https://gitlab.gnome.org/GNOME/glib/commit/cec71705406f0b2790422f0c1aa0ff3b4b464b1b

https://gitlab.gnome.org/GNOME/glib/issues/1361

[debian-lts-announce] 20190731 [SECURITY] [DLA 1866-1] glib2.0 security update

USN-3767-1

USN-3767-2

According to the version of the glib2 packages installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerability :

  - GNOME GLib 2.56.1 has an out-of-bounds read     vulnerability in g_markup_parse_context_parse() in     gmarkup.c, related to utf8_str().(CVE-2018-16429)

Note that Tenable Network Security has extracted the preceding description block directly from the EulerOS security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

According to the versions of the glib2 packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities :

  - The keyfile settings backend in GNOME GLib (aka     glib2.0) before 2.60.0 creates directories using     g_file_make_directory_with_parents (kfsb->dir, NULL,     NULL) and files using g_file_replace_contents     (kfsb->file, contents, length, NULL, FALSE,     G_FILE_CREATE_REPLACE_DESTINATION, NULL, NULL, NULL).
    Consequently, it does not properly restrict directory     (and file) permissions. Instead, for directories, 0777     permissions are used for files, default file     permissions are used. This is similar to     CVE-2019-12450.(CVE-2019-13012)

  - file_copy_fallback in gio/gfile.c in GNOME GLib 2.15.0     through 2.61.1 does not properly restrict file     permissions while a copy operation is in progress.
    Instead, default permissions are used.(CVE-2019-12450)

  - GNOME GLib 2.56.1 has an out-of-bounds read     vulnerability in g_markup_parse_context_parse() in     gmarkup.c, related to utf8_str().(CVE-2018-16429)

Note that Tenable Network Security has extracted the preceding description block directly from the EulerOS security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

According to the version of the glib2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerability :

  - GNOME GLib 2.56.1 has an out-of-bounds read     vulnerability in g_markup_parse_context_parse() in     gmarkup.c, related to utf8_str().(CVE-2018-16429)

Note that Tenable Network Security has extracted the preceding description block directly from the EulerOS security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

According to the versions of the glib2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities :

  - gio/gsocketclient.c in GNOME GLib 2.59.2 does not     ensure that a parent GTask remains alive during the     execution of a connection-attempting enumeration, which     allows remote attackers to cause a denial of service     (g_socket_client_connected_callback mishandling and     application crash) via a crafted web site, as     demonstrated by GNOME Web (aka     Epiphany).(CVE-2019-9633)

  - GNOME GLib 2.56.1 has an out-of-bounds read     vulnerability in g_markup_parse_context_parse() in     gmarkup.c, related to utf8_str().(CVE-2018-16429)

  - In GNOME GLib 2.56.1,     g_markup_parse_context_end_parse() in gmarkup.c has a     NULL pointer dereference.(CVE-2018-16428)

Note that Tenable Network Security has extracted the preceding description block directly from the EulerOS security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

According to the versions of the glib2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities :

  - In GNOME GLib 2.56.1,     g_markup_parse_context_end_parse() in gmarkup.c has a     NULL pointer dereference.(CVE-2018-16428)

  - GNOME GLib 2.56.1 has an out-of-bounds read     vulnerability in g_markup_parse_context_parse() in     gmarkup.c, related to utf8_str().(CVE-2018-16429)

  - gio/gsocketclient.c in GNOME GLib 2.59.2 does not     ensure that a parent GTask remains alive during the     execution of a connection-attempting enumeration, which     allows remote attackers to cause a denial of service     (g_socket_client_connected_callback mishandling and     application crash) via a crafted web site, as     demonstrated by GNOME Web (aka     Epiphany).(CVE-2019-9633)

Note that Tenable Network Security has extracted the preceding description block directly from the EulerOS security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

This update for glib2 provides the following fix :

Security issues fixed :

CVE-2019-12450: Fixed an improper file permission when copy operation takes place (bsc#1137001).

CVE-2018-16428: Avoid a NULL pointer dereference that could crash glib2 users in markup processing (bnc#1107121).

CVE-2018-16429: Fixed out-of-bounds read vulnerability ing_markup_parse_context_parse() (bsc#1107116).

Non-security issues fixed: Install dummy *-mimeapps.list files to prevent dead symlinks. (bsc#1061599)

Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

This update for glib2 fixes the following issues :

Security issues fixed :

CVE-2019-12450: Fixed an improper file permission when copy operation takes place (bsc#1137001).

CVE-2018-16428: Avoid a NULL pointer dereference (bsc#1107121).

CVE-2018-16429: Fixed out-of-bounds read vulnerability ing_markup_parse_context_parse() (bsc#1107116).

