Is CVE-2026-58016 being exploited?

No public exploit is currently tracked.

How severe is CVE-2026-58016?

CVE-2026-58016 has a CVSS v3 severity of HIGH (7.5).

Back

CVE-2026-58016

Description

A flaw was found in GLib. A state confusion issue exists in g_dbus_node_info_new_for_xml() in the gio/gdbusintrospection.c file when processing malformed D-Bus introspection XML, specifically with a <node> element nested within other elements like <method>, <signal>, <property> or <arg>. This issue can cause an unsigned integer overflow and lead to an out-of-bounds read, resulting in a denial of service.