A memory leak in the bfadimgetstats() function in drivers/scsi/bfa/bfadattr.c in the Linux kernel through 5.3.11 allows attackers to cause a denial of service (memory consumption) by triggering bfaportget_stats() failures, aka CID-0e62395da2bd.
{ "urgency": "not yet assigned" }