CVE-2024-38585

Published: Jun 19, 2024

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: tools/nolibc/stdlib: fix memory error in realloc() Pass user_p_len to memcpy() instead of heap->len to prevent realloc() from copying an extra sizeof(heap) bytes from beyond the allocated region.

Vendor	Product	Versions
Linux	Linux	affected `0e0ff638400be8f497a35b51a4751fd823f6bd6a - < 5996b2b2dac739f2a27da13de8eee5b85b2550b3` affected `0e0ff638400be8f497a35b51a4751fd823f6bd6a - < f678c3c336559cf3255a32153e9a17c1be4e7c15` affected `0e0ff638400be8f497a35b51a4751fd823f6bd6a - < 8019d3dd921f39a237a9fab6d2ce716bfac0f983` affected `0e0ff638400be8f497a35b51a4751fd823f6bd6a - < 4e6f225aefeb712cdb870176b6621f02cf235b8c` affected `0e0ff638400be8f497a35b51a4751fd823f6bd6a - < 791f4641142e2aced85de082e5783b4fb0b977c2`
Linux	Linux	affected `5.19` unaffected `0 - < 5.19` unaffected `6.1.93 - <= 6.1.` unaffected `6.6.33 - <= 6.6.` unaffected `6.8.12 - <= 6.8.*` +2 more versions

References

https://git.kernel.org/stable/c/5996b2b2dac739f2a27da13de8eee5b85b2550b3

https://git.kernel.org/stable/c/f678c3c336559cf3255a32153e9a17c1be4e7c15

https://git.kernel.org/stable/c/8019d3dd921f39a237a9fab6d2ce716bfac0f983

https://git.kernel.org/stable/c/4e6f225aefeb712cdb870176b6621f02cf235b8c

https://git.kernel.org/stable/c/791f4641142e2aced85de082e5783b4fb0b977c2

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2024-38585

Description

Affected Products

References