-

CVE-2023-54289

EPSS 0.04%
Veröffentlicht 30.12.2025 12:23:28
Zuletzt bearbeitet 31.12.2025 20:42:43
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

In the Linux kernel, the following vulnerability has been resolved:

scsi: qedf: Fix NULL dereference in error handling

Smatch reported:

drivers/scsi/qedf/qedf_main.c:3056 qedf_alloc_global_queues()
warn: missing unwind goto?

At this point in the function, nothing has been allocated so we can return
directly. In particular the "qedf->global_queues" have not been allocated
so calling qedf_free_global_queues() will lead to a NULL dereference when
we check if (!gl[i]) and "gl" is NULL.

Betroffene Produkte Warnungen 0 Metriken 1 CWE 0 Referenzen 10

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version < 961c8370c5f7e80a267680476e1bcff34bffe71a

Version 61d8658b4a435eac729966cc94cdda077a8df5cd

Status affected

Version < ac64019e4d4b08c23edb117e0b2590985e33de1d

Version 61d8658b4a435eac729966cc94cdda077a8df5cd

Status affected

Version < b1de5105d29b145b727b797e2d5de071ab3a7ca1

Version 61d8658b4a435eac729966cc94cdda077a8df5cd

Status affected

Version < c316bde418af4c2a9df51149ed01d1bd8ca5bebf

Version 61d8658b4a435eac729966cc94cdda077a8df5cd

Status affected

Version < 08c001c1e9444a3046c79a99aa93ac48073b18cc

Version 61d8658b4a435eac729966cc94cdda077a8df5cd

Status affected

Version < 271c9b2eb60149afbeab28cb39e52f73bde9900c

Version 61d8658b4a435eac729966cc94cdda077a8df5cd

Status affected

Version < f025312b089474a54e4859f3453771314d9e3d4f

Version 61d8658b4a435eac729966cc94cdda077a8df5cd

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version 4.11

Status affected

Version < 4.11

Version 0

Status unaffected

Version <= 5.4.*

Version 5.4.251

Status unaffected

Version <= 5.10.*

Version 5.10.188

Status unaffected

Version <= 5.15.*

Version 5.15.121

Status unaffected

Version <= 6.1.*

Version 6.1.39

Status unaffected

Version <= 6.3.*

Version 6.3.13

Status unaffected

Version <= 6.4.*

Version 6.4.4

Status unaffected

Version <= *

Version 6.5

Status unaffected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.04%	0.099

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String

Es wurden noch keine Informationen zu CWE veröffentlicht.

https://git.kernel.org/stable/c/961c8370c5f7e80a267680476e1bcff34bffe71a

https://git.kernel.org/stable/c/ac64019e4d4b08c23edb117e0b2590985e33de1d

https://git.kernel.org/stable/c/b1de5105d29b145b727b797e2d5de071ab3a7ca1

https://git.kernel.org/stable/c/c316bde418af4c2a9df51149ed01d1bd8ca5bebf

https://git.kernel.org/stable/c/08c001c1e9444a3046c79a99aa93ac48073b18cc

https://git.kernel.org/stable/c/271c9b2eb60149afbeab28cb39e52f73bde9900c

https://git.kernel.org/stable/c/f025312b089474a54e4859f3453771314d9e3d4f

https://nvd.nist.gov/vuln/detail/CVE-2023-54289

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-54289

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-54289

EUVD