Alpaquita LinuxStreamSecurity Advisory
Search Cve

CVE-2023-32665

Published: September 14, 2023Last modified: September 19, 2023

Description

A flaw was found in GLib. GVariant deserialization is vulnerable to an exponential blowup issue where a crafted GVariant can cause excessive processing, leading to denial of service.

Severity score breakdown

ParameterValue
Base score5.5
Attack VectorLOCAL
Attack complexityLOW
Privileges requiredNONE
User interactionREQUIRED
ScopeUNCHANGED
ConfidentialityNONE
Integrity impactNONE
Availability impactHIGH
VectorCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Status

ProductReleasePackageStatus
Alpaquita Linux23 LTSglibNot affected (2.74.7-r0)
StreamglibNot affected (2.76.4-r0)

References

ON THIS PAGE