CVE-2020-26164

See a problem?
Please try reporting it to the source first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2020-26164
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2020-26164.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2020-26164
Downstream
Related
Published
2020-10-07T19:15:12Z
Modified
2025-10-21T05:48:53.533498Z
Severity
  • 5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
[none]
Details

In kdeconnect-kde (aka KDE Connect) before 20.08.2, an attacker on the local network could send crafted packets that trigger use of large amounts of CPU, memory, or network connection slots, aka a Denial of Service attack.

References

Affected packages

Git / github.com/kde/kdeconnect-kde

Affected ranges

Type
GIT
Repo
https://github.com/kde/kdeconnect-kde
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
024e5f23db8d8ad3449714b906b46094baaffb89
Fixed
4fbd01a3d44a0bcca888c49a77ec7cfd10e113d7
Fixed
542d94a70c56aa386c8d4d793481ce181b0422e8
Fixed
613899be24b6e2a6b3e5cc719efce8ae8a122991
Fixed
8112729eb0f13e6947984416118531078e65580d
Fixed
ce0f00fc2d3eccb51d0af4eba61a4f60de086a59

Affected versions

v0.*

v0.3
v0.4.1
v0.4.2
v0.7
v0.7.1
v0.7.2
v0.7.3
v0.8
v0.9
v0.9g

v1.*

v1.0
v1.0.1
v1.0.2
v1.0.3
v1.2.1
v1.3
v1.3.1
v1.3.3
v1.4

v20.*

v20.03.80
v20.03.90
v20.04.0
v20.04.1
v20.04.2
v20.04.3
v20.07.80
v20.07.90
v20.08.0

