blob: 2617a7b87c0e65f0149281f6dc7f24470b4a787a (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
|
Description: NULL pointer dereference in nvmet_tcp_build_iovec
References:
https://bugzilla.redhat.com/show_bug.cgi?id=2254054
https://lore.kernel.org/linux-nvme/CAK5usQupQgYoyav2itYADv2XVooMptqqswW8cTkuoMkRpjapwQ@mail.gmail.com/T/#t
Notes:
bwh> There has never been a nvmet_tcp_build_iovec() function in
bwh> nvmet, but I think this is fixed by commit efa56305908b
bwh> "nvmet-tcp: Fix a kernel panic when host sends an invalid
bwh> H2C PDU length" which mentions nvmet_tcp_build_pdu_iovec().
bwh> Fixed as well in 6.6.14 and 6.7.2.
Bugs:
upstream: released (6.8-rc1) [efa56305908ba20de2104f1b8508c6a7401833be]
6.1-upstream-stable: released (6.1.75) [2871aa407007f6f531fae181ad252486e022df42]
5.10-upstream-stable: released (5.10.209) [f775f2621c2ac5cc3a0b3a64665dad4fb146e510]
4.19-upstream-stable: needed
sid: released (6.6.15-1)
6.1-bookworm-security: released (6.1.76-1)
5.10-bullseye-security: released (5.10.209-1)
4.19-buster-security: needed
|
