[CLSA-2026:1783670904] glib2: Fix of 2 CVEs
Type:
security
Severity:
Important
Release date:
2026-07-10 08:08:40 UTC
Description:
- CVE-2026-58014: fix one-byte heap under-read in g_key_file_get_locale_string_list with an empty value - CVE-2026-58015: validate DBUS_COOKIE_SHA1 cookie_context to prevent server-controlled path traversal / arbitrary file read
Updated packages:
  • glib2-2.56.1-9.el7_9.tuxcare.els8.i686.rpm
    sha:d4119a23ef34d5a96c711c13a50650bd07364fc8120dcaa1bc02a71ceb15a2f2
  • glib2-2.56.1-9.el7_9.tuxcare.els8.x86_64.rpm
    sha:a967f5437449688797e1f7459d8b56f240b702d5b9f288a30282d950063df4ce
  • glib2-devel-2.56.1-9.el7_9.tuxcare.els8.i686.rpm
    sha:90f16eb527462f18f4cee15dda3b55373509a6a3f38a603b22a74dab12313e3f
  • glib2-devel-2.56.1-9.el7_9.tuxcare.els8.x86_64.rpm
    sha:1461c218af8bf7485059aaddd78988e3454a29cd4249dd04c3e95cdea9cf621c
  • glib2-doc-2.56.1-9.el7_9.tuxcare.els8.noarch.rpm
    sha:37769e1e0fb7b172a46324f4f86ec32c5d66ed84154d814a46e12cc55cf523aa
  • glib2-fam-2.56.1-9.el7_9.tuxcare.els8.x86_64.rpm
    sha:2f02e66c32050b6a5218639fc21f9cacec5bf0535d5d4faa187e5e3af2166fac
  • glib2-static-2.56.1-9.el7_9.tuxcare.els8.i686.rpm
    sha:a1d3194dc8895e53aeff11a6dbebe478e79d0d0f79963a29c0d56971df20295b
  • glib2-static-2.56.1-9.el7_9.tuxcare.els8.x86_64.rpm
    sha:27389f4ed9927da16aa24d2e78f56c36bedeb20d4f601bdfd258cbce8a80a77b
  • glib2-tests-2.56.1-9.el7_9.tuxcare.els8.x86_64.rpm
    sha:de8d698669f6f415ccf714c7325995bc08f7fc050ee29777ad3301add77e478d
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.