Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: nvme-rdma: Destroy the cmid before destroying the qp to avoid using it after freeing it. We should always destroy the cmid before destroying the qp to prevent accessing the cma after the qp is destroyed. In the RDMA connection...

CVE-2026-31425

In the Linux kernel, the following vulnerability has been resolved: rds: ib: reject FRMR registration before IB connection is established rdsibgetmr extracts the rdsibconnection from conn-ctransportdata and passes it to rdsibregfrmr for FRWR memory registration. On a fresh outgoing connection, ic...

ROS-20260220-73-0029

A vulnerability in the EXPORTSYMBOL, destroycmid and cmworkhandler functions drivers/infiniband/core/iwcm.c of the Linux kernel is related to the use of memory after it has been freed. Exploitation of the vulnerability could allow an attacker to escalate his privileges...

Azure Linux 3.0 Security Update: kernel (CVE-2025-38211)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-38211 advisory. - In the Linux kernel, the following vulnerability has been resolved: RDMA/iwcm: Fix use-after-free of work...

UBUNTU-CVE-2025-71084

In the Linux kernel, the following vulnerability has been resolved: RDMA/cm: Fix leaking the multicast GID table reference If the CM ID is destroyed while the CM event for multicast creating is still queued the cancelworksync will prevent the work from running which also prevents destroying the...

CVE-2025-71084

CVE-2025-71084 (Linux kernel) fixes a leak in the multicast GID table reference within RDMA/cm. If the CM ID is destroyed while the multicast creation event is queued, cancel_work_sync() can prevent the work from running and destroy ah_attr, causing a refcount leak and a WARN in kernel logs. Affe...

OESA-2026-1010 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, the following vulnerability has been resolved: RDMA/iwcm: Fix use-after-free of work objects after cmid destruction The commit 59c68ac31e15 "iwcm: free cmid resources on the last deref" simplified cmid resour...

kernel: RDMA/iwcm: Fix use-after-free of work objects after cm_id destruction

In the Linux kernel, the following vulnerability has been resolved: RDMA/iwcm: Fix use-after-free of work objects after cmid destruction The commit 59c68ac31e15 "iwcm: free cmid resources on the last deref" simplified cmid resource management by freeing cmid once all references to the cmid were...

kernel: RDMA/iwcm: Fix use-after-free of work objects after cm_id destruction

In the Linux kernel, the following vulnerability has been resolved: RDMA/iwcm: Fix use-after-free of work objects after cmid destruction The commit 59c68ac31e15 "iwcm: free cmid resources on the last deref" simplified cmid resource management by freeing cmid once all references to the cmid were...

Moderate: Red Hat Security Advisory: kernel-rt security update

An update for kernel-rt is now available for Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

kernel: RDMA/iwcm: Fix use-after-free of work objects after cm_id destruction

In the Linux kernel, the following vulnerability has been resolved: RDMA/iwcm: Fix use-after-free of work objects after cmid destruction The commit 59c68ac31e15 "iwcm: free cmid resources on the last deref" simplified cmid resource management by freeing cmid once all references to the cmid were...

CVE-2023-53476

In the Linux kernel, the following vulnerability has been resolved: iwcxgb4: Fix potential NULL dereference in c4iwfillrescmidentry This condition needs to match the previous "if epcp-state == LISTEN " exactly to avoid a NULL dereference of either "listenep" or "ep". The problem is that "epcp" ha...

UBUNTU-CVE-2023-53476

In the Linux kernel, the following vulnerability has been resolved: iwcxgb4: Fix potential NULL dereference in c4iwfillrescmidentry This condition needs to match the previous "if epcp-state == LISTEN " exactly to avoid a NULL dereference of either "listenep" or "ep". The problem is that "epcp" ha...

CVE-2023-53476 iw_cxgb4: Fix potential NULL dereference in c4iw_fill_res_cm_id_entry()

In the Linux kernel, the following vulnerability has been resolved: iwcxgb4: Fix potential NULL dereference in c4iwfillrescmidentry This condition needs to match the previous "if epcp-state == LISTEN " exactly to avoid a NULL dereference of either "listenep" or "ep". The problem is that "epcp" ha...

CVE-2023-53476 iw_cxgb4: Fix potential NULL dereference in c4iw_fill_res_cm_id_entry()

In the Linux kernel, the following vulnerability has been resolved: iwcxgb4: Fix potential NULL dereference in c4iwfillrescmidentry This condition needs to match the previous "if epcp-state == LISTEN " exactly to avoid a NULL dereference of either "listenep" or "ep". The problem is that "epcp" ha...

RHEL 9 : kernel (RHSA-2025:17159)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:17159 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: drm/amd/display: clear optc...

AlmaLinux 9 : kernel (ALSA-2025:15011)

The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2025:15011 advisory. kernel: netsched: hfsc: Fix a potential UAF in hfscdequeue too CVE-2025-37823 kernel: i40e: fix MMIO write access to an invalid page in i40eclearhw...

kernel: RDMA/iwcm: Fix use-after-free of work objects after cm_id destruction

In the Linux kernel, the following vulnerability has been resolved: RDMA/iwcm: Fix use-after-free of work objects after cmid destruction The commit 59c68ac31e15 "iwcm: free cmid resources on the last deref" simplified cmid resource management by freeing cmid once all references to the cmid were...

RockyLinux 8 : kernel-rt (RLSA-2025:15009)

The remote RockyLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2025:15009 advisory. kernel: RDMA/iwcm: Fix use-after-free of work objects after cmid destruction CVE-2025-38211 kernel: tipc: Fix use-after-free in tipcconnclose...

Moderate: Red Hat Security Advisory: kernel security update

An update for kernel is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...