CVE-2021-27218

Incorrect Conversion between Numeric Types in conan/glib

Identifiers

CVE-2021-27218

Package Slug

conan/glib

Vulnerability

Incorrect Conversion between Numeric Types

Description

An issue was discovered in GNOME GLib If g_byte_array_new_take() was called with a buffer of 4GB or more on a platform, the length would be truncated modulo 2**32, causing unintended length truncation.

Affected Versions

All versions before 2.66.7, all versions starting from 2.67.0 before 2.67.4

Solution

Upgrade to version 2.68.3 or above.

Last Modified

2021-02-26

source