Updated: 2026-02-27 00:24:12.107532
Description:
In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Fix seg fault in rxe_comp_queue_pkt In rxe_comp_queue_pkt() an incoming response packet skb is enqueued to the resp_pkts queue and then a decision is made whether to run the completer task inline or schedule it. Finally the skb is dereferenced to bump a 'hw' performance counter. This is wrong because if the completer task is already running in a separate thread it may have already processed the skb and freed it which can cause a seg fault. This has been observed infrequently in testing at high scale. This patch fixes this by changing the order of enqueuing the packet until after the counter is accessed.
| Links | NIST | CIRCL | RHEL | Ubuntu |
| Severity | Score | |
|---|---|---|
| CVSS Version 2.x | 0.0 | |
| CVSS Version 3.x | MEDIUM | 6.3 |
| OS name | Project name | Version | Score | Severity | Status | Errata | Last updated | Statement |
|---|---|---|---|---|---|---|---|---|
| AlmaLinux 9.2 ESU | kernel | 5.14.0 | 6.3 | MEDIUM | Ignored | 2025-09-23 10:45:18 | Exposure is limited to systems that actively load and configure the rdma_rxe (Soft‑RoCE) kernel mo... | |
| CentOS 6 ELS | kernel | 2.6.32 | 6.3 | MEDIUM | Ignored | 2024-08-29 05:23:28 | Ignored due to low severity | |
| CentOS 7 ELS | kernel | 3.10.0 | 6.3 | MEDIUM | Ignored | 2024-08-29 05:23:28 | Ignored due to low severity | |
| CentOS 8.4 ELS | kernel | 4.18.0 | 6.3 | MEDIUM | Ignored | 2024-08-29 05:23:28 | Ignored due to low severity | |
| CentOS 8.5 ELS | kernel | 4.18.0 | 6.3 | MEDIUM | Ignored | 2024-08-29 05:23:28 | Ignored due to low severity | |
| CentOS Stream 8 ELS | kernel | 4.18.0 | 6.3 | MEDIUM | Ignored | 2024-08-29 05:23:28 | Ignored due to low severity | |
| CloudLinux 6 ELS | kernel | 2.6.32 | 6.3 | MEDIUM | Ignored | 2024-08-29 05:23:28 | Ignored due to low severity | |
| CloudLinux 7 ELS | kernel | 3.10.0 | 6.3 | MEDIUM | Ignored | 2024-08-29 05:23:28 | Ignored due to low severity | |
| Oracle Linux 6 ELS | kernel | 2.6.32 | 6.3 | MEDIUM | Ignored | 2024-08-29 05:23:28 | Ignored due to low severity | |
| Oracle Linux 7 ELS | kernel-uek | 5.4.17 | 6.3 | MEDIUM | Ignored | 2025-12-04 17:08:33 | This flaw is confined to the software RoCE (RXE) path and is only reachable on systems that have the... |