CVE-2026-43128

EUVD-2026-27691
In the Linux kernel, the following vulnerability has been resolved:

RDMA/umem: Fix double dma_buf_unpin in failure path

In ib_umem_dmabuf_get_pinned_with_dma_device(), the call to
ib_umem_dmabuf_map_pages() can fail. If this occurs, the dmabuf
is immediately unpinned but the umem_dmabuf->pinned flag is still
set. Then, when ib_umem_release() is called, it calls
ib_umem_dmabuf_revoke() which will call dma_buf_unpin() again.

Fix this by removing the immediate unpin upon failure and just let
the ib_umem_release/revoke path handle it. This also ensures the
proper unmap-unpin unwind ordering if the dmabuf_map_pages call
happened to fail due to dma_resv_wait_timeout (and therefore has
a non-NULL umem_dmabuf->sgt).
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.8 HIGH
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 3%
Affected Products (NVD)
VendorProductVersion
linuxlinux_kernel
5.16 ≤
𝑥
< 6.1.165
linuxlinux_kernel
6.2 ≤
𝑥
< 6.6.128
linuxlinux_kernel
6.7 ≤
𝑥
< 6.12.75
linuxlinux_kernel
6.13 ≤
𝑥
< 6.18.16
linuxlinux_kernel
6.19 ≤
𝑥
< 6.19.6
linuxlinux_kernel
7.0:rc1
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
linux
bookworm
6.1.170-3
fixed
bookworm (security)
6.1.174-1
fixed
bullseye
5.10.223-1
fixed
bullseye (security)
5.10.257-1
fixed
forky
7.0.12-2
fixed
sid
7.0.13-1
fixed
trixie
6.12.86-1
fixed
trixie (security)
6.12.94-1
fixed
Red Hat logo
Red Hat Enterprise Linux Releases
Red Hat Product
Release
kernel
RHEL 9
0:5.14.0-687.10.1.el9_8
fixed
kernel-64k
RHEL 9
0:5.14.0-687.10.1.el9_8
fixed
kernel-64k-core
RHEL 9
0:5.14.0-687.10.1.el9_8
fixed
kernel-64k-debug
RHEL 9
0:5.14.0-687.10.1.el9_8
fixed
kernel-64k-debug-core
RHEL 9
0:5.14.0-687.10.1.el9_8
fixed
kernel-64k-debug-devel
RHEL 9
0:5.14.0-687.10.1.el9_8
fixed
kernel-64k-debug-devel-matched
RHEL 9
0:5.14.0-687.10.1.el9_8
fixed
kernel-64k-debug-modules
RHEL 9
0:5.14.0-687.10.1.el9_8
fixed
kernel-64k-debug-modules-core
RHEL 9
0:5.14.0-687.10.1.el9_8
fixed
kernel-64k-debug-modules-extra
RHEL 9
0:5.14.0-687.10.1.el9_8
fixed
kernel-64k-devel
RHEL 9
0:5.14.0-687.10.1.el9_8
fixed
kernel-64k-devel-matched
RHEL 9
0:5.14.0-687.10.1.el9_8
fixed
kernel-64k-modules
RHEL 9
0:5.14.0-687.10.1.el9_8
fixed
kernel-64k-modules-core
RHEL 9
0:5.14.0-687.10.1.el9_8
fixed
kernel-64k-modules-extra
RHEL 9
0:5.14.0-687.10.1.el9_8
fixed
kernel-abi-stablelists
RHEL 9
0:5.14.0-687.10.1.el9_8
fixed
kernel-core
RHEL 9
0:5.14.0-687.10.1.el9_8
fixed
kernel-debug
RHEL 9
0:5.14.0-687.10.1.el9_8
fixed
kernel-debug-core
RHEL 9
0:5.14.0-687.10.1.el9_8
fixed
kernel-debug-devel
RHEL 9
0:5.14.0-687.10.1.el9_8
fixed
kernel-debug-devel-matched
RHEL 9
0:5.14.0-687.10.1.el9_8
fixed
kernel-debug-modules
RHEL 9
