CVE-2026-23335
Published: Mar 25, 2026
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: RDMA/irdma: Fix kernel stack leak in irdma_create_user_ah() struct irdma_create_ah_resp { // 8 bytes, no padding __u32 ah_id; // offset 0 - SET (uresp.ah_id = ah->sc_ah.ah_info.ah_idx) __u8 rsvd[4]; // offset 4 - NEVER SET <- LEAK }; rsvd[4]: 4 bytes of stack memory leaked unconditionally. Only ah_id is assigned before ib_respond_udata(). The reserved members of the structure were not zeroed.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected b48c24c2d710cf34810c555dcef883a3d35a9c08 - < 1f70df004fdd944653013ccc2e1dfd472a693b46affected b48c24c2d710cf34810c555dcef883a3d35a9c08 - < 14b47c07c69930254f549a17ee245c80a65b1609affected b48c24c2d710cf34810c555dcef883a3d35a9c08 - < 1b1fac4c7a3ab7f52e9cfb91e5c91216646ca4d8affected b48c24c2d710cf34810c555dcef883a3d35a9c08 - < 2fd37450d271d74b3847baed284f9cfdf198c6f8affected b48c24c2d710cf34810c555dcef883a3d35a9c08 - < cfe962216c164fe2b1c1fb6ac925a7413f5abc84+2 more versions |
Linux | Linux | affected 5.14unaffected 0 - < 5.14unaffected 5.15.203 - <= 5.15.*unaffected 6.1.167 - <= 6.1.*unaffected 6.6.130 - <= 6.6.*+4 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now