CVE-2026-46117
Published: May 28, 2026
Modified: May 30, 2026
CVSS v3.1
7.8
Description
In the Linux kernel, the following vulnerability has been resolved: RDMA/mana: Remove user triggerable WARN_ON() in mana_ib_create_qp_rss() Sashiko points out that the user can specify WQs sharing the same CQ as a part of the uAPI and this will trigger the WARN_ON() then go on to corrupt the kernel. Just reject it outright and fail the QP creation.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected c15d7802a42402a87880a17eee89ff023e49ecc0 - < 9cc0c6b1ba8cd5c55aef043e1384de0a8b4efa71affected c15d7802a42402a87880a17eee89ff023e49ecc0 - < 9ef65af26b2a6738bf15812042e84b3112402d3aaffected c15d7802a42402a87880a17eee89ff023e49ecc0 - < db991ba50087ad99fa12a2c483aa3be19671ea73affected c15d7802a42402a87880a17eee89ff023e49ecc0 - < 159f2efabc89d3f931d38f2d35876535d4abf0a3 |
Linux | Linux | affected 6.8unaffected 0 - < 6.8unaffected 6.12.91 - <= 6.12.*unaffected 6.18.30 - <= 6.18.*unaffected 7.0.7 - <= 7.0.*+1 more versions |
CVSS v3.1 Details
CVSS v3.1 Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now