Stack Memory Leak in Linux Kernel RDMA/Ionic Component
CVE-2026-23384

Currently unrated

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
25 March 2026

What is CVE-2026-23384?

A stack memory leak vulnerability exists in the RDMA/Ionic component of the Linux Kernel. The issue arises during the execution of the ionic_create_cq function, where the response structure does not fully initialize the 'rsvd' field leading to a potential leakage of up to 11 bytes of sensitive data from the kernel stack. This leak can occur unconditionally, revealing parts of memory that could contain private data. The vulnerability mainly affects the handling of command queues within the RDMA subsystem, particularly when the udma_mask does not cover all expected indices, resulting in incomplete memory initialization.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Linux e8521822c733c6deab0f339843cd37cd62c12795

Linux e8521822c733c6deab0f339843cd37cd62c12795 < 547d0b07ad73915b323bc21f85c5d3252bebbbcf

Linux e8521822c733c6deab0f339843cd37cd62c12795

References

https://git.kernel.org/stable/c/a6f3e0fa8e862f220c26c2f27...
https://git.kernel.org/stable/c/547d0b07ad73915b323bc21f8...
https://git.kernel.org/stable/c/faa72102b178c7ae6c6afea23...

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.