Linux Kernel RDMA/hns Invalid Pointer Access Vulnerability in QP Destruction

Vulnerability

A vulnerability in the Linux kernel's RDMA/hns component was introduced when an invalid dip_ctx pointer was accessed during the destruction of a Queue Pair (QP). This issue arises if the QP modification to the Ready-to-Receive (RTR) state fails, leaving the dip_ctx uninitialized. Consequently, the destruction process attempts to access a non-existent context, leading to potential instability or undefined behavior.

Impact

Exploitation of this vulnerability could result in accessing invalid memory, potentially causing a system crash or other unpredictable behavior.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel RDMA/hns Invalid Pointer Access Vulnerability in QP Destruction

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating