ELS for OS
- CVEs
- Releases
- Projects
- Documentation
Live Patches
ELS for PHP
- CVEs
- Releases
- Projects
- Documentation
ELS for Python
- CVEs
- Releases
- Projects
- Documentation
ELS for Dotnet
- CVEs
- Releases
- Projects
- Documentation
ELS for Node.js
- CVEs
- Releases
- Projects
- Documentation

Release Info

Advisory: CLSA-2026:1771580716

OS: CentOS 6 ELS

Public date: 2026-02-20 09:45:18.605787

Project: glib2

Version: 2.28.8-12.el6.tuxcare.els6

ETA for 100% rollout: 2026-03-06

Errata link: https://errata.tuxcare.com/els_os/centos6els/CLSA-2026-1771580716.html

Changelog

- CVE-2025-14087: Fix integer overflow in GVariant parser leading to heap corruption via buffer underflow when processing malicious input strings

Update

Update command: yum update glib2* Immediate update (via bypass): yum update glib2* --enablerepo=ELS6-rollout-3-bypass

Packages list

glib2-2.28.8-12.el6.tuxcare.els6.i686.rpm glib2-2.28.8-12.el6.tuxcare.els6.x86_64.rpm glib2-devel-2.28.8-12.el6.tuxcare.els6.i686.rpm glib2-devel-2.28.8-12.el6.tuxcare.els6.x86_64.rpm glib2-doc-2.28.8-12.el6.tuxcare.els6.noarch.rpm glib2-static-2.28.8-12.el6.tuxcare.els6.x86_64.rpm

CVEs

CVE-2025-14087