UBUNTU-CVE-2026-10028
- Source
- https://ubuntu.com/security/CVE-2026-10028
- Import Source
- https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-10028.json
- JSON Data
- https://api.osv.dev/v1/vulns/UBUNTU-CVE-2026-10028
- Upstream
- Published
- 2026-05-28T23:16:00Z
- Modified
- 2026-06-03T11:20:11Z
- Severity
-
- 4.3 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L CVSS Calculator
- Ubuntu - medium
- Summary
- [none]
- Details
-
A flaw was found in glib-networking. A remote attacker can exploit this vulnerability by presenting a specially crafted certificate chain to an application that uses glib-networking with the GnuTLS backend enabled and performs certificate verification. This crafted chain, which contains circular issuer relationships, can cause an infinite loop during certificate verification. The unbounded traversal consumes excessive CPU resources, leading to a denial of service for the affected process or worker.
- References
Affected packages
Ubuntu:16.04:LTS
glib-networking
Package
- Name
- glib-networking
- Purl
- pkg:deb/ubuntu/glib-networking?arch=source&distro=xenial
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Affected versions
2.*
2.46.0-1
2.46.1-1
2.46.1-1build1
2.48.0-1
2.48.2-1~ubuntu16.04.1
2.48.2-1~ubuntu16.04.2
Ecosystem specific
{
"binaries": [
{
"binary_name": "glib-networking",
"binary_version": "2.48.2-1~ubuntu16.04.2"
},
{
"binary_name": "glib-networking-common",
"binary_version": "2.48.2-1~ubuntu16.04.2"
},
{
"binary_name": "glib-networking-services",
"binary_version": "2.48.2-1~ubuntu16.04.2"
},
{
"binary_name": "glib-networking-tests",
"binary_version": "2.48.2-1~ubuntu16.04.2"
}
]
}Ubuntu:18.04:LTS
glib-networking
Package
- Name
- glib-networking
- Purl
- pkg:deb/ubuntu/glib-networking?arch=source&distro=bionic
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Ecosystem specific
{
"binaries": [
{
"binary_name": "glib-networking",
"binary_version": "2.56.0-1ubuntu0.1"
},
{
"binary_name": "glib-networking-common",
"binary_version": "2.56.0-1ubuntu0.1"
},
{
"binary_name": "glib-networking-services",
"binary_version": "2.56.0-1ubuntu0.1"
},
{
"binary_name": "glib-networking-tests",
"binary_version": "2.56.0-1ubuntu0.1"
}
]
}Ubuntu:20.04:LTS
glib-networking
Package
- Name
- glib-networking
- Purl
- pkg:deb/ubuntu/glib-networking?arch=source&distro=focal
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Affected versions
2.*
2.62.1-1
2.63.2-1
2.63.3-0build1
2.63.90-1ubuntu1
2.63.91-1ubuntu1
2.64.0-1
2.64.1-1
2.64.2-1build1
2.64.2-1ubuntu0.1
Ecosystem specific
{
"binaries": [
{
"binary_name": "glib-networking",
"binary_version": "2.64.2-1ubuntu0.1"
},
{
"binary_name": "glib-networking-common",
"binary_version": "2.64.2-1ubuntu0.1"
},
{
"binary_name": "glib-networking-services",
"binary_version": "2.64.2-1ubuntu0.1"
},
{
"binary_name": "glib-networking-tests",
"binary_version": "2.64.2-1ubuntu0.1"
}
]
}Ubuntu:22.04:LTS
glib-networking
Package
- Name
- glib-networking
- Purl
- pkg:deb/ubuntu/glib-networking?arch=source&distro=jammy
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Ecosystem specific
{
"binaries": [
{
"binary_name": "glib-networking",
"binary_version": "2.72.0-1"
},
{
"binary_name": "glib-networking-common",
"binary_version": "2.72.0-1"
},
{
"binary_name": "glib-networking-services",
"binary_version": "2.72.0-1"
},
{
"binary_name": "glib-networking-tests",
"binary_version": "2.72.0-1"
}
]
}Ubuntu:24.04:LTS
glib-networking
Package
- Name
- glib-networking
- Purl
- pkg:deb/ubuntu/glib-networking?arch=source&distro=noble
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Ecosystem specific
{
"binaries": [
{
"binary_name": "glib-networking",
"binary_version": "2.80.0-1build1"
},
{
"binary_name": "glib-networking-common",
"binary_version": "2.80.0-1build1"
},
{
"binary_name": "glib-networking-services",
"binary_version": "2.80.0-1build1"
},
{
"binary_name": "glib-networking-tests",
"binary_version": "2.80.0-1build1"
}
]
}Ubuntu:25.10
glib-networking
Package
- Name
- glib-networking
- Purl
- pkg:deb/ubuntu/glib-networking?arch=source&distro=questing
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Ecosystem specific
{
"binaries": [
{
"binary_name": "glib-networking",
"binary_version": "2.80.1-1build1"
},
{
"binary_name": "glib-networking-common",
"binary_version": "2.80.1-1build1"
},
{
"binary_name": "glib-networking-services",
"binary_version": "2.80.1-1build1"
},
{
"binary_name": "glib-networking-tests",
"binary_version": "2.80.1-1build1"
}
]
}Ubuntu:26.04:LTS
glib-networking
Package
- Name
- glib-networking
- Purl
- pkg:deb/ubuntu/glib-networking?arch=source&distro=resolute
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Ecosystem specific
{
"binaries": [
{
"binary_name": "glib-networking",
"binary_version": "2.80.1-1build2"
},
{
"binary_name": "glib-networking-common",
"binary_version": "2.80.1-1build2"
},
{
"binary_name": "glib-networking-services",
"binary_version": "2.80.1-1build2"
},
{
"binary_name": "glib-networking-tests",
"binary_version": "2.80.1-1build2"
}
]
}