CVE-2026-46003

Source
https://cve.org/CVERecord?id=CVE-2026-46003
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-46003.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2026-46003
Downstream
Related
Published
2026-05-27T12:55:59.509Z
Modified
2026-06-23T03:54:59.180777607Z
Summary
net: qrtr: ns: Limit the total number of nodes
Details

In the Linux kernel, the following vulnerability has been resolved:

net: qrtr: ns: Limit the total number of nodes

Currently, the nameserver doesn't limit the number of nodes it handles. This can be an attack vector if a malicious client starts registering random nodes, leading to memory exhaustion.

Hence, limit the maximum number of nodes to 64. Note that, limit of 64 is chosen based on the current platform requirements. If requirement changes in the future, this limit can be increased.

Database specific
{
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/46xxx/CVE-2026-46003.json"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
0c2204a4ad710d95d348ea006f14ba926e842ffd
Fixed
b703ee903b24974aca4bde99c7d25d66309d35dd
Fixed
823310645065bd49666e84af689fa95192819f55
Fixed
ed29887286aba96d1930f4ddb9f235f6b421073c
Fixed
4c46413661431aa60fb134cd4ecdf8beaa39f824
Fixed
4665a29c08e1b36bc9db4814f9dde3d23e8fd1b0
Fixed
5cf6d5e5e3b804a44692fbf548a5179442e2e923
Fixed
8022876894d09ae485b499058c3357da683bcc5d
Fixed
27d5e84e810b0849d08b9aec68e48570461ce313

Database specific

source
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-46003.json"

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
5.7.0
Fixed
5.10.259
Type
ECOSYSTEM
Events
Introduced
5.11.0
Fixed
5.15.210
Type
ECOSYSTEM
Events
Introduced
5.16.0
Fixed
6.1.176
Type
ECOSYSTEM
Events
Introduced
6.2.0
Fixed
6.6.140
Type
ECOSYSTEM
Events
Introduced
6.7.0
Fixed
6.12.86
Type
ECOSYSTEM
Events
Introduced
6.13.0
Fixed
6.18.27
Type
ECOSYSTEM
Events
Introduced
6.19.0
Fixed
7.0.4

Database specific

source
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-46003.json"