{"id":"AZL-72296","summary":"CVE-2025-14087 affecting package glib for versions less than 2.71.0-9","details":"A flaw was found in GLib (Gnome Lib). This vulnerability allows a remote attacker to cause heap corruption, leading to a denial of service or potential code execution via a buffer-underflow in the GVariant parser when processing maliciously crafted input strings.","modified":"2026-04-01T05:22:32.688760Z","published":"2025-12-10T09:15:47Z","upstream":["CVE-2025-14087"],"references":[{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-14087"}],"affected":[{"package":{"name":"glib","ecosystem":"Azure Linux:2","purl":"pkg:rpm/azure-linux/glib"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.71.0-9"}]}],"database_specific":{"source":"https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-72296.json"}}],"schema_version":"1.7.5"}