7.8

CVE-2026-46189

RDMA/vmw_pvrdma: Fix double free on pvrdma_alloc_ucontext() error path

In the Linux kernel, the following vulnerability has been resolved:

RDMA/vmw_pvrdma: Fix double free on pvrdma_alloc_ucontext() error path

Sashiko points out that pvrdma_uar_free() is already called within
pvrdma_dealloc_ucontext(), so calling it before triggers a double free.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version >= 4.10 < 5.10.258
LinuxLinux Kernel Version >= 5.11 < 5.15.209
LinuxLinux Kernel Version >= 5.16 < 6.1.175
LinuxLinux Kernel Version >= 6.2 < 6.6.140
LinuxLinux Kernel Version >= 6.7 < 6.12.88
LinuxLinux Kernel Version >= 6.13 < 6.18.30
LinuxLinux Kernel Version >= 6.19 < 7.0.7
LinuxLinux Kernel Version7.1 Updaterc1
LinuxLinux Kernel Version7.1 Updaterc2
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.14% 0.04
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.8 1.8 5.9
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
0b0ca135-0b70-47e7-9f44-1890c2a1c46c 7 1 5.9
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
CWE-1341 Multiple Releases of Same Resource or Handle

The product attempts to close or release a resource or handle more than once, without any successful open between the close operations.

CWE-415 Double Free

The product calls free() twice on the same memory address.

https://git.kernel.org/stable/c/ecc36a82ecfcfdf3c6606d209f22ec5543c410e0
Patch
https://git.kernel.org/stable/c/45d25e3ec17900bf5a9d6876ff16ceee31c4c0e0
Patch
https://git.kernel.org/stable/c/0c63333ff97bd1275294fd12840a0efe9d7a4c59
Patch
https://git.kernel.org/stable/c/935ee27d0904aa944cbcc979094c20e5ef62eead
Patch
https://git.kernel.org/stable/c/e38e86995df27f1f854063dab1f0c6a513db3faf
Patch
https://git.kernel.org/stable/c/1df5711121cdc11e76b889408fdbe459feba1d39
Patch
https://git.kernel.org/stable/c/269967d7693304e1f06ed2dff4ebbbeeb397cda4
Patch
https://git.kernel.org/stable/c/3a231c34c5bc3d3cfc850b877758ec9fdaa8a483
Patch
https://bugzilla.redhat.com/show_bug.cgi?id=2482588
https://security.access.redhat.com/data/csaf/v2/vex/2026/cve-2026-46189.json
https://access.redhat.com/errata/RHSA-2026:35904
https://access.redhat.com/errata/RHSA-2026:36073
https://access.redhat.com/errata/RHSA-2026:30848
https://access.redhat.com/errata/RHSA-2026:33743
https://access.redhat.com/errata/RHSA-2026:36049
https://access.redhat.com/errata/RHSA-2026:33685
https://access.redhat.com/security/cve/CVE-2026-46189
https://access.redhat.com/errata/RHSA-2026:36767