9_0.5.ppc64le.rpm SHA-256: f9d6c919086315f57bffd2e65e23eb29b14558756f7ecc1059b1be5b0f2d3da3 glib2-doc-2.68.4-5.el9_0.5.noarch.rpm SHA-256: cfe9b10158064bdaad7edfba37b69d6c544bf845d8a37910aba7b00bd20d561f glib2-tests-2.68.4-5.el9_0.5.ppc64le.rpm SHA-256: fceed9b7982a3e53e058fd0e4db229d87282e828cf8a25b4a434a2195d670613 glib2-tests-debuginfo-2.68.4-5.el9_0.5.ppc64le.rpm SHA-256: d777518faf031b29a2713d3b3060090315db13ccd86c0d9f0d8c3676c4ee8933 glib2-tests-debuginfo-2.68.4-5.el9_0.5.ppc64le.rpm SHA-256: d777518faf031b29a2713d3b3060090315db13ccd86c0d9f0d8c3676c4ee8933 Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.0 SRPM glib2-2.68.4-5.el9_0.5.src.rpm SHA-256: 2e710d392fef63540defbaaaeb9e749ab68f3e494a7dedae9f7c8d5f07ff0c85 x86_64 glib2-2.68.4-5.el9_0.5.i686.rpm SHA-256: 643a3feafc7594a21296186593135d6a1294730a411a64c79924630c754f7282 glib2-2.68.4-5.el9_0.5.x86_64.rpm SHA-256: a5fa8b127bc13301c0ce1c83d7e6f2ec4c9ab6cca9046005b865415dac317ef2 glib2-debuginfo-2.68.4-5.el9_0.5.i686.rpm SHA-256: e24f16a92c306a7815151b550a6232d59a38f95bdf01f2ebeb0a735fb9dceb77 glib2-debuginfo-2.68.4-5.el9_0.5.i686.rpm SHA-256: e24f16a92c306a7815151b550a6232d59a38f95bdf01f2ebeb0a735fb9dceb77 glib2-debuginfo-2.68.4-5.el9_0.5.x86_64.rpm SHA-256: 469a6495df45728237a29b77226fc482a1a95deca6b961ff5814265ad59ce67f glib2-debuginfo-2.68.4-5.el9_0.5.x86_64.rpm SHA-256: 469a6495df45728237a29b77226fc482a1a95deca6b961ff5814265ad59ce67f glib2-debugsource-2.68.4-5.el9_0.5.i686.rpm SHA-256: 0ba635c779ca974a0562d83303e36bc3b918868853b0d22412fc5d0f6ccd4721 glib2-debugsource-2.68.4-5.el9_0.5.i686.rpm SHA-256: 0ba635c779ca974a0562d83303e36bc3b918868853b0d22412fc5d0f6ccd4721 glib2-debugsource-2.68.4-5.el9_0.5.x86_64.rpm SHA-256: fdce4aff32f5b172d9586aa45b858f872e91c18fd8e0d16dccf33a99041e3c78 glib2-debugsource-2.68.4-5.el9_0.5.x86_64.rpm SHA-256: fdce4aff32f5b172d9586aa45b858f872e91c18fd8e0d16dccf33a99041e3c78 glib2-devel-2.68.4-5.el9_0.5.i686.rpm SHA-256: edaa40aa408779e681267efd0e3a1343cb3b07b151f63c65e3df5b1d576ff41b glib2-devel-2.68.4-5.el9_0.5.x86_64.rpm SHA-256: 7401ff4626e35bd39770a4851838883390d954af9b7eb84e528bcb3a16ba0ee9 glib2-devel-debuginfo-2.68.4-5.el9_0.5.i686.rpm SHA-256: 30d1979437d607d54ca97f6b4fec8867be3beecf05acf827fbbb37edc6f57f78 glib2-devel-debuginfo-2.68.4-5.el9_0.5.i686.rpm SHA-256: 30d1979437d607d54ca97f6b4fec8867be3beecf05acf827fbbb37edc6f57f78 glib2-devel-debuginfo-2.68.4-5.el9_0.5.x86_64.rpm SHA-256: 9907837847e6e1828bc69fa7f1669560c2bfc00efd1ce8b14e6dd963847f89b4 glib2-devel-debuginfo-2.68.4-5.el9_0.5.x86_64.rpm SHA-256: 9907837847e6e1828bc69fa7f1669560c2bfc00efd1ce8b14e6dd963847f89b4 glib2-doc-2.68.4-5.el9_0.5.noarch.rpm SHA-256: cfe9b10158064bdaad7edfba37b69d6c544bf845d8a37910aba7b00bd20d561f glib2-tests-2.68.4-5.el9_0.5.x86_64.rpm SHA-256: bc722c1656e482f5078bbdf9594618250f64604b6e4b7560dbf5d488c9d71b99 glib2-tests-debuginfo-2.68.4-5.el9_0.5.i686.rpm SHA-256: 8396dd58acdce44bb7995b1c311a583e6ebda6159ce8f1bf08e6fe12c76d7229 glib2-tests-debuginfo-2.68.4-5.el9_0.5.i686.rpm SHA-256: 8396dd58acdce44bb7995b1c311a583e6ebda6159ce8f1bf08e6fe12c76d7229 glib2-tests-debuginfo-2.68.4-5.el9_0.5.x86_64.rpm SHA-256: e71fff959e8b0fb67b7d7a0c276e3096a7a1cc245be750dd3b8f2c7032979947 glib2-tests-debuginfo-2.68.4-5.el9_0.5.x86_64.rpm SHA-256: e71fff959e8b0fb67b7d7a0c276e3096a7a1cc245be750dd3b8f2c7032979947 Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.0 SRPM glib2-2.68.4-5.el9_0.5.src.rpm SHA-256: 2e710d392fef63540defbaaaeb9e749ab68f3e494a7dedae9f7c8d5f07ff0c85 aarch64 glib2-2.68.4-5.el9_0.5.aarch64.rpm SHA-256: b3832f8d2ec5b5cede81d5b69298f476adce99f82f2ded6c31f6a6b9d9c023b1 glib2-debuginfo-2.68.4-5.el9_0.5.aarch64.rpm SHA-256: 4ccfa8e7fea0c2491bc4f778702e24d9c868a68c41bedfbd2e70f05260d04cc5 glib2-debuginfo-2.68.4-5.el9_0.5.aarch64.rpm SHA-256: 4ccfa8e7fea0c2491bc4f778702e24d9c868a68c41bedfbd2e70f05260d04cc5 glib2-debugsource-2.68.4-5.el9_0.5.aarch64.rpm SHA-256: 94c146125fa940adc658b065e43fe1469968c737867a682dfaeb363175ad383e glib2-debugsource-2.68.4-5.el9_0.5.aarch64.rpm SHA-256: 94c146125fa940adc658b065e43fe1469968c737867a682dfaeb363175ad383e glib2-devel-2.68.4-5.el9_0.5.aarch64.rpm SHA-256: a85989c15517d8f631706d8a47df69f8d8f63a4f2855afa172fcaf4a3699f30d glib2-devel-debuginfo-2.68.4-5.el9_0.5.aarch64.rpm SHA-256: 914dd6d74abbfd4d2cc2ca4a65af6a1040a6b3cb4840bf679ad0a56be80e363f glib2-devel-debuginfo-2.68.4-5.el9_0.5.aarch64.rpm SHA-256: 914dd6d74abbfd4d2cc2ca4a65af6a1040a6b3cb4840bf679ad0a56be80e363f glib2-doc-2.68.4-5.el9_0.5.noarch.rpm SHA-256: cfe9b10158064bdaad7edfba37b69d6c544bf845d8a37910aba7b00bd20d561f glib2-tests-2.68.4-5.el9_0.5.aarch64.rpm SHA-256: b7d17b07f8e99c4b975530ca59e6f4fd4055bb1ba45aee7a859efd6ecf7a4d30 glib2-tests-debuginfo-2.68.4-5.el9_0.5.aarch64.rpm SHA-256: d9f44e130b9233b32be9e60e8b9804ab3b8b57085fc6b619067814fce34b0623 glib2-tests-debuginfo-2.68.4-5.el9_0.5.aarch64.rpm SHA-256: d9f44e130b9233b32be9e60e8b9804ab3b8b57085fc6b619067814fce34b0623 Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.0 SRPM glib2-2.68.4-5.el9_0.5.src.rpm SHA-256: 2e710d392fef63540defbaaaeb9e749ab68f3e494a7dedae9f7c8d5f07ff0c85 s390x glib2-2.68.4-5.el9_0.5.s390x.rpm SHA-256: bc232eb0b2a213639e3d0673156df19ae252ef32a8ff31b5ecc4cdb0149b2ac6 glib2-debuginfo-2.68.4-5.el9_0.5.s390x.rpm SHA-256: ba604780d71a0bced8cff84c5e14f9d7aa57ebd4dc282bde8155939057f6b718 glib2-debuginfo-2.68.4-5.el9_0.5.s390x.rpm SHA-256: ba604780d71a0bced8cff84c5e14f9d7aa57ebd4dc282bde8155939057f6b718 glib2-debugsource-2.68.4-5.el9_0.5.s390x.rpm SHA-256: b89ce81ddcb460098400b362c97a8564bb1e205b89ec5036d63ae84f2f2b27c5 glib2-debugsource-2.68.4-5.el9_0.5.s390x.rpm SHA-256: b89ce81ddcb460098400b362c97a8564bb1e205b89ec5036d63ae84f2f2b27c5 glib2-devel-2.68.4-5.el9_0.5.s390x.rpm SHA-256: 9b5ee444ad9f97a76422ea96f1b8d03beee0a6aca8dd46c35b3521394e4aadbf glib2-devel-debuginfo-2.68.4-5.el9_0.5.s390x.rpm SHA-256: 3b5e394d53705f8e0feb6ad89f7616320f4849a39b47a9d84526cab125791bc9 glib2-devel-debuginfo-2.68.4-5.el9_0.5.s390x.rpm SHA-256: 3b5e394d53705f8e0feb6ad89f7616320f4849a39b47a9d84526cab125791bc9 glib2-doc-2.68.4-5.el9_0.5.noarch.rpm SHA-256: cfe9b10158064bdaad7edfba37b69d6c544bf845d8a37910aba7b00bd20d561f glib2-tests-2.68.4-5.el9_0.5.s390x.rpm SHA-256: 48797d2698aad91679b15de78de6c55f4cd5b2000907840b34853427d7e290ef glib2-tests-debuginfo-2.68.4-5.el9_0.5.s390x.rpm SHA-256: 5538ff113feced57197ec3fb490c1112a7cc3fe7944ad3b3ebc87ab8d20007b6 glib2-tests-debuginfo-2.68.4-5.el9_0.5.s390x.rpm SHA-256: 5538ff113feced57197ec3fb490c1112a7cc3fe7944ad3b3ebc87ab8d20007b6 The Red Hat security contact is secalert@redhat.