CVE-2026-1485

ADVISORY - nist

Summary

A flaw was found in Glib's content type parsing logic. This buffer underflow vulnerability occurs because the length of a header line is stored in a signed integer, which can lead to integer wraparound for very large inputs. This results in pointer underflow and out-of-bounds memory access. Exploitation requires a local user to install or process a specially crafted treemagic file, which can lead to local denial of service or application instability.

Common Weakness Enumeration (CWE)

ADVISORY - nist

CWE-125⁠

Out-of-bounds Read

ADVISORY - redhat

(CWE-124|CWE-787|CWE-125)⁠

Impacted images

Advisories

NIST

CREATED

16 hours ago

UPDATED

15 hours ago

ADVISORY IDCVE-2026-1485⁠

EXPLOITABILITY SCORE

1.3

EXPLOITS FOUND

-

COMMON WEAKNESS ENUMERATION (CWE)

CVSS SCORE

2.8low

Debian

CREATED

6 hours ago

UPDATED

1 hour ago

ADVISORY IDCVE-2026-1485⁠

EXPLOITABILITY SCORE

-

EXPLOITS FOUND

-

COMMON WEAKNESS ENUMERATION (CWE)-

RATING UNAVAILABLE FROM ADVISORY

Red Hat

CREATED

1 day ago

UPDATED

5 hours ago

ADVISORY IDCVE-2026-1485⁠

EXPLOITABILITY SCORE

1.3

EXPLOITS FOUND

-

COMMON WEAKNESS ENUMERATION (CWE)

(CWE-124|CWE-787|CWE-125)⁠

CVSS SCORE

2.8low