Unrated severityNVD Advisory· Published Sep 18, 2024· Updated Nov 3, 2025

nvmet-tcp: fix kernel crash if commands allocation fails

CVE-2024-46737

Description

In the Linux kernel, the following vulnerability has been resolved:

If the commands allocation fails in nvmet_tcp_alloc_cmds() the kernel crashes in nvmet_tcp_release_queue_work() because of a NULL pointer dereference.

nvmet: failed to install queue 0 cntlid 1 ret 6 Unable to handle kernel NULL pointer dereference at virtual address 0000000000000008

Fix the bug by setting queue->nr_cmds to zero in case nvmet_tcp_alloc_cmd() fails.

Affected products

112

osv-coords111 versions
pkg:rpm/opensuse/dtb-aarch64&distro=openSUSE%20Leap%2015.6 pkg:rpm/opensuse/kernel-64kb&distro=openSUSE%20Leap%2015.6 pkg:rpm/opensuse/kernel-azure&distro=openSUSE%20Leap%2015.5 pkg:rpm/opensuse/kernel-azure&distro=openSUSE%20Leap%2015.6 pkg:rpm/opensuse/kernel-debug&distro=openSUSE%20Leap%2015.6 pkg:rpm/opensuse/kernel-default-base&distro=openSUSE%20Leap%2015.6 pkg:rpm/opensuse/kernel-default-base&distro=openSUSE%20Leap%20Micro%205.5 pkg:rpm/opensuse/kernel-default&distro=openSUSE%20Leap%2015.6 pkg:rpm/opensuse/kernel-default&distro=openSUSE%20Leap%20Micro%205.5 pkg:rpm/opensuse/kernel-docs&distro=openSUSE%20Leap%2015.6 pkg:rpm/opensuse/kernel-kvmsmall&distro=openSUSE%20Leap%2015.6 pkg:rpm/opensuse/kernel-obs-build&distro=openSUSE%20Leap%2015.6 pkg:rpm/opensuse/kernel-obs-qa&distro=openSUSE%20Leap%2015.6 pkg:rpm/opensuse/kernel-rt_debug&distro=openSUSE%20Leap%2015.5 pkg:rpm/opensuse/kernel-rt_debug&distro=openSUSE%20Leap%2015.6 pkg:rpm/opensuse/kernel-rt&distro=openSUSE%20Leap%2015.5 pkg:rpm/opensuse/kernel-rt&distro=openSUSE%20Leap%2015.6 pkg:rpm/opensuse/kernel-rt&distro=openSUSE%20Leap%20Micro%205.5 pkg:rpm/opensuse/kernel-source-azure&distro=openSUSE%20Leap%2015.5 pkg:rpm/opensuse/kernel-source-azure&distro=openSUSE%20Leap%2015.6 pkg:rpm/opensuse/kernel-source&distro=openSUSE%20Leap%2015.6 pkg:rpm/opensuse/kernel-source-rt&distro=openSUSE%20Leap%2015.5 pkg:rpm/opensuse/kernel-source-rt&distro=openSUSE%20Leap%2015.6 pkg:rpm/opensuse/kernel-syms-azure&distro=openSUSE%20Leap%2015.5 pkg:rpm/opensuse/kernel-syms-azure&distro=openSUSE%20Leap%2015.6 pkg:rpm/opensuse/kernel-syms&distro=openSUSE%20Leap%2015.6 pkg:rpm/opensuse/kernel-syms-rt&distro=openSUSE%20Leap%2015.5 pkg:rpm/opensuse/kernel-syms-rt&distro=openSUSE%20Leap%2015.6 pkg:rpm/opensuse/kernel-zfcpdump&distro=openSUSE%20Leap%2015.6 pkg:rpm/suse/kernel-64kb&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP5 pkg:rpm/suse/kernel-64kb&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP6 pkg:rpm/suse/kernel-azure&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2015%20SP5 pkg:rpm/suse/kernel-azure&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2015%20SP6 pkg:rpm/suse/kernel-azure&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5 pkg:rpm/suse/kernel-azure&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5 pkg:rpm/suse/kernel-coco_debug&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Confidential%20Computing%20Technical%20Preview%2015%20SP6 pkg:rpm/suse/kernel-coco&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Confidential%20Computing%20Technical%20Preview%2015%20SP6 pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20Micro%205.5 pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP5 pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP6 pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Micro%206.0 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20High%20Availability%20Extension%2012%20SP5 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20High%20Availability%20Extension%2015%20SP5 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20High%20Availability%20Extension%2015%20SP6 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2012%20SP5 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2015%20SP5 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2015%20SP6 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Micro%205.5 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP5 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP6 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Legacy%2015%20SP5 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Legacy%2015%20SP6 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012%20SP5 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2015%20SP5 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2015%20SP6 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Micro%206.0 pkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP5 pkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP6 pkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP5 pkg:rpm/suse/kernel-kvmsmall&distro=SUSE%20Linux%20Micro%206.0 pkg:rpm/suse/kernel-livepatch-MICRO-6-0-RT_Update_3&distro=SUSE%20Linux%20Micro%206.0 pkg:rpm/suse/kernel-livepatch-MICRO-6-0_Update_3&distro=SUSE%20Linux%20Micro%206.0 pkg:rpm/suse/kernel-livepatch-SLE15-SP5-RT_Update_21&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2015%20SP5 pkg:rpm/suse/kernel-livepatch-SLE15-SP5_Update_20&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2015%20SP5 pkg:rpm/suse/kernel-livepatch-SLE15-SP6-RT_Update_4&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2015%20SP6 pkg:rpm/suse/kernel-livepatch-SLE15-SP6_Update_5&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2015%20SP6 pkg:rpm/suse/kernel-obs-build&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP5 pkg:rpm/suse/kernel-obs-build&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP6 pkg:rpm/suse/kernel-obs-build&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP5 pkg:rpm/suse/kernel-rt_debug&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2012%20SP5 pkg:rpm/suse/kernel-rt_debug&distro=SUSE%20Real%20Time%20Module%2015%20SP5 pkg:rpm/suse/kernel-rt_debug&distro=SUSE%20Real%20Time%20Module%2015%20SP6 pkg:rpm/suse/kernel-rt&distro=SUSE%20Linux%20Enterprise%20Micro%205.5 pkg:rpm/suse/kernel-rt&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2012%20SP5 pkg:rpm/suse/kernel-rt&distro=SUSE%20Linux%20Micro%206.0 pkg:rpm/suse/kernel-rt&distro=SUSE%20Real%20Time%20Module%2015%20SP5 pkg:rpm/suse/kernel-rt&distro=SUSE%20Real%20Time%20Module%2015%20SP6 pkg:rpm/suse/kernel-source-azure&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2015%20SP5 pkg:rpm/suse/kernel-source-azure&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2015%20SP6 pkg:rpm/suse/kernel-source-azure&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5 pkg:rpm/suse/kernel-source-azure&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5 