[CLSA-2026:1783690752] glib2: Fix of 2 CVEs
Type:
security
Severity:
Important
Release date:
2026-07-12 10:41:44 UTC
Description:
- CVE-2026-58014: fix one-byte heap under-read in g_key_file_get_locale_string_list with an empty value - CVE-2026-58015: validate DBUS_COOKIE_SHA1 cookie_context to prevent server-controlled path traversal / arbitrary file read
Updated packages:
  • glib2-2.56.1-9.el7_9.tuxcare.els8.i686.rpm
    sha:af8272c44cd81871d8cab9c1e5c088f604e24cf2ff3a3447f28ecf2830bac11f
  • glib2-2.56.1-9.el7_9.tuxcare.els8.x86_64.rpm
    sha:31d30459f1c33c84867ac0a69b1e1ae5de62f4766c064f2fcf4833ec331c8f48
  • glib2-devel-2.56.1-9.el7_9.tuxcare.els8.i686.rpm
    sha:b49535e9c59891fd8b3cd1b179760dfd0e08ecf91418b0487bf8ae2069a498c4
  • glib2-devel-2.56.1-9.el7_9.tuxcare.els8.x86_64.rpm
    sha:7bb59b46af85276dff4baf7f4f0607b72eea78522c587adde3b2cb547be239ae
  • glib2-doc-2.56.1-9.el7_9.tuxcare.els8.noarch.rpm
    sha:830edd4e5204b0db66005efc9f0f7bf88c43c149ba5b310abcff4866e94123de
  • glib2-fam-2.56.1-9.el7_9.tuxcare.els8.x86_64.rpm
    sha:5edc69f217b0cff5ff9485cd52cbb8ed843322245f4e876332c213c7c7fd3c7d
  • glib2-static-2.56.1-9.el7_9.tuxcare.els8.i686.rpm
    sha:044ca2e91880b445d3149eb9d1ceadbad51ef773654d64ee123b0783568c0fa1
  • glib2-static-2.56.1-9.el7_9.tuxcare.els8.x86_64.rpm
    sha:2eecefab719a6e6f1c72b2d868f238444e982ba941c0fe3342cc450188fb5193
  • glib2-tests-2.56.1-9.el7_9.tuxcare.els8.x86_64.rpm
    sha:cc2229d2cdb4a0af5cdc82bb3032e3d388390baa4422d40f6886ecfc60227d85
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.