CVE-2026-38640
Deferred Deferred - Pending Action

Reachable Unwrap in relibc Causes Denial of Service

Vulnerability report for CVE-2026-38640, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.

Publication date: 2026-06-25

Last updated on: 2026-06-26

Assigner: MITRE

Description

A reachable unwrap in the __assert_fail function (/assert/mod.rs) of relibc commit 61f42d allows attackers to cause a Denial of Service (DoS) via a crafted string.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published
2026-06-25
Last Modified
2026-06-26
Generated
2026-07-16
AI Q&A
2026-06-26
EPSS Evaluated
2026-07-14
NVD

Affected Vendors & Products

Showing 1 associated CPE
Vendor Product Version / Range
redox_os relibc 61f42d

Helpful Resources

Exploitability

CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-400 The product does not properly control the allocation and maintenance of a limited resource.

Attack-Flow Graph

AI Quick Actions

Instant insights powered by AI
Executive Summary

This vulnerability is a reachable unwrap in the __assert_fail function located in the /assert/mod.rs file of relibc. It occurs in a specific commit (61f42d) and allows attackers to cause a Denial of Service (DoS) by using a specially crafted string.

Impact Analysis

The vulnerability can be exploited by attackers to cause a Denial of Service (DoS), which means it can make the affected system or application unavailable or unresponsive.

Compliance Impact

The provided information does not include any details about the impact of this vulnerability on compliance with common standards and regulations such as GDPR or HIPAA.

Detection Guidance

This vulnerability can be detected by identifying if any local programs on your system call the __assert_fail function with crafted strings containing the byte 0xff, which triggers a panic and causes a Denial of Service.

Since the attack vector is local, detection involves monitoring or testing local programs that use the relibc library, specifically those that invoke __assert_fail.

You can attempt to reproduce the issue by running or crafting test cases that pass strings containing the byte 0xff to functions that eventually call __assert_fail.

No specific commands are provided in the available resources, but you might use debugging or tracing tools (e.g., strace, ltrace) to monitor calls to __assert_fail or test programs with crafted inputs containing 0xff.

Mitigation Strategies

Immediate mitigation steps include avoiding running untrusted local programs that use the vulnerable relibc version and ensuring that inputs to functions calling __assert_fail are sanitized to prevent crafted strings containing the byte 0xff.

Since the vulnerability causes a Denial of Service via a reachable unwrap, updating or patching the relibc library to a version that fixes this issue is recommended once available.

In the meantime, restrict local user access to trusted users only and monitor for crashes or panics related to __assert_fail.

Chat Assistant

Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-38640. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70

EPSS Chart