We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Crisp.chat (Helpdesk and Chat)

Ok

THREATINT
PUBLISHED

CVE-2024-49891

scsi: lpfc: Validate hdwq pointers before dereferencing in reset/errata paths



AssignerLinux
Reserved2024-10-21
Published2024-10-21
Updated2024-11-05

Description

In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Validate hdwq pointers before dereferencing in reset/errata paths When the HBA is undergoing a reset or is handling an errata event, NULL ptr dereference crashes may occur in routines such as lpfc_sli_flush_io_rings(), lpfc_dev_loss_tmo_callbk(), or lpfc_abort_handler(). Add NULL ptr checks before dereferencing hdwq pointers that may have been freed due to operations colliding with a reset or errata event handler.

Product status

Default status
unaffected

1da177e4c3f4 before 99a801e2fca3
affected

1da177e4c3f4 before fd665c8dbdb1
affected

1da177e4c3f4 before 2be1d4f11944
affected

Default status
affected

6.10.14
unaffected

6.11.3
unaffected

6.12-rc1
unaffected

References

https://git.kernel.org/stable/c/99a801e2fca39a6f31e543fc3383058a8955896f

https://git.kernel.org/stable/c/fd665c8dbdb19548965b0ae80c490de00e906366

https://git.kernel.org/stable/c/2be1d4f11944cd6283cb97268b3e17c4424945ca

cve.org CVE-2024-49891

nvd.nist.gov CVE-2024-49891

Download JSON

Share this page
https://cve.threatint.com
Subscribe to our newsletter to learn more about our work.