CVE-2024-24855

Updated: 2024-11-30 01:59:52.687153

Description:

A race condition was found in the Linux kernel's scsi device driver in lpfc_unregister_fcf_rescan() function. This can result in a null pointer dereference issue, possibly leading to a kernel panic or denial of service issue.


Links NIST CIRCL RHEL Ubuntu

Severity

Severity Score
CVSS Version 2.x 0
CVSS Version 3.x MEDIUM 4.7

Status

OS name Project name Version Score Severity Status Errata Last updated

Statement

CentOS 6 ELS kernel 2.6.32 4.7 MEDIUM Ignored 2024-02-12 04:08:38
CloudLinux 6 ELS kernel 2.6.32 4.7 MEDIUM Ignored 2024-02-12 04:08:38
Oracle Linux 6 ELS kernel 2.6.32 4.7 MEDIUM Ignored 2024-02-12 04:08:38
Ubuntu 16.04 ELS linux 4.4.0 4.7 MEDIUM Released CLSA-2024:1710945589 2024-03-20 11:09:16
Ubuntu 16.04 ELS linux-hwe 4.15.0 4.7 MEDIUM Released CLSA-2024:1710946064 2024-03-20 11:09:19
Ubuntu 18.04 ELS linux 4.15.0 4.7 MEDIUM Released CLSA-2024:1710946883 2024-03-20 11:09:17