Linux Kernel RDMA/srpt Use-After-Free Vulnerability

Vulnerability

A use-after-free vulnerability has been identified in the Linux kernel's RDMA/srpt component. This issue arises from the management of LIO port members within the srpt_port structure, which were originally regular members but have been changed to pointers. The vulnerability occurs because the lifetime of the srpt_port structure, controlled by the RDMA core, is not properly synchronized with the LIO target port, leading to a use-after-free condition. This vulnerability was highlighted by a KASAN (Kernel Address Sanitizer) report, indicating a read of freed memory by a specific task.

Impact

Exploitation of this vulnerability leads to a use-after-free condition, which can commonly result in memory corruption and potentially allow for arbitrary code execution or other unintended behavior in the kernel.

Added: Jun 18, 2025, 4:19 PM

Updated: Jun 18, 2025, 4:19 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

7.7

relevance

0.2

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

7.7

relevance

0.2

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel RDMA/srpt Use-After-Free Vulnerability

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating