CVE-2021-27219
- Source
- https://cve.org/CVERecord?id=CVE-2021-27219
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2021-27219.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2021-27219
- Downstream
- Related
- Published
- 2021-02-15T17:15:13.137Z
- Modified
- 2026-02-13T08:23:49.417393Z
- Severity
-
- 7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- [none]
- Details
-
An issue was discovered in GNOME GLib before 2.66.6 and 2.67.x before 2.67.3. The function gbytesnew has an integer overflow on 64-bit platforms due to an implicit cast from 64 bits to 32 bits. The overflow could potentially lead to memory corruption.
- References
-
- https://lists.apache.org/thread.html/rf9fa47ab66495c78bb4120b0754dd9531ca2ff0430f6685ac9b07772%40%3Cdev.mina.apache.org%3E
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2REA7RVKN7ZHRLJOEGBRQKJIPZQPAELZ/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JJMPNDO4GDVURYQFYKFOWY5HAF4FTEPN/
- https://gitlab.gnome.org/GNOME/glib/-/issues/2319
- https://lists.debian.org/debian-lts-announce/2022/06/msg00006.html
- https://security.gentoo.org/glsa/202107-13
- https://security.netapp.com/advisory/ntap-20210319-0004/
- https://gitlab.gnome.org/GNOME/glib/-/issues/2319
- https://lists.debian.org/debian-lts-announce/2022/06/msg00006.html
- https://gitlab.gnome.org/GNOME/glib/-/issues/2319