Linux Distros Unpatched Vulnerability : CVE-2023-53038

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - scsi: lpfc: Check kzalloc in lpfcsli4cgnparamsread If kzalloc fails in lpfcsli4cgnparamsread, then we rely on lpfcreadobject's routine to NULL check pdata...

CVE-2022-49536

The CVE-2022-49536 entry concerns the Linux kernel SCSI LPFC deadlock in I/O completion and abort handling under heavy stress (500+ vports). Affected component is the lpfc driver within the SCSI subsystem. The root cause is a deadlock between the lpfc_cmd->buf_lock and phba->hbalock during ...

CVE-2022-49332

CVE-2022-49332 relates to the Linux kernel SCSI lpfc path. The vulnerability is a NULL pointer dereference in starget_to_rport() where calls may return NULL and the code could dereference a NULL rport. The described root cause is lack of a NULL check before dereferencing the rport, with the cited...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel, which stems from the scsi:lpfc module moving the transfer deregistration of NPIV to after resource cleanup...

PT-2024-27214

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The issue is related to the Linux kernel, specifically with the scsi: lpfc module. The lpfc worker wake up function calls the lpfc work done routine, which takes the hbalock. To avoid...

kernel: scsi: lpfc: Fix possible memory leak when failing to issue CMF WQE

A flaw was found in the lpfc module in the Linux kernel. A missing release of allocated memory when an error occurs will cause a memory leak, potentially impacting system performance and resulting in a denial of service...