Ubuntu: (Multiple Advisories) (CVE-2024-42286): Linux kernel vulnerabilities
Description
In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: validate nvme_local_port correctly The driver load failed with error message, qla2xxx [0000:04:00.0]-ffff:0: register_localport failed: ret=ffffffef and with a kernel crash, BUG: unable to handle kernel NULL pointer dereference at 0000000000000070 Workqueue: events_unbound qla_register_fcport_fn [qla2xxx] RIP: 0010:nvme_fc_register_remoteport+0x16/0x430 [nvme_fc] RSP: 0018:ffffaaa040eb3d98 EFLAGS: 00010282 RAX: 0000000000000000 RBX: ffff9dfb46b78c00 RCX: 0000000000000000 RDX: ffff9dfb46b78da8 RSI: ffffaaa040eb3e08 RDI: 0000000000000000 RBP: ffff9dfb612a0a58 R08: ffffffffaf1d6270 R09: 3a34303a30303030 R10: 34303a303030305b R11: 2078787832616c71 R12: ffff9dfb46b78dd4 R13: ffff9dfb46b78c24 R14: ffff9dfb41525300 R15: ffff9dfb46b78da8 FS: 0000000000000000(0000) GS:ffff9dfc67c00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 0000000000000070 CR3: 000000018da10004 CR4: 00000000000206f0 Call Trace: qla_nvme_register_remote+0xeb/0x1f0 [qla2xxx] ? qla2x00_dfs_create_rport+0x231/0x270 [qla2xxx] qla2x00_update_fcport+0x2a1/0x3c0 [qla2xxx] qla_register_fcport_fn+0x54/0xc0 [qla2xxx] Exit the qla_nvme_register_remote() function when qla_nvme_register_hba() fails and correctly validate nvme_local_port.
Solution(s)
- ubuntu-upgrade-linux-image-5-15-0-1038-xilinx-zynqmp
- ubuntu-upgrade-linux-image-5-15-0-1055-gkeop
- ubuntu-upgrade-linux-image-5-15-0-1065-ibm
- ubuntu-upgrade-linux-image-5-15-0-1065-raspi
- ubuntu-upgrade-linux-image-5-15-0-1067-nvidia
- ubuntu-upgrade-linux-image-5-15-0-1067-nvidia-lowlatency
- ubuntu-upgrade-linux-image-5-15-0-1069-gke
- ubuntu-upgrade-linux-image-5-15-0-1069-kvm
- ubuntu-upgrade-linux-image-5-15-0-1070-oracle
- ubuntu-upgrade-linux-image-5-15-0-1071-gcp
- ubuntu-upgrade-linux-image-5-15-0-1072-aws
- ubuntu-upgrade-linux-image-5-15-0-1075-azure
- ubuntu-upgrade-linux-image-5-15-0-125-generic
- ubuntu-upgrade-linux-image-5-15-0-125-generic-64k
- ubuntu-upgrade-linux-image-5-15-0-125-generic-lpae
- ubuntu-upgrade-linux-image-5-15-0-125-lowlatency
- ubuntu-upgrade-linux-image-5-15-0-125-lowlatency-64k
- ubuntu-upgrade-linux-image-5-4-0-1044-iot
- ubuntu-upgrade-linux-image-5-4-0-1054-xilinx-zynqmp
- ubuntu-upgrade-linux-image-5-4-0-1082-ibm
- ubuntu-upgrade-linux-image-5-4-0-1094-bluefield
- ubuntu-upgrade-linux-image-5-4-0-1102-gkeop
- ubuntu-upgrade-linux-image-5-4-0-1119-raspi
- ubuntu-upgrade-linux-image-5-4-0-1123-kvm
- ubuntu-upgrade-linux-image-5-4-0-1134-oracle
- ubuntu-upgrade-linux-image-5-4-0-1135-aws
- ubuntu-upgrade-linux-image-5-4-0-1139-azure
- ubuntu-upgrade-linux-image-5-4-0-1139-gcp
- ubuntu-upgrade-linux-image-5-4-0-1140-azure
- ubuntu-upgrade-linux-image-5-4-0-200-generic
- ubuntu-upgrade-linux-image-5-4-0-200-generic-lpae
- ubuntu-upgrade-linux-image-5-4-0-200-lowlatency
- ubuntu-upgrade-linux-image-aws
- ubuntu-upgrade-linux-image-aws-lts-20-04
- ubuntu-upgrade-linux-image-aws-lts-22-04
- ubuntu-upgrade-linux-image-azure
- ubuntu-upgrade-linux-image-azure-lts-20-04
- ubuntu-upgrade-linux-image-azure-lts-22-04
- ubuntu-upgrade-linux-image-bluefield
- ubuntu-upgrade-linux-image-gcp
- ubuntu-upgrade-linux-image-gcp-lts-20-04
- ubuntu-upgrade-linux-image-gcp-lts-22-04
- ubuntu-upgrade-linux-image-generic
- ubuntu-upgrade-linux-image-generic-64k
- ubuntu-upgrade-linux-image-generic-64k-hwe-20-04
- ubuntu-upgrade-linux-image-generic-hwe-18-04
- ubuntu-upgrade-linux-image-generic-hwe-20-04
- ubuntu-upgrade-linux-image-generic-lpae
- ubuntu-upgrade-linux-image-generic-lpae-hwe-20-04
- ubuntu-upgrade-linux-image-gke
- ubuntu-upgrade-linux-image-gke-5-15
- ubuntu-upgrade-linux-image-gkeop
- ubuntu-upgrade-linux-image-gkeop-5-15
- ubuntu-upgrade-linux-image-gkeop-5-4
- ubuntu-upgrade-linux-image-ibm
- ubuntu-upgrade-linux-image-ibm-lts-20-04
- ubuntu-upgrade-linux-image-kvm
- ubuntu-upgrade-linux-image-lowlatency
- ubuntu-upgrade-linux-image-lowlatency-64k
- ubuntu-upgrade-linux-image-lowlatency-64k-hwe-20-04
- ubuntu-upgrade-linux-image-lowlatency-hwe-18-04
- ubuntu-upgrade-linux-image-lowlatency-hwe-20-04
- ubuntu-upgrade-linux-image-nvidia
- ubuntu-upgrade-linux-image-nvidia-lowlatency
- ubuntu-upgrade-linux-image-oem
- ubuntu-upgrade-linux-image-oem-20-04
- ubuntu-upgrade-linux-image-oem-20-04b
- ubuntu-upgrade-linux-image-oem-20-04c
- ubuntu-upgrade-linux-image-oem-20-04d
- ubuntu-upgrade-linux-image-oem-osp1
- ubuntu-upgrade-linux-image-oracle
- ubuntu-upgrade-linux-image-oracle-lts-20-04
- ubuntu-upgrade-linux-image-oracle-lts-22-04
- ubuntu-upgrade-linux-image-raspi
- ubuntu-upgrade-linux-image-raspi-hwe-18-04
- ubuntu-upgrade-linux-image-raspi-nolpae
- ubuntu-upgrade-linux-image-raspi2
- ubuntu-upgrade-linux-image-snapdragon-hwe-18-04
- ubuntu-upgrade-linux-image-virtual
- ubuntu-upgrade-linux-image-virtual-hwe-18-04
- ubuntu-upgrade-linux-image-virtual-hwe-20-04
- ubuntu-upgrade-linux-image-xilinx-zynqmp
- Lightweight Endpoint Agent
- Live Dashboards
- Real Risk Prioritization
- IT-Integrated Remediation Projects
- Cloud, Virtual, and Container Assessment
- Integrated Threat Feeds
- Easy-to-Use RESTful API
- Automation-Assisted Patching
- Automated Containment
With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.
– Scott Cheney, Manager of Information Security, Sierra View Medical Center