CVE-2022-50736

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description An issue exists in the Linux kernel’s RDMA/siw component related to handling immediate work requests and flushing to the completion queue. An incorrect send queue element opcode during immediate work request flushing, particularly when the queue pair (QP) is in an ERROR state, can lead to an out-of-bounds access of an array used for mapping opcodes. This was initially identified through a KASAN bug report during NFSoRDMA testing. The issue could potentially allow a malicious user to write undefined values to completion queue elements, leading to the same out-of-bounds access. The vulnerability involves the mapping of siw internal and RDMA core representation in work completion generation.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.