Some exploitable parser bugs in GVariant and GDBus subsystems were fixed (bsc#1111499).

Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

This update for glib2 fixes the following issues :

Security issues fixed :

  - CVE-2018-16428: Do not do a NULL pointer dereference     (crash). Avoid that, at the cost of introducing a new     translatable error message (bsc#1107121).

  - CVE-2018-16429: Fixed out-of-bounds read vulnerability     ing_markup_parse_context_parse() (bsc#1107116).

Non-security issue fixed :

  - various GVariant parsing issues have been resolved     (bsc#1111499)

This update was imported from the SUSE:SLE-15:Update update project.

An update of the glib package has been released.

Security fixes for CVE-2018-6055 CVE-2018-6119 CVE-2018-16429 CVE-2018-16428

Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website.
Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

Security fixes for CVE-2018-6055 CVE-2018-6119 CVE-2018-16429 CVE-2018-16428

----

Update to Chromium 69. (EPEL-7 update is blocked by a GCC bug:
1629813, so as soon as devtoolset-8 arrives...)

Fixes a lot of security issues, like every major release of Chromium, including CVE-2018-16087 CVE-2018-16088 CVE-2018-16086CVE-2018-16065 CVE-2018-16066 CVE-2018-16067 CVE-2018-16068 CVE-2018-16069 CVE-2018-16070 CVE-2018-16071 CVE-2018-16072 CVE-2018-16073 CVE-2018-16074 CVE-2018-16075 CVE-2018-16076 CVE-2018-16077 CVE-2018-16078

Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website.
Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

This update for glib2 fixes the following issues :

Security issues fixed :

CVE-2018-16428: Do not do a NULL pointer dereference (crash). Avoid that, at the cost of introducing a new translatable error message (bsc#1107121).

CVE-2018-16429: Fixed out-of-bounds read vulnerability ing_markup_parse_context_parse() (bsc#1107116).

Non-security issue fixed: various GVariant parsing issues have been resolved (bsc#1111499)

Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

This update for glib2 fixes the following issues :

Security issues fixed :

CVE-2018-16429: Fixed out-of-bounds read vulnerability ing_markup_parse_context_parse() (bsc#1107116).

Fixing potentially exploitable bugs in UTF-8 validation in Variant and DBUS message parsing (bsc#1111499).

Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

ID	Name	Product	Family	Severity
136223	EulerOS Virtualization for ARM 64 3.0.2.0 : glib2 (EulerOS-SA-2020-1520)	Nessus	Huawei Local Security Checks	medium
135618	EulerOS Virtualization 3.0.2.2 : glib2 (EulerOS-SA-2020-1456)	Nessus	Huawei Local Security Checks	high
132357	EulerOS 2.0 SP5 : glib2 (EulerOS-SA-2019-2690)	Nessus	Huawei Local Security Checks	medium
132123	EulerOS 2.0 SP3 : glib2 (EulerOS-SA-2019-2588)	Nessus	Huawei Local Security Checks	high
131901	EulerOS 2.0 SP2 : glib2 (EulerOS-SA-2019-2409)	Nessus	Huawei Local Security Checks	high
126461	SUSE SLED12 / SLES12 Security Update : glib2 (SUSE-SU-2019:1722-1)	Nessus	SuSE Local Security Checks	high
126152	SUSE SLES12 Security Update : glib2 (SUSE-SU-2019:1596-1)	Nessus	SuSE Local Security Checks	high
123388	openSUSE Security Update : glib2 (openSUSE-2019-959)	Nessus	SuSE Local Security Checks	high
122004	Photon OS 2.0: Glib PHSA-2018-2.0-0108	Nessus	PhotonOS Local Security Checks	high
121896	Photon OS 1.0: Glib PHSA-2018-1.0-0194	Nessus	PhotonOS Local Security Checks	high
120923	Fedora 28 : chromium (2018-f76e6d17f1)	Nessus	Fedora Local Security Checks	high
120356	Fedora 29 : chromium (2018-39be36e9fc)	Nessus	Fedora Local Security Checks	high
120169	SUSE SLED15 / SLES15 Security Update : glib2 (SUSE-SU-2018:3913-1)	Nessus	SuSE Local Security Checks	high
119493	openSUSE Security Update : glib2 (openSUSE-2018-1485)	Nessus	SuSE Local Security Checks	high
119334	SUSE SLES11 Security Update : glib2 (SUSE-SU-2018:3966-1)	Nessus	SuSE Local Security Checks	medium

CVE-2018-16429

Description

References

Details

Risk Information

CVSS v2.0

CVSS v3.0

Vulnerable Software

Configuration 1

Configuration 2

Tenable Plugins