Release date:
2026-07-08 15:41:27 UTC
Description:
* SECURITY UPDATE: Multiple vulnerabilities in glib2
- debian/patches/CVE-2026-58010.patch: Fix off-by-one out-of-bounds read
in gvs_tuple_is_normal() during GVariant normal-form checking.
- debian/patches/CVE-2026-58011.patch: Add missing range validation to
g_date_time_add_full() to reject out-of-range GDateTime values.
- debian/patches/CVE-2026-58012.patch: Fix buffer overflow in case-changing
regex substitutions when G_REGEX_RAW is set.
- debian/patches/CVE-2026-58013.patch: Fix memcmp() read past end of buffer
with multi-byte line terminators in giochannel.
- CVE-2026-58010
- CVE-2026-58011
- CVE-2026-58012
- CVE-2026-58013
Updated packages:
-
libglib2.0-0_2.64.6-1~ubuntu20.04.9+tuxcare.els4_amd64.deb
sha:d7e506c73f72e386667faf1d0d84d7b0db6d7645
-
libglib2.0-bin_2.64.6-1~ubuntu20.04.9+tuxcare.els4_amd64.deb
sha:86e88b2c47ffdab1d9e289b25f1b9a2109ac73aa
-
libglib2.0-data_2.64.6-1~ubuntu20.04.9+tuxcare.els4_all.deb
sha:75e82ef7384664affbf295009cfe1441653414e4
-
libglib2.0-dev_2.64.6-1~ubuntu20.04.9+tuxcare.els4_amd64.deb
sha:7080faf715f668c3024cc04151eee321d3dca59a
-
libglib2.0-dev-bin_2.64.6-1~ubuntu20.04.9+tuxcare.els4_amd64.deb
sha:2a0e163001bdce1d7c71e81233598470c99bf47e
-
libglib2.0-doc_2.64.6-1~ubuntu20.04.9+tuxcare.els4_all.deb
sha:a2d33716e4fba932c726ed2ad524e7de983c6fba
-
libglib2.0-tests_2.64.6-1~ubuntu20.04.9+tuxcare.els4_amd64.deb
sha:6877efcae6622d6f95aafa8dda76999f53a40b70
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.