CVE-2026-46038
published 2026-05-27CVE-2026-46038: In the Linux kernel, the following vulnerability has been resolved: net: qrtr: ns: Free the node during ctrl_cmd_bye() A node sends the BYE packet when it is…
medium5.5
In the Linux kernel, the following vulnerability has been resolved:
net: qrtr: ns: Free the node during ctrl_cmd_bye()
A node sends the BYE packet when it is about to go down. So the nameserver
should advertise the removal of the node to all remote and local observers
and free the node finally. But currently, the nameserver doesn't free the
node memory even after processing the BYE packet. This causes the node
memory to leak.
Hence, remove the node from Xarray list and free the node memory during
both success and failure case of ctrl_cmd_bye().
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| linux | linux | — | — |
| linux | linux | >= 0c2204a4ad710d95d348ea006f14ba926e842ffd < ff78ed177a66763085e3214d6fbe13ca8f0b3f11 | ff78ed177a66763085e3214d6fbe13ca8f0b3f11 |
| linux | linux | >= 0c2204a4ad710d95d348ea006f14ba926e842ffd < 65932f5102bb5377db36c8a4f0c28179a1967a9a | 65932f5102bb5377db36c8a4f0c28179a1967a9a |
| linux | linux | >= 0c2204a4ad710d95d348ea006f14ba926e842ffd < 154fc7fe3f62c46891c3c4302f4b5b5391c932e6 | 154fc7fe3f62c46891c3c4302f4b5b5391c932e6 |
| linux | linux | >= 0c2204a4ad710d95d348ea006f14ba926e842ffd < 076e4b162d6caba12c229e7f262df5b6881162b0 | 076e4b162d6caba12c229e7f262df5b6881162b0 |
| linux | linux | >= 0c2204a4ad710d95d348ea006f14ba926e842ffd < 68efba36446a7774ea5b971257ade049272a07ac | 68efba36446a7774ea5b971257ade049272a07ac |
| linux | linux_kernel | — | — |