发布于3月6日3月6日 Members Red Hat: CVE-2023-52809: kernel: scsi: libfc: Fix potential NULL pointer dereference in fc_lport_ptp_setup() (Multiple Advisories) Severity 4 CVSS (AV:L/AC:L/Au:M/C:N/I:N/A:C) Published 05/21/2024 Created 09/14/2024 Added 09/13/2024 Modified 12/05/2024 Description In the Linux kernel, the following vulnerability has been resolved: scsi: libfc: Fix potential NULL pointer dereference in fc_lport_ptp_setup() fc_lport_ptp_setup() did not check the return value of fc_rport_create() which can return NULL and would cause a NULL pointer dereference. Address this issue by checking return value of fc_rport_create() and log error message on fc_rport_create() failed. Solution(s) redhat-upgrade-kernel redhat-upgrade-kernel-rt References CVE-2023-52809 RHSA-2024:4928 RHSA-2024:5066 RHSA-2024:5067 RHSA-2024:7000
