CVE-2026-38641
Severity CVSS v4.0:
Pending analysis
Type:
CWE-404
Improper Resource Shutdown or Release
Publication date:
26/06/2026
Last modified:
29/06/2026
Description
An issue in the DSO::mmap_and_copy function of relibc commit 61f42d allows attackers to cause a Denial of Service (DoS) via loading a crafted shared library.
Impact
Base Score 3.x
7.50
Severity 3.x
HIGH
References to Advisories, Solutions, and Tools
- https://github.com/Marsman1996/pocs/tree/master/redox/CVE-2026-38641
- https://gitlab.redox-os.org/redox-os/relibc/-/issues/263
- https://gitlab.redox-os.org/redox-os/relibc/-/merge_requests/1046
- https://gitlab.redox-os.org/redox-os/relibc/-/work_items/263
- https://gitlab.redox-os.org/redox-os/relibc/-/work_items/263



