Volerion logoVolerion
Volerion logoVolerion

Linux Kernel RDMA/vmw_pvrdma Double Free Vulnerability in User Context Allocation

Vulnerability

A double free vulnerability has been identified in the Linux kernel's RDMA vmw_pvrdma driver, specifically in the user context allocation function. This issue arises because the function improperly manages memory by freeing a resource before it is supposed to, leading to potential memory corruption. The vulnerability affects the Linux kernel stable tree.

Impact

Exploitation of this vulnerability could lead to memory corruption issues, which may be leveraged to execute arbitrary code or cause a denial of service by crashing the system.

Reproduction

The vulnerability can be reproduced by triggering an error during the user context allocation process in the vmw_pvrdma driver. This can be done by simulating a failure in the allocation process, which will cause the function to attempt to free a resource that has already been released, resulting in a double free condition.

Remediation

Users can upgrade to the latest version of the Linux kernel stable tree, where this vulnerability has been fixed.

Added: May 28, 2026, 11:56 AM
Updated: May 28, 2026, 11:56 AM

Vulnerability Rating

Custom Algorithm
spread
9.0
impact
1.3
exploitability
4.3
remediation
7.7
relevance
9.2
threat
4.8
urgency
2.9
incentive
0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.