[CLSA-2026:1783671013] glib2: Fix of 2 CVEs
Type:
security
Severity:
Important
Release date:
2026-07-10 08:10:30 UTC
Description:
- CVE-2026-58014: fix one-byte heap under-read in g_key_file_get_locale_string_list with an empty value - CVE-2026-58015: validate DBUS_COOKIE_SHA1 cookie_context to prevent server-controlled path traversal / arbitrary file read
Updated packages:
  • glib2-2.56.1-9.el7_9.tuxcare.els8.i686.rpm
    sha:ca40bd742a5bcd8212f48ba7b7842dc2879ef9916bc64a0187c2f3ff0d3d6114
  • glib2-2.56.1-9.el7_9.tuxcare.els8.x86_64.rpm
    sha:f4a2be3fe99509859847e691122305f9795482ed9e4cd0f5707cb07da7be86c4
  • glib2-devel-2.56.1-9.el7_9.tuxcare.els8.i686.rpm
    sha:b9fd9c4ca889b6a92e491b5c2a9adf6793c254d27b56ebe4bef0e109a39465af
  • glib2-devel-2.56.1-9.el7_9.tuxcare.els8.x86_64.rpm
    sha:f08e8569bbc6229f6677e941c72cd91f87cad82108723e382c38bbf96b37cea7
  • glib2-doc-2.56.1-9.el7_9.tuxcare.els8.noarch.rpm
    sha:341a9e07d0c605c90b64a90cc116e8a9b28a49afbddb3fda3b36870c762b09a2
  • glib2-fam-2.56.1-9.el7_9.tuxcare.els8.x86_64.rpm
    sha:2eeb44b0038c75e2759010bf9dc874f572004515bd616fa32a984cc8e25e19ef
  • glib2-static-2.56.1-9.el7_9.tuxcare.els8.i686.rpm
    sha:310c19e58c5079d81b6b783cbcd4daabf46b554e38fa90ea419ed4fd808c6093
  • glib2-static-2.56.1-9.el7_9.tuxcare.els8.x86_64.rpm
    sha:1f5066dec848e6975e0163b609d19de8c62bc80b6e9bd8297bfd49ae7e079715
  • glib2-tests-2.56.1-9.el7_9.tuxcare.els8.x86_64.rpm
    sha:31d3bd5436375512ec2a9cd0ee71d85afd75a052b6489e2055dcb30619fa039d
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.