CVE-2023-53754

Summary

In the Linux kernel, the following vulnerability has been resolved:

scsi: lpfc: Fix ioremap issues in lpfc_sli4_pci_mem_setup()

When if_type equals zero and pci_resource_start(pdev, PCI_64BIT_BAR4) returns false, drbl_regs_memmap_p is not remapped. This passes a NULL pointer to iounmap(), which can trigger a WARN() on certain arches.

When if_type equals six and pci_resource_start(pdev, PCI_64BIT_BAR4) returns true, drbl_regs_memmap_p may has been remapped and ctrl_regs_memmap_p is not remapped. This is a resource leak and passes a NULL pointer to iounmap().

To fix these issues, we need to add null checks before iounmap(), and change some goto labels.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux1351e69fc6db30e186295f1c9495d03cef6a01a2 < 74d90f92eafe8ccd12827228236a28a94eda6bccaffected
LinuxLinux1351e69fc6db30e186295f1c9495d03cef6a01a2 < bab8dc38b1a0a12bc064fc064269033bdcf5b88eaffected
LinuxLinux1351e69fc6db30e186295f1c9495d03cef6a01a2 < fd8c83d8375b9dac1949f2753485a5c055ebfad0affected
LinuxLinux1351e69fc6db30e186295f1c9495d03cef6a01a2 < e6f1ef4a53856ed000b0f7265d7e16dcb00f4243affected
LinuxLinux1351e69fc6db30e186295f1c9495d03cef6a01a2 < 631d0fab143bef85ea0813596f1dda36e2b9724caffected
LinuxLinux1351e69fc6db30e186295f1c9495d03cef6a01a2 < 7e5a54d1f00725a739dcd20f616d82eff4f764bdaffected
LinuxLinux1351e69fc6db30e186295f1c9495d03cef6a01a2 < 91a0c0c1413239d0548b5aac4c82f38f6d53a91eaffected
LinuxLinux4.17affected
LinuxLinux0 < 4.17unaffected
LinuxLinux5.4.243 <= 5.4.*unaffected
LinuxLinux5.10.180 <= 5.10.*unaffected
LinuxLinux5.15.111 <= 5.15.*unaffected
LinuxLinux6.1.28 <= 6.1.*unaffected
LinuxLinux6.2.15 <= 6.2.*unaffected
LinuxLinux6.3.2 <= 6.3.*unaffected
LinuxLinux6.4 <= *unaffected

Weaknesses

References