In the Linux kernel, the following vulnerability has been resolved:
scsi: qla2xxx: Fix a memory leak in an error path of qla2x00_process_els()
Commit 8c0eb596baa5 ("[SCSI] qla2xxx: Fix a memory leak in an error path of
qla2x00_process_els()"), intended to change:
bsg_job->request->msgcode == FC_BSG_HST_ELS_NOLOGIN
bsg_job->request->msgcode != FC_BSG_RPT_ELS
but changed it to:
bsg_job->request->msgcode == FC_BSG_RPT_ELS
instead.
Change the == to a != to avoid leaking the fcport structure or freeing
unallocated memory.
Metrics
Affected Vendors & Products
References
History
Mon, 04 Nov 2024 12:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
MITRE
Status: PUBLISHED
Assigner: Linux
Published: 2024-05-22T06:23:30.204Z
Updated: 2024-12-19T07:43:05.050Z
Reserved: 2024-05-22T06:20:56.199Z
Link: CVE-2021-47473
Vulnrichment
Updated: 2024-08-04T05:39:59.588Z
NVD
Status : Awaiting Analysis
Published: 2024-05-22T07:15:12.027
Modified: 2024-11-21T06:36:14.897
Link: CVE-2021-47473
Redhat