In the Linux kernel, the following vulnerability has been resolved: scsi:
target: pscsi: Fix bio_put() for error case As of commit 066ff571011d
(“block: turn bio_kmalloc into a simple kmalloc wrapper”), a bio allocated
by bio_kmalloc() must be freed by bio_uninit() and kfree(). That is not
done properly for the error case, hitting WARN and NULL pointer dereference
in bio_free().
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 22.04 | noarch | linux-aws-6.5 | < any | UNKNOWN |
ubuntu | 22.04 | noarch | linux-azure-6.5 | < any | UNKNOWN |
ubuntu | 22.04 | noarch | linux-gcp-6.5 | < any | UNKNOWN |
ubuntu | 22.04 | noarch | linux-nvidia-6.5 | < any | UNKNOWN |
ubuntu | 22.04 | noarch | linux-oem-6.5 | < any | UNKNOWN |
ubuntu | 22.04 | noarch | linux-oracle-6.5 | < any | UNKNOWN |
ubuntu | 22.04 | noarch | linux-starfive-6.5 | < any | UNKNOWN |
git.kernel.org/linus/de959094eb2197636f7c803af0943cb9d3b35804 (6.8-rc6)
git.kernel.org/stable/c/1cfe9489fb563e9a0c9cdc5ca68257a44428c2ec
git.kernel.org/stable/c/4ebc079f0c7dcda1270843ab0f38ab4edb8f7921
git.kernel.org/stable/c/de959094eb2197636f7c803af0943cb9d3b35804
git.kernel.org/stable/c/f49b20fd0134da84a6bd8108f9e73c077b7d6231
launchpad.net/bugs/cve/CVE-2024-26760
nvd.nist.gov/vuln/detail/CVE-2024-26760
security-tracker.debian.org/tracker/CVE-2024-26760
www.cve.org/CVERecord?id=CVE-2024-26760