Primary

Context

Linux Kernel RDMA/rtrs List Corruption Vulnerability

Vulnerability

A list corruption vulnerability has been identified in the Linux kernel's RDMA/rtrs component. This issue arises from a missing deinitialization call when registering an event handler, leading to a warning about list_add corruption. The vulnerability was introduced by a commit that added an event handler registration without properly unregistering it, causing a mismatch in the list management. This corruption can be exploited by repeatedly connecting and disconnecting, triggering a warning that indicates the list integrity has been compromised.

Impact

Exploitation of this vulnerability leads to list management corruption, which can cause undefined behavior in the kernel, potentially allowing for memory manipulation or other malicious actions.

Remediation

Users can apply the latest patches from the official Linux kernel repository to address this vulnerability.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel RDMA/rtrs List Corruption Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating