In the Linux kernel, the following vulnerability has been resolved: scsi: mpt3sas: Fix kernel panic during drive powercycle test While looping over shost’s sdev list it is possible that one of the drives is getting removed and its sas_target object is freed but its sdev object remains intact. Consequently, a kernel panic can occur while the driver is trying to access the sas_address field of sas_target object without also checking the sas_target object for NULL.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 12 | all | linux | < 5.15.15-1 | linux_5.15.15-1_all.deb |
Debian | 11 | all | linux | < 5.10.84-1 | linux_5.10.84-1_all.deb |
Debian | 10 | all | linux | < 4.19.232-1 | linux_4.19.232-1_all.deb |
Debian | 999 | all | linux | < 5.15.15-1 | linux_5.15.15-1_all.deb |
Debian | 13 | all | linux | < 5.15.15-1 | linux_5.15.15-1_all.deb |