pkg:rpm/suse/kernel-source-coco&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Confidential%20Computing%20Technical%20Preview%2015%20SP6 pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP5 pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP6 pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP5 pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP6 pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5 pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5 pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Micro%206.0 pkg:rpm/suse/kernel-source-rt&distro=SUSE%20Linux%20Enterprise%20Micro%205.5 pkg:rpm/suse/kernel-source-rt&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2012%20SP5 pkg:rpm/suse/kernel-source-rt&distro=SUSE%20Linux%20Micro%206.0 pkg:rpm/suse/kernel-source-rt&distro=SUSE%20Real%20Time%20Module%2015%20SP5 pkg:rpm/suse/kernel-source-rt&distro=SUSE%20Real%20Time%20Module%2015%20SP6 pkg:rpm/suse/kernel-syms-azure&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2015%20SP5 pkg:rpm/suse/kernel-syms-azure&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2015%20SP6 pkg:rpm/suse/kernel-syms-azure&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5 pkg:rpm/suse/kernel-syms-azure&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5 pkg:rpm/suse/kernel-syms-coco&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Confidential%20Computing%20Technical%20Preview%2015%20SP6 pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP5 pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP6 pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5 pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5 pkg:rpm/suse/kernel-syms-rt&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2012%20SP5 pkg:rpm/suse/kernel-syms-rt&distro=SUSE%20Real%20Time%20Module%2015%20SP5 pkg:rpm/suse/kernel-syms-rt&distro=SUSE%20Real%20Time%20Module%2015%20SP6 pkg:rpm/suse/kernel-zfcpdump&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP5 pkg:rpm/suse/kernel-zfcpdump&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP6 pkg:rpm/suse/kgraft-patch-SLE12-SP5_Update_61&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2012%20SP5
< 6.4.0-150600.23.25.1+ 110 more
- (no CPE)range: < 6.4.0-150600.23.25.1
- (no CPE)range: < 6.4.0-150600.23.25.1
- (no CPE)range: < 5.14.21-150500.33.69.1
- (no CPE)range: < 6.4.0-150600.8.14.1
- (no CPE)range: < 6.4.0-150600.23.25.1
- (no CPE)range: < 6.4.0-150600.23.25.1.150600.12.10.2
- (no CPE)range: < 5.14.21-150500.55.83.1.150500.6.37.1
- (no CPE)range: < 6.4.0-150600.23.25.1
- (no CPE)range: < 5.14.21-150500.55.83.1
- (no CPE)range: < 6.4.0-150600.23.25.2
- (no CPE)range: < 6.4.0-150600.23.25.1
- (no CPE)range: < 6.4.0-150600.23.25.2
- (no CPE)range: < 6.4.0-150600.23.25.1
- (no CPE)range: < 5.14.21-150500.13.73.1
- (no CPE)range: < 6.4.0-150600.10.14.1
- (no CPE)range: < 5.14.21-150500.13.73.1
- (no CPE)range: < 6.4.0-150600.10.14.1
- (no CPE)range: < 5.14.21-150500.13.73.1
- (no CPE)range: < 5.14.21-150500.33.69.1
- (no CPE)range: < 6.4.0-150600.8.14.1
- (no CPE)range: < 6.4.0-150600.23.25.1
- (no CPE)range: < 5.14.21-150500.13.73.1
- (no CPE)range: < 6.4.0-150600.10.14.1
- (no CPE)range: < 5.14.21-150500.33.69.1
- (no CPE)range: < 6.4.0-150600.8.14.1
- (no CPE)range: < 6.4.0-150600.23.25.1
- (no CPE)range: < 5.14.21-150500.13.73.1
- (no CPE)range: < 6.4.0-150600.10.14.1
