CVE-2026-46117

Summary

In the Linux kernel, the following vulnerability has been resolved:

RDMA/mana: Remove user triggerable WARN_ON() in mana_ib_create_qp_rss()

Sashiko points out that the user can specify WQs sharing the same CQ as a part of the uAPI and this will trigger the WARN_ON() then go on to corrupt the kernel.

Just reject it outright and fail the QP creation.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxc15d7802a42402a87880a17eee89ff023e49ecc0 < 9cc0c6b1ba8cd5c55aef043e1384de0a8b4efa71affected
LinuxLinuxc15d7802a42402a87880a17eee89ff023e49ecc0 < 9ef65af26b2a6738bf15812042e84b3112402d3aaffected
LinuxLinuxc15d7802a42402a87880a17eee89ff023e49ecc0 < db991ba50087ad99fa12a2c483aa3be19671ea73affected
LinuxLinuxc15d7802a42402a87880a17eee89ff023e49ecc0 < 159f2efabc89d3f931d38f2d35876535d4abf0a3affected
LinuxLinux6.8affected
LinuxLinux0 < 6.8unaffected
LinuxLinux6.12.91 <= 6.12.*unaffected
LinuxLinux6.18.30 <= 6.18.*unaffected
LinuxLinux7.0.7 <= 7.0.*unaffected
LinuxLinux7.1 <= *unaffected

Weaknesses

ADP Enrichment

kernel: RDMA/mana: Remove user triggerable WARN_ON() in mana_ib_create_qp_rss()

Additional References

References