Import Source
https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-76469.json
JSON Data
https://api.osv.dev/v1/vulns/AZL-76469
Upstream
  • CVE-2026-1489
Published
2026-01-27T15:15:57Z
Modified
2026-04-21T04:39:03.522797Z
Summary
CVE-2026-1489 affecting package glib 2.71.0-9
Details

A flaw was found in GLib. An integer overflow vulnerability in its Unicode case conversion implementation can lead to memory corruption. By processing specially crafted and extremely large Unicode strings, an attacker could trigger an undersized memory allocation, resulting in out-of-bounds writes. This could cause applications utilizing GLib for string conversion to crash or become unstable.

References

Affected packages

Azure Linux:2 / glib

Package

Name
glib
Purl
pkg:rpm/azure-linux/glib

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Last affected
2.71.0-9

Database specific

source
"https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-76469.json"