By weakness (CWE)
CWE-366: related vulnerabilities
CVEs classified under CWE-366. Understanding the weakness class helps prioritize systemic fixes over one-off patches.
1 published vulnerability
- CVE-2026-46181HIGH 7.8
A synchronization flaw in the Linux kernel's RDMA/mlx4 driver allows a local attacker to cause memory corruption or system crash. The vulnerability stems from improper use of Read-Copy-Update (RCU) locking in the mlx4_srq_event() function, which fails to protect against race conditions during Shared Receive Queue (SRQ) initialization and event delivery. An attacker with local access can trigger device events before SRQ objects finish initializing, leading to kernel memory access violations with high impact to confidentiality, integrity, and availability.