In the Linux kernel, the following vulnerability has been resolved:
scsi: libfc: Fix use after free in fcexchabts_resp()
fcexchrelease(ep) will decrease the ep's reference count. When the reference count reaches zero, it is freed. But ep is still used in the following code, which will lead to a use after free.
Return after the fcexchrelease() call to avoid use after free.
[
{
"id": "CVE-2022-49114-0a0d4852",
"target": {
"file": "drivers/scsi/libfc/fc_exch.c"
},
"digest": {
"line_hashes": [
"55985498022546877647999855388277023433",
"248601007766839561182960999682277182507",
"307798153092497244503780329725172908728",
"215841794121794463593977168382629048601"
],
"threshold": 0.9
},
"signature_version": "v1",
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@271add11994ba1a334859069367e04d2be2ebdd4",
"signature_type": "Line"
},
{
"id": "CVE-2022-49114-0cfd02de",
"target": {
"file": "drivers/scsi/libfc/fc_exch.c"
},
"digest": {
"line_hashes": [
"55985498022546877647999855388277023433",
"248601007766839561182960999682277182507",
"307798153092497244503780329725172908728",
"215841794121794463593977168382629048601"
],
"threshold": 0.9
},
"signature_version": "v1",
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@87909291762d08fdb60d19069d7a89b5b308d0ef",
"signature_type": "Line"
},
{
"id": "CVE-2022-49114-1211d306",
"target": {
"file": "drivers/scsi/libfc/fc_exch.c"
},
"digest": {
"line_hashes": [
"55985498022546877647999855388277023433",
"248601007766839561182960999682277182507",
"307798153092497244503780329725172908728",
"215841794121794463593977168382629048601"
],
"threshold": 0.9
},
"signature_version": "v1",
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@1d7effe5fff9d28e45e18ac3a564067c7ddfe898",
"signature_type": "Line"
},
{
"id": "CVE-2022-49114-27aca0ac",
"target": {
"file": "drivers/scsi/libfc/fc_exch.c"
},
"digest": {
"line_hashes": [
"55985498022546877647999855388277023433",
"248601007766839561182960999682277182507",
"307798153092497244503780329725172908728",
"215841794121794463593977168382629048601"
],
"threshold": 0.9
},
"signature_version": "v1",
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@5cf2ce8967b0d98c8cfa4dc42ef4fcf080f5c836",
"signature_type": "Line"
},
{
"id": "CVE-2022-49114-2c2961cc",
"target": {
"function": "fc_exch_abts_resp",
"file": "drivers/scsi/libfc/fc_exch.c"
},
"digest": {
"length": 1304.0,
"function_hash": "156092175461897469197406904031122672282"
},
"signature_version": "v1",
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@5cf2ce8967b0d98c8cfa4dc42ef4fcf080f5c836",
"signature_type": "Function"
},
{
"id": "CVE-2022-49114-2f0c3400",
"target": {
"file": "drivers/scsi/libfc/fc_exch.c"
},
"digest": {
"line_hashes": [
"55985498022546877647999855388277023433",
"248601007766839561182960999682277182507",
"307798153092497244503780329725172908728",
"215841794121794463593977168382629048601"
],
"threshold": 0.9
},
"signature_version": "v1",
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@6044ad64f41c87382cfeeca281573d1886d80cbe",
"signature_type": "Line"
},
{
"id": "CVE-2022-49114-4c8ebfab",
"target": {
"function": "fc_exch_abts_resp",
"file": "drivers/scsi/libfc/fc_exch.c"
},
"digest": {
"length": 1304.0,
"function_hash": "156092175461897469197406904031122672282"
},
"signature_version": "v1",
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@87909291762d08fdb60d19069d7a89b5b308d0ef",
"signature_type": "Function"
},
{
"id": "CVE-2022-49114-6914424d",
"target": {
"function": "fc_exch_abts_resp",
"file": "drivers/scsi/libfc/fc_exch.c"
},
"digest": {
"length": 1304.0,
"function_hash": "156092175461897469197406904031122672282"
},
"signature_version": "v1",
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@271add11994ba1a334859069367e04d2be2ebdd4",
"signature_type": "Function"
},
{
"id": "CVE-2022-49114-7ee44029",
"target": {
"function": "fc_exch_abts_resp",
"file": "drivers/scsi/libfc/fc_exch.c"
},
"digest": {
"length": 1304.0,
"function_hash": "156092175461897469197406904031122672282"
},
"signature_version": "v1",
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@1d7effe5fff9d28e45e18ac3a564067c7ddfe898",
"signature_type": "Function"
},
{
"id": "CVE-2022-49114-8d41eb4b",
"target": {
"function": "fc_exch_abts_resp",
"file": "drivers/scsi/libfc/fc_exch.c"
},
"digest": {
"length": 1304.0,
"function_hash": "156092175461897469197406904031122672282"
},
"signature_version": "v1",
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@499d198494e77b6533251b9b909baf5c101129cb",
"signature_type": "Function"
},
{
"id": "CVE-2022-49114-928e3819",
"target": {
"file": "drivers/scsi/libfc/fc_exch.c"
},
"digest": {
"line_hashes": [
"55985498022546877647999855388277023433",
"248601007766839561182960999682277182507",
"307798153092497244503780329725172908728",
"215841794121794463593977168382629048601"
],
"threshold": 0.9
},
"signature_version": "v1",
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@4a131d4ea8b581ac9b01d3a72754db4848be3232",
"signature_type": "Line"
},
{
"id": "CVE-2022-49114-a05c9724",
"target": {
"file": "drivers/scsi/libfc/fc_exch.c"
},
"digest": {
"line_hashes": [
"55985498022546877647999855388277023433",
"248601007766839561182960999682277182507",
"307798153092497244503780329725172908728",
"215841794121794463593977168382629048601"
],
"threshold": 0.9
},
"signature_version": "v1",
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@412dd8299b02e4410fe77b8396953c1a8dde183a",
"signature_type": "Line"
},
{
"id": "CVE-2022-49114-a388b8f8",
"target": {
"function": "fc_exch_abts_resp",
"file": "drivers/scsi/libfc/fc_exch.c"
},
"digest": {
"length": 1304.0,
"function_hash": "156092175461897469197406904031122672282"
},
"signature_version": "v1",
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@4a131d4ea8b581ac9b01d3a72754db4848be3232",
"signature_type": "Function"
},
{
"id": "CVE-2022-49114-a63f61ca",
"target": {
"function": "fc_exch_abts_resp",
"file": "drivers/scsi/libfc/fc_exch.c"
},
"digest": {
"length": 1304.0,
"function_hash": "156092175461897469197406904031122672282"
},
"signature_version": "v1",
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@412dd8299b02e4410fe77b8396953c1a8dde183a",
"signature_type": "Function"
},
{
"id": "CVE-2022-49114-d84a5fc3",
"target": {
"function": "fc_exch_abts_resp",
"file": "drivers/scsi/libfc/fc_exch.c"
},
"digest": {
"length": 1304.0,
"function_hash": "156092175461897469197406904031122672282"
},
"signature_version": "v1",
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@6044ad64f41c87382cfeeca281573d1886d80cbe",
"signature_type": "Function"
},
{
"id": "CVE-2022-49114-e0b8313a",
"target": {
"file": "drivers/scsi/libfc/fc_exch.c"
},
"digest": {
"line_hashes": [
"55985498022546877647999855388277023433",
"248601007766839561182960999682277182507",
"307798153092497244503780329725172908728",
"215841794121794463593977168382629048601"
],
"threshold": 0.9
},
"signature_version": "v1",
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@f581df412bc45c95176e3c808ee2839c05b2ab0c",
"signature_type": "Line"
},
{
"id": "CVE-2022-49114-f314d9fa",
"target": {
"file": "drivers/scsi/libfc/fc_exch.c"
},
"digest": {
"line_hashes": [
"55985498022546877647999855388277023433",
"248601007766839561182960999682277182507",
"307798153092497244503780329725172908728",
"215841794121794463593977168382629048601"
],
"threshold": 0.9
},
"signature_version": "v1",
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@499d198494e77b6533251b9b909baf5c101129cb",
"signature_type": "Line"
},
{
"id": "CVE-2022-49114-fcf5859d",
"target": {
"function": "fc_exch_abts_resp",
"file": "drivers/scsi/libfc/fc_exch.c"
},
"digest": {
"length": 1304.0,
"function_hash": "156092175461897469197406904031122672282"
},
"signature_version": "v1",
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@f581df412bc45c95176e3c808ee2839c05b2ab0c",
"signature_type": "Function"
}
]