Vulnerability Description
A heap-based buffer overflow problem was found in glib through an incorrect calculation of buffer size in the g_escape_uri_string() function. If the string to escape contains a very large number of unacceptable characters (which would need escaping), the calculation of the length of the escaped string could overflow, leading to a potential write off the end of the newly allocated string.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Redhat | Codeready Linux Builder | 9.0 |
| Redhat | Codeready Linux Builder For Ibm Z Systems | 9.0_s390x |
| Redhat | Codeready Linux Builder For Power Little Endian | 9.0_ppc64le |
| Redhat | Codeready Linux Builder For X86 64 | 9.0 |
| Redhat | Enterprise Linux For Arm 64 | 9.0 |
| Redhat | Enterprise Linux For Ibm Z Systems | 9.0_s390x |
| Redhat | Enterprise Linux For Power Little Endian | 9.0_ppc64le |
| Redhat | Enterprise Linux For X86 64 | 9.0 |
| Redhat | Codeready Linux Builder For Arm64 | 10.0 |
| Redhat | Enterprise Linux Server Aus | 9.2 |
| Redhat | Codeready Linux Builder For Arm64 Eus | 9.4 |
| Redhat | Enterprise Linux For X86 64 Eus | 9.4 |
| Redhat | Enterprise Linux Server For Power Little Endian | 9.4_ppc64le |
| Redhat | Enterprise Linux Server For Power Little Endian Eus | 9.4_ppc64le |
| Redhat | Codeready Linux Builder For Ibm Z Systems Eus | 10.0_s390x |
| Redhat | Codeready Linux Builder For Power Little Endian Eus | 10.0_ppc64le |
| Redhat | Codeready Linux Builder For X86 64 Eus | 10.0 |
| Redhat | Enterprise Linux For Arm 64 Eus | 10.0 |
| Redhat | Enterprise Linux For Ibm Z Systems Eus | 10.0_s390x |
| Redhat | Enterprise Linux For Power Little Endian Eus | 10.0_ppc64le |
Related Weaknesses (CWE)
References
- https://access.redhat.com/errata/RHSA-2026:0936Vendor Advisory
- https://access.redhat.com/errata/RHSA-2026:0975Vendor Advisory
- https://access.redhat.com/errata/RHSA-2026:0991Vendor Advisory
- https://access.redhat.com/errata/RHSA-2026:1323Vendor Advisory
- https://access.redhat.com/errata/RHSA-2026:1324Vendor Advisory
- https://access.redhat.com/errata/RHSA-2026:1326Vendor Advisory
- https://access.redhat.com/errata/RHSA-2026:1327Vendor Advisory
- https://access.redhat.com/errata/RHSA-2026:1465Vendor Advisory
- https://access.redhat.com/errata/RHSA-2026:1608Vendor Advisory
- https://access.redhat.com/errata/RHSA-2026:1624Vendor Advisory
- https://access.redhat.com/errata/RHSA-2026:1625Vendor Advisory
- https://access.redhat.com/errata/RHSA-2026:1626Vendor Advisory
- https://access.redhat.com/errata/RHSA-2026:1627Vendor Advisory
- https://access.redhat.com/errata/RHSA-2026:1652Vendor Advisory
- https://access.redhat.com/errata/RHSA-2026:1736Vendor Advisory
FAQ
What is CVE-2025-13601?
CVE-2025-13601 is a vulnerability with a CVSS score of 7.7 (HIGH). A heap-based buffer overflow problem was found in glib through an incorrect calculation of buffer size in the g_escape_uri_string() function. If the string to escape contains a very large number of un...
How severe is CVE-2025-13601?
CVE-2025-13601 has been rated HIGH with a CVSS base score of 7.7/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2025-13601?
Check the references section above for vendor advisories and patch information. Affected products include: Redhat Codeready Linux Builder, Redhat Codeready Linux Builder For Ibm Z Systems, Redhat Codeready Linux Builder For Power Little Endian, Redhat Codeready Linux Builder For X86 64, Redhat Enterprise Linux For Arm 64.