0:5.14.0-687.10.1.el9_8
fixed
kernel-debug-modules-core
RHEL 9
0:5.14.0-687.10.1.el9_8
fixed
kernel-debug-modules-extra
RHEL 9
0:5.14.0-687.10.1.el9_8
fixed
kernel-debug-uki-virt
RHEL 9
0:5.14.0-687.10.1.el9_8
fixed
kernel-devel
RHEL 9
0:5.14.0-687.10.1.el9_8
fixed
kernel-devel-matched
RHEL 9
0:5.14.0-687.10.1.el9_8
fixed
kernel-doc
RHEL 9
0:5.14.0-687.10.1.el9_8
fixed
kernel-modules
RHEL 9
0:5.14.0-687.10.1.el9_8
fixed
kernel-modules-core
RHEL 9
0:5.14.0-687.10.1.el9_8
fixed
kernel-modules-extra
RHEL 9
0:5.14.0-687.10.1.el9_8
fixed
kernel-rt
RHEL 9
0:5.14.0-687.10.1.el9_8
fixed
kernel-rt-64k
RHEL 9
0:5.14.0-687.10.1.el9_8
fixed
kernel-rt-64k-core
RHEL 9
0:5.14.0-687.10.1.el9_8
fixed
kernel-rt-64k-debug
RHEL 9
0:5.14.0-687.10.1.el9_8
fixed
kernel-rt-64k-debug-core
RHEL 9
0:5.14.0-687.10.1.el9_8
fixed
kernel-rt-64k-debug-devel
RHEL 9
0:5.14.0-687.10.1.el9_8
fixed
kernel-rt-64k-debug-modules
RHEL 9
0:5.14.0-687.10.1.el9_8
fixed
kernel-rt-64k-debug-modules-core
RHEL 9
0:5.14.0-687.10.1.el9_8
fixed
kernel-rt-64k-debug-modules-extra
RHEL 9
0:5.14.0-687.10.1.el9_8
fixed
kernel-rt-64k-devel
RHEL 9
0:5.14.0-687.10.1.el9_8
fixed
kernel-rt-64k-modules
RHEL 9
0:5.14.0-687.10.1.el9_8
fixed
kernel-rt-64k-modules-core
RHEL 9
0:5.14.0-687.10.1.el9_8
fixed
kernel-rt-64k-modules-extra
RHEL 9
0:5.14.0-687.10.1.el9_8
fixed
kernel-rt-core
RHEL 9
0:5.14.0-687.10.1.el9_8
fixed
kernel-rt-debug
RHEL 9
0:5.14.0-687.10.1.el9_8
fixed
kernel-rt-debug-core
RHEL 9
0:5.14.0-687.10.1.el9_8
fixed
kernel-rt-debug-devel
RHEL 9
0:5.14.0-687.10.1.el9_8
fixed
kernel-rt-debug-modules
RHEL 9
0:5.14.0-687.10.1.el9_8
fixed
kernel-rt-debug-modules-core
RHEL 9
0:5.14.0-687.10.1.el9_8
fixed
kernel-rt-debug-modules-extra
RHEL 9
0:5.14.0-687.10.1.el9_8
fixed
kernel-rt-devel
RHEL 9
0:5.14.0-687.10.1.el9_8
fixed
kernel-rt-modules
RHEL 9
0:5.14.0-687.10.1.el9_8
fixed
kernel-rt-modules-core
RHEL 9
0:5.14.0-687.10.1.el9_8
fixed
kernel-rt-modules-extra
RHEL 9
0:5.14.0-687.10.1.el9_8
fixed
kernel-tools
RHEL 9
0:5.14.0-687.10.1.el9_8
fixed
kernel-tools-libs
RHEL 9
0:5.14.0-687.10.1.el9_8
fixed
kernel-tools-libs-devel
RHEL 9
0:5.14.0-687.10.1.el9_8
fixed
kernel-uki-virt
RHEL 9
0:5.14.0-687.10.1.el9_8
fixed
kernel-uki-virt-addons
RHEL 9
0:5.14.0-687.10.1.el9_8
fixed
kernel-zfcpdump
RHEL 9
0:5.14.0-687.10.1.el9_8
fixed
kernel-zfcpdump-core
RHEL 9
0:5.14.0-687.10.1.el9_8
fixed
kernel-zfcpdump-devel
RHEL 9
0:5.14.0-687.10.1.el9_8
fixed
kernel-zfcpdump-devel-matched
RHEL 9
0:5.14.0-687.10.1.el9_8
fixed
kernel-zfcpdump-modules
RHEL 9
0:5.14.0-687.10.1.el9_8
fixed
kernel-zfcpdump-modules-core
RHEL 9
0:5.14.0-687.10.1.el9_8
fixed
kernel-zfcpdump-modules-extra
RHEL 9
0:5.14.0-687.10.1.el9_8
fixed
libperf
RHEL 9
0:5.14.0-687.10.1.el9_8
fixed
