Memory Handling Flaw in Linux Kernel's RDMA EFA Implementation
CVE-2026-31493

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 22 April 2026

What is CVE-2026-31493?

A memory handling flaw has been identified in the Linux Kernel's RDMA EFA implementation. When an admin command encounters an error, the completion context is accessed after it has already been freed. This can lead to undefined behavior as the data from the context may reference memory that has been reused, potentially compromising system stability and security. A modification in the admin submission flow ensures that memory allocation and deallocation processes are symmetric, preventing the premature freeing of the context before its actual use.

Affected Version(s)

Linux 68fb9f3e312a36e49fd05ec2d6b668daf2c4931a < 0dd98aea1c0c45987fa2dd92f988b0eb1a72c125

Linux 68fb9f3e312a36e49fd05ec2d6b668daf2c4931a < 1cf95fe5dc5471efea947b4c6f8913da6bc7976e

Linux 68fb9f3e312a36e49fd05ec2d6b668daf2c4931a

References

https://git.kernel.org/stable/c/0dd98aea1c0c45987fa2dd92f...

https://git.kernel.org/stable/c/1cf95fe5dc5471efea947b4c6...

https://git.kernel.org/stable/c/ef3b06742c8a201d0e83edc9a...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 22, 2026
Vulnerability Reserved
Mar 9, 2026

CVE-2026-31493 Data

JSON