Linux · Linux Kernel · CVE-2024-38585
Name of the Vulnerable Software and Affected Versions:
Linux kernel (affected versions not specified)
Description:
The issue is related to a memory error in the `realloc()` function within the `tools/nolibc/stdlib` component of the Linux kernel. This error occurs because `realloc()` copies an extra `sizeof(heap)` bytes from beyond the allocated region. The vulnerability can be exploited to cause a denial of service.
Recommendations:
At the moment, there is no information about a newer version that contains a fix for this vulnerability.