Chengchang Tang

**Name of the Vulnerable Software and Affected Versions** Linux kernel (affected versions not specified) **Description** The issue is related to a deadlock in the RDMA/hns component of the Linux kernel, specifically in the handling of SRQ async events. The problem arises due to incorrect locking, which may allow an attacker to cause a denial of service or execute arbitrary code. To avoid the deadlock, the use of `xa store irq()` and `xa erase irq()` is recommended for the SRQ table in AEQ, as `xa lock` may be required. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Linux kernel (affected versions not specified) **Description** The issue is related to the RDMA/hns module in the Linux kernel, where the refcount of CQ is not protected by locks. When CQ asynchronous events and CQ destruction are concurrent, CQ may have been released, which will cause a use-after-free (UAF) condition. This can be exploited to impact the confidentiality, integrity, and availability of protected information. The vulnerability is fixed by using the xa lock() to protect the CQ refcount. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.