CVE-2021-27219

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2021-27219

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-27219.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2021-27219

Downstream

ALPINE-CVE-2021-27219

BELL-CVE-2021-27219

DEBIAN-CVE-2021-27219

DLA-3044-1

JLSEC-2025-157

OESA-2021-1106

OESA-2021-1107

RHSA-2021:2147

RHSA-2021:2170

RHSA-2021:2171

RHSA-2021:2172

RHSA-2021:2173

RHSA-2021:2174

RHSA-2021:2175

RHSA-2021:2203

RHSA-2021:2204

RHSA-2021:2467

RHSA-2021:2519

RHSA-2021:2522

RHSA-2021:4526

RLSA-2021:2170

SUSE-SU-2021:0778-1

SUSE-SU-2021:0801-1

SUSE-SU-2021:0890-1

UBUNTU-CVE-2021-27219

USN-4759-1

openSUSE-SU-2021:0406-1

openSUSE-SU-2024:10791-1

Related

Published

2021-02-15T17:15:13.137Z

Modified

2026-02-04T23:28:46.279014Z

Severity

7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator

Summary

[none]

Details

An issue was discovered in GNOME GLib before 2.66.6 and 2.67.x before 2.67.3. The function gbytesnew has an integer overflow on 64-bit platforms due to an implicit cast from 64 bits to 32 bits. The overflow could potentially lead to memory corruption.

References

Affected packages

Git / github.com/gnome/glib

Affected ranges

Type: GIT
Repo: https://github.com/gnome/glib
Events: Introduced

8f0b968cd128915853d17bf7944f7e0ebd90a399

Fixed

5bc9710fa644115b39bcc6fbed3b44397fd5bfa5

Fixed

d5ec4f360fb5a2ef0df1862999f970dc67fa352c

Affected versions

2.*

2.67.0

2.67.1

2.67.2

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-27219.json"