CVE-2026-58014

Published Jun 30, 2026

Last updated 3 days ago

Overview

Description
A flaw was found in GLib. An off-by-one error can occur in the g_key_file_get_locale_string_list function in the gkeyfile.c file when loading a key file with an empty value. This flaw can cause an out-of-bounds access of 1 byte or a denial of service when the out-of-bounds access crosses a page boundary.
Source
secalert@redhat.com
NVD status
Analyzed
Products
glib, enterprise_linux

Risk scores

CVSS 3.1

Type
Primary
Base score
8.6
Impact score
4.7
Exploitability score
3.9
Vector string
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H
Severity
HIGH

Weaknesses

secalert@redhat.com
CWE-193

Social media

Hype score
Not currently trending

Configurations