[CLSA-2026:1783706655] glib2: Fix of 2 CVEs
Type:
security
Severity:
Important
Release date:
2026-07-10 18:04:35 UTC
Description:
- CVE-2026-58014: fix one-byte heap under-read in g_key_file_get_locale_string_list with an empty value - CVE-2026-58015: validate DBUS_COOKIE_SHA1 cookie_context to prevent server-controlled path traversal / arbitrary file read
Updated packages:
  • glib2-2.56.1-9.el7_9.tuxcare.els8.i686.rpm
    sha:5d6911742c0f0de5223dbb7d1f1472f0d241651bcda6402ad220bed093cb908e
  • glib2-2.56.1-9.el7_9.tuxcare.els8.x86_64.rpm
    sha:dec2ac69a6ae12a7dace3a53fe1ac1733b514b9d169e942bc1898db51cc7b945
  • glib2-devel-2.56.1-9.el7_9.tuxcare.els8.i686.rpm
    sha:5c2628a3a67a06caad8411289a497128ce048611a90a1cc31e7be4dd9dd22f24
  • glib2-devel-2.56.1-9.el7_9.tuxcare.els8.x86_64.rpm
    sha:58d73bb6a20aae058038fe7e1a428e0217592b3c9ed08691cce4d419db883a66
  • glib2-doc-2.56.1-9.el7_9.tuxcare.els8.noarch.rpm
    sha:01050fb6c6f2a2361de0bb439b503510d45b3805aa0a91325fba80780dc58811
  • glib2-fam-2.56.1-9.el7_9.tuxcare.els8.x86_64.rpm
    sha:2c47394cb10a650d2e40f72e8c1f58c2f481aeb096388356638d1f27a17650bc
  • glib2-static-2.56.1-9.el7_9.tuxcare.els8.i686.rpm
    sha:67b966bffce9b63fba39902ece8d922cf7f37a3d605a0500af7ec2082d20478a
  • glib2-static-2.56.1-9.el7_9.tuxcare.els8.x86_64.rpm
    sha:37388d8c0ef6dd06aa0c6e209595dd8ae8c6c84899bf22ed5027074e3973229d
  • glib2-tests-2.56.1-9.el7_9.tuxcare.els8.x86_64.rpm
    sha:a9437492c2453db370e3ac3500e87aad76a0e84ddb54f2b6d9cc3fb9300ef5b5
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.