Proxmox-Port/linux
1
0
Fork 0
mirror of https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git synced 2025-08-20 11:33:42 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
master
linux/drivers/scsi/bfa
History
jackysliu add4c48503 scsi: bfa: Double-free fix 
When the bfad_im_probe() function fails during initialization, the memory
pointed to by bfad->im is freed without setting bfad->im to NULL.

Subsequently, during driver uninstallation, when the state machine enters
the bfad_sm_stopping state and calls the bfad_im_probe_undo() function,
it attempts to free the memory pointed to by bfad->im again, thereby
triggering a double-free vulnerability.

Set bfad->im to NULL if probing fails.

Signed-off-by: jackysliu <1972843537@qq.com>
Link: https://lore.kernel.org/r/tencent_3BB950D6D2D470976F55FC879206DE0B9A09@qq.com
Signed-off-by: Martin K. Petersen <martin.petersen@oracle.com>
2025-07-14 21:10:30 -04:00
..
bfa_core.c scsi: bfa: Remove unused bfa_core code 2024-10-15 17:11:55 -04:00
bfa_cs.h scsi: bfa: Fix function pointer type mismatch for state machines 2024-02-26 21:16:48 -05:00
bfa_defs_fcs.h scsi: bfa: Remove unused bfa_fcs code 2024-10-15 17:11:55 -04:00
bfa_defs_svc.h
bfa_defs.h
bfa_fc.h scsi: bfa: Replace one-element array with flexible-array member in struct fc_rscn_pl_s 2023-08-21 17:13:56 -04:00
bfa_fcbuild.c scsi: bfa: Remove unused parsers 2024-11-20 21:39:51 -05:00
bfa_fcbuild.h scsi: bfa: Remove unused parsers 2024-11-20 21:39:51 -05:00
bfa_fcpim.c scsi: bfa: Remove unused misc code 2024-10-15 17:11:55 -04:00
bfa_fcpim.h scsi: bfa: Remove unused misc code 2024-10-15 17:11:55 -04:00
bfa_fcs_fcpim.c scsi: bfa: Fix function pointer type mismatch for state machines 2024-02-26 21:16:48 -05:00
bfa_fcs_lport.c scsi: bfa: Remove unused bfa_fcs code 2024-10-15 17:11:55 -04:00
bfa_fcs_rport.c scsi: bfa: Remove unused bfa_fcs code 2024-10-15 17:11:55 -04:00
bfa_fcs.c treewide: correct the typo 'retun' 2024-09-09 16:47:43 -07:00
bfa_fcs.h scsi: bfa: Remove unused bfa_fcs code 2024-10-15 17:11:55 -04:00
bfa_hw_cb.c
bfa_hw_ct.c
bfa_ioc_cb.c
bfa_ioc_ct.c
bfa_ioc.c scsi: bfa: Remove unused bfa_ioc code 2024-10-15 17:11:55 -04:00
bfa_ioc.h scsi: bfa: Remove unused bfa_ioc code 2024-10-15 17:11:55 -04:00
bfa_modules.h scsi: bfa: Remove unused bfa_svc code 2024-10-15 17:11:55 -04:00
bfa_plog.h
bfa_port.c
bfa_port.h
bfa_svc.c scsi: bfa: Remove unused bfa_svc code 2024-10-15 17:11:55 -04:00
bfa_svc.h scsi: bfa: Remove unused bfa_svc code 2024-10-15 17:11:55 -04:00
bfa.h scsi: bfa: Remove unused bfa_core code 2024-10-15 17:11:55 -04:00
bfad_attr.c scsi: Use device_show_string() helper for sysfs attributes 2024-05-04 17:37:04 +02:00
bfad_bsg.c scsi: bfa: Fix function pointer type mismatch for hcb_qe->cbfn 2024-02-26 21:16:48 -05:00
bfad_bsg.h
bfad_debugfs.c scsi: bfa: Ensure the copied buf is NUL terminated 2024-05-06 21:19:24 -04:00
bfad_drv.h scsi: bfa: Remove unused misc code 2024-10-15 17:11:55 -04:00
bfad_im.c scsi: bfa: Double-free fix 2025-07-14 21:10:30 -04:00
bfad_im.h scsi: bfa: Simplify an alloc_ordered_workqueue() invocation 2024-08-22 21:28:55 -04:00
bfad.c treewide, timers: Rename from_timer() to timer_container_of() 2025-06-08 09:07:37 +02:00
bfi_ms.h
bfi_reg.h
bfi.h scsi: bfa: Fix cacography in bfi.h file 2024-10-03 21:41:37 -04:00
Makefile