VYPR
Unrated severityNVD Advisory· Published May 2, 2025· Updated Jan 5, 2026

scsi: lpfc: Check kzalloc() in lpfc_sli4_cgn_params_read()

CVE-2023-53038

Description

In the Linux kernel, the following vulnerability has been resolved:

scsi: lpfc: Check kzalloc() in lpfc_sli4_cgn_params_read()

If kzalloc() fails in lpfc_sli4_cgn_params_read(), then we rely on lpfc_read_object()'s routine to NULL check pdata.

Currently, an early return error is thrown from lpfc_read_object() to protect us from NULL ptr dereference, but the errno code is -ENODEV.

Change the errno code to a more appropriate -ENOMEM.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

85

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.