{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-31565", "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "state": "PUBLISHED", "assignerShortName": "Linux", "dateReserved": "2026-03-09T15:48:24.117Z", "datePublished": "2026-04-24T14:35:46.006Z", "dateUpdated": "2026-05-11T22:11:14.564Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "shortName": "Linux", "dateUpdated": "2026-05-11T22:11:14.564Z"}, "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/irdma: Fix deadlock during netdev reset with active connections\n\nResolve deadlock that occurs when user executes netdev reset while RDMA\napplications (e.g., rping) are active. The netdev reset causes ice\ndriver to remove irdma auxiliary driver, triggering device_delete and\nsubsequent client removal. During client removal, uverbs_client waits\nfor QP reference count to reach zero while cma_client holds the final\nreference, creating circular dependency and indefinite wait in iWARP\nmode. Skip QP reference count wait during device reset to prevent\ndeadlock."}], "affected": [{"product": "Linux", "vendor": "Linux", "defaultStatus": "unaffected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["drivers/infiniband/hw/irdma/verbs.c"], "versions": [{"version": "0b3c392b82cdf867808a8ea7c6760d3c7e6b6627", "lessThan": "009831768faeca3fb5950ce63f1b49594ec82389", "status": "affected", "versionType": "git"}, {"version": "07322c8a12d6c796450faacb8be9e5e3c278ec84", "lessThan": "adf0de36e52a48681eb58cbd7cbf6c8d200caa2b", "status": "affected", "versionType": "git"}, {"version": "c8f304d75f6c6cc679a73f89591f9a915da38f09", "lessThan": "acb060bc2609c2eab49263968be59c7d59d497bc", "status": "affected", "versionType": "git"}, {"version": "c8f304d75f6c6cc679a73f89591f9a915da38f09", "lessThan": "a8a1c7621127a15a02494b96ee376406c064237b", "status": "affected", "versionType": "git"}, {"version": "c8f304d75f6c6cc679a73f89591f9a915da38f09", "lessThan": "cd8bcec2de5e24e05c34c9391940fda6f50e79b4", "status": "affected", "versionType": "git"}, {"version": "c8f304d75f6c6cc679a73f89591f9a915da38f09", "lessThan": "464bbb844ba5b68e038220c34019069a0a9f1581", "status": "affected", "versionType": "git"}, {"version": "c8f304d75f6c6cc679a73f89591f9a915da38f09", "lessThan": "6f52370970ac07d352a7af4089e55e0e6425f827", "status": "affected", "versionType": "git"}, {"version": "6ee53f82540769a6d6e77e40b901f9b9edfa5ff2", "status": "affected", "versionType": "git"}]}, {"product": "Linux", "vendor": "Linux", "defaultStatus": "affected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["drivers/infiniband/hw/irdma/verbs.c"], "versions": [{"version": "6.4", "status": "affected"}, {"version": "0", "lessThan": "6.4", "status": "unaffected", "versionType": "semver"}, {"version": "5.15.203", "lessThanOrEqual": "5.15.*", "status": "unaffected", "versionType": "semver"}, {"version": "6.1.168", "lessThanOrEqual": "6.1.*", "status": "unaffected", "versionType": "semver"}, {"version": "6.6.131", "lessThanOrEqual": "6.6.*", "status": "unaffected", "versionType": "semver"}, {"version": "6.12.80", "lessThanOrEqual": "6.12.*", "status": "unaffected", "versionType": "semver"}, {"version": "6.18.21", "lessThanOrEqual": "6.18.*", "status": "unaffected", "versionType": "semver"}, {"version": "6.19.11", "lessThanOrEqual": "6.19.*", "status": "unaffected", "versionType": "semver"}, {"version": "7.0", "lessThanOrEqual": "*", "status": "unaffected", "versionType": "original_commit_for_fix"}]}], "cpeApplicability": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "5.15.116", "versionEndExcluding": "5.15.203"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "6.1.33", "versionEndExcluding": "6.1.168"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "6.4", "versionEndExcluding": "6.6.131"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "6.4", "versionEndExcluding": "6.12.80"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "6.4", "versionEndExcluding": "6.18.21"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "6.4", "versionEndExcluding": "6.19.11"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "6.4", "versionEndExcluding": "7.0"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "6.3.7"}]}]}], "references": [{"url": "https://git.kernel.org/stable/c/009831768faeca3fb5950ce63f1b49594ec82389"}, {"url": "https://git.kernel.org/stable/c/adf0de36e52a48681eb58cbd7cbf6c8d200caa2b"}, {"url": "https://git.kernel.org/stable/c/acb060bc2609c2eab49263968be59c7d59d497bc"}, {"url": "https://git.kernel.org/stable/c/a8a1c7621127a15a02494b96ee376406c064237b"}, {"url": "https://git.kernel.org/stable/c/cd8bcec2de5e24e05c34c9391940fda6f50e79b4"}, {"url": "https://git.kernel.org/stable/c/464bbb844ba5b68e038220c34019069a0a9f1581"}, {"url": "https://git.kernel.org/stable/c/6f52370970ac07d352a7af4089e55e0e6425f827"}], "title": "RDMA/irdma: Fix deadlock during netdev reset with active connections", "x_generator": {"engine": "bippy-1.2.0"}}}}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "matchCriteriaId": "7CB05C1F-FB40-4C30-AA14-E56D6AC3BD9E", "versionEndExcluding": "5.15.203", "versionStartIncluding": "5.15.116", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "matchCriteriaId": "09951E95-9B4E-464A-9DAA-53C3B5B22EA2", "versionEndExcluding": "6.1.168", "versionStartIncluding": "6.1.33", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "matchCriteriaId": "B564FB8F-0797-43B6-8D10-1926A40F3099", "versionEndExcluding": "6.4", "versionStartIncluding": "6.3.7", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "matchCriteriaId": "523F816F-7981-495C-95C0-E3588239D4B9", "versionEndExcluding": "6.6.131", "versionStartIncluding": "6.4.1", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "matchCriteriaId": "97EB19EC-A11E-49C6-9D2F-6F6EC6CB98B6", "versionEndExcluding": "6.12.80", "versionStartIncluding": "6.7", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "matchCriteriaId": "ED39847A-3B46-4729-B7CA-B2C30B9FA8FE", "versionEndExcluding": "6.18.21", "versionStartIncluding": "6.13", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "matchCriteriaId": "4CA2E747-A9EC-4518-9AA2-B4247FC748B7", "versionEndExcluding": "6.19.11", "versionStartIncluding": "6.19", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:6.4:-:*:*:*:*:*:*", "matchCriteriaId": "DE0B0BF6-0EEF-4FAD-927D-7A0DD77BEE75", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:7.0:rc1:*:*:*:*:*:*", "matchCriteriaId": "F253B622-8837-4245-BCE5-A7BF8FC76A16", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:7.0:rc2:*:*:*:*:*:*", "matchCriteriaId": "4AE85AD8-4641-4E7C-A2F4-305E2CD9EE64", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:7.0:rc3:*:*:*:*:*:*", "matchCriteriaId": "F666C8D8-6538-46D4-B318-87610DE64C34", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:7.0:rc4:*:*:*:*:*:*", "matchCriteriaId": "02259FDA-961B-47BC-AE7F-93D7EC6E90C2", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:7.0:rc5:*:*:*:*:*:*", "matchCriteriaId": "58A9FEFF-C040-420D-8F0A-BFDAAA1DF258", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:7.0:rc6:*:*:*:*:*:*", "matchCriteriaId": "1D2315C0-D46F-4F85-9754-F9E5E11374A6", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:7.0:rc7:*:*:*:*:*:*", "matchCriteriaId": "512EE3A8-A590-4501-9A94-5D4B268D6138", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/irdma: Fix deadlock during netdev reset with active connections\n\nResolve deadlock that occurs when user executes netdev reset while RDMA\napplications (e.g., rping) are active. The netdev reset causes ice\ndriver to remove irdma auxiliary driver, triggering device_delete and\nsubsequent client removal. During client removal, uverbs_client waits\nfor QP reference count to reach zero while cma_client holds the final\nreference, creating circular dependency and indefinite wait in iWARP\nmode. Skip QP reference count wait during device reset to prevent\ndeadlock."}], "id": "CVE-2026-31565", "lastModified": "2026-04-27T20:31:57.490", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 5.