scsi: target: iscsi: Fix use-after-free in iscsit_dec_conn_usage_count()
Description
In the Linux kernel, the following vulnerability has been resolved:
scsi: target: iscsi: Fix use-after-free in iscsit_dec_conn_usage_count()
In iscsit_dec_conn_usage_count(), the function calls complete() while holding the conn->conn_usage_lock. As soon as complete() is invoked, the waiter (such as iscsit_close_connection()) may wake up and proceed to free the iscsit_conn structure.
If the waiter frees the memory before the current thread reaches spin_unlock_bh(), it results in a KASAN slab-use-after-free as the function attempts to release a lock within the already-freed connection structure.
Fix this by releasing the spinlock before calling complete().
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
109- osv-coords107 versionspkg:rpm/almalinux/bpftoolpkg:rpm/almalinux/kernelpkg:rpm/almalinux/kernel-64kpkg:rpm/almalinux/kernel-64k-corepkg:rpm/almalinux/kernel-64k-debugpkg:rpm/almalinux/kernel-64k-debug-corepkg:rpm/almalinux/kernel-64k-debug-develpkg:rpm/almalinux/kernel-64k-debug-devel-matchedpkg:rpm/almalinux/kernel-64k-debug-modulespkg:rpm/almalinux/kernel-64k-debug-modules-corepkg:rpm/almalinux/kernel-64k-debug-modules-extrapkg:rpm/almalinux/kernel-64k-develpkg:rpm/almalinux/kernel-64k-devel-matchedpkg:rpm/almalinux/kernel-64k-modulespkg:rpm/almalinux/kernel-64k-modules-corepkg:rpm/almalinux/kernel-64k-modules-extrapkg:rpm/almalinux/kernel-abi-stablelistspkg:rpm/almalinux/kernel-corepkg:rpm/almalinux/kernel-cross-headerspkg:rpm/almalinux/kernel-debugpkg:rpm/almalinux/kernel-debug-corepkg:rpm/almalinux/kernel-debug-develpkg:rpm/almalinux/kernel-debug-devel-matchedpkg:rpm/almalinux/kernel-debug-modulespkg:rpm/almalinux/kernel-debug-modules-corepkg:rpm/almalinux/kernel-debug-modules-extrapkg:rpm/almalinux/kernel-debug-uki-virtpkg:rpm/almalinux/kernel-develpkg:rpm/almalinux/kernel-devel-matchedpkg:rpm/almalinux/kernel-docpkg:rpm/almalinux/kernel-headerspkg:rpm/almalinux/kernel-modulespkg:rpm/almalinux/kernel-modules-corepkg:rpm/almalinux/kernel-modules-extrapkg:rpm/almalinux/kernel-rtpkg:rpm/almalinux/kernel-rt-64kpkg:rpm/almalinux/kernel-rt-64k-corepkg:rpm/almalinux/kernel-rt-64k-debugpkg:rpm/almalinux/kernel-rt-64k-debug-corepkg:rpm/almalinux/kernel-rt-64k-debug-develpkg:rpm/almalinux/kernel-rt-64k-debug-modulespkg:rpm/almalinux/kernel-rt-64k-debug-modules-corepkg:rpm/almalinux/kernel-rt-64k-debug-modules-extrapkg:rpm/almalinux/kernel-rt-64k-develpkg:rpm/almalinux/kernel-rt-64k-modulespkg:rpm/almalinux/kernel-rt-64k-modules-corepkg:rpm/almalinux/kernel-rt-64k-modules-extrapkg:rpm/almalinux/kernel-rt-corepkg:rpm/almalinux/kernel-rt-debugpkg:rpm/almalinux/kernel-rt-debug-corepkg:rpm/almalinux/kernel-rt-debug-develpkg:rpm/almalinux/kernel-rt-debug-modulespkg:rpm/almalinux/kernel-rt-debug-modules-corepkg:rpm/almalinux/kernel-rt-debug-modules-extrapkg:rpm/almalinux/kernel-rt-develpkg:rpm/almalinux/kernel-rt-modulespkg:rpm/almalinux/kernel-rt-modules-corepkg:rpm/almalinux/kernel-rt-modules-extrapkg:rpm/almalinux/kernel-toolspkg:rpm/almalinux/kernel-tools-libspkg:rpm/almalinux/kernel-tools-libs-develpkg:rpm/almalinux/kernel-uki-virtpkg:rpm/almalinux/kernel-uki-virt-addonspkg:rpm/almalinux/kernel-zfcpdumppkg:rpm/almalinux/kernel-zfcpdump-corepkg:rpm/almalinux/kernel-zfcpdump-develpkg:rpm/almalinux/kernel-zfcpdump-devel-matchedpkg:rpm/almalinux/kernel-zfcpdump-modulespkg:rpm/almalinux/kernel-zfcpdump-modules-corepkg:rpm/almalinux/kernel-zfcpdump-modules-extrapkg:rpm/almalinux/libperfpkg:rpm/almalinux/perfpkg:rpm/almalinux/python3-perfpkg:rpm/almalinux/rtlapkg:rpm/almalinux/rvpkg:rpm/opensuse/dtb-aarch64&distro=openSUSE%20Leap%2016.0pkg:rpm/opensuse/kernel-64kb&distro=openSUSE%20Leap%2016.0pkg:rpm/opensuse/kernel-azure&distro=openSUSE%20Leap%2016.0pkg:rpm/opensuse/kernel-default-base&distro=openSUSE%20Leap%2016.0pkg:rpm/opensuse/kernel-default&distro=openSUSE%20Leap%2016.0pkg:rpm/opensuse/kernel-docs&distro=openSUSE%20Leap%2016.0pkg:rpm/opensuse/kernel-kvmsmall&distro=openSUSE%20Leap%2016.0pkg:rpm/opensuse/kernel-obs-build&distro=openSUSE%20Leap%2016.0pkg:rpm/opensuse/kernel-obs-qa&distro=openSUSE%20Leap%2016.0pkg:rpm/opensuse/kernel-rt&distro=openSUSE%20Leap%2016.0pkg:rpm/opensuse/kernel-source&distro=openSUSE%20Leap%2016.0pkg:rpm/opensuse/kernel-syms&distro=openSUSE%20Leap%2016.0pkg:rpm/opensuse/kernel-zfcpdump&distro=openSUSE%20Leap%2016.0pkg:rpm/suse/kernel-64kb&distro=SUSE%20Linux%20Micro%206.2pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Micro%206.0pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Micro%206.1pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Micro%206.2pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Micro%206.0pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Micro%206.1pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Micro%206.2pkg:rpm/suse/kernel-kvmsmall&distro=SUSE%20Linux%20Micro%206.0pkg:rpm/suse/kernel-kvmsmall&distro=SUSE%20Linux%20Micro%206.1pkg:rpm/suse/kernel-livepatch-SLE15-SP7-RT_Update_11&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2015%20SP7pkg:rpm/suse/kernel-rt&distro=SUSE%20Linux%20Micro%206.1pkg:rpm/suse/kernel-rt&distro=SUSE%20Linux%20Micro%206.2pkg:rpm/suse/kernel-rt&distro=SUSE%20Real%20Time%20Module%2015%20SP7pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Micro%206.0pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Micro%206.1pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Micro%206.2pkg:rpm/suse/kernel-source-rt&distro=SUSE%20Linux%20Micro%206.1pkg:rpm/suse/kernel-source-rt&distro=SUSE%20Real%20Time%20Module%2015%20SP7pkg:rpm/suse/kernel-syms-rt&distro=SUSE%20Real%20Time%20Module%2015%20SP7
< 4.18.0-553.139.1.el8_10+ 106 more
- (no CPE)range: < 4.18.0-553.139.1.el8_10
- (no CPE)range: < 5.14.0-687.15.1.el9_8
- (no CPE)range: < 5.14.0-687.15.1.el9_8
- (no CPE)range: < 5.14.0-687.15.1.el9_8
- (no CPE)range: < 5.14.0-687.15.1.el9_8
- (no CPE)range: < 5.14.0-687.15.1.el9_8
- (no CPE)range: < 5.14.0-687.15.1.el9_8
- (no CPE)range: < 5.14.0-687.15.1.el9_8
- (no CPE)range: < 5.14.0-687.15.1.el9_8
- (no CPE)range: < 5.14.0-687.15.1.el9_8
- (no CPE)range: < 5.14.0-687.15.1.el9_8
- (no CPE)range: < 5.14.0-687.15.1.el9_8
- (no CPE)range: < 5.14.0-687.15.1.el9_8
- (no CPE)range: < 5.14.0-687.15.1.el9_8
- (no CPE)range: < 5.14.0-687.15.1.el9_8
- (no CPE)range: < 5.14.0-687.15.1.el9_8
- (no CPE)range: < 5.14.0-687.15.1.el9_8
- (no CPE)range: < 5.14.0-687.15.1.el9_8
- (no CPE)range: < 5.14.0-687.15.1.el9_8
- (no CPE)range: < 5.14.0-687.15.1.el9_8
- (no CPE)range: < 5.14.0-687.15.1.el9_8
- (no CPE)range: < 5.14.0-687.15.1.el9_8
- (no CPE)range: < 5.14.0-687.15.1.el9_8
- (no CPE)range: < 5.14.0-687.15.1.el9_8
- (no CPE)range: < 5.14.0-687.15.1.el9_8
- (no CPE)range: < 5.14.0-687.15.1.el9_8
- (no CPE)range: < 5.14.0-687.15.1.el9_8
- (no CPE)range: < 5.14.0-687.15.1.el9_8
- (no CPE)range: < 5.14.0-687.15.1.el9_8
- (no CPE)range: < 5.14.0-687.15.1.el9_8
- (no CPE)range: < 5.14.0-687.15.1.el9_8
- (no CPE)range: < 5.14.0-687.15.1.el9_8
- (no CPE)range: < 5.14.0-687.15.1.el9_8
- (no CPE)range: < 5.14.0-687.15.1.el9_8
- (no CPE)range: < 5.14.0-687.15.1.el9_8
- (no CPE)range: < 5.14.0-687.15.1.el9_8
- (no CPE)range: < 5.14.0-687.15.1.el9_8
- (no CPE)range: < 5.14.0-687.15.1.el9_8
- (no CPE)range: < 5.14.0-687.15.1.el9_8
- (no CPE)range: < 5.14.0-687.15.1.el9_8
- (no CPE)range: < 5.14.0-687.15.1.el9_8
- (no CPE)range: < 5.14.0-687.15.1.el9_8
- (no CPE)range: < 5.14.0-687.15.1.el9_8
- (no CPE)range: < 5.14.0-687.15.1.el9_8
- (no CPE)range: < 5.14.0-687.15.1.el9_8
- (no CPE)range: < 5.14.0-687.15.1.el9_8
- (no CPE)range: < 5.14.0-687.15.1.el9_8
- (no CPE)range: < 5.14.0-687.15.1.el9_8
- (no CPE)range: < 5.14.0-687.15.1.el9_8
- (no CPE)range: < 5.14.0-687.15.1.el9_8
- (no CPE)range: < 5.14.0-687.15.1.el9_8
- (no CPE)range: < 5.14.0-687.15.1.el9_8
- (no CPE)range: < 5.14.0-687.15.1.el9_8
- (no CPE)range: < 5.14.0-687.15.1.el9_8
- (no CPE)range: < 5.14.0-687.15.1.el9_8
- (no CPE)range: < 5.14.0-687.15.1.el9_8
- (no CPE)range: < 5.14.0-687.15.1.el9_8
- (no CPE)range: < 5.14.0-687.15.1.el9_8
- (no CPE)range: < 5.14.0-687.15.1.el9_8
- (no CPE)range: < 5.14.0-687.15.1.el9_8
- (no CPE)range: < 5.14.0-687.15.1.el9_8
- (no CPE)range: < 5.14.0-687.15.1.el9_8
- (no CPE)range: < 5.14.0-687.15.1.el9_8
- (no CPE)range: < 5.14.0-687.15.1.el9_8
- (no CPE)range: < 5.14.0-687.15.1.el9_8
- (no CPE)range: < 5.14.0-687.15.1.el9_8
- (no CPE)range: < 5.14.0-687.15.1.el9_8
- (no CPE)range: < 5.14.0-687.15.1.el9_8
- (no CPE)range: < 5.14.0-687.15.1.el9_8
- (no CPE)range: < 5.14.0-687.15.1.el9_8
- (no CPE)range: < 5.14.0-687.15.1.el9_8
- (no CPE)range: < 5.14.0-687.15.1.el9_8
- (no CPE)range: < 5.14.0-687.15.1.el9_8
- (no CPE)range: < 5.14.0-687.15.1.el9_8
- (no CPE)range: < 5.14.0-687.15.1.el9_8
- (no CPE)range: < 6.12.0-160000.28.1
- (no CPE)range: < 6.12.0-160000.28.1
- (no CPE)range: < 6.12.0-160000.28.1
- (no CPE)range: < 6.12.0-160000.27.1.160000.2.8
- (no CPE)range: < 6.12.0-160000.28.1
- (no CPE)range: < 6.12.0-160000.28.1
- (no CPE)range: < 6.12.0-160000.28.1
- (no CPE)range: < 6.12.0-160000.28.1
- (no CPE)range: < 6.12.0-160000.28.1
- (no CPE)range: < 6.12.0-160000.28.1
- (no CPE)range: < 6.12.0-160000.28.1
- (no CPE)range: < 6.12.0-160000.28.1
- (no CPE)range: < 6.12.0-160000.28.1
- (no CPE)range: < 6.12.0-160000.28.1
- (no CPE)range: < 6.4.0-41.1.21.18
- (no CPE)range: < 6.4.0-41.1.21.18
- (no CPE)range: < 6.12.0-160000.27.1.160000.2.8
- (no CPE)range: < 6.4.0-41.1
- (no CPE)range: < 6.4.0-41.1
- (no CPE)range: < 6.12.0-160000.28.1
- (no CPE)range: < 6.4.0-41.1
- (no CPE)range: < 6.4.0-41.1
- (no CPE)range: < 1-150700.1.3.1
- (no CPE)range: < 6.4.0-41.1
- (no CPE)range: < 6.12.0-160000.28.1
- (no CPE)range: < 6.4.0-150700.7.37.2
- (no CPE)range: < 6.4.0-41.1
- (no CPE)range: < 6.4.0-41.1
- (no CPE)range: < 6.12.0-160000.28.1
- (no CPE)range: < 6.4.0-41.1
- (no CPE)range: < 6.4.0-150700.7.37.2
- (no CPE)range: < 6.4.0-150700.7.37.1
Patches
Vulnerability mechanics
References
7- git.kernel.org/stable/c/275016a551ba1a068a3bd6171b18611726b67110mitre
- git.kernel.org/stable/c/3835e49e146a4e6e7787b29465f1a23379b6ec44mitre
- git.kernel.org/stable/c/48fe983e92de2c59d143fe38362ad17ba23ec7f3mitre
- git.kernel.org/stable/c/73b487d44bf4f92942629d578381f89c326ff77fmitre
- git.kernel.org/stable/c/8518f072fc92921418cd9ed4268dd4f3e9a8fd75mitre
- git.kernel.org/stable/c/9411a89e9e7135cc459178fa77a3f1d6191ae903mitre
- git.kernel.org/stable/c/ba684191437380a07b27666eb4e72748be1ea201mitre
News mentions
0No linked articles in our index yet.