Null pointer dereference

2024-02-0721:15:00

PRIOn knowledge base

www.prio-n.com

linux

nvme driver

tcp

denial of service

6.8 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

50.0%

JSON

A flaw was found in the Linux kernel’s NVMe driver. This issue may allow an unauthenticated malicious actor to send a set of crafted TCP packages when using NVMe over TCP, leading the NVMe driver to a NULL pointer dereference in the NVMe driver and causing kernel panic and a denial of service.

CPENameOperatorVersion
codeready_linux_builder_euseq8.6
codeready_linux_builder_euseq9.2
codeready_linux_builder_eus_for_power_little_endian_euseq9.2.0-ppc64-le
codeready_linux_builder_eus_for_power_little_endian_euseq8.6.0-ppc64-le
codeready_linux_builder_for_arm64_euseq9.2.0-aarch64
codeready_linux_builder_for_arm64_euseq8.6.0-aarch64
codeready_linux_builder_for_ibm_z_systems_euseq9.2.0-s390-x
enterprise_linuxeq8.0
enterprise_linuxeq9.0
enterprise_linux_euseq8.6

Name	Operator	Version
codeready_linux_builder_eus	eq	8.6
codeready_linux_builder_eus	eq	9.2
codeready_linux_builder_eus_for_power_little_endian_eus	eq	9.2.0-ppc64-le
codeready_linux_builder_eus_for_power_little_endian_eus	eq	8.6.0-ppc64-le
codeready_linux_builder_for_arm64_eus	eq	9.2.0-aarch64
codeready_linux_builder_for_arm64_eus	eq	8.6.0-aarch64
codeready_linux_builder_for_ibm_z_systems_eus	eq	9.2.0-s390-x
enterprise_linux	eq	8.0
enterprise_linux	eq	9.0
enterprise_linux_eus	eq	8.6