CVE-2024-26930 | Linux Kernel up to 6.6.23/6.7.11/6.8.2/6.9-rc1 qla2xxx qla2x00_mem_alloc double free

Posted by Angelo Barbosa | May 1, 2024 | CVE

A vulnerability was found in Linux Kernel up to 6.6.23/6.7.11/6.8.2/6.9-rc1. It has been declared as problematic. Affected by this vulnerability is the function qla2x00_mem_alloc of the component qla2xxx. The manipulation leads to double free.

This vulnerability is known as CVE-2024-26930. Access to the local network is required for this attack. There is no exploit available.

It is recommended to upgrade the affected component.