CVE-2024-35930

Source
https://nvd.nist.gov/vuln/detail/CVE-2024-35930
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-35930.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2024-35930
Downstream
Related
Published
2024-05-19T11:15:49Z
Modified
2025-08-09T19:01:29Z
Severity
  • 5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
[none]
Details

In the Linux kernel, the following vulnerability has been resolved:

scsi: lpfc: Fix possible memory leak in lpfcrcvpadisc()

The call to lpfcsli4resumerpi() in lpfcrcv_padisc() may return an unsuccessful status. In such cases, the elsiocb is not issued, the completion is not called, and thus the elsiocb resource is leaked.

Check return value after calling lpfcsli4resume_rpi() and conditionally release the elsiocb resource.

References

Affected packages