2426167 – (CVE-2023-54289) CVE-2023-54289 kernel: scsi: qedf: Fix NULL dereference in error handling

Bug 2426167 (CVE-2023-54289) - CVE-2023-54289 kernel: scsi: qedf: Fix NULL dereference in error handling

Summary: CVE-2023-54289 kernel: scsi: qedf: Fix NULL dereference in error handling

Keywords:
Status:	NEW
Alias:	CVE-2023-54289
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	low
Severity:	low
Target Milestone:	---
Assignee:	Product Security DevOps Team
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2025-12-30 13:13 UTC by OSIDB Bzimport
Modified:	2025-12-31 04:24 UTC (History)
CC List:	0 users
Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments	(Terms of Use)

Description OSIDB Bzimport 2025-12-30 13:13:42 UTC

In the Linux kernel, the following vulnerability has been resolved:

scsi: qedf: Fix NULL dereference in error handling

Smatch reported:

drivers/scsi/qedf/qedf_main.c:3056 qedf_alloc_global_queues()
warn: missing unwind goto?

At this point in the function, nothing has been allocated so we can return
directly. In particular the "qedf->global_queues" have not been allocated
so calling qedf_free_global_queues() will lead to a NULL dereference when
we check if (!gl[i]) and "gl" is NULL.

Comment 1 Alexander B 2025-12-31 04:20:46 UTC

Upstream advisory:
https://lore.kernel.org/linux-cve-announce/2025123028-CVE-2023-54289-5309@gregkh/T

Note You need to log in before you can comment on or make changes to this bug.