Memory Leak Issue in Linux Kernel Affecting Network QRTR Functionality
CVE-2026-43041

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 1 May 2026

What is CVE-2026-43041?

A memory leak vulnerability in the Linux Kernel's qrtr networking stack was identified, stemming from the use of a deprecated radix_tree API. In scenarios where memory allocation fails during the creation of a radix tree, orphaned internal nodes remain linked without corresponding leaf nodes. This results in unclaimed memory that cannot be freed, leading to potential memory exhaustion over time. The recommended fix involves transitioning from the radix_tree implementation to xarray, which provides a more efficient handling of memory cleanup, preventing any internal nodes from being orphaned when resources are released.

Affected Version(s)

Linux 5fdeb0d372ab33b4175043a2a4a1730239a217f1

Linux 5fdeb0d372ab33b4175043a2a4a1730239a217f1 < 4b75ff0aedd6ade1018ad4a3a9d8336794e36e42

Linux 5fdeb0d372ab33b4175043a2a4a1730239a217f1

References

https://git.kernel.org/stable/c/f2dd9aaf6e2861337f5835f87...

https://git.kernel.org/stable/c/4b75ff0aedd6ade1018ad4a3a...

https://git.kernel.org/stable/c/ff134cc43972d7ddceff8cfd3...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 1, 2026
Vulnerability Reserved
May 1, 2026

CVE-2026-43041 Data

JSON