Description
In the Linux kernel, the following vulnerability has been resolved: scsi: qedf: Fix NULL dereference in error handling Smatch reported: drivers/scsi/qedf/qedf_main.c:3056 qedf_alloc_global_queues() warn: missing unwind goto? At this point in the function, nothing has been allocated so we can return directly. In particular the "qedf->global_queues" have not been allocated so calling qedf_free_global_queues() will lead to a NULL dereference when we check if (!gl[i]) and "gl" is NULL.
Product status
61d8658b4a435eac729966cc94cdda077a8df5cd (git) before 961c8370c5f7e80a267680476e1bcff34bffe71a
61d8658b4a435eac729966cc94cdda077a8df5cd (git) before ac64019e4d4b08c23edb117e0b2590985e33de1d
61d8658b4a435eac729966cc94cdda077a8df5cd (git) before b1de5105d29b145b727b797e2d5de071ab3a7ca1
61d8658b4a435eac729966cc94cdda077a8df5cd (git) before c316bde418af4c2a9df51149ed01d1bd8ca5bebf
61d8658b4a435eac729966cc94cdda077a8df5cd (git) before 08c001c1e9444a3046c79a99aa93ac48073b18cc
61d8658b4a435eac729966cc94cdda077a8df5cd (git) before 271c9b2eb60149afbeab28cb39e52f73bde9900c
61d8658b4a435eac729966cc94cdda077a8df5cd (git) before f025312b089474a54e4859f3453771314d9e3d4f
4.11
Any version before 4.11
5.4.251 (semver)
5.10.188 (semver)
5.15.121 (semver)
6.1.39 (semver)
6.3.13 (semver)
6.4.4 (semver)
6.5 (original_commit_for_fix)
References
git.kernel.org/...c/961c8370c5f7e80a267680476e1bcff34bffe71a
git.kernel.org/...c/ac64019e4d4b08c23edb117e0b2590985e33de1d
git.kernel.org/...c/b1de5105d29b145b727b797e2d5de071ab3a7ca1
git.kernel.org/...c/c316bde418af4c2a9df51149ed01d1bd8ca5bebf
git.kernel.org/...c/08c001c1e9444a3046c79a99aa93ac48073b18cc
git.kernel.org/...c/271c9b2eb60149afbeab28cb39e52f73bde9900c
git.kernel.org/...c/f025312b089474a54e4859f3453771314d9e3d4f
Data based on CVE®. Copyright © 1999-2025, The MITRE Corporation. All rights reserved.
