Donate Telegram

CVE-2026-41035

HIGH CVSS 3.1: 7.4

Apr 16, 2026

Updated Apr 17, 2026

Linux

Parameter	Value
CVSS	7.4 (HIGH)
Type	CWE-130
Vendor	Linux
Public PoC	No

In rsync 3.0.1 through 3.4.1, receive_xattr relies on an untrusted length value during a qsort call, leading to a receiver use-after-free. The victim must run rsync with -X (aka --xattrs). On Linux, many (but not all) common configurations are vulnerable.

Non-Linux platforms are more widely vulnerable.

Attack Parameters

Attack Vector

Network

Can be exploited remotely

Attack Complexity

Low

Easy to exploit

Privileges Required

Low

Basic privileges needed

User Interaction

None

No user interaction needed

Impact Assessment

Confidentiality

Low

Partial data leak

Integrity

Low

Partial data modification

Availability

Low

Partial disruption

CVSS Vector v3.1

Weakness Type (CWE)

References 4

https://github.com/RsyncProject/rsync/issues/871

https://github.com/RsyncProject/rsync/releases

https://www.openwall.com/lists/oss-security/2026/04/16/2

http://www.openwall.com/lists/oss-security/2026/04/16/9

af854a3a-2127-422b-91ae-364da2661108

Share Post Share Share Share

Related Vulnerabilities

CVE-2026-40253

Linux

CVE-2026-40245

Linux

CVE-2026-6328

Linux

CVE-2026-39418

Linux

CVE-2026-31428

Linux

CVE Details

CVE ID

CVE-2026-41035

Published Date

Apr 16, 2026

Vendor

Linux

Severity

HIGH

CVSS v3.1 Score

7.4

High severity. Prioritize patching.

Attack Analysis

Exploitability 3.1/10

How easy to exploit

Impact 3.7/10

Severity of consequences

Impact

Partial data disclosure

Partial data modification

Partial service disruption

Source

Editor's Choice