CVE-2023-54234

In the Linux kernel, the following vulnerability has been resolved: scsi: mpi3mr: Fix missing mrioc-evtackcmds initialization Commit c1af985d27da "scsi: mpi3mr: Add Event acknowledgment logic" introduced an array mrioc-evtackcmds but initialization of the array elements was missed. They are just...

CVE-2023-54234

CVE-2023-54234 | Linux kernel scsi mpi3mr: Fix missing mrioc->evtack_cmds initialization. The issue arises from an uninitialized mrioc->evtack_cmds array after the addition of Event acknowledgment logic, causing use-after-free via incorrect clear_bit() on evtack_cmds_bitmap due to host_tag ...