This CVE is quite important as it affects (afaict) all or nearly all Infiniband stacks (from distribution specific, to OFED, to MOFED).

Status is that the public PoC allows writing of arbitrary kernel memory by a local user if IB is loaded.

When will an updated MOFED be available?

References:

https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=e6bd18f57aad1a2d1ef40e646d03ed0f2515c9e3 https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=e6bd18f57aad1a2d1ef40e646d03ed0f2515c9e3

Bug 2595 – IB/security: Restrict use of the write() interface http://bugs.openfabrics.org/show_bug.cgi?id=2595

https://bugzilla.redhat.com/show_bug.cgi?id=1334217 https://bugzilla.redhat.com/show_bug.cgi?id=1334217

http://marc.info/?l=linux-rdma&m=146281689725834&w=2 http://marc.info/?l=linux-rdma&m=146281689725834&w=2