6.5

CVE-2021-47308

scsi: libfc: Fix array index out of bound exception

In the Linux kernel, the following vulnerability has been resolved:

scsi: libfc: Fix array index out of bound exception

Fix array index out of bound exception in fc_rport_prli_resp().
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version < 4.14.241
LinuxLinux Kernel Version >= 4.15 < 4.19.199
LinuxLinux Kernel Version >= 4.20 < 5.4.135
LinuxLinux Kernel Version >= 5.5 < 5.10.53
LinuxLinux Kernel Version >= 5.11 < 5.13.5
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 1% 0.581
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
134c704f-9b21-4f2e-91b3-4a467353bcc0 6.5 3.9 2.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L
CWE-125 Out-of-bounds Read

The product reads data past the end, or before the beginning, of the intended buffer.

https://git.kernel.org/stable/c/0fe70c15f9435bb3c50954778245d62ee38b0e03
Patch
https://git.kernel.org/stable/c/44651522941c623e20882b3b443f23f77de1ea8b
Patch
https://git.kernel.org/stable/c/4921b1618045ffab71b1050bf0014df3313a2289
Patch
https://git.kernel.org/stable/c/8511293e643a18b248510ae5734e4f360754348c
Patch
https://git.kernel.org/stable/c/a4a54c54af2516caa9c145015844543cfc84316a
Patch
https://git.kernel.org/stable/c/b27c4577557045f1ab3cdfeabfc7f3cd24aca1fe
Patch