A flaw was found in GLib. GVariant deserialization fails to validate that the input conforms to the expected format, leading to denial of service.CreditsUpstream acknowledges William Manley as the original reporter.Referenceshttps://access.redhat.com/security/cve/CVE-2023-29499https://bugzilla.redhat.com/show_bug.cgi?id=2211828https://gitlab.gnome.org/GNOME/glib/-/issues/2794https://lists.debian.org/debian-lts-announce/2023/09/msg00030.htmlhttps://security.netapp.com/advisory/ntap-20231103-0001/https://security.gentoo.org/glsa/202311-18
