CVE-2023-52515

RDMA/srp: Do not call scsi_done() from srp_abort()

References

https://cve.org/CVERecord/?id=CVE-2023-52515

Notes

 carnil> Introduced in d8536670916a ("IB/srp: Avoid having aborted requests hang").
 carnil> Vulnerable versions: 3.0.45 3.2.32 3.4.13 3.5.6 3.6.1 3.7-rc1.

Bugs

Status

Branch	Status
4.19-buster-security	needed
4.19-upstream-stable	needed
5.10-bullseye-security	released (5.10.205-1)
5.10-upstream-stable	released (5.10.199) [26788a5b48d9d5cd3283d777d238631c8cd7495a]
6.1-bookworm-security	released (6.1.64-1)
6.1-upstream-stable	released (6.1.57) [2b298f9181582270d5e95774e5a6c7a7fb5b1206]
6.6-upstream-stable	N/A "Fixed before branching point"
6.8-upstream-stable	N/A "Fixed before branching point"
sid	released (6.5.8-1)
upstream	released (6.6-rc5) [e193b7955dfad68035b983a0011f4ef3590c85eb]