CVE-2024-42288

Summary

In the Linux kernel, the following vulnerability has been resolved:

scsi: qla2xxx: Fix for possible memory corruption

Init Control Block is dereferenced incorrectly. Correctly dereference ICB

Affected Software

VendorProductVersion RangeStatus
LinuxLinux0645cb8350cdb60bfbf91caa722984b81c215add < dae67169cb35a37ecccf60cfcd6bf93a1f4f5efbaffected
LinuxLinux0645cb8350cdb60bfbf91caa722984b81c215add < 87db8d7b7520e99de71791260989f06f9c94953daffected
LinuxLinux0645cb8350cdb60bfbf91caa722984b81c215add < b0302ffc74123b6a99d7d1896fcd9b2e4072d9ceaffected
LinuxLinux0645cb8350cdb60bfbf91caa722984b81c215add < 2a15b59a2c5afac89696e44acf5bbfc0599c6c5eaffected
LinuxLinux0645cb8350cdb60bfbf91caa722984b81c215add < 571d7f2a08836698c2fb0d792236424575b9829baffected
LinuxLinux0645cb8350cdb60bfbf91caa722984b81c215add < 8192c533e89d9fb69b2490398939236b78cda79baffected
LinuxLinux0645cb8350cdb60bfbf91caa722984b81c215add < c03d740152f78e86945a75b2ad541bf972fab92aaffected
LinuxLinux4.20affected
LinuxLinux0 < 4.20unaffected
LinuxLinux5.4.282 <= 5.4.*unaffected
LinuxLinux5.10.224 <= 5.10.*unaffected
LinuxLinux5.15.165 <= 5.15.*unaffected
LinuxLinux6.1.103 <= 6.1.*unaffected
LinuxLinux6.6.44 <= 6.6.*unaffected
LinuxLinux6.10.3 <= 6.10.*unaffected
LinuxLinux6.11 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References