A vulnerability, which was classified as critical, has been found in Linux Kernel up to 6.10.2. This issue affects the function
lpfc_prep_embed_io
of the component scsi. The manipulation of the argument sge_len leads to null pointer dereference.
The identification of this vulnerability is CVE-2024-43816. The attack can only be done within the local network. There is no exploit available.
It is recommended to upgrade the affected component.