CVE-2023-54014

Summary

In the Linux kernel, the following vulnerability has been resolved:

scsi: qla2xxx: Check valid rport returned by fc_bsg_to_rport()

Klocwork reported warning of rport maybe NULL and will be dereferenced. rport returned by call to fc_bsg_to_rport() could be NULL and dereferenced.

Check valid rport returned by fc_bsg_to_rport().

Affected Software

VendorProductVersion RangeStatus
LinuxLinux75cc8cfc6e13d42d50c2bf4307d0a68c2a70f709 < f35bd94b4e11c41de90cd0fa72c9062e8196822faffected
LinuxLinux75cc8cfc6e13d42d50c2bf4307d0a68c2a70f709 < ccd3bc595bda67db5a347b9050c2df28f292d3fbaffected
LinuxLinux75cc8cfc6e13d42d50c2bf4307d0a68c2a70f709 < 1b7e5bdf2be22ae8c61bdca5a5f96ec2746e9639affected
LinuxLinux75cc8cfc6e13d42d50c2bf4307d0a68c2a70f709 < 921d6844625527a92d1178262a633cc88a8e61bdaffected
LinuxLinux75cc8cfc6e13d42d50c2bf4307d0a68c2a70f709 < 1ccd52b790a66b8b5f75c87eab8c3a37f941a2bfaffected
LinuxLinux75cc8cfc6e13d42d50c2bf4307d0a68c2a70f709 < e466930717ef18c112585a39fc6174d8eb441df5affected
LinuxLinux75cc8cfc6e13d42d50c2bf4307d0a68c2a70f709 < ced5460eae772e847debbc0b65ef93aedab92d3faffected
LinuxLinux75cc8cfc6e13d42d50c2bf4307d0a68c2a70f709 < af73f23a27206ffb3c477cac75b5fcf03410556eaffected
LinuxLinux4.10affected
LinuxLinux0 < 4.10unaffected
LinuxLinux4.14.322 <= 4.14.*unaffected
LinuxLinux4.19.291 <= 4.19.*unaffected
LinuxLinux5.4.251 <= 5.4.*unaffected
LinuxLinux5.10.188 <= 5.10.*unaffected
LinuxLinux5.15.121 <= 5.15.*unaffected
LinuxLinux6.1.40 <= 6.1.*unaffected
LinuxLinux6.4.5 <= 6.4.*unaffected
LinuxLinux6.5 <= *unaffected

Weaknesses

References