{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-46265", "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "state": "PUBLISHED", "assignerShortName": "Linux", "dateReserved": "2026-05-13T15:03:33.108Z", "datePublished": "2026-06-03T15:50:05.933Z", "dateUpdated": "2026-06-03T15:50:05.933Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "shortName": "Linux", "dateUpdated": "2026-06-03T15:50:05.933Z"}, "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/hns: Fix WQ_MEM_RECLAIM warning\n\nWhen sunrpc is used, if a reset triggered, our wq may lead the\nfollowing trace:\n\nworkqueue: WQ_MEM_RECLAIM xprtiod:xprt_rdma_connect_worker [rpcrdma]\nis flushing !WQ_MEM_RECLAIM hns_roce_irq_workq:flush_work_handle\n[hns_roce_hw_v2]\nWARNING: CPU: 0 PID: 8250 at kernel/workqueue.c:2644 check_flush_dependency+0xe0/0x144\nCall trace:\n check_flush_dependency+0xe0/0x144\n start_flush_work.constprop.0+0x1d0/0x2f0\n __flush_work.isra.0+0x40/0xb0\n flush_work+0x14/0x30\n hns_roce_v2_destroy_qp+0xac/0x1e0 [hns_roce_hw_v2]\n ib_destroy_qp_user+0x9c/0x2b4\n rdma_destroy_qp+0x34/0xb0\n rpcrdma_ep_destroy+0x28/0xcc [rpcrdma]\n rpcrdma_ep_put+0x74/0xb4 [rpcrdma]\n rpcrdma_xprt_disconnect+0x1d8/0x260 [rpcrdma]\n xprt_rdma_connect_worker+0xc0/0x120 [rpcrdma]\n process_one_work+0x1cc/0x4d0\n worker_thread+0x154/0x414\n kthread+0x104/0x144\n ret_from_fork+0x10/0x18\n\nSince QP destruction frees memory, this wq should have the WQ_MEM_RECLAIM."}], "affected": [{"product": "Linux", "vendor": "Linux", "defaultStatus": "unaffected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["drivers/infiniband/hw/hns/hns_roce_hw_v2.c"], "versions": [{"version": "ffd541d45726341c1830ff595fd7352b6d1cfbcd", "lessThan": "12761bd0ae16a80f237c2a65ab1b1064076cc74a", "status": "affected", "versionType": "git"}, {"version": "ffd541d45726341c1830ff595fd7352b6d1cfbcd", "lessThan": "70a5eb757ace5bd627a36f04d871eaf85def424d", "status": "affected", "versionType": "git"}, {"version": "ffd541d45726341c1830ff595fd7352b6d1cfbcd", "lessThan": "562c96b1393da2df3ea62173c84117b39da353b9", "status": "affected", "versionType": "git"}, {"version": "ffd541d45726341c1830ff595fd7352b6d1cfbcd", "lessThan": "0cbec8b49270f3f0600b8e3ef5e8f0d233dcea27", "status": "affected", "versionType": "git"}, {"version": "ffd541d45726341c1830ff595fd7352b6d1cfbcd", "lessThan": "c5ef9a1bcf5b597695d9c2e6ac452e9f89521862", "status": "affected", "versionType": "git"}, {"version": "ffd541d45726341c1830ff595fd7352b6d1cfbcd", "lessThan": "c0a26bbd3f99b7b03f072e3409aff4e6ec8af6f6", "status": "affected", "versionType": "git"}]}, {"product": "Linux", "vendor": "Linux", "defaultStatus": "affected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["drivers/infiniband/hw/hns/hns_roce_hw_v2.c"], "versions": [{"version": "5.7", "status": "affected"}, {"version": "0", "lessThan": "5.7", "status": "unaffected", "versionType": "semver"}, {"version": "6.1.165", "lessThanOrEqual": "6.1.*", "status": "unaffected", "versionType": "semver"}, {"version": "6.6.128", "lessThanOrEqual": "6.6.*", "status": "unaffected", "versionType": "semver"}, {"version": "6.12.75", "lessThanOrEqual": "6.12.*", "status": "unaffected", "versionType": "semver"}, {"version": "6.18.14", "lessThanOrEqual": "6.18.*", "status": "unaffected", "versionType": "semver"}, {"version": "6.19.4", "lessThanOrEqual": "6.19.*", "status": "unaffected", "versionType": "semver"}, {"version": "7.0", "lessThanOrEqual": "*", "status": "unaffected", "versionType": "original_commit_for_fix"}]}], "cpeApplicability": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "5.7", "versionEndExcluding": "6.1.165"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "5.7", "versionEndExcluding": "6.6.128"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "5.7", "versionEndExcluding": "6.12.75"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "5.7", "versionEndExcluding": "6.18.14"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "5.7", "versionEndExcluding": "6.19.4"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "5.7", "versionEndExcluding": "7.0"}]}]}], "references": [{"url": "https://git.kernel.org/stable/c/12761bd0ae16a80f237c2a65ab1b1064076cc74a"}, {"url": "https://git.kernel.org/stable/c/70a5eb757ace5bd627a36f04d871eaf85def424d"}, {"url": "https://git.kernel.org/stable/c/562c96b1393da2df3ea62173c84117b39da353b9"}, {"url": "https://git.kernel.org/stable/c/0cbec8b49270f3f0600b8e3ef5e8f0d233dcea27"}, {"url": "https://git.kernel.org/stable/c/c5ef9a1bcf5b597695d9c2e6ac452e9f89521862"}, {"url": "https://git.kernel.org/stable/c/c0a26bbd3f99b7b03f072e3409aff4e6ec8af6f6"}], "title": "RDMA/hns: Fix WQ_MEM_RECLAIM warning", "x_generator": {"engine": "bippy-1.2.0"}}}}

