CVE-2025-3360 is a vulnerability identified in the GLib library, specifically within the g_date_time_new_from_iso8601() function used to parse ISO 8601 formatted timestamps. The flaw arises from an integer overflow or wraparound condition combined with a buffer under-read when processing excessively long and invalid ISO 8601 timestamp strings. This can cause the function to read memory outside the intended buffer bounds, potentially leading to application crashes or denial of service (DoS) conditions. The vulnerability affects Red Hat Enterprise Linux 10, which includes GLib as a core component. The CVSS 3.1 base score is 3.7, indicating low severity, with the vector AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L, meaning the attack can be performed remotely without privileges or user interaction but requires high attack complexity and results only in limited availability impact. There are no known exploits in the wild at the time of publication. The vulnerability does not compromise confidentiality or integrity, and exploitation does not require authentication or user interaction, but the complexity of crafting a suitable malformed timestamp input is high. This vulnerability primarily poses a risk of causing application or service crashes that rely on GLib's date-time parsing functionality.

For European organizations, the primary impact of CVE-2025-3360 is the potential for denial of service through application or service crashes when processing malformed ISO 8601 timestamps. This could disrupt services that rely on GLib for date-time parsing, including logging, scheduling, or time-sensitive operations. Although the impact on confidentiality and integrity is negligible, availability disruptions could affect critical infrastructure or enterprise services running on Red Hat Enterprise Linux 10. Given the high attack complexity and lack of known exploits, the immediate risk is low. However, organizations with automated systems ingesting external timestamp data or exposed APIs that parse date-time strings could be more vulnerable to targeted DoS attacks. The impact is more pronounced in environments where uptime and service continuity are critical, such as financial institutions, healthcare, and public sector services.

1. Monitor Red Hat and GLib vendor advisories closely and apply patches or updates as soon as they become available to address CVE-2025-3360. 2. Implement input validation and sanitization on all external inputs that include ISO 8601 timestamps to detect and reject abnormally long or malformed timestamp strings before they reach GLib parsing functions. 3. Employ application-layer rate limiting and anomaly detection to identify and block suspicious requests containing malformed timestamps that could trigger the vulnerability. 4. Conduct code reviews and testing for any custom software components that utilize GLib date-time parsing to ensure they handle edge cases safely. 5. Use containerization or sandboxing to isolate services that process external timestamp data, minimizing the impact of potential crashes. 6. Maintain robust monitoring and alerting on service availability and application crashes to enable rapid response to potential exploitation attempts. 7. Educate development and operations teams about the vulnerability to ensure awareness and prompt remediation.