Description
A reachable unwrap in the __assert_fail function (/assert/mod.rs) of relibc commit 61f42d allows attackers to cause a Denial of Service (DoS) via a crafted string.
Published: 2026-06-25
Score: 7.5 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

A reachable unwrap in the __assert_fail function of relibc commit 61f42d allows an attacker to cause a denial of service by supplying a crafted string that triggers an unwrap failure during an assertion. The failure results in a panic or program crash, disrupting availability without exposing data or executing arbitrary code. The weakness is captured by CWE‑400, indicating a failure to properly enforce limits or checks.

Affected Systems

The flaw resides in relibc, the C library used by the Redox OS operating system. Any Redox deployment or application that links against relibc at commit 61f42d or any version containing that commit is potentially affected. Exact version ranges are not enumerated, but the issue is tied to the merge request that introduced the patch. Consequently, systems using Redox without the latest relibc update may be vulnerable.

Risk and Exploitability

The CVSS score of 7.5 indicates moderate to high severity, while the EPSS score of <1 % suggests a very low probability of exploitation. The vulnerability is not listed in CISA KEV. Based on the description, it is inferred that an attacker who can supply a crafted string to an assertion routine can trigger the unwrap failure in __assert_fail, resulting in a program crash. The likely attack vector involves any code that calls or indirectly passes data to this assertion, such as logging, input handling, or runtime checks. The low EPSS and lack of KEV listing imply that exploitation is unlikely, but the availability impact warrants timely action.

Generated by OpenCVE AI on June 26, 2026 at 18:23 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply the patched relibc version as released in merge request 986, which removes the vulnerable unwrap.
  • If updating relibc is not immediately possible, configure the build to compile out runtime asserts or remove unsafe assert calls to prevent __assert_fail execution in production deployments.
  • Validate or sanitize user‑supplied strings before they reach any assertion point to reduce the risk of triggering the failure.

Generated by OpenCVE AI on June 26, 2026 at 18:23 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Fri, 26 Jun 2026 17:45:00 +0000

Type Values Removed Values Added
Title Reachable Unwrap in Relibc __assert_fail triggers Denial of Service
Weaknesses CWE-476

Fri, 26 Jun 2026 14:30:00 +0000

Type Values Removed Values Added
Weaknesses CWE-400
Metrics cvssV3_1

{'score': 7.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H'}

ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Fri, 26 Jun 2026 10:45:00 +0000

Type Values Removed Values Added
First Time appeared Redox-os
Redox-os relibc
Vendors & Products Redox-os
Redox-os relibc

Thu, 25 Jun 2026 23:45:00 +0000

Type Values Removed Values Added
Title Reachable Unwrap in Relibc __assert_fail triggers Denial of Service
Weaknesses CWE-476

Thu, 25 Jun 2026 21:00:00 +0000

Type Values Removed Values Added
Description A reachable unwrap in the __assert_fail function (/assert/mod.rs) of relibc commit 61f42d allows attackers to cause a Denial of Service (DoS) via a crafted string.
References

Subscriptions

Redox-os Relibc
cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published:

Updated: 2026-06-26T14:06:54.687Z

Reserved: 2026-04-06T00:00:00.000Z

Link: CVE-2026-38640

cve-icon Vulnrichment

Updated: 2026-06-26T14:06:49.551Z

cve-icon NVD

No data.

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-26T18:30:05Z

Weaknesses
  • CWE-400

    Uncontrolled Resource Consumption