CVE-2026-38637

Description

An issue in the pthread_rwlockattr_setpshared() function of relibc commit 61f42d allows attackers to cause a Denial of Service (DoS) via a crafted input.

CVSS breakdown

CVSS 3.1

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

High

References

MISChttps://gitlab.redox-os.org/redox-os/relibc/-/issues/264
MISChttps://gitlab.redox-os.org/redox-os/relibc/-/merge_requests/987
MISChttps://github.com/Marsman1996/pocs/tree/master/redox/CVE-2026-38637
MISChttps://gitlab.redox-os.org/redox-os/relibc/-/work_items/264