Linux Kernel IB/cm Vulnerability in Lock Management

Vulnerability

A vulnerability in the Linux kernel's IB/cm component has been addressed. The issue arose because the send completion handler could execute after the connection manager ID (cm_id) had moved on to another message. Although the cm_id lock was unnecessary in this scenario, a recent change repurposed the cm_free_priv_msg() function. This function requires the lock to be held and issues a warning if the cm_id's currently active message differs from the one being released.

Impact

The vulnerability could lead to improper message management in the connection manager, potentially causing synchronization issues or message handling errors.

Added: Jul 10, 2025, 9:30 AM

Updated: Jul 10, 2025, 9:30 AM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.2

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.2

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel IB/cm Vulnerability in Lock Management

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating