VDB
CVE-2026-31492
CVE-2026-31492
PUBLISHED
In the Linux kernel, the following vulnerability has been resolved: RDMA/irdma: Initialize free_qp completion before using it In irdma_create_qp, if ib_copy_to_udata fails, it will call irdma_destroy_qp to clean up which will attempt to wait on the free_qp completion, which is not initialized yet. Fix this by initializing the completion before the ib_copy_to_udata call.
EPSS 0.02% · 3.4th percentile
Risk Scores
EPSS Score
0.02%
3.4th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| linux | linux_kernel | 5.14, 5.14, 5.14 |
| Linux | Linux | b48c24c2d710cf34810c555dcef883a3d35a9c08, b48c24c2d710cf34810c555dcef883a3d35a9c08, b48c24c2d710cf34810c555dcef883a3d35a9c08 |
Timeline
- Apr 22, 2026 CVE Published
- Apr 23, 2026 Security Advisory
- Apr 28, 2026 CVE Updated
- May 18, 2026 EPSS Score
- May 19, 2026 EPSS Score
- May 20, 2026 EPSS Score
- May 21, 2026 EPSS Score
- May 22, 2026 EPSS Score
- May 23, 2026 EPSS Score
- May 24, 2026 EPSS Score
- May 25, 2026 EPSS Score
- May 26, 2026 EPSS Score
References
- https://git.kernel.org/stable/c/ac1da7bd224d406b6f1b84414f0f652ab43b6bd8 url
- https://git.kernel.org/stable/c/af310407f79d5816fc0ab3638e1588b6193316dd url
- https://git.kernel.org/stable/c/cd1534c8f4984432382c240f6784408497f5bb0a url
- https://git.kernel.org/stable/c/3cb88c12461b71c7d9c604aa2e6a9a477ecfa147 url
- https://git.kernel.org/stable/c/f72996834f7bdefc2b95e3eec30447ee195df44e url
- https://git.kernel.org/stable/c/11a95521fb93c91e2d4ef9d53dc80ef0a755549b url
- https://nvd.nist.gov/vuln/detail/CVE-2026-31492 advisory
- https://lists.debian.org/debian-lts-announce/2026/05/msg00004.html advisory
- https://lists.debian.org/debian-lts-announce/2026/05/msg00005.html advisory
- https://lists.debian.org/debian-security-announce/2026/msg00154.html advisory
- https://lists.debian.org/debian-security-announce/2026/msg00148.html advisory