CVE-2023-52809

scsi: libfc: Fix potential NULL pointer dereference in fc_lport_ptp_setup()

Description

In the Linux kernel, the following vulnerability has been resolved: scsi: libfc: Fix potential NULL pointer dereference in fc_lport_ptp_setup() fc_lport_ptp_setup() did not check the return value of fc_rport_create() which can return NULL and would cause a NULL pointer dereference. Address this issue by checking return value of fc_rport_create() and log error message on fc_rport_create() failed.

INFO

Published Date :

2024-05-21T15:31:18.982Z

Last Modified :

2026-01-05T10:17:23.298Z

Source :

Linux

AFFECTED PRODUCTS

The following products are affected by CVE-2023-52809 vulnerability.

Vendors	Products
Linux	Linux Kernel
Redhat	Enterprise Linux Rhel Eus

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2023-52809.

URL	Resource
https://git.kernel.org/stable/c/442fd24d7b6b29e4a9cd9225afba4142d5f522ba
https://git.kernel.org/stable/c/4df105f0ce9f6f30cda4e99f577150d23f0c9c5f
https://git.kernel.org/stable/c/56d78b5495ebecbb9395101f3be177cd0a52450b
https://git.kernel.org/stable/c/6b9ecf4e1032e645873933e5b43cbb84cac19106
https://git.kernel.org/stable/c/77072ec41d6ab3718c3fc639bc149b8037caedfa
https://git.kernel.org/stable/c/930f0aaba4820d6362de4e6ed569eaf444f1ea4e
https://git.kernel.org/stable/c/b549acf999824d4f751ca57965700372f2f3ad00
https://git.kernel.org/stable/c/bb83f79f90e92f46466adcfd4fd264a7ae0f0f01
https://git.kernel.org/stable/c/f6fe7261b92b21109678747f36df9fdab1e30c34
https://lore.kernel.org/linux-cve-announce/2024052102-CVE-2023-52809-f07c@gregkh/T
https://nvd.nist.gov/vuln/detail/CVE-2023-52809
https://www.cve.org/CVERecord?id=CVE-2023-52809

CVSS Vulnerability Scoring System

V3.1

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality Impact

Integrity Impact

Availability Impact