There's a flaw in Linux kernel's NVMe driver where an attacker can send crafted TCP packets leading to NULL point dereference in nvmet_tcp_build_iovec. A successfully attack can result in a remote Denial-of-service.
Created kernel tracking bugs for this issue: Affects: fedora-all [bug 2254058]
Marco, are there upstream details on the issue?
(In reply to Salvatore Bonaccorso from comment #3) > Marco, are there upstream details on the issue? Hello, you can find the conversation at: https://lore.kernel.org/linux-nvme/CAK5usQupQgYoyav2itYADv2XVooMptqqswW8cTkuoMkRpjapwQ@mail.gmail.com/T/#t
This issue has been addressed in the following products: Red Hat Enterprise Linux 9.2 Extended Update Support Via RHSA-2024:0725 https://access.redhat.com/errata/RHSA-2024:0725
This issue has been addressed in the following products: Red Hat Enterprise Linux 9.2 Extended Update Support Via RHSA-2024:0723 https://access.redhat.com/errata/RHSA-2024:0723
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.6 Extended Update Support Via RHSA-2024:0724 https://access.redhat.com/errata/RHSA-2024:0724
This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2024:0881 https://access.redhat.com/errata/RHSA-2024:0881
This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2024:0897 https://access.redhat.com/errata/RHSA-2024:0897
This issue has been addressed in the following products: Red Hat Enterprise Linux 9 Via RHSA-2024:1248 https://access.redhat.com/errata/RHSA-2024:1248