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 1.8, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2026-04-24T15:16:30.950", "references": [{"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "tags": ["Patch"], "url": "https://git.kernel.org/stable/c/009831768faeca3fb5950ce63f1b49594ec82389"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "tags": ["Patch"], "url": "https://git.kernel.org/stable/c/464bbb844ba5b68e038220c34019069a0a9f1581"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "tags": ["Patch"], "url": "https://git.kernel.org/stable/c/6f52370970ac07d352a7af4089e55e0e6425f827"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "tags": ["Patch"], "url": "https://git.kernel.org/stable/c/a8a1c7621127a15a02494b96ee376406c064237b"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "tags": ["Patch"], "url": "https://git.kernel.org/stable/c/acb060bc2609c2eab49263968be59c7d59d497bc"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "tags": ["Patch"], "url": "https://git.kernel.org/stable/c/adf0de36e52a48681eb58cbd7cbf6c8d200caa2b"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "tags": ["Patch"], "url": "https://git.kernel.org/stable/c/cd8bcec2de5e24e05c34c9391940fda6f50e79b4"}], "sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-667"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{"bugzilla": {"description": "kernel: RDMA/irdma: Fix deadlock during netdev reset with active connections", "id": "2461498", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2461498"}, "csaw": false, "cvss3": {"cvss3_base_score": "5.5", "cvss3_scoring_vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "status": "draft"}, "cwe": "CWE-911", "details": ["A flaw was found in the Linux kernel's RDMA/irdma component. A local user can trigger a deadlock by performing a network device (netdev) reset while Remote Direct Memory Access (RDMA) applications are actively running, particularly in iWARP mode. This action creates a circular dependency during the removal of RDMA clients, causing an indefinite wait. This vulnerability can lead to a Denial of Service (DoS) condition, making the system unresponsive."], "name": "CVE-2026-31565", "package_state": [{"cpe": "cpe:/o:redhat:enterprise_linux:10", "fix_state": "Fix deferred", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 10"}, {"cpe": "cpe:/o:redhat:enterprise_linux:6", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 6"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 7"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Not affected", "package_name": "kernel-rt", "product_name": "Red Hat Enterprise Linux 7"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 8"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Not affected", "package_name": "kernel-rt", "product_name": "Red Hat Enterprise Linux 8"}, {"cpe": "cpe:/o:redhat:enterprise_linux:9", "fix_state": "Fix deferred", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 9"}, {"cpe": "cpe:/o:redhat:enterprise_linux:9", "fix_state": "Fix deferred", "package_name": "kernel-rt", "product_name": "Red Hat Enterprise Linux 9"}], "public_date": "2026-04-24T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2026-31565\nhttps://nvd.nist.gov/vuln/detail/CVE-2026-31565\nhttps://lore.kernel.org/linux-cve-announce/2026042400-CVE-2026-31565-932b@gregkh/T"], "threat_severity": "Moderate"}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "code_commit", "value": "[0b3c392b82cdf867808a8ea7c6760d3c7e6b6627,009831768faeca3fb5950ce63f1b49594ec82389)"}}, {"platform": null, "status": "affected", "versions": {"scheme": "code_commit", "value": "[07322c8a12d6c796450faacb8be9e5e3c278ec84,adf0de36e52a48681eb58cbd7cbf6c8d200caa2b)"}}, {"platform": null, "status": "affected", "versions": {"scheme": "code_commit", "value": "[c8f304d75f6c6cc679a73f89591f9a915da38f09,acb060bc2609c2eab49263968be59c7d59d497bc)"}}, {"platform": null, "status": "affected", "versions": {"scheme": "code_commit", "value": "[c8f304d75f6c6cc679a73f89591f9a915da38f09,a8a1c7621127a15a02494b96ee376406c064237b)"}}, {"platform": null, "status": "affected", "versions": {"scheme": "code_commit", "value": "[c8f304d75f6c6cc679a73f89591f9a915da38f09,cd8bcec2de5e24e05c34c9391940fda6f50e79b4)"}}, {"platform": null, "status": "affected", "versions": {"scheme": "code_commit", "value": "[c8f304d75f6c6cc679a73f89591f9a915da38f09,464bbb844ba5b68e038220c34019069a0a9f1581)"}}, {"platform": null, "status": "affected", "versions": {"scheme": "code_commit", "value": "[c8f304d75f6c6cc679a73f89591f9a915da38f09,6f52370970ac07d352a7af4089e55e0e6425f827)"}}, {"platform": null, "status": "affected", "versions": {"scheme": "code_commit", "value": "6ee53f82540769a6d6e77e40b901f9b9edfa5ff2"}}], "enrichment": {"confidence": 