This CVE is quite important as it affects (afaict) all or nearly all Infiniband stacks (from distribution specific, to OFED, to MOFED).
Status is that the public PoC allows writing of arbitrary kernel memory by a local user if IB is loaded.
When will an updated MOFED be available?
References:
kernel/git/torvalds/linux.git - Linux kernel source tree kernel/git/torvalds/linux.git - Linux kernel source tree
Bug 2595 – IB/security: Restrict use of the write() interface Log in to Bugzilla
1334217 – CVE-2016-4565 kernel: infiniband: Using write() instead of bi-directional ioctl() allows writing into user specified kernel memory 1334217 – CVE-2016-4565 kernel: infiniband: Using write() instead of bi-directional ioctl() allows writing into user specified kernel memory
'Re: [oss-security] CVE Request: Linux: IB/security: Restrict use of the write() interface'' - MARC 'Re: [oss-security] CVE Request: Linux: IB/security: Restrict use of the write() interface'' - MARC