CVE-2021-46963

Summary

In the Linux kernel, the following vulnerability has been resolved:

scsi: qla2xxx: Fix crash in qla2xxx_mqueuecommand()

RIP: 0010:kmem_cache_free+0xfa/0x1b0
Call Trace:
   qla2xxx_mqueuecommand+0x2b5/0x2c0 [qla2xxx]
   scsi_queue_rq+0x5e2/0xa40
   __blk_mq_try_issue_directly+0x128/0x1d0
   blk_mq_request_issue_directly+0x4e/0xb0

Fix incorrect call to free srb in qla2xxx_mqueuecommand(), as srb is now allocated by upper layers. This fixes smatch warning of srb unintended free.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux64a8c5018a4b21b04a756a56c495ef47c14e92d9 < c5ab9b67d8b061de74e2ca51bf787ee599bd7f89affected
LinuxLinuxdea6ee7173039d489977c9ed92e3749154615db4 < 77509a238547863040a42d57c72403f7d4c89a8faffected
LinuxLinuxaf2a0c51b1205327f55a7e82e530403ae1d42cbb < 702cdaa2c6283c135ef16d52e0e4e3c1005aa538affected
LinuxLinuxaf2a0c51b1205327f55a7e82e530403ae1d42cbb < 80ef24175df2cba3860d0369d1c662b49ee2de56affected
LinuxLinuxaf2a0c51b1205327f55a7e82e530403ae1d42cbb < a73208e3244127ef9f2cdf24e4adb947aaa32053affected
LinuxLinuxaf2a0c51b1205327f55a7e82e530403ae1d42cbb < 6641df81ab799f28a5d564f860233dd26cca0d93affected
LinuxLinux4a1cc2f71bc57cf8dee6f58e7d2355a43aabb312affected
LinuxLinux4.19.90 < 4.19.191affected
LinuxLinux5.4.4 < 5.4.118affected
LinuxLinux5.3.17 < 5.4affected
LinuxLinux5.5affected
LinuxLinux0 < 5.5unaffected
LinuxLinux4.19.191 <= 4.19.*unaffected
LinuxLinux5.4.118 <= 5.4.*unaffected
LinuxLinux5.10.36 <= 5.10.*unaffected
LinuxLinux5.11.20 <= 5.11.*unaffected
LinuxLinux5.12.3 <= 5.12.*unaffected
LinuxLinux5.13 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References