- (no CPE)range: < 6.4.0-150600.23.25.1
- (no CPE)range: < 5.14.21-150500.55.83.1
- (no CPE)range: < 6.4.0-150600.23.25.1
- (no CPE)range: < 5.14.21-150500.33.69.1
- (no CPE)range: < 6.4.0-150600.8.14.1
- (no CPE)range: < 4.12.14-16.200.1
- (no CPE)range: < 4.12.14-16.200.1
- (no CPE)range: < 6.4.0-15061.6.coco15sp6.1
- (no CPE)range: < 6.4.0-15061.6.coco15sp6.1
- (no CPE)range: < 5.14.21-150500.55.83.1.150500.6.37.1
- (no CPE)range: < 5.14.21-150500.55.83.1.150500.6.37.1
- (no CPE)range: < 6.4.0-150600.23.25.1.150600.12.10.2
- (no CPE)range: < 6.4.0-17.1.1.51
- (no CPE)range: < 4.12.14-122.231.1
- (no CPE)range: < 5.14.21-150500.55.83.1
- (no CPE)range: < 6.4.0-150600.23.25.1
- (no CPE)range: < 4.12.14-122.231.1
- (no CPE)range: < 5.14.21-150500.55.83.1
- (no CPE)range: < 6.4.0-150600.23.25.1
- (no CPE)range: < 5.14.21-150500.55.83.1
- (no CPE)range: < 5.14.21-150500.55.83.1
- (no CPE)range: < 6.4.0-150600.23.25.1
- (no CPE)range: < 5.14.21-150500.55.83.1
- (no CPE)range: < 6.4.0-150600.23.25.1
- (no CPE)range: < 4.12.14-122.231.1
- (no CPE)range: < 4.12.14-122.231.1
- (no CPE)range: < 4.12.14-122.231.1
- (no CPE)range: < 5.14.21-150500.55.83.1
- (no CPE)range: < 6.4.0-150600.23.25.1
- (no CPE)range: < 6.4.0-20.1
- (no CPE)range: < 5.14.21-150500.55.83.1
- (no CPE)range: < 6.4.0-150600.23.25.2
- (no CPE)range: < 4.12.14-122.231.1
- (no CPE)range: < 6.4.0-20.1
- (no CPE)range: < 1-1.2
- (no CPE)range: < 1-1.2
- (no CPE)range: < 1-150500.11.3.1
- (no CPE)range: < 1-150500.11.3.1
- (no CPE)range: < 1-150600.1.3.1
- (no CPE)range: < 1-150600.13.3.1
- (no CPE)range: < 5.14.21-150500.55.83.1
- (no CPE)range: < 6.4.0-150600.23.25.2
- (no CPE)range: < 4.12.14-122.231.1
- (no CPE)range: < 4.12.14-10.203.1
- (no CPE)range: < 5.14.21-150500.13.73.1
- (no CPE)range: < 6.4.0-150600.10.14.1
- (no CPE)range: < 5.14.21-150500.13.73.1
- (no CPE)range: < 4.12.14-10.203.1
- (no CPE)range: < 6.4.0-11.1
- (no CPE)range: < 5.14.21-150500.13.73.1
- (no CPE)range: < 6.4.0-150600.10.14.1
- (no CPE)range: < 5.14.21-150500.33.69.1
- (no CPE)range: < 6.4.0-150600.8.14.1
- (no CPE)range: < 4.12.14-16.200.1
- (no CPE)range: < 4.12.14-16.200.1
- (no CPE)range: < 6.4.0-15061.6.coco15sp6.1
- (no CPE)range: < 5.14.21-150500.55.83.1
- (no CPE)range: < 6.4.0-150600.23.25.1
- (no CPE)range: < 5.14.21-150500.55.83.1
- (no CPE)range: < 6.4.0-150600.23.25.1
- (no CPE)range: < 4.12.14-122.231.1
- (no CPE)range: < 4.12.14-122.231.1
- (no CPE)range: < 6.4.0-20.1
- (no CPE)range: < 5.14.21-150500.13.73.1
- (no CPE)range: < 4.12.14-10.203.1
- (no CPE)range: < 6.4.0-11.1
- (no CPE)range: < 5.14.21-150500.13.73.1
- (no CPE)range: < 6.4.0-150600.10.14.1
- (no CPE)range: < 5.14.21-150500.33.69.1
- (no CPE)range: < 6.4.0-150600.8.14.1
- (no CPE)range: < 4.12.14-16.200.1
- (no CPE)range: < 4.12.14-16.200.1
- (no CPE)range: < 6.4.0-15061.6.coco15sp6.1
- (no CPE)range: < 5.14.21-150500.55.83.1
- (no CPE)range: < 6.4.0-150600.23.25.1
- (no CPE)range: < 4.12.14-122.231.1
- (no CPE)range: < 4.12.14-122.231.1
- (no CPE)range: < 4.12.14-10.203.1
- (no CPE)range: < 5.14.21-150500.13.73.1
- (no CPE)range: < 6.4.0-150600.10.14.1
- (no CPE)range: < 5.14.21-150500.55.83.1
- (no CPE)range: < 6.4.0-150600.23.25.1
- (no CPE)range: < 1-8.3.1
Linux/Linuxcpe-rescue
Range: 5.0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000