CSIRTS // UNIFIED SECURITY ADVISORY FEEDSYS ● ONLINE · POWERED BY INTELFUSIONS.COM

CVE-2026-58011

mediumCVSS 6.5covered by 2 sourcesfirst seen 2026-06-09
A flaw was found in GLib. An out-of-bounds read of only 2 bytes can occur in the g_date_time_get_ymd function in the glib/gdatetime.c file when an invalid GDateTime object produced by the g_date_time_add_full function is processed. This flaw can corrupt the date output and potentially cause logic errors that may lead to a denial of service.

CSIRTS triage

What
An out-of-bounds read occurs in 'g_date_time_get_ymd' due to invalid gdatetime.
Who is affected
Deployments of Glib that call the affected function with invalid data.
Urgency
Remediation is important due to the medium severity of the vulnerability.
Action
Update to the latest version of Glib to resolve this issue.

AI-assisted analysis generated from the source advisory — verify against the original.

⚡ Watch CVE-2026-58011

Get an email if CVE-2026-58011 is added to CISA KEV, gains public exploit code, or a new advisory cites it — max one per day, one-click unsubscribe.

Exploitation outlook

Advisory coverage (2)

External references

NVD record for CVE-2026-58011

CVE.org record

Embed the live status

CVE-2026-58011 live status badge — this badge updates automatically when the KEV or exploit status changes. How to embed it →

[![CVE-2026-58011 status](https://www.csirts.com/badge/CVE-2026-58011)](https://www.csirts.com/cve/CVE-2026-58011)