VYPR
Medium severity5.5NVD Advisory· Published Sep 5, 2025· Updated May 12, 2026

CVE-2025-39676

CVE-2025-39676

Description

In the Linux kernel, the following vulnerability has been resolved:

scsi: qla4xxx: Prevent a potential error pointer dereference

The qla4xxx_get_ep_fwdb() function is supposed to return NULL on error, but qla4xxx_ep_connect() returns error pointers. Propagating the error pointers will lead to an Oops in the caller, so change the error pointers to NULL.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

126

Patches

Vulnerability mechanics

References

11

News mentions

1