Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 559
Alerts This Week
Warning Icon 1 559

Fedora 43 mingw-glib2 Important Buffer Overflow Fix CVE-2026-58016

fedora
Calendar Grey July 16, 2026
Scroller Fedora Esm H88
Critical update for mingw-glib2 in Fedora 43 addresses CVE-2026-58016, improving application security. Install via dnf.
Backport fix for CVE-2026-58016

Summary

MinGW Windows Glib2 library.

Update Information:

Backport fix for CVE-2026-58016. Update to glib-2.86.5.

Change Log

* Wed Jul 8 2026 Sandro Mani - 2.86.5-2 - Backport fix for CVE-2026-58016 * Thu Jul 2 2026 Sandro Mani - 2.86.5-1 - Update to 2.86.5

References


[ 1 ] Bug #2494867 - CVE-2026-58010 mingw-glib2: buffer over-read in glib/gvariant-serialiser.c via gvs_tuple_is_normal() [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2494867 [ 2 ] Bug #2494871 - CVE-2026-58011 mingw-glib2: out-of-bounds read in glib/gdatetime.c:g_date_time_get_ymd via invalid GDateTime [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2494871 [ 3 ] Bug #2494874 - CVE-2026-58012 mingw-glib2: buffer over-read in g_regex_replace() via glib/gregex.c:string_append() and g_utf8_next_char() [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2494874 [ 4 ] Bug #2494886 - CVE-2026-58016 mingw-glib2: integer underflow in gio/gdbusintrospection.c via "g_dbus_node_info_new_for_xml" [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2494886

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-8e39f35701' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
important
Lowest
Low
Medium
High
Critical

Name: mingw-glib2
Product: Fedora 43
Version: 2.86.5
Release: 2.fc43
Summary: MinGW Windows GLib2 library

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.