{}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/hns: Fix WQ_MEM_RECLAIM warning\n\nWhen sunrpc is used, if a reset triggered, our wq may lead the\nfollowing trace:\n\nworkqueue: WQ_MEM_RECLAIM xprtiod:xprt_rdma_connect_worker [rpcrdma]\nis flushing !WQ_MEM_RECLAIM hns_roce_irq_workq:flush_work_handle\n[hns_roce_hw_v2]\nWARNING: CPU: 0 PID: 8250 at kernel/workqueue.c:2644 check_flush_dependency+0xe0/0x144\nCall trace:\n check_flush_dependency+0xe0/0x144\n start_flush_work.constprop.0+0x1d0/0x2f0\n __flush_work.isra.0+0x40/0xb0\n flush_work+0x14/0x30\n hns_roce_v2_destroy_qp+0xac/0x1e0 [hns_roce_hw_v2]\n ib_destroy_qp_user+0x9c/0x2b4\n rdma_destroy_qp+0x34/0xb0\n rpcrdma_ep_destroy+0x28/0xcc [rpcrdma]\n rpcrdma_ep_put+0x74/0xb4 [rpcrdma]\n rpcrdma_xprt_disconnect+0x1d8/0x260 [rpcrdma]\n xprt_rdma_connect_worker+0xc0/0x120 [rpcrdma]\n process_one_work+0x1cc/0x4d0\n worker_thread+0x154/0x414\n kthread+0x104/0x144\n ret_from_fork+0x10/0x18\n\nSince QP destruction frees memory, this wq should have the WQ_MEM_RECLAIM."}], "id": "CVE-2026-46265", "lastModified": "2026-06-03T18:16:28.013", "metrics": {}, "published": "2026-06-03T18:16:28.013", "references": [{"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "url": "https://git.kernel.org/stable/c/0cbec8b49270f3f0600b8e3ef5e8f0d233dcea27"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "url": "https://git.kernel.org/stable/c/12761bd0ae16a80f237c2a65ab1b1064076cc74a"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "url": "https://git.kernel.org/stable/c/562c96b1393da2df3ea62173c84117b39da353b9"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "url": "https://git.kernel.org/stable/c/70a5eb757ace5bd627a36f04d871eaf85def424d"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "url": "https://git.kernel.org/stable/c/c0a26bbd3f99b7b03f072e3409aff4e6ec8af6f6"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "url": "https://git.kernel.org/stable/c/c5ef9a1bcf5b597695d9c2e6ac452e9f89521862"}], "sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "vulnStatus": "Received"}

{}

{}