PT-2026-44240 · Linux · Linux
Published
2026-05-28
·
Updated
2026-05-28
·
CVE-2026-46117
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
In the Linux kernel, the following vulnerability has been resolved:
RDMA/mana: Remove user triggerable WARN ON() in mana ib create qp rss()
Sashiko points out that the user can specify WQs sharing the same CQ as a
part of the uAPI and this will trigger the WARN ON() then go on to corrupt
the kernel.
Just reject it outright and fail the QP creation.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Linux