CVE-2023-53696
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
scsi: qla2xxx: Fix memory leak in qla2x00_probe_one()
There is a memory leak reported by kmemleak:
unreferenced object 0xffffc900003f0000 (size 12288): comm "modprobe", pid 19117, jiffies 4299751452 (age 42490.264s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ……………. 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ……………. backtrace: [<00000000629261a8>] __vmalloc_node_range+0xe56/0x1110 [<0000000001906886>] __vmalloc_node+0xbd/0x150 [<000000005bb4dc34>] vmalloc+0x25/0x30 [<00000000a2dc1194>] qla2x00_create_host+0x7a0/0xe30 [qla2xxx] [<0000000062b14b47>] qla2x00_probe_one+0x2eb8/0xd160 [qla2xxx] [<00000000641ccc04>] local_pci_probe+0xeb/0x1a0
The root cause is traced to an error-handling path in qla2x00_probe_one() when the adapter "base_vha" initialize failed. The fab_scan_rp "scan.l" is used to record the port information and it is allocated in qla2x00_create_host(). However, it is not released in the error handling path "probe_failed".
Fix this by freeing the memory of "scan.l" when an error occurs in the adapter initialization process.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | a4239945b8ad112fb914d0605c8f6c5fd3330f61 < ae73c4dd48f2c79d515d509a0cbe9efb0a197f44 | affected |
| Linux | Linux | a4239945b8ad112fb914d0605c8f6c5fd3330f61 < 44374911ac63f769c442f56fdfadea673c5f4425 | affected |
| Linux | Linux | a4239945b8ad112fb914d0605c8f6c5fd3330f61 < 582e35e97318ccd9c81774bac08938291679525f | affected |
| Linux | Linux | a4239945b8ad112fb914d0605c8f6c5fd3330f61 < 85ade4010e13ef152ea925c74d94253db92e5428 | affected |
| Linux | Linux | 4.16 | affected |
| Linux | Linux | 0 < 4.16 | unaffected |
| Linux | Linux | 5.15.107 <= 5.15.* | unaffected |
| Linux | Linux | 6.1.24 <= 6.1.* | unaffected |
| Linux | Linux | 6.2.11 <= 6.2.* | unaffected |
| Linux | Linux | 6.3 <= * | unaffected |
Weaknesses
References
- https://git.kernel.org/stable/c/ae73c4dd48f2c79d515d509a0cbe9efb0a197f44
- https://git.kernel.org/stable/c/44374911ac63f769c442f56fdfadea673c5f4425
- https://git.kernel.org/stable/c/582e35e97318ccd9c81774bac08938291679525f
- https://git.kernel.org/stable/c/85ade4010e13ef152ea925c74d94253db92e5428
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.