Primary

Context

Linux Kernel io_uring/zcrx Post Open Error Handling Vulnerability

Vulnerability

Patched

A vulnerability in the Linux kernel's io_uring/zcrx component has been addressed. The issue arose because closing a queue did not ensure that all related page pools were immediately terminated. Instead of directly releasing the zcrx context, the reference counting should manage this process. This vulnerability could potentially lead to improper resource handling or memory management issues.

Impact

The vulnerability could cause resource leaks or improper management of associated page pools, potentially leading to memory-related issues.

Added: May 6, 2026, 3:35 PM

Updated: May 6, 2026, 3:35 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.6

exploitability

4.0

remediation

7.7

relevance

7.6

threat

3.2

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.6

exploitability

4.0

remediation

7.7

relevance

7.6

threat

3.2

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel io_uring/zcrx Post Open Error Handling Vulnerability

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating