2 matches found
kernel: scsi: qla2xxx: Fix off by one in qla_edif_app_getstats()
A vulnerability was found in the Linux kernel's qla2xxx SCSI driver, specifically in the qlaedifappgetstats function, where an off-by-one error in array access could lead to memory corruption. This issue affects the appreply-elem array, where an incorrect comparison allowed out-of-bounds access...
kernel: scsi: qla2xxx: Wait for io return on terminate rport
A flaw was found in the Linux kernel’s SCSI driver component qla2xxx used with FCP-2 devices. When the terminaterportio function is invoked , the driver may exit cleanup before all outstanding I/O operations have returned. This can lead to a use-after-free condition when resources are freed while...