GRADUAL ROLLOUT COMPLETED: GLIB2 PACKAGE WITH THE FIX FOR CVE-2021-28153 AND CVE-2021-27219 WITHIN CentOS 6 ELS - TuxCare

GRADUAL ROLLOUT COMPLETED: GLIB2 PACKAGE WITH THE FIX FOR CVE-2021-28153 AND CVE-2021-27219 WITHIN CentOS 6 ELS

TuxCare Team

June 15, 2021

changelog, CVE-2021-27219

A new glib2 package with the fix for the CVE-2021-28153 and the CVE-2021-27219 within CentOS 6 extended lifecycle support has been rolled out to 100% and is now available for download from our production repository.

Changelog

glib2-2.28.8-12.el6.cloudlinux.els
  • Fix creating empty target for dangling symlink in g_file_replace() with G_FILE_CREATE_REPLACE_DESTINATION (CVE-2021-28153)
  • Fix integer overflow in g_bytes_new function on 64-bit platforms due to an implicit cast from 64 bits to 32 bits (CVE-2021-27219)

Update command

yum update glib2*

Stay in the Loop

Resources

State of Enterprise Linux Cybersecurity ... Read More State of Enterprise Linux Cybersecurity ...
Dangerous remotely exploitable vulnerability ... Read More Dangerous remotely exploitable vulnerability ...
Securing confidential research data ... Read More Securing confidential research data ...
State of Enterprise Vulnerability Detection ... Read More State of Enterprise Vulnerability Detection ...
Demand for Rapid Risk Elimination for ... Read More Demand for Rapid Risk Elimination for ...
TuxCare Free Raspberry Pi Patching Read More TuxCare Free Raspberry Pi Patching