A flaw was found in GLib. A buffer over-read can occur in giochannelreadline_backend() in the giochannel.c file when a custom line terminator with a length greater than one is set, causing memcmp to read past the GString buffer. This vulnerability can cause a minor information disclosure of 7 bytes or a denial of service when the buffer over-read crosses a page boundary.
{
"osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/58xxx/CVE-2026-58013.json",
"cna_assigner": "redhat",
"cwe_ids": [
"CWE-126"
]
}{
"cpe": "cpe:2.3:a:gnome:glib:*:*:*:*:*:*:*:*",
"source": "CPE_RANGE",
"extracted_events": [
{
"introduced": "0"
},
{
"fixed": "2.88.1"
}
]
}{
"cpe": "cpe:2.3:a:gnome:glib:*:*:*:*:*:*:*:*",
"extracted_events": [
{
"introduced": "0"
},
{
"fixed": "2.88.1"
}
],
"source": [
"AFFECTED_FIELD",
"CPE_RANGE"
]
}