CVE-2026-31565

Name	CVE-2026-31565
Description	In the Linux kernel, the following vulnerability has been resolved: RDMA/irdma: Fix deadlock during netdev reset with active connections Resolve deadlock that occurs when user executes netdev reset while RDMA applications (e.g., rping) are active. The netdev reset causes ice driver to remove irdma auxiliary driver, triggering device_delete and subsequent client removal. During client removal, uverbs_client waits for QP reference count to reach zero while cma_client holds the final reference, creating circular dependency and indefinite wait in iWARP mode. Skip QP reference count wait during device reset to prevent deadlock.
Source	CVE (at NVD; CERT, ENISA, LWN, oss-sec, fulldisc, Debian ELTS, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)

Vulnerable and fixed packages

The table below lists information on source packages.

Source Package	Release	Version	Status
linux (PTS)	bullseye	5.10.223-1	fixed
	bullseye (security)	5.10.251-1	fixed
	bookworm	6.1.159-1	vulnerable
	bookworm (security)	6.1.164-1	vulnerable
	trixie	6.12.73-1	vulnerable
	trixie (security)	6.12.74-2	vulnerable
	forky	6.19.13-1	fixed
	sid	6.19.14-1	fixed

The information below is based on the following data on fixed versions.

Package	Type	Release	Fixed Version	Urgency	Origin	Debian Bugs
linux	source	bullseye	(not affected)
linux	source	(unstable)	6.19.11-1

[bullseye] - linux <not-affected> (Vulnerable code not present)
https://git.kernel.org/linus/6f52370970ac07d352a7af4089e55e0e6425f827 (7.0-rc6)