CVE-2026-1489

ADVISORY - nist

Summary

A flaw was found in GLib. An integer overflow vulnerability in its Unicode case conversion implementation can lead to memory corruption. By processing specially crafted and extremely large Unicode strings, an attacker could trigger an undersized memory allocation, resulting in out-of-bounds writes. This could cause applications utilizing GLib for string conversion to crash or become unstable.

Common Weakness Enumeration (CWE)

ADVISORY - nist

CWE-787⁠

Out-of-bounds Write

ADVISORY - redhat

(CWE-190|CWE-787)⁠

Impacted images

Advisories

NIST

CREATED

15 hours ago

UPDATED

14 hours ago

ADVISORY IDCVE-2026-1489⁠

EXPLOITABILITY SCORE

2.8

EXPLOITS FOUND

-

COMMON WEAKNESS ENUMERATION (CWE)

CVSS SCORE

5.4medium

Debian

CREATED

6 hours ago

UPDATED

1 hour ago

ADVISORY IDCVE-2026-1489⁠

EXPLOITABILITY SCORE

-

EXPLOITS FOUND

-

COMMON WEAKNESS ENUMERATION (CWE)-

RATING UNAVAILABLE FROM ADVISORY

Red Hat

CREATED

1 day ago

UPDATED

5 hours ago

ADVISORY IDCVE-2026-1489⁠

EXPLOITABILITY SCORE

2.8

EXPLOITS FOUND

-

COMMON WEAKNESS ENUMERATION (CWE)

(CWE-190|CWE-787)⁠

CVSS SCORE

5.4medium