CVE-2022-50666

In the Linux kernel, the following vulnerability has been resolved: RDMA/siw: Fix QP destroy to wait for all references dropped. Delay QP destroy completion until all siw references to QP are dropped. The calling RDMA core will free QP structure after successful return from siwqpdestroy call, so...

CVE-2022-50666 RDMA/siw: Fix QP destroy to wait for all references dropped.

In the Linux kernel, the following vulnerability has been resolved: RDMA/siw: Fix QP destroy to wait for all references dropped. Delay QP destroy completion until all siw references to QP are dropped. The calling RDMA core will free QP structure after successful return from siwqpdestroy call, so...

CVE-2022-50666

CVE-2022-50666 relates to the Linux kernel’s RDMA/siw subsystem. The issue arises in QP destruction: the destroy path did not wait for all siw references to the QP to be dropped, allowing a use-after-free when delayed siw_cm_work_handler references a QP already freed after the destroy call. Repor...

GSD-2022-1007067 RDMA/siw: Fix QP destroy to wait for all references dropped.

RDMA/siw: Fix QP destroy to wait for all references dropped. This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.75 by commit...