CVE-2022-49730

CVE-2022-49730

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.

CVE-2022-49730

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.

GHSA-rpw2-9h57-v827

In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Resolve NULL ptr dereference after an ELS LOGO is aborted A use-after-free crash can occur after an ELS LOGO is aborted. Specifically, a nodelist structure is freed and then ndlp->vport->cfg_log_verbose is dereferenced in lpfc_nlp_get() when the discovery state machine is mistakenly called a second time with NLP_EVT_DEVICE_RM argument. Rework lpfc_cmpl_els_logo() to prevent the duplicate calls to release a nodelist structure.

BDU:2025-03619

Уязвимость функции lpfc_cmpl_els_logo() модуля drivers/scsi/lpfc/lpfc_els.c - драйвера поддержки устройств SCSI ядра операционной системы Linux, позволяющая нарушителю оказать воздействие на конфиденциальность, целостность и доступность защищаемой информации.

SUSE-SU-2025:01600-1

Security update for the Linux Kernel