CVE-2026-45898

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description An issue exists in the RDMA/iwcm component where the work submission logic unconditionally calls queue work(). Because a free list of struct iwcm work is used, each call to queue work() is treated as unique and queues the work. This leads to a situation where the work handler may process and release an item back to the free list while the workqueue entry is still queued. If that item is subsequently reused via INIT WORK(), it can result in list corruption within the workqueue logic.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.