Database specific

vanir_signatures

[
    {
        "source": "https://github.com/kde/kdeconnect-kde/commit/ce0f00fc2d3eccb51d0af4eba61a4f60de086a59",
        "target": {
            "function": "LanLinkProvider::udpBroadcastReceived",
            "file": "core/backends/lan/lanlinkprovider.cpp"
        },
        "deprecated": false,
        "id": "CVE-2020-26164-3385ada3",
        "signature_version": "v1",
        "digest": {
            "length": 1761.0,
            "function_hash": "169212465212062186964461074275237693488"
        },
        "signature_type": "Function"
    },
    {
        "source": "https://github.com/kde/kdeconnect-kde/commit/024e5f23db8d8ad3449714b906b46094baaffb89",
        "target": {
            "function": "LanLinkProvider::newConnection",
            "file": "core/backends/lan/lanlinkprovider.cpp"
        },
        "deprecated": false,
        "id": "CVE-2020-26164-48753da1",
        "signature_version": "v1",
        "digest": {
            "length": 414.0,
            "function_hash": "267951705981347858808484903518442592057"
        },
        "signature_type": "Function"
    },
    {
        "source": "https://github.com/kde/kdeconnect-kde/commit/4fbd01a3d44a0bcca888c49a77ec7cfd10e113d7",
        "target": {
            "file": "core/backends/lan/lanlinkprovider.cpp"
        },
        "deprecated": false,
        "id": "CVE-2020-26164-6b431369",
        "signature_version": "v1",
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "48391377195153993740618960876568243315",
                "175776086243571528490916560372142461340",
                "36039830265806614933615408264073893033",
                "328759303061142755284674770696617996460"
            ]
        },
        "signature_type": "Line"
    },
    {
        "source": "https://github.com/kde/kdeconnect-kde/commit/542d94a70c56aa386c8d4d793481ce181b0422e8",
        "target": {
            "function": "LanLinkProvider::addLink",
            "file": "core/backends/lan/lanlinkprovider.cpp"
        },
        "deprecated": false,
        "id": "CVE-2020-26164-75aacbc6",
        "signature_version": "v1",
        "digest": {
            "length": 713.0,
            "function_hash": "261312342701690521362090497312738170009"
        },
        "signature_type": "Function"
    },
    {
        "source": "https://github.com/kde/kdeconnect-kde/commit/4fbd01a3d44a0bcca888c49a77ec7cfd10e113d7",
        "target": {
            "function": "LanLinkProvider::dataReceived",
            "file": "core/backends/lan/lanlinkprovider.cpp"
        },
        "deprecated": false,
        "id": "CVE-2020-26164-9e0c12a5",
        "signature_version": "v1",
        "digest": {
            "length": 1853.0,
            "function_hash": "247696741698703836114735315291771006445"
        },
        "signature_type": "Function"
    },
    {
        "source": "https://github.com/kde/kdeconnect-kde/commit/8112729eb0f13e6947984416118531078e65580d",
        "target": {
            "function": "TestSocketLineReader::initTestCase",
            "file": "tests/testsocketlinereader.cpp"
        },
        "deprecated": false,
        "id": "CVE-2020-26164-9e93d7ed",
        "signature_version": "v1",
        "digest": {
            "length": 642.0,
            "function_hash": "316889281405375350310193983773602935182"
        },
        "signature_type": "Function"
    },
    {
        "source": "https://github.com/kde/kdeconnect-kde/commit/ce0f00fc2d3eccb51d0af4eba61a4f60de086a59",
        "target": {
            "file": "core/backends/lan/lanlinkprovider.cpp"
        },
        "deprecated": false,
        "id": "CVE-2020-26164-a00c80f2",
        "signature_version": "v1",
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "236215070137632193616889321865338985983",
                "9912877670252894786996957519289716466",
                "47758015272208239110808328796153533659",
                "31873889898361168339373623759442609441"
            ]
        },
        "signature_type": "Line"
    },
    {
        "source": "https://github.com/kde/kdeconnect-kde/commit/613899be24b6e2a6b3e5cc719efce8ae8a122991",
        "target": {
            "file": "core/backends/lan/lanlinkprovider.cpp"
        },
        "deprecated": false,
        "id": "CVE-2020-26164-a0cac0d4",
        "signature_version": "v1",
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "37149656079090608530127751331248330975",
                "181202881865311568115222253440231673602",
                "159624639647573573099601097656073541549",
                "331664854571936428538130908373581592578",
                "195584099322918536794609401174306318017",
                "324339754007837311205698310556549556206",
                "27084404015237821391639525558259575314",
                "36707405996746581606175894250955624998",
                "16527501792903214545899002808025429120",
                "297748893527612132684804122992360649646"
            ]
        },
        "signature_type": "Line"
    },
    {
        "source": "https://github.com/kde/kdeconnect-kde/commit/613899be24b6e2a6b3e5cc719efce8ae8a122991",
        "target": {
            "function": "LanLinkProvider::dataReceived",
            "file": "core/backends/lan/lanlinkprovider.cpp"
        },
        "deprecated": false,
        "id": "CVE-2020-26164-ac34f492",
        "signature_version": "v1",
        "digest": {
            "length": 2137.0,
            "function_hash": "302626523276727744777254746743675364798"
        },
        "signature_type": "Function"
    },
    {
        "source": "https://github.com/kde/kdeconnect-kde/commit/024e5f23db8d8ad3449714b906b46094baaffb89",
        "target": {
            "file": "core/backends/lan/lanlinkprovider.cpp"
        },
        "deprecated": false,
        "id": "CVE-2020-26164-c51dc974",
        "signature_version": "v1",
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "169028940589971954918912565622002300997",
                "28223910645427131072829295786657993251",
                "222568790063777179039019421967811269686"
            ]
        },
        "signature_type": "Line"
    },
    {
        "source": "https://github.com/kde/kdeconnect-kde/commit/613899be24b6e2a6b3e5cc719efce8ae8a122991",
        "target": {
            "function": "LanLinkProvider::udpBroadcastReceived",
            "file": "core/backends/lan/lanlinkprovider.cpp"
        },
        "deprecated": false,
        "id": "CVE-2020-26164-caab3b97",
        "signature_version": "v1",
        "digest": {
            "length": 1502.0,
            "function_hash": "18344792161918093523358253406848377561"
        },
        "signature_type": "Function"
    },
    {
        "source": "https://github.com/kde/kdeconnect-kde/commit/8112729eb0f13e6947984416118531078e65580d",
        "target": {
            "function": "SocketLineReader::dataReceived",
            "file": "core/backends/lan/socketlinereader.cpp"
        },
        "deprecated": false,
        "id": "CVE-2020-26164-d26f9b6d",
        "signature_version": "v1",
        "digest": {
            "length": 384.0,
            "function_hash": "185096836021021651473962586013816727356"
        },
        "signature_type": "Function"
    },
    {
        "source": "https://github.com/kde/kdeconnect-kde/commit/8112729eb0f13e6947984416118531078e65580d",
        "target": {
            "file": "tests/testsocketlinereader.cpp"
        },
        "deprecated": false,
        "id": "CVE-2020-26164-e43ae852",
        "signature_version": "v1",
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "214375864970925315496221467048634536281",
                "21505395291300523390011035752460987586",
                "262050446054780186080642476439100955917",
                "154630449354378175085154369511824430502",
                "57803463555813799190350710010840276254",
                "176894328179205294973233926257086177384",
                "147674783205895176419587583286236789680",
                "61880892699506569551189058860269847333",
                "19289750718046908666807396725824177804",
                "113160262217869567472765252585728076443",
                "36673354780080396195720850853615712593",
                "97153726869967445041311856074591386790",
                "143436331158208318057408793869520833636",
                "95716145602602555041533604931804175781",
                "310000559364219985387758388769933862318",
                "223826035622294870523897697277028166674",
                "25944266041702818348449265369788869423",
                "265198597580099816829673747934277541792",
                "190532963382171260860784736568901169646",
                "242664381595365844111301315715397603459"
            ]
        },
        "signature_type": "Line"
    },
    {
        "source": "https://github.com/kde/kdeconnect-kde/commit/8112729eb0f13e6947984416118531078e65580d",
        "target": {
            "file": "core/backends/lan/socketlinereader.cpp"
        },
        "deprecated": false,
        "id": "CVE-2020-26164-e48fe50e",
        "signature_version": "v1",
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "290774158358827173243374493883897806488",
                "175206950594264041446392111786975068217",
                "142948776916198467032965063665687846573",
                "13732332071958541691498838638111358814",
                "163806904771138796525180206526153541090",
                "213219602545397880225702211458981037722",
                "88365458939181897690853542674946667547"
            ]
        },
        "signature_type": "Line"
    },
    {
        "source": "https://github.com/kde/kdeconnect-kde/commit/542d94a70c56aa386c8d4d793481ce181b0422e8",
        "target": {
            "file": "core/backends/lan/lanlinkprovider.cpp"
        },
        "deprecated": false,
        "id": "CVE-2020-26164-fa2a90bf",
        "signature_version": "v1",
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "296568423930998717950573170648933210279",
                "28581711618231656758632017635353995819",
                "161283143225662685319684802856587402070",
                "111056590105650115529625247341657021877",
                "292137507691845156699653775262235019783",
                "276916922996307913981190244457304882160",
                "142822671249060352559508020728153279525"
            ]
        },
        "signature_type": "Line"
    }
]