🟠 High  |  Source: Microsoft Security Response Center


CVE-2026-58010 is a buffer over-read vulnerability in GLib, a core open-source library widely used across Linux-based systems, triggered via the gvs_tuple_is_normal() function in the GVariant serialiser component. An attacker could potentially exploit this to read out-of-bounds memory, leading to information disclosure or application instability. This is particularly relevant to Azure workloads running Linux VMs or containers that depend on GLib.

Security Architect’s Take: Audit Linux-based Azure workloads — including VMs, AKS nodes, and container images — for vulnerable versions of GLib and prioritise patching via your OS package manager or container base image rebuild pipeline. Ensure your vulnerability scanning tooling (e.g. Microsoft Defender for Cloud) is flagging this CVE against your inventory.

Original advisory: CVE-2026-58010 Glib: buffer over-read in glib/gvariant-serialiser.c via gvs_tuple_is_normal()