perf
RHEL 9
0:5.14.0-687.10.1.el9_8
fixed
python3-perf
RHEL 9
0:5.14.0-687.10.1.el9_8
fixed
rtla
RHEL 9
0:5.14.0-687.10.1.el9_8
fixed
rv
RHEL 9
0:5.14.0-687.10.1.el9_8
fixed
Amazon Linux logo
Amazon Linux Releases
Amazon Package
Release
bpftool
Amazon Linux 2023
1:6.1.166-197.305.amzn2023
fixed
bpftool-debuginfo
Amazon Linux 2023
1:6.1.166-197.305.amzn2023
fixed
bpftool6.12
Amazon Linux 2023
1:6.12.77-99.140.amzn2023
fixed
bpftool6.12-debuginfo
Amazon Linux 2023
1:6.12.77-99.140.amzn2023
fixed
bpftool6.18
Amazon Linux 2023
1:6.18.16-18.222.amzn2023
fixed
bpftool6.18-debuginfo
Amazon Linux 2023
1:6.18.16-18.222.amzn2023
fixed
kernel
Amazon Linux 2023
1:6.1.166-197.305.amzn2023
fixed
kernel-debuginfo
Amazon Linux 2023
1:6.1.166-197.305.amzn2023
fixed
kernel-debuginfo-common-aarch64
Amazon Linux 2023
1:6.1.166-197.305.amzn2023
fixed
kernel-debuginfo-common-x86_64
Amazon Linux 2023
1:6.1.166-197.305.amzn2023
fixed
kernel-devel
Amazon Linux 2023
1:6.1.166-197.305.amzn2023
fixed
kernel-headers
Amazon Linux 2023
1:6.1.166-197.305.amzn2023
fixed
kernel-libbpf
Amazon Linux 2023
1:6.1.166-197.305.amzn2023
fixed
kernel-libbpf-debuginfo
Amazon Linux 2023
1:6.1.166-197.305.amzn2023
fixed
kernel-libbpf-devel
Amazon Linux 2023
1:6.1.166-197.305.amzn2023
fixed
kernel-libbpf-static
Amazon Linux 2023
1:6.1.166-197.305.amzn2023
fixed
kernel-livepatch-6.1.166-197.305
Amazon Linux 2023
1:1.0-0.amzn2023
fixed
kernel-livepatch-6.12.77-99.140
Amazon Linux 2023
1:1.0-0.amzn2023
fixed
kernel-livepatch-6.18.16-18.222
Amazon Linux 2023
1:1.0-0.amzn2023
fixed
kernel-modules-extra
Amazon Linux 2023
1:6.1.166-197.305.amzn2023
fixed
kernel-modules-extra-common
Amazon Linux 2023
1:6.1.166-197.305.amzn2023
fixed
kernel-tools
Amazon Linux 2023
1:6.1.166-197.305.amzn2023
fixed
kernel-tools-debuginfo
Amazon Linux 2023
1:6.1.166-197.305.amzn2023
fixed
kernel-tools-devel
Amazon Linux 2023
1:6.1.166-197.305.amzn2023
fixed
kernel6.12
Amazon Linux 2023
1:6.12.77-99.140.amzn2023
fixed
kernel6.12-debuginfo
Amazon Linux 2023
1:6.12.77-99.140.amzn2023
fixed
kernel6.12-debuginfo-common-aarch64
Amazon Linux 2023
1:6.12.77-99.140.amzn2023
fixed
kernel6.12-debuginfo-common-x86_64
Amazon Linux 2023
1:6.12.77-99.140.amzn2023
fixed
kernel6.12-devel
Amazon Linux 2023
1:6.12.77-99.140.amzn2023
fixed
kernel6.12-headers
Amazon Linux 2023
1:6.12.77-99.140.amzn2023
fixed
kernel6.12-libbpf
Amazon Linux 2023
1:6.12.77-99.140.amzn2023
fixed
kernel6.12-libbpf-debuginfo
Amazon Linux 2023
1:6.12.77-99.140.amzn2023
fixed
kernel6.12-libbpf-devel
Amazon Linux 2023
1:6.12.77-99.140.amzn2023
fixed
kernel6.12-libbpf-static
Amazon Linux 2023
1:6.12.77-99.140.amzn2023
fixed
kernel6.12-modules-extra
Amazon Linux 2023
1:6.12.77-99.140.amzn2023
