CVE-2023-32611

MEDIUM

GLib < 2.74.2 - Denial of Service via GVariant Deserialization

Title source: llm
STIX 2.1

Description

A flaw was found in GLib. GVariant deserialization is vulnerable to a slowdown issue where a crafted GVariant can cause excessive processing, leading to denial of service.

References (6)

Core 6

Scores

CVSS v3 5.5
EPSS 0.0038
EPSS Percentile 29.7%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact partial

Details

CWE
CWE-400
Status published
Products (9)
None/glib2
Fedora/Extra Packages for Enterprise Linux
Fedora/Fedora 37
Fedora/Fedora 38
gnome/glib < 2.74.2
Red Hat/Red Hat Enterprise Linux 6
Red Hat/Red Hat Enterprise Linux 7
Red Hat/Red Hat Enterprise Linux 8
Red Hat/Red Hat Enterprise Linux 9
Published Sep 14, 2023
Tracked Since Feb 18, 2026