Memory Management Vulnerability in Linux Kernel Affects RDMA/irdma
CVE-2026-43120

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 6 May 2026

What is CVE-2026-43120?

A vulnerability exists in the Linux kernel's RDMA/irdma subsystem, specifically concerning memory registration and deregistration processes. When the IB_MR_REREG_TRANS flag is enabled during the rereg_user_mr operation, an improper handling of memory regions can occur, leading to a double free scenario. If the re-registration process encounters any failures after allocating a new user memory (umem), it inadvertently retains a pointer to the previous umem. This results in potential instability when the user attempts to deregister the memory region, as the system may try to release an already freed resource. The issue has been addressed by ensuring that the memory region pointer is set to NULL after the user memory release, preventing erroneous attempts to free it again.

Affected Version(s)

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 62298a48f8b8788ad8b8464e6ffdf1ddebd2217e

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 66964118f1f50ed85001c8fc9f7ab5bbdd021ee0

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 0f22c32141acdcda266b26cab2b830baf870f3e0

References

https://git.kernel.org/stable/c/62298a48f8b8788ad8b8464e6...

https://git.kernel.org/stable/c/66964118f1f50ed85001c8fc9...

https://git.kernel.org/stable/c/0f22c32141acdcda266b26cab...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 6, 2026
Vulnerability Reserved
May 1, 2026

CVE-2026-43120 Data

JSON