99.0, "confidence_source": "inferred", "scores": [{"score": 99.0, "source": "inferred"}, {"score": 100.0, "source": "matching"}]}, "original": {"product": "Linux", "source": "cna", "vendor": "Linux"}, "product": "linux_kernel", "vendor": "linux"}, {"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "6.4"}}, {"platform": null, "status": "unaffected", "versions": {"scheme": "generic", "value": "[0,6.4)"}}, {"platform": null, "status": "unaffected", "versions": {"scheme": "generic", "value": "[5.15.203,5.15.*]"}}, {"platform": null, "status": "unaffected", "versions": {"scheme": "generic", "value": "[6.1.168,6.1.*]"}}, {"platform": null, "status": "unaffected", "versions": {"scheme": "generic", "value": "[6.6.131,6.6.*]"}}, {"platform": null, "status": "unaffected", "versions": {"scheme": "generic", "value": "[6.12.80,6.12.*]"}}, {"platform": null, "status": "unaffected", "versions": {"scheme": "generic", "value": "[6.18.21,6.18.*]"}}, {"platform": null, "status": "unaffected", "versions": {"scheme": "generic", "value": "[6.19.11,6.19.*]"}}, {"platform": null, "status": "unaffected", "versions": {"scheme": "generic", "value": "[7.0,*]"}}], "enrichment": {"confidence": 99.0, "confidence_source": "inferred", "scores": [{"score": 99.0, "source": "inferred"}, {"score": 100.0, "source": "matching"}]}, "original": {"product": "Linux", "source": "cna", "vendor": "Linux"}, "product": "linux_kernel", "vendor": "linux"}], "analysis": {"en": {"generated_at": "2026-04-28T14:12:07.012084+00:00", "value": {"mitigation_remediation": ["Upgrade the Linux kernel to a patched release that removes the deadlock (e.g., commit 009831768fae in the 6.4 or 7.0 branch).", "If an upgrade is not immediately possible, stop all RDMA services (e.g., rping) and unload the irdma driver before performing any network device reset.", "Monitor the system for hangs after netdev resets and ensure that no active iWARP connections are present during maintenance windows."], "summary": {"action": "Apply Patch", "impact": "Denial of Service"}, "threat_synthesis": {"affected_systems": "The vulnerability affects all versions of the Linux kernel that include the irdma driver, specifically the stable 6.4 line and all 7.0 release candidates from rc1 through rc7. The corresponding CPE identifiers indicate that any Linux operating system running these kernel versions is susceptible unless the irdma driver is disabled or the kernel has been patched to remove the circular dependency.", "description_and_impact": "In the Linux kernel\u2019s RDMA/irdma subsystem a deadlock can occur when the network device driver is reset while active iWARP connections exist. The reset removes the irdma auxiliary driver, leading to device deletion and client removal. During this process, the uverbs_client waits for the QP reference count to fall to zero while the cma_client holds the final reference, creating a circular dependency that blocks the system indefinitely. The result is an unintended hang of RDMA services and a denial of network connectivity for applications that rely on iWARP. The weakness is represented by CWE\u2011667 (deadlock).", "risk_and_exploitability": "The CVSS score of 5.5 denotes moderate impact, and the EPSS score of less than 1\u202f% indicates a very low likelihood of exploitation at present. Because inducing the deadlock requires a netdev reset during active RDMA traffic\u2014a capability typically restricted to privileged users\u2014the primary exploitation surface is local system compromise or misconfiguration. The vulnerability is not listed in CISA\u2019s KEV catalog, and no public exploit has been reported. Nonetheless the symptom\u2014a hung RDMA subsystem\u2014can disrupt critical workloads dependent on high\u2011performance network interfacing, so immediate mitigation is advised."}}}}, "created": "2026-04-27T19:00:15.799966+00:00", "updated": "2026-04-28T14:15:34.927180+00:00", "vendors": ["linux", "linux$PRODUCT$linux_kernel"]}