Aharon Landau

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions prior to 5.15.0-rc4+ **Description** The vulnerability is related to the RDMA/mlx5 component of the Linux kernel, where the ODP xarray is not properly initialized when creating an ODP MR. This can cause a crash due to an errant set to `desc size` in `reg create()`. The issue is triggered when the `mlx5 ib dereg mr()` function is called, leading to a page fault and a crash. The vulnerability can be exploited to cause a denial of service. **Recommendations** To resolve the issue, update the Linux kernel to a version that includes the fix for the RDMA/mlx5 component. Specifically, update to a version later than 5.15.0-rc4+. As a temporary workaround, consider disabling the RDMA/mlx5 component until a patch is available.