CVE-2022-50493
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
scsi: qla2xxx: Fix crash when I/O abort times out
While performing CPU hotplug, a crash with the following stack was seen:
Call Trace: qla24xx_process_response_queue+0x42a/0x970 [qla2xxx] qla2x00_start_nvme_mq+0x3a2/0x4b0 [qla2xxx] qla_nvme_post_cmd+0x166/0x240 [qla2xxx] nvme_fc_start_fcp_op.part.0+0x119/0x2e0 [nvme_fc] blk_mq_dispatch_rq_list+0x17b/0x610 __blk_mq_sched_dispatch_requests+0xb0/0x140 blk_mq_sched_dispatch_requests+0x30/0x60 __blk_mq_run_hw_queue+0x35/0x90 __blk_mq_delay_run_hw_queue+0x161/0x180 blk_execute_rq+0xbe/0x160 __nvme_submit_sync_cmd+0x16f/0x220 [nvme_core] nvmf_connect_admin_queue+0x11a/0x170 [nvme_fabrics] nvme_fc_create_association.cold+0x50/0x3dc [nvme_fc] nvme_fc_connect_ctrl_work+0x19/0x30 [nvme_fc] process_one_work+0x1e8/0x3c0
On abort timeout, completion was called without checking if the I/O was already completed.
Verify that I/O and abort request are indeed outstanding before attempting completion.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 71c80b75ce8f08c0978ce9a9816b81b5c3ce5e12 < 5f730e489e741c28fe6a5b3308e33c094462acb0 | affected |
| Linux | Linux | 71c80b75ce8f08c0978ce9a9816b81b5c3ce5e12 < d3871af13aa03fbbe7fbb812eaf140501229a72e | affected |
| Linux | Linux | 71c80b75ce8f08c0978ce9a9816b81b5c3ce5e12 < cb4dff498468b62e8c520568559b3a9007e104d7 | affected |
| Linux | Linux | 71c80b75ce8f08c0978ce9a9816b81b5c3ce5e12 < 05382ed9142cf8a8a3fb662224477eecc415778b | affected |
| Linux | Linux | 71c80b75ce8f08c0978ce9a9816b81b5c3ce5e12 < 68ad83188d782b2ecef2e41ac245d27e0710fe8e | affected |
| Linux | Linux | 457173c8b43ecd3ac48c8ace8d4437a50f7ad77b | affected |
| Linux | Linux | b7abcc7df5e131c0b4bf89cb2411c5301ee83d26 | affected |
| Linux | Linux | 5.3.17 < 5.4 | affected |
| Linux | Linux | 5.4.4 < 5.5 | affected |
| Linux | Linux | 5.5 | affected |
| Linux | Linux | 0 < 5.5 | unaffected |
| Linux | Linux | 5.10.258 <= 5.10.* | unaffected |
| Linux | Linux | 5.15.86 <= 5.15.* | unaffected |
| Linux | Linux | 6.0.16 <= 6.0.* | unaffected |
| Linux | Linux | 6.1.2 <= 6.1.* | unaffected |
| Linux | Linux | 6.2 <= * | unaffected |
Weaknesses
References
- https://git.kernel.org/stable/c/5f730e489e741c28fe6a5b3308e33c094462acb0
- https://git.kernel.org/stable/c/d3871af13aa03fbbe7fbb812eaf140501229a72e
- https://git.kernel.org/stable/c/cb4dff498468b62e8c520568559b3a9007e104d7
- https://git.kernel.org/stable/c/05382ed9142cf8a8a3fb662224477eecc415778b
- https://git.kernel.org/stable/c/68ad83188d782b2ecef2e41ac245d27e0710fe8e
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.