CVE-2026-40200
Published: April 13, 2026Last modified: April 17, 2026
Description
An issue was discovered in musl libc 0.7.10 through 1.2.6. Stack-based memory corruption can occur during qsort of very large arrays, due to incorrectly implemented double-word primitives. The number of elements must exceed about seven million, i.e., the 32nd Leonardo number on 32-bit platforms (or the 64th Leonardo number on 64-bit platforms, which is not practical).
Severity score breakdown
| Parameter | Value |
|---|---|
| Base score | 8.1 |
| Attack Vector | LOCAL |
| Attack complexity | HIGH |
| Privileges required | NONE |
| User interaction | NONE |
| Scope | CHANGED |
| Confidentiality | HIGH |
| Integrity impact | HIGH |
| Availability impact | HIGH |
| Vector | CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H |
Status
| Product | Release | Package | Status |
|---|---|---|---|
| Alpaquita Linux | 25 LTS | musl-default | Fixed (1.2.5-r15) |
| musl-perf | Fixed (1.2.5-r16) | ||
| Stream | musl-default | Fixed (1.2.6-r2) | |
| musl-perf | Fixed (1.2.6-r2) | ||
| Hardened Containers | 25 LTS | musl-default | Fixed (1.2.5-r15) |
| musl-perf | Fixed (1.2.5-r16) | ||
| Stream | musl-default | Fixed (1.2.6-r2) | |
| musl-perf | Fixed (1.2.6-r2) |