Description

In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Validate hdwq pointers before dereferencing in reset/errata paths When the HBA is undergoing a reset or is handling an errata event, NULL ptr dereference crashes may occur in routines such as lpfc_sli_flush_io_rings(), lpfc_dev_loss_tmo_callbk(), or lpfc_abort_handler(). Add NULL ptr checks before dereferencing hdwq pointers that may have been freed due to operations colliding with a reset or errata event handler.

INFO

Published Date :

2024-10-21T18:01:26.314Z

Last Modified :

2026-01-05T10:54:15.472Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2024-49891 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-49891.

URL Resource
https://git.kernel.org/stable/c/232a138bd843d48cb2368f604646d990db7640f3 cve-icon cve-icon
https://git.kernel.org/stable/c/2be1d4f11944cd6283cb97268b3e17c4424945ca cve-icon cve-icon
https://git.kernel.org/stable/c/5873aa7f814754085d418848b2089ef406a02dd0 cve-icon cve-icon
https://git.kernel.org/stable/c/99a801e2fca39a6f31e543fc3383058a8955896f cve-icon cve-icon
https://git.kernel.org/stable/c/fd665c8dbdb19548965b0ae80c490de00e906366 cve-icon cve-icon
https://lists.debian.org/debian-lts-announce/2025/03/msg00001.html cve-icon
https://lore.kernel.org/linux-cve-announce/2024102118-CVE-2024-49891-931a@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2024-49891 cve-icon
https://www.cve.org/CVERecord?id=CVE-2024-49891 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact