CVE-2026-46117

HIGH 7.8

RDMA/mana: Remove user triggerable WARN_ON() in mana_ib_create_qp_rss()

CVSS Score

7.8

EPSS Score

0.0%

EPSS Percentile

0th

In the Linux kernel, the following vulnerability has been resolved: RDMA/mana: Remove user triggerable WARN_ON() in mana_ib_create_qp_rss() Sashiko points out that the user can specify WQs sharing the same CQ as a part of the uAPI and this will trigger the WARN_ON() then go on to corrupt the kernel. Just reject it outright and fail the QP creation.

Vendor	linux
Product	linux
Ecosystems	Linux Kernel
Industries	Technology
Published	May 28, 2026
Last Updated	May 30, 2026

Stay Ahead of the Next One

Get instant alerts for linux linux

Be the first to know when new high vulnerabilities affecting linux linux are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality

Integrity

Availability

Affected Versions

Linux / Linux

c15d7802a42402a87880a17eee89ff023e49ecc0 < 9cc0c6b1ba8cd5c55aef043e1384de0a8b4efa71 c15d7802a42402a87880a17eee89ff023e49ecc0 < 9ef65af26b2a6738bf15812042e84b3112402d3a c15d7802a42402a87880a17eee89ff023e49ecc0 < db991ba50087ad99fa12a2c483aa3be19671ea73 c15d7802a42402a87880a17eee89ff023e49ecc0 < 159f2efabc89d3f931d38f2d35876535d4abf0a3

Linux / Linux

6.8

References

NVD ↗ CVE.org ↗ EPSS Data ↗

git.kernel.org: https://git.kernel.org/stable/c/9cc0c6b1ba8cd5c55aef043e1384de0a8b4efa71 git.kernel.org: https://git.kernel.org/stable/c/9ef65af26b2a6738bf15812042e84b3112402d3a git.kernel.org: https://git.kernel.org/stable/c/db991ba50087ad99fa12a2c483aa3be19671ea73 git.kernel.org: https://git.kernel.org/stable/c/159f2efabc89d3f931d38f2d35876535d4abf0a3