Vulnerability Database

322,388

Total vulnerabilities in the database

CVE-2026-1489

A flaw was found in GLib. An integer overflow vulnerability in its Unicode case conversion implementation can lead to memory corruption. By processing specially crafted and extremely large Unicode strings, an attacker could trigger an undersized memory allocation, resulting in out-of-bounds writes. This could cause applications utilizing GLib for string conversion to crash or become unstable.

Published: Jan 27, 2026
Updated: Jan 28, 2026
CVE: CVE-2026-1489
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 5.4
AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L

CWEs:

CWE-787

Affected Software
References

No affected software listed.

https://access.redhat.com/security/cve/CVE-2026-1489
https://bugzilla.redhat.com/show_bug.cgi?id=2433348

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo