CSIRTS // UNIFIED SECURITY ADVISORY FEEDSYS ● ONLINE · POWERED BY INTELFUSIONS.COM

CVE-2026-58013

mediumCVSS 6.5covered by 2 sourcesfirst seen 2026-06-09
A flaw was found in GLib. A buffer over-read can occur in g_io_channel_read_line_backend() in the giochannel.c file when a custom line terminator with a length greater than one is set, causing memcmp to read past the GString buffer. This vulnerability can cause a minor information disclosure of 7 bytes or a denial of service when the buffer over-read crosses a page boundary.

CSIRTS triage

What
This vulnerability involves a buffer over-read in the g_io_channel_read_line_backend function.
Who is affected
Deployments using the affected Glib library.
Urgency
Remediation is medium due to the severity rating of 6.5.
Action
Apply the patch for CVE-2026-58013.

AI-assisted analysis generated from the source advisory — verify against the original.

⚡ Watch CVE-2026-58013

Get an email if CVE-2026-58013 is added to CISA KEV, gains public exploit code, or a new advisory cites it — max one per day, one-click unsubscribe.

Exploitation outlook

Advisory coverage (2)

External references

NVD record for CVE-2026-58013

CVE.org record

Embed the live status

CVE-2026-58013 live status badge — this badge updates automatically when the KEV or exploit status changes. How to embed it →

[![CVE-2026-58013 status](https://www.csirts.com/badge/CVE-2026-58013)](https://www.csirts.com/cve/CVE-2026-58013)