CVE-2026-43120

In the Linux kernel, the following vulnerability has been resolved:

RDMA/irdma: Fix double free related to rereg user mr

If IB MR REREG TRANS is set during rereg user mr, the umem will be released and a new one will be allocated in irdma rereg mr trans. If any step of irdma rereg mr trans fails after the new umem is allocated, it releases the umem, but does not set iwmr->region to NULL. The problem is that this failure is propagated to the user, who will then call ibv dereg mr (as they should). Then, the dereg mr path will see a non-NULL umem and attempt to call ib umem release again.

Fix this by setting iwmr->region to NULL after ib umem release.

Fixed: 5ac388db27c4 ("RDMA/irdma: Add support to re-register a memory region")