NVD Vulnerability Detail

Search Exploit, PoC

Exploit DB

NVD脆弱性検索トップ

->

NVD Vulnerability Detail

CVE-2024-50183

Summary	In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Ensure DA_ID handling completion before deleting an NPIV instance Deleting an NPIV instance requires all fabric ndlps to be released before an NPIV's resources can be torn down. Failure to release fabric ndlps beforehand opens kref imbalance race conditions. Fix by forcing the DA_ID to complete synchronously with usage of wait_queue.
Publication Date	Nov. 8, 2024, 3:15 p.m.
Registration Date	Nov. 9, 2024, 5 a.m.
Last Update	Nov. 8, 2024, 3:15 p.m.

Related information, measures and tools

No	URL	refsource	タグ
1	https://git.kernel.org/stable/c/0857b1c573c0b095aa778bb26d8b3378172471b6
2	https://git.kernel.org/stable/c/0ef6e016eb53fad6dc44c3253945efb43a3486b9
3	https://git.kernel.org/stable/c/bbc525409bfe8e5bff12f5d18d550ab3e52cdbef
4	https://git.kernel.org/stable/c/0a3c84f71680684c1d41abb92db05f95c09111e8

Common Vulnerabilities List

JVN Vulnerability Information

Linux の Linux Kernel における競合状態に関する脆弱性

Title	Linux の Linux Kernel における競合状態に関する脆弱性
Summary	Linux の Linux Kernel には、競合状態に関する脆弱性が存在します。
Possible impacts	サービス運用妨害 (DoS) 状態にされる可能性があります。
Solution	ベンダより正式な対策が公開されています。ベンダ情報を参照して適切な対策を実施してください。
Publication Date	Sept. 12, 2024, midnight
Registration Date	Dec. 11, 2024, 1:22 p.m.
Last Update	Dec. 11, 2024, 1:22 p.m.

Affected System

Linux

Linux Kernel 6.1.113 未満

Linux Kernel 6.2 以上 6.6.57 未満

Linux Kernel 6.7 以上 6.11.4 未満

CVE (情報セキュリティ共通脆弱性識別子)

No	Name	URL
Common Vulnerabilities and Exposures (CVE)
1	CVE-2024-50183	https://www.cve.org/CVERecord?id=CVE-2024-50183
National Vulnerability Database (NVD)
2	CVE-2024-50183	https://nvd.nist.gov/vuln/detail/CVE-2024-50183

CWE (共通脆弱性タイプ一覧)

No	Name	URL
JVNDB
1	CWE-362	https://jvndb.jvn.jp/ja/cwe/CWE-362.html

ベンダー情報

No	Name	URL
Kernel.org git repositories
1	scsi: lpfc: Ensure DA_ID handling completion before deleting an NPIV instance (0857b1c)	https://git.kernel.org/stable/c/0857b1c573c0b095aa778bb26d8b3378172471b6
2	scsi: lpfc: Ensure DA_ID handling completion before deleting an NPIV instance (0a3c84f)	https://git.kernel.org/stable/c/0a3c84f71680684c1d41abb92db05f95c09111e8
3	scsi: lpfc: Ensure DA_ID handling completion before deleting an NPIV instance (0ef6e01)	https://git.kernel.org/stable/c/0ef6e016eb53fad6dc44c3253945efb43a3486b9
4	scsi: lpfc: Ensure DA_ID handling completion before deleting an NPIV instance (bbc5254)	https://git.kernel.org/stable/c/bbc525409bfe8e5bff12f5d18d550ab3e52cdbef
Linux Kernel
5	Linux Kernel Archives	https://www.kernel.org

Change Log

No	Changed Details	Date of change
1	[2024年12月11日] 掲載	Dec. 11, 2024, 1:22 p.m.