Skip to main content

glib-networking CVE-2026-10028

| EUVDEUVD-2026-33166 MEDIUM
Loop with Unreachable Exit Condition (Infinite Loop) (CWE-835)
2026-05-28 redhat GHSA-qvjg-2vfm-53c7
4.3
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
4.3 MEDIUM
AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
SUSE
MEDIUM
qualitative
Red Hat
4.3 LOW
qualitative

Primary rating from NVD.

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
Required
Scope
Unchanged
Confidentiality
None
Integrity
None
Availability
Low

Lifecycle Timeline

2
Analysis Generated
May 28, 2026 - 23:21 vuln.today
CVE Published
May 28, 2026 - 22:33 nvd
MEDIUM 4.3

DescriptionCVE.org

A flaw was found in glib-networking. A remote attacker can exploit this vulnerability by presenting a specially crafted certificate chain to an application that uses glib-networking with the GnuTLS backend enabled and performs certificate verification. This crafted chain, which contains circular issuer relationships, can cause an infinite loop during certificate verification. The unbounded traversal consumes excessive CPU resources, leading to a denial of service for the affected process or worker.

AnalysisAI

Denial of service in glib-networking allows a remote unauthenticated attacker to exhaust CPU resources in any application using the library's GnuTLS backend for certificate verification. By presenting a TLS certificate chain containing circular issuer relationships, the attacker triggers an unbounded loop (CWE-835) in the verification logic that never terminates. EPSS data was not provided; no public exploit code and no CISA KEV listing exist at time of analysis, placing this firmly in the 'monitor and patch' tier rather than emergency response.

Technical ContextAI

glib-networking is the network extension layer for GLib (the GNOME foundational library), providing TLS/SSL transport support via pluggable backends. The affected backend is GnuTLS. Certificate chain verification involves traversing issuer pointers to build a trust path from leaf to root CA. CWE-835 (Loop with Unreachable Exit Condition) describes the root cause: the traversal algorithm contains no cycle-detection guard, so a specially crafted chain where Certificate A claims Certificate B as its issuer and Certificate B claims Certificate A as its issuer (or a longer cycle) causes the algorithm to loop indefinitely. Affected deployments are confirmed via CPE data across Red Hat Enterprise Linux 6 through 10, meaning any RHEL-distributed application that links against glib-networking and opens outbound TLS connections with certificate verification enabled is potentially exposed.

RemediationAI

No vendor-released patch version has been independently confirmed from the provided data - the Red Hat Bugzilla entry (https://bugzilla.redhat.com/show_bug.cgi?id=2465152) and the upstream GNOME GitLab work item (https://gitlab.gnome.org/GNOME/glib-networking/-/work_items/231) indicate the issue is tracked but a tagged fix version was not included in the available intelligence. Monitor the Red Hat advisory at https://access.redhat.com/security/cve/CVE-2026-10028 for errata packages and apply them when released. As a compensating control, where feasible, configure affected applications to use the OpenSSL backend instead of GnuTLS, which sidesteps this specific code path; however, this requires testing for behavioral compatibility. For server-side worker processes that perform outbound TLS verification, restrict the set of reachable TLS endpoints via allowlists or egress firewall rules so attackers cannot direct connections to adversary-controlled certificate infrastructure. Note that restricting egress may break legitimate functionality and requires careful inventory of expected connection targets before deployment.

Vendor StatusVendor

SUSE

Severity: Moderate
Product Status
Container suse/sl-micro/6.0/baremetal-os-container:latest Container suse/sl-micro/6.0/base-os-container:latest Container suse/sl-micro/6.0/kvm-os-container:latest Container suse/sl-micro/6.0/rt-os-container:latest Image SL-Micro Image SLE-Micro Image SLE-Micro-Azure Image SLE-Micro-BYOS Image SLE-Micro-BYOS-Azure Image SLE-Micro-BYOS-EC2 Image SLE-Micro-BYOS-GCE Image SLE-Micro-EC2 Image SLE-Micro-GCE Affected
Container suse/sl-micro/6.0/toolbox:latest Affected
openSUSE Tumbleweed Fixed
SUSE Linux Enterprise Micro 5.3 Affected
SUSE Linux Enterprise Micro 5.4 Affected

Share

CVE-2026-10028 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy