CVE-2025-13601

high

Description

A heap-based buffer overflow problem was found in glib through an incorrect calculation of buffer size in the g_escape_uri_string() function. If the string to escape contains a very large number of unacceptable characters (which would need escaping), the calculation of the length of the escaped string could overflow, leading to a potential write off the end of the newly allocated string.

References

Advisories
More

https://gitlab.gnome.org/GNOME/glib/-/merge_requests/4914

https://access.redhat.com/errata/RHSA-2026:2563

https://access.redhat.com/errata/RHSA-2026:2485

https://access.redhat.com/errata/RHSA-2026:2072

https://access.redhat.com/errata/RHSA-2026:2064

https://access.redhat.com/errata/RHSA-2026:1736

https://access.redhat.com/errata/RHSA-2026:1652

https://access.redhat.com/errata/RHSA-2026:1627

https://access.redhat.com/errata/RHSA-2026:1626

https://access.redhat.com/errata/RHSA-2026:1625

https://access.redhat.com/errata/RHSA-2026:1624

https://access.redhat.com/errata/RHSA-2026:1608

https://access.redhat.com/errata/RHSA-2026:1465

https://access.redhat.com/errata/RHSA-2026:1327

https://access.redhat.com/errata/RHSA-2026:1326

https://access.redhat.com/errata/RHSA-2026:1324

https://access.redhat.com/errata/RHSA-2026:1323

https://access.redhat.com/errata/RHSA-2026:0991

https://access.redhat.com/errata/RHSA-2026:0975

https://access.redhat.com/errata/RHSA-2026:0936

https://gitlab.gnome.org/GNOME/glib/-/issues/3827

https://bugzilla.redhat.com/show_bug.cgi?id=2416741

https://access.redhat.com/security/cve/CVE-2025-13601

Details

Source: Mitre, NVD

Published: 2025-11-26

Updated: 2026-02-13

Risk Information

CVSS v2

Base Score: 6.6

Vector: CVSS2#AV:L/AC:L/Au:N/C:N/I:C/A:C

Severity: Medium

CVSS v3

Base Score: 7.7

Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H

Severity: High

EPSS

EPSS: 0.00012