{"id":"CVE-2024-38585","summary":"tools/nolibc/stdlib: fix memory error in realloc()","details":"In the Linux kernel, the following vulnerability has been resolved:\n\ntools/nolibc/stdlib: fix memory error in realloc()\n\nPass user_p_len to memcpy() instead of heap-\u003elen to prevent realloc()\nfrom copying an extra sizeof(heap) bytes from beyond the allocated\nregion.","modified":"2026-04-16T04:41:20.675506465Z","published":"2024-06-19T13:37:41.170Z","database_specific":{"cna_assigner":"Linux","osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/38xxx/CVE-2024-38585.json"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/4e6f225aefeb712cdb870176b6621f02cf235b8c"},{"type":"WEB","url":"https://git.kernel.org/stable/c/5996b2b2dac739f2a27da13de8eee5b85b2550b3"},{"type":"WEB","url":"https://git.kernel.org/stable/c/791f4641142e2aced85de082e5783b4fb0b977c2"},{"type":"WEB","url":"https://git.kernel.org/stable/c/8019d3dd921f39a237a9fab6d2ce716bfac0f983"},{"type":"WEB","url":"https://git.kernel.org/stable/c/f678c3c336559cf3255a32153e9a17c1be4e7c15"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/38xxx/CVE-2024-38585.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-38585"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"0e0ff638400be8f497a35b51a4751fd823f6bd6a"},{"fixed":"5996b2b2dac739f2a27da13de8eee5b85b2550b3"},{"fixed":"f678c3c336559cf3255a32153e9a17c1be4e7c15"},{"fixed":"8019d3dd921f39a237a9fab6d2ce716bfac0f983"},{"fixed":"4e6f225aefeb712cdb870176b6621f02cf235b8c"},{"fixed":"791f4641142e2aced85de082e5783b4fb0b977c2"}]}],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-38585.json"}}],"schema_version":"1.7.5"}