Lucene search
+L

12 matches found

RedHat Linux
RedHat Linux
added 2026/06/10 10:0 p.m.10 views

kernel: RDMA/mlx4: Fix mis-use of RCU in mlx4_srq_event()

A flaw was found in the Linux kernel's RDMA/mlx4 component. This vulnerability arises from the incorrect use of Read-Copy Update RCU in the mlx4srqevent function. An attacker could potentially trigger an event before the srq object is fully initialized, leading to a system crash. This could resul...

7.8CVSS5.4AI score0.00114EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/06/10 8:9 p.m.9 views

kernel: RDMA/mlx4: Fix mis-use of RCU in mlx4_srq_event()

A flaw was found in the Linux kernel's RDMA/mlx4 component. This vulnerability arises from the incorrect use of Read-Copy Update RCU in the mlx4srqevent function. An attacker could potentially trigger an event before the srq object is fully initialized, leading to a system crash. This could resul...

7.8CVSS5.4AI score0.00114EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2026/05/29 1:15 a.m.28 views

SUSE CVE-2026-46176

In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Fix error path fall-through in mlx5ibdevressrqinit mlx5ibdevressrqinit allocates two SRQs, s0 and s1. When ibcreatesrq fails for s1, the error branch destroys s0 but falls through and unconditionally assigns the freed ...

5.5CVSS5.8AI score0.00142EPSS
Exploits0References17
SUSE CVE
SUSE CVE
added 2026/05/29 1:15 a.m.12 views

SUSE CVE-2026-46181

In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx4: Fix mis-use of RCU in mlx4srqevent Sashiko points out the radixtree itself is RCU safe, but nothing ever frees the mlx4srq struct with RCU, and it isn't even accessed within the RCU critical section. It also will crash...

5.5CVSS5.8AI score0.00114EPSS
Exploits0References19
NVD
NVD
added 2026/05/28 10:16 a.m.12 views

CVE-2026-46176

In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Fix error path fall-through in mlx5ibdevressrqinit mlx5ibdevressrqinit allocates two SRQs, s0 and s1. When ibcreatesrq fails for s1, the error branch destroys s0 but falls through and unconditionally assigns the freed ...

7.8CVSS0.00142EPSS
Exploits0References12
EUVD
EUVD
added 2026/05/28 9:36 a.m.11 views

EUVD-2026-32803

In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Fix error path fall-through in mlx5ibdevressrqinit mlx5ibdevressrqinit allocates two SRQs, s0 and s1. When ibcreatesrq fails for s1, the error branch destroys s0 but falls through and unconditionally assigns the freed ...

5.8AI score0.00142EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/05/28 9:36 a.m.16 views

CVE-2026-46176

In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Fix error path fall-through in mlx5ibdevressrqinit mlx5ibdevressrqinit allocates two SRQs, s0 and s1. When ibcreatesrq fails for s1, the error branch destroys s0 but falls through and unconditionally assigns the freed ...

5.7AI score0.00142EPSS
Exploits0References6Affected Software1
CVE
CVE
added 2026/05/28 9:36 a.m.34 views

CVE-2026-46176

The CVE-2026-46176 issue affects the Linux kernel RDMA mlx5 path (mlx5_ib_dev_res_srq_init): when ib_create_srq() fails for s1, the error path can end up with freed s0 and ERR_PTR s1 assigned to devr->s0/devr->s1, leading to use-after-free/double-free risk in subsequent access. The fix adds...

7.8CVSS5.8AI score0.00142EPSS
Exploits0References12Affected Software1
OSV
OSV
added 2026/05/28 9:36 a.m.2 views

CVE-2026-46176 RDMA/mlx5: Fix error path fall-through in mlx5_ib_dev_res_srq_init()

In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Fix error path fall-through in mlx5ibdevressrqinit mlx5ibdevressrqinit allocates two SRQs, s0 and s1. When ibcreatesrq fails for s1, the error branch destroys s0 but falls through and unconditionally assigns the freed ...

7.8CVSS6.3AI score0.00142EPSS
Exploits0References15
Positive Technologies
Positive Technologies
added 2026/05/28 12:0 a.m.24 views

PT-2026-44299

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An error path fall-through exists in the mlx5 ib dev res srq init function. When the function allocates two Send Receive Queues SRQs, s0 and s1, a failure in ib create srq for s1 causes...

7.8CVSS5.8AI score0.00142EPSS
Exploits0
OSV
OSV
added 2026/05/27 12:15 p.m.2 views

CVE-2026-45852 RDMA/rxe: Fix double free in rxe_srq_from_init

In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Fix double free in rxesrqfrominit In rxesrqfrominit, the queue pointer 'q' is assigned to 'srq-rq.queue' before copying the SRQ number to user space. If copytouser fails, the function calls rxequeuecleanup to free the...

7.8CVSS6.3AI score0.00175EPSS
Exploits0References23
Oracle linux
Oracle linux
added 2014/12/04 12:0 a.m.68 views

Unbreakable Enterprise kernel security update

kernel-uek 3.8.13-55 - freezer: set PFSUSPENDTASK flag on tasks that call freezeprocesses Colin Cross Orabug: 20082843 3.8.13-54 - netfilter: nfnat: fix oops on netns removal Florian Westphal Orabug: 19988779 - tcp: tsq: restore minimal amount of queueing Eric Dumazet Orabug: 19909542 - qedf: Fix...

7.8CVSS7.7AI score0.08579EPSS
Exploits8
Rows per page
Query Builder