fixed
kernel6.12-modules-extra-common
Amazon Linux 2023
1:6.12.77-99.140.amzn2023
fixed
kernel6.12-tools
Amazon Linux 2023
1:6.12.77-99.140.amzn2023
fixed
kernel6.12-tools-debuginfo
Amazon Linux 2023
1:6.12.77-99.140.amzn2023
fixed
kernel6.12-tools-devel
Amazon Linux 2023
1:6.12.77-99.140.amzn2023
fixed
kernel6.18
Amazon Linux 2023
1:6.18.16-18.222.amzn2023
fixed
kernel6.18-debuginfo
Amazon Linux 2023
1:6.18.16-18.222.amzn2023
fixed
kernel6.18-debuginfo-common-aarch64
Amazon Linux 2023
1:6.18.16-18.222.amzn2023
fixed
kernel6.18-debuginfo-common-x86_64
Amazon Linux 2023
1:6.18.16-18.222.amzn2023
fixed
kernel6.18-devel
Amazon Linux 2023
1:6.18.16-18.222.amzn2023
fixed
kernel6.18-headers
Amazon Linux 2023
1:6.18.16-18.222.amzn2023
fixed
kernel6.18-libbpf
Amazon Linux 2023
1:6.18.16-18.222.amzn2023
fixed
kernel6.18-libbpf-debuginfo
Amazon Linux 2023
1:6.18.16-18.222.amzn2023
fixed
kernel6.18-libbpf-devel
Amazon Linux 2023
1:6.18.16-18.222.amzn2023
fixed
kernel6.18-libbpf-static
Amazon Linux 2023
1:6.18.16-18.222.amzn2023
fixed
kernel6.18-modules-extra
Amazon Linux 2023
1:6.18.16-18.222.amzn2023
fixed
kernel6.18-modules-extra-common
Amazon Linux 2023
1:6.18.16-18.222.amzn2023
fixed
kernel6.18-tools
Amazon Linux 2023
1:6.18.16-18.222.amzn2023
fixed
kernel6.18-tools-debuginfo
Amazon Linux 2023
1:6.18.16-18.222.amzn2023
fixed
kernel6.18-tools-devel
Amazon Linux 2023
1:6.18.16-18.222.amzn2023
fixed
perf
Amazon Linux 2023
1:6.1.166-197.305.amzn2023
fixed
perf-debuginfo
Amazon Linux 2023
1:6.1.166-197.305.amzn2023
fixed
perf6.12
Amazon Linux 2023
1:6.12.77-99.140.amzn2023
fixed
perf6.12-debuginfo
Amazon Linux 2023
1:6.12.77-99.140.amzn2023
fixed
perf6.18
Amazon Linux 2023
1:6.18.16-18.222.amzn2023
fixed
perf6.18-debuginfo
Amazon Linux 2023
1:6.18.16-18.222.amzn2023
fixed
python3-perf
Amazon Linux 2023
1:6.1.166-197.305.amzn2023
fixed
python3-perf-debuginfo
Amazon Linux 2023
1:6.1.166-197.305.amzn2023
fixed
python3-perf6.12
Amazon Linux 2023
1:6.12.77-99.140.amzn2023
fixed
python3-perf6.12-debuginfo
Amazon Linux 2023
1:6.12.77-99.140.amzn2023
fixed
python3-perf6.18
Amazon Linux 2023
1:6.18.16-18.222.amzn2023
fixed
python3-perf6.18-debuginfo
Amazon Linux 2023
1:6.18.16-18.222.amzn2023
fixed
Common Weakness Enumeration
Vulnerability Media Exposure
References
https://git.kernel.org/stable/c/104016eb671e19709721c1b0048dd912dc2e96be
https://git.kernel.org/stable/c/40126bcbefa79ea86672e05dae608596bab38319
https://git.kernel.org/stable/c/70542b69abff34d24b11ae0bb200cc7a766d18df
https://git.kernel.org/stable/c/b324327ff6f48d8065dca67eb3b91357e72726bd
https://git.kernel.org/stable/c/ba3bf0f1bf1d5d0404678485e872980532fcc2c4
https://git.kernel.org/stable/c/d3e32e2f3262f1b25d77c085ace38e2cc4ad75cf