2 matches found
CVE-2021-47045 scsi: lpfc: Fix null pointer dereference in lpfc_prep_els_iocb()
In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Fix null pointer dereference in lpfcprepelsiocb It is possible to call lpfcissueelsplogi passing a did for which no matching ndlp is found. A call is then made to lpfcprepelsiocb with a null pointer to a lpfcnodelist...
CVE-2021-47045
CVE-2021-47045 affects Linux kernel SCSI lpfc (lpfc_prep_els_iocb). The vulnerability arises when lpfc_issue_els_plogi() is called with a did that has no matching ndlp, causing a NULL pointer dereference to lpfc_nodelist. The fix returns an error status if no valid ndlp is found and updates ndlp ...