CVE-2026-0988

Published: January 16, 2026Last modified: January 20, 2026

Description

A flaw was found in glib. Missing validation of offset and count parameters in the g_buffered_input_stream_peek() function can lead to an integer overflow during length calculation. When specially crafted values are provided, this overflow results in an incorrect size being passed to memcpy(), triggering a buffer overflow. This can cause application crashes, leading to a Denial of Service (DoS).

Severity score breakdown

Parameter	Value
Base score	3.7
Attack Vector	NETWORK
Attack complexity	HIGH
Privileges required	NONE
User interaction	NONE
Scope	UNCHANGED
Confidentiality	NONE
Integrity impact	NONE
Availability impact	LOW
Vector	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

Status

Product	Release	Package	Status
Alpaquita Linux	23 LTS	glib	Fixed (2.74.7-r5)
	25 LTS	glib	Fixed (2.84.4-r2)
	Stream	glib	Fixed (2.86.3-r1)

References

https://access.redhat.com/errata/RHSA-2026:7461
https://access.redhat.com/security/cve/CVE-2026-0988
https://bugzilla.redhat.com/show_bug.cgi?id=2429886
https://gitlab.gnome.org/GNOME/glib/-/issues/3851