CVE-2023-6356
NULL pointer dereference in nvmet_tcp_build_iovec
References
Notes
bwh> There has never been a nvmet_tcp_build_iovec() function in
bwh> nvmet, but I think this is fixed by commit efa56305908b
bwh> "nvmet-tcp: Fix a kernel panic when host sends an invalid
bwh> H2C PDU length" which mentions nvmet_tcp_build_pdu_iovec().
bwh> Fixed as well in 6.6.14 and 6.7.2.
Bugs
Status
| Branch |
Status |
| 4.19-buster-security |
needed
|
| 4.19-upstream-stable |
needed
|
| 5.10-bullseye-security |
released (5.10.209-1)
|
| 5.10-upstream-stable |
released (5.10.209) [f775f2621c2ac5cc3a0b3a64665dad4fb146e510]
|
| 6.1-bookworm-security |
released (6.1.76-1)
|
| 6.1-upstream-stable |
released (6.1.75) [2871aa407007f6f531fae181ad252486e022df42]
|
| 6.6-upstream-stable |
unknown
|
| 6.8-upstream-stable |
unknown
|
| sid |
released (6.6.15-1)
|
| upstream |
released (6.8-rc1) [efa56305908ba20de2104f1b8508c6a7401833be]
|