Invalid Read Vulnerability in Linux Kernel Affecting RDMA
CVE-2025-71133

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 14 January 2026

What is CVE-2025-71133?

The vulnerability in the Linux kernel's RDMA/irdma component allows for an invalid read condition when handling network events. Specifically, the irdma_net_event function erroneously dereferences certain pointers before confirming their associated events. This can lead to misleading results or crashes, particularly during debugging sessions, where it may trigger Kernel Address Sanitizer (KASAN) warnings. By adjusting how the function processes network event structures, developers can mitigate the risk of erratic behavior linked to various event types.

Affected Version(s)

Linux 915cc7ac0f8e2a23675ee896e87f17c7d3c47089

Linux 915cc7ac0f8e2a23675ee896e87f17c7d3c47089 < 305c02e541befe4a44ffde30ed374970f41aeb6c

Linux 915cc7ac0f8e2a23675ee896e87f17c7d3c47089

References

https://git.kernel.org/stable/c/db93ae6fa66f1c61ae6340019...

https://git.kernel.org/stable/c/305c02e541befe4a44ffde30e...

https://git.kernel.org/stable/c/fc23d05f0b3fb4d80657e7afe...

Timeline

Vulnerability published
Jan 14, 2026
Vulnerability Reserved
Jan 13, 2026

JSON