VYPR
Unrated severityNVD Advisory· Published Mar 2, 2024· Updated Jun 24, 2025

nvme-fc: Prevent null pointer dereference in nvme_fc_io_getuuid()

CVE-2023-52508

Description

In the Linux kernel, the following vulnerability has been resolved:

nvme-fc: Prevent null pointer dereference in nvme_fc_io_getuuid()

The nvme_fc_fcp_op structure describing an AEN operation is initialized with a null request structure pointer. An FC LLDD may make a call to nvme_fc_io_getuuid passing a pointer to an nvmefc_fcp_req for an AEN operation.

Add validation of the request structure pointer before dereference.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

144

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.