CVE-2026-46126

Source
https://cve.org/CVERecord?id=CVE-2026-46126
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-46126.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2026-46126
Downstream
Related
Published
2026-05-28T09:35:41.364Z
Modified
2026-07-08T08:13:36.890828762Z
Summary
RDMA/mana: Fix mana_destroy_wq_obj() cleanup in mana_ib_create_qp_rss()
Details

In the Linux kernel, the following vulnerability has been resolved:

RDMA/mana: Fix manadestroywqobj() cleanup in manaibcreateqp_rss()

Sashiko points out there are two bugs here in the error unwind flow, both related to how the WQ table is unwound.

First there is a double i-- on the first failure path due to the while loop having a i--, remove it.

Second if manaibinstallcqcb() fails then manacreatewq_obj() is not undone due to the above i--.

Database specific
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/46xxx/CVE-2026-46126.json",
    "cna_assigner": "Linux"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
c15d7802a42402a87880a17eee89ff023e49ecc0
Fixed
8f23eb6c50f1a4bf32fc4d62cfb9fc39e8e586cf
Fixed
bb9cb36eaefa4dcb7c0d9f7a01e5c739abdd53a8
Fixed
9a05a6798177e44dfbe18393be2c1ebb89ab06fd
Fixed
34ecf795692ee57c393109f4a24ccc313091e137

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-46126.json"

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
6.8.0
Fixed
6.12.88
Type
ECOSYSTEM
Events
Introduced
6.13.0
Fixed
6.18.30
Type
ECOSYSTEM
Events
Introduced
6.19.0
Fixed
7.0.7

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-46126.json"