Linux kernel
Moderate fix1 remedy
cpe:2.3:a:linux:linux_kernel:*:*:*:*:*:*:*, +4 more
Moderate fix1 remedy
- >= 4.18.0-305.3.1.el8.x86_64, < 4.18.0-305.3.2.el8.x86_64
Linux Kernel IB/MAD Tracepoint Sleeping Vulnerability in Atomic Context
Vulnerability
Patched
A vulnerability in the Linux kernel's InfiniBand (IB) Management Datagram (MAD) handling has been addressed. The issue arose because a function that can sleep was called while in an atomic context, which is not permitted. This improper function call generated a warning trace, indicating the violation of context requirements. The vulnerability was present in the kernel version 4.18.0-305.3.1.el8.x86_64.
Impact
The vulnerability could lead to a violation of the Linux kernel's context management, potentially causing unexpected behavior in the handling of InfiniBand MAD events.
Reproduction
The vulnerability can be reproduced by enabling the InfiniBand management datagram tracepoint while in an atomic context, such as during a workqueue processing event. This will trigger the improper function call that queries the partition key, causing the warning trace that indicates the violation of context requirements.
Remediation
Users can upgrade to the latest version of the Linux kernel stable tree to address this vulnerability.
Added: Oct 4, 2025, 8:02 PM
Updated: Oct 4, 2025, 8:02 PM
Vulnerability Rating
Custom Algorithm
spread
9.0impact
2.5exploitability
5.7remediation
7.7relevance
0.6threat
4.8urgency
2.9incentive
1.7Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.