CVE-2023-6121

nvmet: nul-terminate the NQNs passed in the connect command

References

Notes

 carnil> Introduced with a07b4970f464 "nvmet: add a generic NVMe
 carnil> target") in 4.8-rc1.
 carnil> For 6.6.y fixed as well in 6.6.4.

Bugs

Status

Branch Status
4.19-buster-security needed
4.19-upstream-stable needed
5.10-bullseye-security released (5.10.205-1)
5.10-upstream-stable released (5.10.203) [2be451e7a2f124899546c1bb5c6d509a927968c8]
6.1-bookworm-security released (6.1.64-1) [bugfix/all/nvmet-nul-terminate-the-NQNs-passed-in-the-connect-c.patch]
6.1-upstream-stable released (6.1.65) [0e485f12ebb7b69b67c7f85195a1b4aad95d354a]
6.6-upstream-stable unknown
6.8-upstream-stable unknown
sid released (6.6.8-1)
upstream released (6.7-rc3) [1c22e0295a5eb571c27b53c7371f95699ef705ff]