CVE-2025-14087
Published: 10 December 2025
Description
Adversaries may attempt to exploit a weakness in an Internet-facing host or system to initially access a network.
Security Summary
CVE-2025-14087 is a buffer underflow vulnerability (CWE-190) in the GVariant parser of GLib, the core library used in GNOME applications and widely in Linux environments. The flaw causes heap corruption when processing maliciously crafted input strings, potentially leading to denial of service or code execution. It was published on 2025-12-10 with a CVSS v3.1 base score of 5.6 (AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L).
A remote attacker can exploit this vulnerability over the network without requiring privileges or user interaction, though it demands high attack complexity. Exploitation involves feeding specially crafted strings to applications or services that parse GVariant data via GLib, resulting in heap corruption that disrupts service availability or, in some cases, enables arbitrary code execution with the privileges of the affected process.
Red Hat advisories detail mitigation through errata RHSA-2026:7461, which provides updated packages. Further technical details and patches are tracked in the Red Hat CVE page at https://access.redhat.com/security/cve/CVE-2025-14087, Bugzilla entry 2419093, and the upstream GLib issue at https://gitlab.gnome.org/GNOME/glib/-/issues/3834.
Details
- CWE(s)
Affected Products
MITRE ATT&CK Enterprise Techniques
Why these techniques?
Buffer underflow in GLib GVariant parser enables remote exploitation of public-facing applications/services using GLib, leading to heap corruption, potential code execution or DoS without privileges.