3 matches found
ROOT-OS-DEBIAN-11-CVE-2023-53627 CVE-2023-53627 in rootio-linux - Patched by Root
Root has patched CVE-2023-53627 in the rootio-linux package for Root:Debian:11. Multiple fixed versions available...
CVE-2023-53627
In the Linux kernel, the following vulnerability has been resolved: scsi: hisisas: Grab sasdev lock when traversing the members of sasdev.list When freeing slots in function slotcompletev3hw, it is possible that sasdev.list is being traversed elsewhere, and it may trigger a NULL pointer exception...
CVE-2023-53627
CVE-2023-53627 affects the Linux kernel SCSI HISI SAS path. Root cause: concurrency on sas_dev.list during slot completion/deregistration can trigger a NULL pointer dereference. The fix is to grab the sas_dev lock when traversing sas_dev.list in dereg_device_v3_hw() and in hisi_sas_release_tasks(...