VYPR
Unrated severityNVD Advisory· Published Oct 4, 2025

scsi: Revert "scsi: core: Do not increase scsi_device's iorequest_cnt if dispatch failed"

CVE-2023-53609

Description

In the Linux kernel, the following vulnerability has been resolved:

scsi: Revert "scsi: core: Do not increase scsi_device's iorequest_cnt if dispatch failed"

The "atomic_inc(&cmd->device->iorequest_cnt)" in scsi_queue_rq() would cause kernel panic because cmd->device may be freed after returning from scsi_dispatch_cmd().

This reverts commit cfee29ffb45b1c9798011b19d454637d1b0fe87d.

Affected products

2
  • Linux/Kernelllm-fuzzy2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: 6.2

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.