CVE-2026-43041
- Source
- https://cve.org/CVERecord?id=CVE-2026-43041
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-43041.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2026-43041
- Downstream
- Published
- 2026-05-01T14:15:38.112Z
- Modified
- 2026-06-18T03:56:20.069061333Z
- Summary
- net: qrtr: replace qrtr_tx_flow radix_tree with xarray to fix memory leak
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
net: qrtr: replace qrtrtxflow radix_tree with xarray to fix memory leak
__radixtreecreate() allocates and links intermediate nodes into the tree one by one. If a subsequent allocation fails, the already-linked nodes remain in the tree with no corresponding leaf entry. These orphaned internal nodes are never reclaimed because radixtreeforeachslot() only visits slots containing leaf values.
The radixtree API is deprecated in favor of xarray. As suggested by Matthew Wilcox, migrate qrtrtxflow from radixtree to xarray instead of fixing the radixtree itself [1]. xarray properly handles cleanup of internal nodes — xadestroy() frees all internal xarray nodes when the qrtr_node is released, preventing the leak.
[1] https://lore.kernel.org/all/20260225071623.41275-1-jiayuan.chen@linux.dev/T/
- Database specific
{ "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/43xxx/CVE-2026-43041.json", "cna_assigner": "Linux" }- References
-
- https://git.kernel.org/stable/c/0fda873092b541bb5a9b87d728a2429f863f8cfa
- https://git.kernel.org/stable/c/2428083101f6883f979cceffa76cd8440751ffe6
- https://git.kernel.org/stable/c/4b75ff0aedd6ade1018ad4a3a9d8336794e36e42
- https://git.kernel.org/stable/c/5d2249eefaca59908fe3c264b8eca526424dcfbe
- https://git.kernel.org/stable/c/69402908e277dd164bf8d7c8fd0513c0fac28e9e
- https://git.kernel.org/stable/c/f2664bc4f0f356f17c2094587a2b3665e3867e44
- https://git.kernel.org/stable/c/f2dd9aaf6e2861337f5835f877a5b2becaf4b015
- https://git.kernel.org/stable/c/ff134cc43972d7ddceff8cfd36cf6b9eaafc00b3
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/43xxx/CVE-2026-43041.json
- https://nvd.nist.gov/vuln/detail/CVE-2026-43041
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced5fdeb0d372ab33b4175043a2a4a1730239a217f1Fixedf2dd9aaf6e2861337f5835f877a5b2becaf4b015Fixed4b75ff0aedd6ade1018ad4a3a9d8336794e36e42Fixedff134cc43972d7ddceff8cfd36cf6b9eaafc00b3Fixed0fda873092b541bb5a9b87d728a2429f863f8cfaFixed69402908e277dd164bf8d7c8fd0513c0fac28e9eFixedf2664bc4f0f356f17c2094587a2b3665e3867e44Fixed5d2249eefaca59908fe3c264b8eca526424dcfbeFixed2428083101f6883f979cceffa76cd8440751ffe6
Linux / Kernel
Package
- Name
- Kernel
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced5.6.0Fixed5.10.253
- Type
- ECOSYSTEM
- Events
-
Introduced5.11.0Fixed5.15.203
- Type
- ECOSYSTEM
- Events
-
Introduced5.16.0Fixed6.1.168
- Type
- ECOSYSTEM
- Events
-
Introduced6.2.0Fixed6.6.134
- Type
- ECOSYSTEM
- Events
-
Introduced6.7.0Fixed6.12.81
- Type
- ECOSYSTEM
- Events
-
Introduced6.13.0Fixed6.18.22
- Type
- ECOSYSTEM
- Events
-
Introduced6.19.0Fixed6.19.12