GHSA-GC8J-P6W7-9593
Vulnerability from github – Published: 2026-06-03 18:33 – Updated: 2026-06-03 18:33In the Linux kernel, the following vulnerability has been resolved:
RDMA/hns: Fix WQ_MEM_RECLAIM warning
When sunrpc is used, if a reset triggered, our wq may lead the following trace:
workqueue: WQ_MEM_RECLAIM xprtiod:xprt_rdma_connect_worker [rpcrdma] is flushing !WQ_MEM_RECLAIM hns_roce_irq_workq:flush_work_handle [hns_roce_hw_v2] WARNING: CPU: 0 PID: 8250 at kernel/workqueue.c:2644 check_flush_dependency+0xe0/0x144 Call trace: check_flush_dependency+0xe0/0x144 start_flush_work.constprop.0+0x1d0/0x2f0 __flush_work.isra.0+0x40/0xb0 flush_work+0x14/0x30 hns_roce_v2_destroy_qp+0xac/0x1e0 [hns_roce_hw_v2] ib_destroy_qp_user+0x9c/0x2b4 rdma_destroy_qp+0x34/0xb0 rpcrdma_ep_destroy+0x28/0xcc [rpcrdma] rpcrdma_ep_put+0x74/0xb4 [rpcrdma] rpcrdma_xprt_disconnect+0x1d8/0x260 [rpcrdma] xprt_rdma_connect_worker+0xc0/0x120 [rpcrdma] process_one_work+0x1cc/0x4d0 worker_thread+0x154/0x414 kthread+0x104/0x144 ret_from_fork+0x10/0x18
Since QP destruction frees memory, this wq should have the WQ_MEM_RECLAIM.
{
"affected": [],
"aliases": [
"CVE-2026-46265"
],
"database_specific": {
"cwe_ids": [],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2026-06-03T18:16:28Z",
"severity": null
},
"details": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/hns: Fix WQ_MEM_RECLAIM warning\n\nWhen sunrpc is used, if a reset triggered, our wq may lead the\nfollowing trace:\n\nworkqueue: WQ_MEM_RECLAIM xprtiod:xprt_rdma_connect_worker [rpcrdma]\nis flushing !WQ_MEM_RECLAIM hns_roce_irq_workq:flush_work_handle\n[hns_roce_hw_v2]\nWARNING: CPU: 0 PID: 8250 at kernel/workqueue.c:2644 check_flush_dependency+0xe0/0x144\nCall trace:\n check_flush_dependency+0xe0/0x144\n start_flush_work.constprop.0+0x1d0/0x2f0\n __flush_work.isra.0+0x40/0xb0\n flush_work+0x14/0x30\n hns_roce_v2_destroy_qp+0xac/0x1e0 [hns_roce_hw_v2]\n ib_destroy_qp_user+0x9c/0x2b4\n rdma_destroy_qp+0x34/0xb0\n rpcrdma_ep_destroy+0x28/0xcc [rpcrdma]\n rpcrdma_ep_put+0x74/0xb4 [rpcrdma]\n rpcrdma_xprt_disconnect+0x1d8/0x260 [rpcrdma]\n xprt_rdma_connect_worker+0xc0/0x120 [rpcrdma]\n process_one_work+0x1cc/0x4d0\n worker_thread+0x154/0x414\n kthread+0x104/0x144\n ret_from_fork+0x10/0x18\n\nSince QP destruction frees memory, this wq should have the WQ_MEM_RECLAIM.",
"id": "GHSA-gc8j-p6w7-9593",
"modified": "2026-06-03T18:33:12Z",
"published": "2026-06-03T18:33:12Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-46265"
},
{
"type": "WEB",
"url": "https://git.kernel.org/stable/c/0cbec8b49270f3f0600b8e3ef5e8f0d233dcea27"
},
{
"type": "WEB",
"url": "https://git.kernel.org/stable/c/12761bd0ae16a80f237c2a65ab1b1064076cc74a"
},
{
"type": "WEB",
"url": "https://git.kernel.org/stable/c/562c96b1393da2df3ea62173c84117b39da353b9"
},
{
"type": "WEB",
"url": "https://git.kernel.org/stable/c/70a5eb757ace5bd627a36f04d871eaf85def424d"
},
{
"type": "WEB",
"url": "https://git.kernel.org/stable/c/c0a26bbd3f99b7b03f072e3409aff4e6ec8af6f6"
},
{
"type": "WEB",
"url": "https://git.kernel.org/stable/c/c5ef9a1bcf5b597695d9c2e6ac452e9f89521862"
}
],
"schema_version": "1.4.0",
"severity": []
}
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.