CVE-2024-43816 | Linux Kernel up to 6.10.2 scsi lpfc_prep_embed_io sge_len null pointer dereference (9fd003f344d5/8bc7c617642d)

Posted by Angelo Barbosa | Aug 17, 2024 | CVE

A vulnerability, which was classified as critical, has been found in Linux Kernel up to 6.10.2. This issue affects the function lpfc_prep_embed_io of the component scsi. The manipulation of the argument sge_len leads to null pointer dereference.

The identification of this vulnerability is CVE-2024-43816. The attack can only be done within the local network. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-43816 | Linux Kernel up to 6.10.2 scsi lpfc_prep_embed_io sge_len null pointer dereference (9fd003f344d5/8bc7c617642d)

Related Posts

CVE-2024-3887 | Royal Elementor Addons and Templates Plugin up to 1.3.974 on WordPress Form Builder Widget cross site scripting

CVE-2024-5556 | Zoho ManageEngine ADAudit Plus up to 7999 Reports Module sql injection

CVE-2023-50915 | GOG Galaxy up to 2.0.71.2 RPC Object Manager Symbolic Link GalaxyClientService.exe denial of service

CVE-2022-40700 | PHPFreeChat Plugin on WordPress server-side request forgery