{"id":"AZL-63912","summary":"CVE-2025-6052 affecting package glib for versions less than 2.78.6-3","details":"A flaw was found in how GLib’s GString manages memory when adding data to strings. If a string is already very large, combining it with more input can cause a hidden overflow in the size calculation. This makes the system think it has enough memory when it doesn’t. As a result, data may be written past the end of the allocated memory, leading to crashes or memory corruption.","modified":"2026-04-01T05:20:13.463882Z","published":"2025-06-13T16:15:28Z","upstream":["CVE-2025-6052"],"references":[{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-6052"}],"affected":[{"package":{"name":"glib","ecosystem":"Azure Linux:3","purl":"pkg:rpm/azure-linux/glib"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.78.6-3"}]}],"database_specific":{"source":"https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-63912.json"}}],"schema_version":"1.7.5"}